Soft limit?
A. It might, might, be possible as a soft limit – but it’s got a lot of issues. First off, tracking memory usage of the hosts tables is itself a huge job. There are multiple places were stuff is purged, added to the structures as pointers, etc. and there’s a queue of purged entries for reuse to cut down on the malloc() calls. Secondly, the purge is resource intensive, and has been the cause of deadlocks before – you don’t dare lock the structures for too long – packets keep arriving, and FAST on the busy network that has the memory issues in the first place. Since you can’t lock for long, you can only purge a small # of entries. Q. But what about -x and -X. A. Ah, yes, grasshopper – you have been reading the man page. Good user. The -x and -X options are pretty crude. They say “if you have allocated n (hosts|sessions), fail the allocation of (host|session) n+1”. It works in the context of preventing memory exhaustion – if you can calculate the right values based on your available memor
