Re: Poor performance with natd/ipfw and TSO enabled on bce(4) card and 8.1-PRERELEASE

tso on my interfaces and everything went back to normal. From: Garrett Cooper To: n...@freebsd.org Sent: Thu, July 1, 2010 6:30:53 AM Subject: Poor performance with natd/ipfw and TSO enabled on bce(4) card and 8.1-PRERELEASE Hi, Just an observation I made

Re: Poor performance with natd/ipfw and TSO enabled on bce(4) card and 8.1-PRERELEASE

On Thu, Jul 1, 2010 at 10:32 PM, Garrett Cooper wrote: > On Thu, Jul 1, 2010 at 7:20 PM, Aleksandr A Babaylov <@babolo.ru> wrote: >> On Thu, Jul 01, 2010 at 04:54:47PM -0700, Pyun YongHyeon wrote: >>> On Wed, Jun 30, 2010 at 07:00:53PM -0700, Garrett Cooper wrote: >>> > Hi, >>> >     Just an o

Re: Poor performance with natd/ipfw and TSO enabled on bce(4) card and 8.1-PRERELEASE

On Thu, Jul 1, 2010 at 7:20 PM, Aleksandr A Babaylov <@babolo.ru> wrote: > On Thu, Jul 01, 2010 at 04:54:47PM -0700, Pyun YongHyeon wrote: >> On Wed, Jun 30, 2010 at 07:00:53PM -0700, Garrett Cooper wrote: >> > Hi, >> >     Just an observation I made while transferring a file: >> > >> > # time

Re: Poor performance with natd/ipfw and TSO enabled on bce(4) card and 8.1-PRERELEASE

On Thu, Jul 1, 2010 at 9:19 PM, Ian Smith wrote: > On Thu, 1 Jul 2010, Garrett Cooper wrote: >  > On Thu, Jul 1, 2010 at 4:54 PM, Pyun YongHyeon wrote: >  > > On Wed, Jun 30, 2010 at 07:00:53PM -0700, Garrett Cooper wrote: >  > >> Hi, >  > >>     Just an observation I made while transferring a fi

Re: Poor performance with natd/ipfw and TSO enabled on bce(4) card and 8.1-PRERELEASE

On Thu, 1 Jul 2010, Garrett Cooper wrote: > On Thu, Jul 1, 2010 at 4:54 PM, Pyun YongHyeon wrote: > > On Wed, Jun 30, 2010 at 07:00:53PM -0700, Garrett Cooper wrote: > >> Hi, > >>     Just an observation I made while transferring a file: > >> > >> # time scp floppy.img somehost: > >> Passwo

Re: Poor performance with natd/ipfw and TSO enabled on bce(4) card and 8.1-PRERELEASE

On Thu, Jul 01, 2010 at 04:54:47PM -0700, Pyun YongHyeon wrote: > On Wed, Jun 30, 2010 at 07:00:53PM -0700, Garrett Cooper wrote: > > Hi, > > Just an observation I made while transferring a file: > > > > # time scp floppy.img somehost: > > Password: > > floppy.img

Re: Poor performance with natd/ipfw and TSO enabled on bce(4) card and 8.1-PRERELEASE

On Thu, Jul 1, 2010 at 4:54 PM, Pyun YongHyeon wrote: > On Wed, Jun 30, 2010 at 07:00:53PM -0700, Garrett Cooper wrote: >> Hi, >>     Just an observation I made while transferring a file: >> >> # time scp floppy.img somehost: >> Password: >> floppy.img                                    100% 1440K

Re: Poor performance with natd/ipfw and TSO enabled on bce(4) card and 8.1-PRERELEASE

On Wed, Jun 30, 2010 at 07:00:53PM -0700, Garrett Cooper wrote: > Hi, > Just an observation I made while transferring a file: > > # time scp floppy.img somehost: > Password: > floppy.img100% 1440KB 13.7KB/s 01:45 > > real 1m59.400s > user 0m0.031s > sy

Poor performance with natd/ipfw and TSO enabled on bce(4) card and 8.1-PRERELEASE

Hi, Just an observation I made while transferring a file: # time scp floppy.img somehost: Password: floppy.img100% 1440KB 13.7KB/s 01:45 real1m59.400s user0m0.031s sys 0m0.028s # sysctl net.inet.tcp.tso=0 net.inet.tcp.tso: 1 -> 0 # time scp f

Re: multiple natd + ipfw, with 2 internal ip's

Brian Candler wrote: On Sat, Jan 28, 2006 at 01:01:53PM +0100, Unix-Solutions - Steven wrote: Hi you guy's, I have a little problem with my natd or ipfw configuration. This may not be what you want to hear, but in my experience if you have a configuration with multiple external inter

Re: multiple natd + ipfw, with 2 internal ip's

On Sat, Jan 28, 2006 at 01:01:53PM +0100, Unix-Solutions - Steven wrote: > Hi you guy's, > > I have a little problem with my natd or ipfw configuration. This may not be what you want to hear, but in my experience if you have a configuration with multiple external interfaces and multiple NAT insta

multiple natd + ipfw, with 2 internal ip's

Hi you guy's, I have a little problem with my natd or ipfw configuration. Current situation: ISP1 = Telenet (Belgium) Speed: 20 mbit/s down & 1 mbit/s upload We get ip via dhcp ISP2 = Versatel (Belgium) Speed: 1 mbit/s down & 1 mbit/s upload We have a range with static ip's Versatel is our back

once again: rules for natd+ipfw+dummynet

hi, i've been searching the web and reading manuals and i cannot figure if i am setting up my freebsd box correctly. And now i have many question, hope somen out there have answers for some of them. So, the system I am aiming to: +(> |[Internet Antenna](> | real ip address: x.x.x.94 | routed n

Re: NATD / ipfw

also found that ipf (IPFILTER) works very well and has a number of good features. Good Luck, Jon - Original Message - From: "Christian Malo" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Thursday, February 12, 2004 12:46 PM Subject: NATD / ipfw > Hi, > >

NATD / ipfw

Hi, I setup a computer to act as a natd for our office. Everything works fine but I'm trying to tweak it a little bit to get extra speed. When I download from box itself I easily get 6 or 7 mbytes/sec. but when I do it behind the nat (office pc). I only get ~ 500k/sec. Is there a way to tweak t

Re: switching to an internal DSL modem -- natd, ipfw

=On Thu, Feb 05, 2004 at 08:39:40PM -0500, Mikhail Teterin wrote: => Any other ATM card I should consider as an internal DSL modem? Thanks! =You're likely to have better luck with an ATM25 card and an externally =attached ATM25 DSL modem. =I backported the idt(4) driver to 4.x for this reason but

Re: switching to an internal DSL modem -- natd, ipfw

On Thu, Feb 05, 2004 at 08:39:40PM -0500, Mikhail Teterin wrote: > Any other ATM card I should consider as an internal DSL modem? Thanks! You're likely to have better luck with an ATM25 card and an externally attached ATM25 DSL modem. I backported the idt(4) driver to 4.x for this reason but the

Re: switching to an internal DSL modem -- natd, ipfw

On Thu, Feb 05, 2004 at 08:39:40PM -0500, Mikhail Teterin wrote: > [Now CC-ing Chuck Cranor -- the en's author] > => => http://store.yahoo.com/softbuyweb/inpcidslmod3.html > => The en(4) manual page and the description of this product (on the > => page above) as one based on

Re: switching to an internal DSL modem -- natd, ipfw

On 02/05/04 18:12:20 -0800 Julian Elischer wrote: > I don't KNOW of any DSL cards that are supported but it's difficult to > keep abreast of ALL developments :-) what about the Sangoma S518 card? The BSDMall has it: -Andreas _

Re: switching to an internal DSL modem -- natd, ipfw

On Thu, 5 Feb 2004, Mikhail Teterin wrote: > [Now CC-ing Chuck Cranor -- the en's author] > > => => http://store.yahoo.com/softbuyweb/inpcidslmod3.html > > => =What makes you think we have a driver for this? > > => The en(4) manual page and the description of this produc

Re: switching to an internal DSL modem -- natd, ipfw

[Now CC-ing Chuck Cranor -- the en's author] => => http://store.yahoo.com/softbuyweb/inpcidslmod3.html => =What makes you think we have a driver for this? => The en(4) manual page and the description of this product (on the => page above) as one based on Efficient Network's chi

Re: switching to an internal DSL modem -- natd, ipfw

On Thu, 5 Feb 2004 [EMAIL PROTECTED] wrote: > =On Thu, 5 Feb 2004 [EMAIL PROTECTED] wrote: > > => But what about an internal modem? Like > => > =>http://store.yahoo.com/softbuyweb/inpcidslmod3.html > > > =What makes you think we have a driver for this? > > The en(4) manual page and the

Re: switching to an internal DSL modem -- natd, ipfw

=On Thu, 5 Feb 2004 [EMAIL PROTECTED] wrote: => But what about an internal modem? Like => => http://store.yahoo.com/softbuyweb/inpcidslmod3.html =What makes you think we have a driver for this? The en(4) manual page and the description of this product (on the page above) as one based on E

Re: switching to an internal DSL modem -- natd, ipfw

On Thu, 5 Feb 2004 [EMAIL PROTECTED] wrote: > Hello! > > My current network setup consists of the ISP-provided DSL-modem plugged > into the little switch together with the rest of the network. One of the > machines on the runs natd and the others use it as the default router. > > To get better

switching to an internal DSL modem -- natd, ipfw

Hello! My current network setup consists of the ISP-provided DSL-modem plugged into the little switch together with the rest of the network. One of the machines on the runs natd and the others use it as the default router. To get better protection I should be using a separate Ethernet card, into

Re: natd+ipfw+trafic shaping

Remember that rules checked twice if not defined "in" or "out". Look at net.inet.ip.fw.one_pass sysctl > Hi all, > can anyone explane why this rules doesn't work: > > rl0 EXTINF > rl1 INTINF > > add 1000 divert 8668 ip from any to any via rl0 > add 1200 allow ip from any to any via lo0 > add 130

natd+ipfw+trafic shaping

Hi all, can anyone explane why this rules doesn't work: rl0 EXTINF rl1 INTINF add 1000 divert 8668 ip from any to any via rl0 add 1200 allow ip from any to any via lo0 add 1300 deny ip from any to 127.0.0.1/8 add 1400 deny ip from 127.0.0.1/8 to any add 1500 check-state add 1550 allow icmp from a

freebsd+natd+ipfw+DENY P2P

Hi, i wanna allow SSH,SMTP,DNS,WWW,POP3 and nothing else :) on my freebsd gateway, my local net is 192.168.1.0/24 and nat is working fine the point is the deny any P2P applications, and allow normal trafic like SMTP,POP3,WWW,FTP,ICQ. So any suggestions how to do this with ipfw and check-state,esta

Re: natd & ipfw config with 5 NICS

On Thu, Feb 28, 2002 at 11:43:57AM -0600, Hamilton Hoover wrote: > Hi all, > > I'm setting up a site that I'd like to have four separate networks connected > > through a single gateway/firewall with five network interfaces. > > Two Public (real IPs) interfaces on the same network with different

natd & ipfw config with 5 NICS

Hi all, I'm setting up a site that I'd like to have four separate networks connected through a single gateway/firewall with five network interfaces. Two Public (real IPs) interfaces on the same network with different IPs realIP1 realIP2 Three Private (fake IPS) interfaces on three separate net

Re: IPSEC + natd + IPFW

At 1:43 PM +1100 3/7/01, Stephen Cimarelli wrote: > On 07-Mar-01 Lars Eggert wrote: >> Do you use IPsec tunnel mode, or IPsec transport mode + gif tunnels to do >> the tunneling? > > Well this is where it starts to get funny, I have 2 HOWTOs > Both HOWTO's use gif tunnels, but > the FreeBSD IPsec

Re: IPSEC + natd + IPFW

On 07-Mar-01 Lars Eggert wrote: > Stephen Cimarelli wrote: >> I have managed to get IPsec+gif tunelling to work but am having trouble >> setting >> up firewal rules, it seem that recieved ESP packets pass through the >> firewall >> rule set twice and hit my natd divert rules. > > Do you use IPs

Re: IPSEC + natd + IPFW

Stephen Cimarelli wrote: > I have managed to get IPsec+gif tunelling to work but am having trouble setting > up firewal rules, it seem that recieved ESP packets pass through the firewall > rule set twice and hit my natd divert rules. Do you use IPsec tunnel mode, or IPsec transport mode + gif t

IPSEC + natd + IPFW

Hi All I have managed to get IPsec+gif tunelling to work but am having trouble setting up firewal rules, it seem that recieved ESP packets pass through the firewall rule set twice and hit my natd divert rules. Toget around this I had to add a rule like 00110 and 00115 1 150 20400 cou

natd/ipfw or something else?

hello there! I need to setup the following network: net A --+ | --> ISP 1 v/ (if1)GATEWAY(if2)--> ISP 2 ^^ \ ||--> ISP n net B --+| net C+ While net