On Mon, 26 Sep 2005, tedemo wrote: > >Please write it exactly what you do and what happens. Do you create, fill > >up and delete the *same* sets with exactly the *same* content, in a loop? > > > Yes I execute those commands in a loop on the same set (a nethash of 150 > 000 entries). > > the commands in the loop are : > ipset -X neth > ipset --restore < ip.sets > > The obtained results are : > iteration 1: neth size 25856860 VmallocUsed 108004 kB > iteration 2: neth size 25856860 VmallocUsed 108004 kB > iteration 3: neth size 38785290 VmallocUsed 158168 kB > iteration 6: neth size 25856860 VmallocUsed 108004 kB > iteration 9: neth size 58177935 VmallocUsed 235844 kB > > This seems a lot for 0.15 million entries. > Are the 230Mo of Vmalloc'ed memory really used by the kernel ? 25-58 million hash entries isn't really needed to store 150.000 IP addresses/netblocks! How do you create the set neth in ip.sets? What is the exact command? Coul you send me the file ip.sets in private for testings? Best regards, Jozsef - E-mail : kadlec@xxxxxxxxxxxxxxxxx, kadlec@xxxxxxxxxxxxxxx PGP key : http://www.kfki.hu/~kadlec/pgp_public_key.txt Address : KFKI Research Institute for Particle and Nuclear Physics H-1525 Budapest 114, POB. 49, Hungary
