Differences

This shows you the differences between two versions of the page.

--- pfsense:pfblockerng:install_pfblockerng:increase_firewall_maximum_table_entries [2021/01/28 09:57] – created peter
+++ pfsense:pfblockerng:install_pfblockerng:increase_firewall_maximum_table_entries [2021/01/28 18:38] (current) – peter
@@ Line 1: / Line 1: @@
 ====== PFSense - pfBlockerNG - Install pfBlockerNG - Increase Firewall Maximum Table Entries ======
+pfBlockerNG uses a lot of firewall entries.
+It is important that enough memory has been allocated to support all these firewall entries.
+----
+===== Increase Firewall Maximum Table Entries =====
+Navigate to **System -> Advanced -> Firewall & NAT**.
+In **Firewall Advanced**:
+  * Firewall Maximum Table Entries:  **Set to at least 1000000, unless the system has very little RAM**.
+<WRAP info>
+**NOTE:**  Without increasing this value, DNS queries take much longer, causing webpages to load very slowly.
+If lots of blocklists are being used, then look at setting these slightly higher if you notice any slowness in DNS resolving.
+  * Be careful of setting this too high as it directly uses more RAM the higher you set it.
+  * In terms of RAM; 1 state == 1k of RAM, so 1 million states is 1GB of RAM.
+As a rough guide, set this value to the following, depending on how much memory there is.
+^Memory^Firewall Maximum Table Entries^
+|4GB|800000|
+|8GB|1000000|
+|16GB|1200000|
+|32GB or Higher|2000000|
+</WRAP>
+{{:pfsense:pfblockerng:install_pfblockerng:pfsense_-_system_-_advanced_-_firewall_nat_-_firewall_advanced_-_firewall_maximum_table_entries.png?800|}}
+----
+Return to [[PFSense:pfBlockerNG:Install pfBlockerNG|Install pfBlockerNG]] or continue to [[PFSense:pfBlockerNG:Install pfBlockerNG:Install pfBlockerNG Package|Install pfBlockerNG Package]].
+----