Re: simple, adaptive bandwidth throttling with ipfw/dummynet ?

On Sun, 2 Mar 2008, Peter Jeremy wrote: > On Fri, Feb 29, 2008 at 02:28:04PM -0800, Juri Mianovich wrote: > >"after 30 minutes of maxed dummynet rule, add X mbps > >to the rule for every active TCP session, with a max > >ceiling of Y mbps" > > > >and: > > > >"after 30 minutes of less than m

Re: kern/121274: [panic] Panic in ether_input() with different NIC's.

Old Synopsis: Panic in ether_input() with different NIC's. New Synopsis: [panic] Panic in ether_input() with different NIC's. Responsible-Changed-From-To: freebsd-bugs->freebsd-net Responsible-Changed-By: linimon Responsible-Changed-When: Sun Mar 2 02:56:55 UTC 2008 Responsible-Changed-Why: Over

Re: kern/95277: [netinet] [patch] IP Encapsulation mask_match() returns wrong results

Synopsis: [netinet] [patch] IP Encapsulation mask_match() returns wrong results State-Changed-From-To: feedback->open State-Changed-By: linimon State-Changed-When: Sun Mar 2 02:44:10 UTC 2008 State-Changed-Why: Note that feedback was received some time ago. http://www.freebsd.org/cgi/query-pr.cg

Re: FBSD 1GBit router?

On Sat, Mar 01, 2008 at 04:39:57PM -0800, Barney Cordoba wrote: > > --- Erik Trulsson <[EMAIL PROTECTED]> wrote: > > > On Sat, Mar 01, 2008 at 01:27:46PM -0800, Barney > > Cordoba wrote: > > > > > > --- Ingo Flaschberger <[EMAIL PROTECTED]> wrote: > > > > > > > Dear Barney, > > > > > > > > > I

Re: simple, adaptive bandwidth throttling with ipfw/dummynet ?

On Fri, Feb 29, 2008 at 02:28:04PM -0800, Juri Mianovich wrote: >"after 30 minutes of maxed dummynet rule, add X mbps >to the rule for every active TCP session, with a max >ceiling of Y mbps" > >and: > >"after 30 minutes of less than max usage, subtract X >mbps from the rule every Y minutes, with a

Re: FBSD 1GBit router?

--- Erik Trulsson <[EMAIL PROTECTED]> wrote: > On Sat, Mar 01, 2008 at 01:27:46PM -0800, Barney > Cordoba wrote: > > > > --- Ingo Flaschberger <[EMAIL PROTECTED]> wrote: > > > > > Dear Barney, > > > > > > > It seems absolutely ridiculous to buy such > > > hardware > > > > and not install a PCI

Re: Ephemeral port range (patch)

At 08:42 p.m. 01/03/2008, Kevin Oberman wrote: > This patch changes the default ephemeral port range from 49152-65535 > to 1024-65535. This makes it harder for an attacker to guess the > ephemeral ports (as the port number space is larger). Also, it makes > the chances of port number collisions

Re: kern/62374: panic: free: multiple frees

Synopsis: panic: free: multiple frees State-Changed-From-To: feedback->closed State-Changed-By: linimon State-Changed-When: Sat Mar 1 23:29:14 UTC 2008 State-Changed-Why: Feedback timeout (> 3 months). http://www.freebsd.org/cgi/query-pr.cgi?pr=62374 _

Re: kern/121257: [tcp] TSO + natd -> slow outgoing tcp traffic

Old Synopsis: TSO + natd -> slow outgoing tcp traffic New Synopsis: [tcp] TSO + natd -> slow outgoing tcp traffic Responsible-Changed-From-To: freebsd-bugs->freebsd-net Responsible-Changed-By: linimon Responsible-Changed-When: Sat Mar 1 23:21:15 UTC 2008 Responsible-Changed-Why: Over to maintai

Re: FBSD 1GBit router?

On Sat, Mar 01, 2008 at 01:27:46PM -0800, Barney Cordoba wrote: > > --- Ingo Flaschberger <[EMAIL PROTECTED]> wrote: > > > Dear Barney, > > > > > It seems absolutely ridiculous to buy such > > hardware > > > and not install a PCIx or 4x PCIe card for another > > > $100. or less. Saying a 1x is "

Re: Ephemeral port range (patch)

> Date: Sat, 01 Mar 2008 11:34:27 -0200 > From: Fernando Gont <[EMAIL PROTECTED]> > Sender: [EMAIL PROTECTED] > > Folks, > > This patch changes the default ephemeral port range from 49152-65535 > to 1024-65535. This makes it harder for an attacker to guess the > ephemeral ports (as the port num

Re: FBSD 1GBit router?

--- Ingo Flaschberger <[EMAIL PROTECTED]> wrote: > Dear Barney, > > > It seems absolutely ridiculous to buy such > hardware > > and not install a PCIx or 4x PCIe card for another > > $100. or less. Saying a 1x is "fast enough" is > like > > saying a Celeron is "fast enough". > > The box is a sm

Re: FBSD 1GBit router?

--- Ingo Flaschberger <[EMAIL PROTECTED]> wrote: > Dear Barney, > > > It seems absolutely ridiculous to buy such > hardware > > and not install a PCIx or 4x PCIe card for another > > $100. or less. Saying a 1x is "fast enough" is > like > > saying a Celeron is "fast enough". > > The box is a sm

Re: Ephemeral port range (patch)

On Sat, 1 Mar 2008, Fernando Gont wrote: Folks, This patch changes the default ephemeral port range from 49152-65535 to 1024-65535. This makes it harder for an attacker to guess the ephemeral ports (as the port number space is larger). Also, it makes the chances of port number collisions s

Re: FBSD 1GBit router?

Dear Barney, It seems absolutely ridiculous to buy such hardware and not install a PCIx or 4x PCIe card for another $100. or less. Saying a 1x is "fast enough" is like saying a Celeron is "fast enough". The box is a small 1HE appliance and can boot from a CF-Card. I trust them more than a "al

Re: kern/118975: [bge] [patch] Broadcom 5906 not handled by FreeBSD

The following reply was made to PR kern/118975; it has been noted by GNATS. From: =?ISO-8859-1?Q?Thomas_Nystr=F6m?= <[EMAIL PROTECTED]> To: [EMAIL PROTECTED], [EMAIL PROTECTED] Cc: Subject: Re: kern/118975: [bge] [patch] Broadcom 5906 not handled by FreeBSD Date: Sat, 01 Mar 2008 20:35:04 +0100

Re: FBSD 1GBit router?

--- Ingo Flaschberger <[EMAIL PROTECTED]> wrote: > >> Thats why my next router will be based at this > box: > >> > http://www.axiomtek.com/products/ViewProduct.asp?view=429 > > > > Nice piece of hardware. > > Don't like the 2.5" one disk option though. > > > > And not shure what to think of: > >

Re: FBSD 1GBit router?

Thats why my next router will be based at this box: http://www.axiomtek.com/products/ViewProduct.asp?view=429 Nice piece of hardware. Don't like the 2.5" one disk option though. And not shure what to think of: "Seven 10/100/1000Mbps (through PCI-E by one interface) ports (RJ-45)" Which seems to

Re: FBSD 1GBit router?

--- Ingo Flaschberger <[EMAIL PROTECTED]> wrote: > > >> I have a 1.2Ghz Pentium-M appliance, with 4x > 32bit, 33MHz pci intel e1000 > >> cards. > >> With maximum tuning I can "route" ~400mbps with > big packets and ~80mbps > >> with 64byte packets. > >> around 100kpps, whats not bad for a pci

Re: kern/121242: [ate] [patch] Promiscuous mode of if_ate (arm) doesn't work

Synopsis: [ate] [patch] Promiscuous mode of if_ate (arm) doesn't work Responsible-Changed-From-To: freebsd-bugs->freebsd-net Responsible-Changed-By: linimon Responsible-Changed-When: Sat Mar 1 14:23:11 UTC 2008 Responsible-Changed-Why: Over to maintainer(s). http://www.freebsd.org/cgi/query-pr.c

Ephemeral port range (patch)

Folks, This patch changes the default ephemeral port range from 49152-65535 to 1024-65535. This makes it harder for an attacker to guess the ephemeral ports (as the port number space is larger). Also, it makes the chances of port number collisions smaller. (http://www.ietf.org/internet-drafts

Re: FBSD 1GBit router?

Ingo Flaschberger wrote: I have a 1.2Ghz Pentium-M appliance, with 4x 32bit, 33MHz pci intel e1000 cards. With maximum tuning I can "route" ~400mbps with big packets and ~80mbps with 64byte packets. around 100kpps, whats not bad for a pci architecture. To reach higher bandwiths, better busses