pfsense:pfblockerng:install_pfblockerng:increase_firewall_maximum_table_entries
PFSense - pfBlockerNG - Install pfBlockerNG - Increase Firewall Maximum Table Entries
pfBlockerNG uses a lot of firewall entries.
It is important that enough memory has been allocated to support all these firewall entries.
Increase Firewall Maximum Table Entries
Navigate to System → Advanced → Firewall & NAT.
In Firewall Advanced:
- Firewall Maximum Table Entries: Set to at least 1000000, unless the system has very little RAM.
NOTE: Without increasing this value, DNS queries take much longer, causing webpages to load very slowly.
If lots of blocklists are being used, then look at setting these slightly higher if you notice any slowness in DNS resolving.
- Be careful of setting this too high as it directly uses more RAM the higher you set it.
- In terms of RAM; 1 state == 1k of RAM, so 1 million states is 1GB of RAM.
As a rough guide, set this value to the following, depending on how much memory there is.
| Memory | Firewall Maximum Table Entries |
|---|---|
| 4GB | 800000 |
| 8GB | 1000000 |
| 16GB | 1200000 |
| 32GB or Higher | 2000000 |
Return to Install pfBlockerNG or continue to Install pfBlockerNG Package.
pfsense/pfblockerng/install_pfblockerng/increase_firewall_maximum_table_entries.txt · Last modified: 2021/01/28 18:38 by peter