Re: Request for information/comment on default-free zone router properties
On 29.08.2011 15:59, sth...@nethelp.no wrote: Is there any (no need to be official) information what is the number of different routes (for IPv4 and IPv6) on a default-free zone (DFZ) router in the Internet? I vaguely remember the number 450 000+ distinct routes for IPv4? But what about IPv6? See http://www.cidr-report.org - it has all the information you need. Extract from the weekly post to Nanog: Recent Table History Date PrefixesCIDR Agg 19-08-11371450 219002 20-08-11371427 219147 21-08-11371547 219346 22-08-11371326 218957 23-08-11371090 219346 24-08-11371769 219465 25-08-11372189 219508 26-08-11372363 219490 For IPv6 the current number of prefixes is about 12451. Both IPv4 and IPv6 numbers are expected to rise significantly in the future as more people migrate to IPv6, and the exhausted IPv4 pool gets fragmented more and more. On a related note, what is the number of the network interfaces on a DFZ router? No need for exact number, educated guess/estimation would be greatly appreciated too. How long is a piece of string? "It depends." And the same is the case for number of interfaces. You obviously need a minimum of three for a router to do anything "interesting" with the packets. Also, it depends on whether you're talking about physical interfaces or logical (sub) interfaces. I'd say anything from 3 to 20 is fairly typical. I'd say that range is about right for pure core/backbone routers. What happens more and more is that access concentrators (xDSL) run BGP as well. In that case the number of interfaces is 10k and more. Only a few of them 'run' BGP though. -- Andre ___ freebsd-net@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-net To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
Re: Request for information/comment on default-free zone router properties
On Tue, Aug 30, 2011 at 10:05 AM, Andre Oppermann wrote: > On 29.08.2011 15:59, sth...@nethelp.no wrote: > >> Is there any (no need to be official) information what is the number >>> of different routes (for IPv4 and IPv6) on a default-free zone (DFZ) >>> router in the Internet? I vaguely remember the number 450 000+ >>> distinct routes for IPv4? But what about IPv6? >>> >> >> See http://www.cidr-report.org - it has all the information you need. >> >> Extract from the weekly post to Nanog: >> >> Recent Table History >> Date PrefixesCIDR Agg >> 19-08-11371450 219002 >> 20-08-11371427 219147 >> 21-08-11371547 219346 >> 22-08-11371326 218957 >> 23-08-11371090 219346 >> 24-08-11371769 219465 >> 25-08-11372189 219508 >> 26-08-11372363 219490 >> > > For IPv6 the current number of prefixes is about 12451. Both IPv4 > and IPv6 numbers are expected to rise significantly in the future > as more people migrate to IPv6, and the exhausted IPv4 pool gets > fragmented more and more. Yes, I believe the real challenge for effective routing will be the wide adoption of IPv6. Even with prefixlen /32 the possible number of IPv6 routeable prefixes is greater than the number of routable IPv4 addresses now. > > On a related note, what is the number of the network interfaces on a >>> DFZ router? No need for exact number, educated guess/estimation would >>> be greatly appreciated too. >>> >> >> How long is a piece of string? "It depends." And the same is the case >> for number of interfaces. You obviously need a minimum of three for a >> router to do anything "interesting" with the packets. Also, it depends >> on whether you're talking about physical interfaces or logical (sub) >> interfaces. I'd say anything from 3 to 20 is fairly typical. >> > > I'd say that range is about right for pure core/backbone routers. > What happens more and more is that access concentrators (xDSL) run > BGP as well. In that case the number of interfaces is 10k and more. > Only a few of them 'run' BGP though. My interest is purely academic. I would like to experiment with different data structures to see if there is a way to increase routing performance with large number of routes and interfaces. > -- > Andre > -- Ivo Vachkov ___ freebsd-net@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-net To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
Re: Request for information/comment on default-free zone router properties
> My interest is purely academic. I would like to experiment with different > data structures to see if there is a way to increase routing performance > with large number of routes and interfaces. You're more likely to find routers with a large number of routes *or* with a large number of interfaces. You're less likely to find routers with both of these at the same time. Something to keep in mind... Steinar Haug, Nethelp consulting, sth...@nethelp.no ___ freebsd-net@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-net To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
Re: Request for information/comment on default-free zone router properties
On Tue, Aug 30, 2011 at 12:01 PM, wrote: > > My interest is purely academic. I would like to experiment with different > > data structures to see if there is a way to increase routing performance > > with large number of routes and interfaces. > > You're more likely to find routers with a large number of routes *or* > with a large number of interfaces. You're less likely to find routers > with both of these at the same time. Something to keep in mind... Yes. I agree, thus my initial question to gather information on the somewhat average case ... > Steinar Haug, Nethelp consulting, sth...@nethelp.no > -- Ivo Vachkov ___ freebsd-net@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-net To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
ethernet Q-in-Q ?
Hi! What about 802.1q VLANs encapsulated in another 802.1q VLAN ? On FreeBSD 8.1 or 9.0-BETA1: ifconfig vlan123 create ifconfig vlan123 vlandev em0 vlan 123 ifconfig vlan400 create ifconfig vlan400 vlandev vlan123 vlan 400 -- ifconfig: SIOCSETVLAN: Protocol not supported -- Any ideas ? -- p...@opsec.eu+49 171 3101372 9 years to go ! ___ freebsd-net@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-net To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
Re: ethernet Q-in-Q ?
Hi! > What about 802.1q VLANs encapsulated in another 802.1q VLAN ? I found ng_vlan(4), mentioned in http://lists.freebsd.org/pipermail/freebsd-current/2005-December/058882.html Now I have to find out how to use it 8-) -- p...@opsec.eu+49 171 3101372 9 years to go ! ___ freebsd-net@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-net To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
Commands for AR5212 cause system to hang using 8.2-STABLE
Greetings all. I am attempting to get a newer 8.2-based router up and running, and during my development process, I discovered that the wireless AR5212 card was not blinking, as it did when installed on the current router box. Upon further reading, into the differences between FBSD7 and FBSD8 wireless setup, I attempted to get it runing with no luck. On the command line, the following causes the running terminal to hault, or at least to appear to hault, and become non-reactive to keyboard input: ifconfig wlan0 create wlandev ath0 Here is the output from ifconfig ath0 ath0: flags=8802 metric 0 mtu 2290 ether 00:1b:2f:37:02:46 media: IEEE 802.11 Wireless Ethernet autoselect (autoselect) status: no carrier Here is the output from rc.conf setting which are relivant: wlans_ath0="wlan0" create_args_wlan0="wlanmode hostap" ifconfig_wlan0="inet 192.168.200.1 netmask 255.255.255.0 ssid "wrouter0" mode 54g channel 1" Here is my loader.conf file output: wlan_wep_load="YES" wlan_tkip_load="YES" wlan_ccmp_load="YES" lan_xauth_load="YES" wlan_acl_load="YES" if_lagg_load="YES" if_ath_load="YES" accf_http_load="YES" When I put the rc.conf variables in place, it hung the boot process, just after initialization of the gateway port. (fxp0) What should I look for, in attempting to figure this out? I have also noticed that while the FBSD-8 Handbook provides references to utilizing /etc/netif start this file does not exist on this 8-Stable install. I installed and upgraded from source, from 8.1-PRERELEASE, last spring or fall, and have just now started to really get this setup going, hence the older version. The system is an old PIII-866Mhz server board, with three quad-port interfaces and a fourth, which is wireless. (while I wait for the Atom D525 system to get here.) There is no "output" to list, given that the system hangs each time, without any debug, or kernel panic indicators. In fact the system only hangs on the incident user space, because you can still login and utilize ssh sessions, as well as anything else that is running. I use the terms "system hang" because acpi requests from the power switch are ignored, due to the system not being "ready" so I just have to hard reset. Any input would be most appreciated. -- -- Respectfully, Martes G Wigglesworth M. G. Wigglesworth Holdings, LLC www.mgwigglesworth.net ___ freebsd-net@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-net To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
Re: Commands for AR5212 cause system to hang using 8.2-STABLE
Hi, You're not the first person to reply with this problem. I unfortunately have no way (yet) to reproduce these kinds of issues at home as all my atheros hardware works fine on freebsd-8 and freebsd-9 on all the laptop/PC/MIPS hardware I have. Can you please try 8.0-RELEASE and see if it works for you? I'd like to see where things broke along the FreeBSD-7 -> FreeBSD-8.2 path. Adrian On 31 August 2011 05:20, Martes G Wigglesworth wrote: > > Greetings all. > > I am attempting to get a newer 8.2-based router up and running, and during > my development process, I discovered that the wireless AR5212 card was not > blinking, as it did when installed on the current router box. Upon further > reading, into the differences between FBSD7 and FBSD8 wireless setup, I > attempted to get it runing with no luck. > > On the command line, the following causes the running terminal to hault, or > at least to appear to hault, and become non-reactive to keyboard input: > > ifconfig wlan0 create wlandev ath0 > > > Here is the output from ifconfig ath0 > > > ath0: flags=8802 metric 0 mtu 2290 > ether 00:1b:2f:37:02:46 > media: IEEE 802.11 Wireless Ethernet autoselect (autoselect) > status: no carrier > > > Here is the output from rc.conf setting which are relivant: > > wlans_ath0="wlan0" > create_args_wlan0="wlanmode hostap" > ifconfig_wlan0="inet 192.168.200.1 netmask 255.255.255.0 ssid "wrouter0" > mode 54g channel 1" > > > Here is my loader.conf file output: > > wlan_wep_load="YES" > wlan_tkip_load="YES" > wlan_ccmp_load="YES" > lan_xauth_load="YES" > wlan_acl_load="YES" > if_lagg_load="YES" > if_ath_load="YES" > accf_http_load="YES" > > > When I put the rc.conf variables in place, it hung the boot process, just > after initialization of the gateway port. (fxp0) > > What should I look for, in attempting to figure this out? > > I have also noticed that while the FBSD-8 Handbook provides references to > utilizing /etc/netif start this file does not exist on this > 8-Stable install. > > I installed and upgraded from source, from 8.1-PRERELEASE, last spring or > fall, and have just now started to really get this setup going, hence the > older version. > > The system is an old PIII-866Mhz server board, with three quad-port > interfaces and a fourth, which is wireless. (while I wait for the Atom D525 > system to get here.) > > There is no "output" to list, given that the system hangs each time, without > any debug, or kernel panic indicators. In fact the system only hangs on the > incident user space, because you can still login and utilize ssh sessions, > as well as anything else that is running. > > I use the terms "system hang" because acpi requests from the power switch > are ignored, due to the system not being "ready" so I just have to hard > reset. > > Any input would be most appreciated. > > -- > > -- > Respectfully, > > > Martes G Wigglesworth > M. G. Wigglesworth Holdings, LLC > www.mgwigglesworth.net > > ___ > freebsd-net@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-net > To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org" > ___ freebsd-net@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-net To unsubscribe, send any mail to "freebsd-net-unsubscr...@freebsd.org"
system locks up when pf is enabled? (was: system locks up with vr driver on alix board)
On Aug 16, 2011, at 20:15, Julian Elischer wrote: > from your description it doesn't sound like a vr problem. > I suggest you hook up teh serial console (I am guessing you already have) > and set the config options to allow break-to-debugger or > alt-break-to-debugger on it > when it happens next, drop into the debugger.. > > in fact, drop in, and do a ps to see what processes are runnable, > 'tr [pid] (or thread id)' to get a stack trace of anything that looks > interesting, and then cont and do it again a few times to get a feel > for where the processor is hanging out (a straight 'tr' will give you > the interrupt of the com port which is not intresting..) Alright, I thought I had locked this down to ZERO_COPY_SOCKETS being enabled in the kernel (as unlikely as it seems that it'd break things without being explicitly used -- I wanted to believe!). A couple days ago I figured out how to consistently make it happen (or not). For about a week we'd been running with no trouble; until I realized that a hostname added to our pf rules made them not load on startup. When running without our pf rules loaded, everything is fine. WIth the pf rules loaded the system will hang within 2-4 hours. Our ruleset was about 240 rules. We cut it down to ~140 rules today to see if that made a difference; it didn't. We also turned off as much IPv6 traffic as we could in case that was what was disturbing things (adding IPv6 traffic is relatively new). Flipping the backup system to be the master for the active IP addresses doesn't (as far as I can tell) make the old master recover. I tried looking for interesting information with the kernel debugger; but honestly nothing springs out as interesting -- though that may be due to my lack of skills more than anything else. I am including a snapshot below. I ran ps and tr on 100024, 100025 (vr0 and vr1 interrupt threads) and 100022 (thread taskq) a few more times but it seemed to me to give basically the same thread trace information. For what it's worth, if I let 'cont' run for long enough for the system to send out carp packets and get it's IPs back, 'ps' seemed more likely to have 100024 or 100025 (vr0/vr1) in 'Run' state. If I interrupted the system again relatively quickly after continuing, it was more likely to have 'thread tasks' be the busy process. Any tips for what I can do to extract something more useful would be greatly appreciated. As a last note -- earlier today I noticed that "Searches" in 'pfctl -si' seemed to go up significantly just before the console locks up (which is 15-30 minutes before the box stops routing packets). My theory was that we were getting some sort of tiny DoS attack (doesn't take much to take out a computer the size of a CD case); but that doesn't really make sense as the system 1) never recovers and 2) the backup is fine as soon as the master has been turned off / changed priorities. - ask db> ps pid ppid pgrp uid state wmesg wchancmd 3300 2371 2371 0 R sshd 3299 3298 3298 0 S+ sbwait 0xc2ddb58c ssh 3298 3100 3298 0 S+ piperd 0xc2624620 scp 3100 3098 3100 0 Ss+ pause0xc2e95850 csh 3098 2371 3098 0 Rs sshd 2904 2371 2904 0 Ss select 0xc379a924 sshd 2476 2474 2476 0 Ss+ ttyin0xc2e44070 csh 2474 2371 2474 0 Rs sshd 2440 1 2440 0 Rs+ getty 2433 1 2433 0 Rs cron 2426 1 242662 Rs ftp-proxy 2397 1 2397 0 Ss select 0xc2d71964 inetd 2371 1 2371 0 Rs sshd 2349 1 2349 0 Rs bird 2302 1 2302 0 Rs radvd 2298 2292 2285 65534 S piperd 0xc2624188 multilog 2297 2291 2285 0 R openvpn 2292 2287 2285 0 S select 0xc2d713a4 supervise 2291 2287 2285 0 S select 0xc2d71a64 supervise 2288 1 2285 0 S piperd 0xc2624c40 readproctitle 2287 1 2285 0 R svscan 2244 1 2244 0 Rs ntpd 2129 1 2129 0 Rs syslogd 50 0 0 0 SL mdwait 0xc2717000 [md1] 40 0 0 0 SL mdwait 0xc24ef000 [md0] 22 0 0 0 RL [flowcleaner] 21 0 0 0 SL sdflush 0xc0b24d80 [softdepflush] 20 0 0 0 SL vlruwt 0xc25f52a8 [vnlru] 19 0 0 0 SL syncer 0xc0b14774 [syncer] 18 0 0 0 RL [bufdaemon] 17 0 0 0 RL [pagezero] 16 0 0 0 SL psleep 0xc0b2567c [vmdaemon] 15 0 0 0 SL psleep
