23.12.2017 2:11, Michael Grimm wrote:
> Kristof Provost wrote:
>
>> I run a very similar setup (although on CURRENT), and see no performance
>> issues from my jails.
>
> In utter despair I did upgrade one server to CURRENT (#327076) today, but
> that hasn't been successful :-(
>
> Ok, right
22.12.2017 4:59, Michael Grimm wrote:
>> Make sure and double check that your ESP packets do not get fragmented.
>
>
> Hmm, I do not know how to achieve that. May the following tcpdump excerpts
> answer your question, or do you want me to look somewhere else?
>
> At hostA while downloading fro
22.12.2017 4:42, Michael Grimm wrote:
> Well I prepared on of my webservers running at hostB/jailX to serve a sample
> file for local downloading tests:
>
> 1) hostA wget from hostB/jailX sample file: about 30 MB/s
> 2) hostA/jailYwget from hostB/jailX sample file: about 30 MB/s
>
18.07.2017 1:19, Eugene Grosbein пишет:
> 18.07.2017 0:48, Alan Somers wrote:
>
>> I think what you meant to say is "this will work for a server directly
>> connected to two external gateways (whether or not NAT is involved),
>> but won't work if the serve
18.07.2017 0:48, Alan Somers wrote:
> I think what you meant to say is "this will work for a server directly
> connected to two external gateways (whether or not NAT is involved),
> but won't work if the server is not on the same subnet as the
> gateways". That's true. But judging by the OP, I t
18.07.2017 0:26, Kurt Jaeger wrote:
> I have a vague idea:
>
> If you set a tag (or a keep-state :flowname) using a ipfw rule that matches
> the incoming gateway MAC and match that tag/check-state flowname and
> the connection (keep-state) to fwd the answer packet back to that gateway ?
In fact,
orz wants, he'll need to use multiple
> fibs. Set "net.fibs=2" and "net.add_addr_allfibs=0" in
> /boot/loader.conf and reboot.
This will work for a server directly connected to both external
gateways but won't work for a server behind two NAT boxes.
Eugene Grosbe
On 16.07.2017 19:48, Grzegorz Junka wrote:
> Hello,
>
> I have a jail running a web server in LAN. There are two routers/WANs
> that can connect LAN to the internet. I enabled NAT and port forwarding
> to the web server on both routers.
>
> The problem is that the web server responds to request
