FreeBSD Mail Archives

Date:      Sun, 9 Dec 2018 10:47:47 -0600
From:      Karl Denninger <karl@denninger.net>
To:        freebsd-net@freebsd.org
Subject:   IPv6 issues?
Message-ID:  <65c2e315-4106-dd57-b149-45f127b1056b@denninger.net>

next in thread | raw e-mail | index | archive | help


[-- Attachment #1 --]
For about the last month and a half I've run into some fairly-serious
IPv6 performance issues, only to certain places, characterized by things
like this (pkg upgrade):

Proceed with this action? [y/N]: y
[1/3] Fetching nettle-3.4.1.txz: 100%    1 MiB   1.2MB/s    00:01
[2/3] Fetching mDNSResponder-878.200.35.txz: 100%  389 KiB 398.0kB/s   
00:01  
[3/3] Fetching dovecot-2.3.4_3.txz:   0%    8 KiB   8.2kB/s 01:29:36 ETA^C

And there it sits.

An "svn checkout" or "svn update" will hang, eventually failing.  Before
it fails it runs /very /slowly.

If I "ifconfig .... inet6 ifdisabled" on the pulling source and force
the IPv4 connection to be used instead everything works at normal speed.

It's not consistent, however, across all sites.  I have a fairly large
database at a Colo in NY and run ~30gb copies from there to here over
ssh -6 on a regular basis as part of my backup strategy.  They work fine
and produce throughput numbers right near my wire speed (50Mbps) running
over the space of an hour or more.  But attempts to grab material
quantities of anything from the project's machines over IPv6 run into
this performance issue consistently and make a full svn checkout
essentially impossible.

The architecture here looks like this:

<S (FreeBSD 11.1-STABLE #1 r329071:)> ------ <F/W (FreeBSD 11.0-STABLE
#0 r312669M: )> -- Internet (Cox Cable)

Both are AMD64; the firewall is a PCEngines apu2c0, the server is a
large dual-Xeon machine.

Enabling verbose logging on the firewall and looking in the logs shows
nothing that could be at-issue and neither box has any issues I can find
with the network card or performance itself (e.g. no interface errors,
the switch they're plugged into doesn't have anything interesting in
terms of throttling, packet drops, mbufs are fine, etc.) and nothing has
been changed in terms of software on either box related to the kernel or
similar since, as you can see, quite some time ago (early 2018 for the
server, mid 2017 for the firewall.)

The issue itself was a "step function" change that I can peg at roughly
the start of November; prior to that there's been no issue at all and I
regularly keep my local repo up to date for code since I cross-build for
the Pi series regularly, including stuff that was on -HEAD until
12-RELEASE came out.  I get my IPv6 from Cox as a /60 using DHCP6c and
use SLAAC internally (which also appears to be working fine; it hasn't
had any changes made to it either.)

My /suspicion /is that Cox has screwed the pooch somewhere internally
when it comes to IPv6 routing.  When it comes up on a specific
connection the data rate doesn't immediately go to zero; it instead
drops to /very /slow transfers, frequently right around 8kbps, where it
stays until there's an eventual timeout -- or the initiation of the next
file transfer times out with a "no response" complaint.

Since I can't find evidence of a FreeBSD problem internally this is more
of a "is anyone else seeing this on Cox?" sort of request; what I find
especially interesting, however, is that it /always /happens when
talking to Project machines for updates whether for packages or SVN,
which is why I'm bringing it here.

-- 
Karl Denninger
karl@denninger.net <mailto:karl@denninger.net>
/The Market Ticker/
/[S/MIME encrypted email preferred]/

[-- Attachment #2 --]
0�	*�H��
��0�10
	`�He0�	*�H��
��
�0��0����H���^��Ōc!5�
�H0
	*�H��
0��10	UUS10UFlorida10U	Niceville10U
Cuda Systems LLC10UCuda Systems CA1!0UCuda Systems LLC 2017 CA0
170817164217Z
270815164217Z0{10	UUS10UFlorida10U
Cuda Systems LLC10UCuda Systems CA1%0#UCuda Systems LLC 2017 Int CA0�"0
	*�H��
�0�
��h�-5B>[���;��o���l�Ӵ��0~͎O9}�9�Y��e������*�������$��g��!uk�vʶ�LzN�`jL�>��MD'7U4����5C�B�+�kY`bd����~b*�c3�N��y-�78j�u�]9H�e��uέ�sӬD��ؽ�m��gw�ER�?�&U�UR�j����'�}�9n�WD i�`XcbG��z�\g������G=��u�%���\�O�i1���3���ߝ4�
�K4�4p�YQr]�Ie�/r�0+��eEޝݖ0��C15�M��ݚ@J�SZ(zȏ�N�Ta�(2��5�D�D5���.l�<g[[Za��r�Q�Q%�Bu�ȴ����~~`���I�oh�R�b����ʳ��ڟ���u�2���M�S��8E�dF��UC���l�CM�aѳ����!����}ș�+�2��k��/�bų�E,��n�当ꖛ\�(8�WV�8	d]�b�	�������y�X��w	܊�:I�39��
0�0U]�^§������Q�\ӎ�0��U#��0�����T0�3���9�N0b������0��10	UUS10UFlorida10U	Niceville10U
Cuda Systems LLC10UCuda Systems CA1!0UCuda Systems LLC 2017 CA�	�@�U��i0U�0�0U��0
	*�H��
���:P U!>v�����J�ni��o�-����#�ן�]Wyu�j���ǑR̀��Q�
�nƇ�!GѦF��g\�yLx�g�w=�O�P��yceh�f[���}�ܷ�['4�ڝ�\[p6\o.��B&�JF���"�ZC{;�*o�*�mc��Cc�LY߾�`
�t�*�S!����񫶭�(���`�]D�HP�5���A~/�N���Pp�����6�=�m��h�k�밣'd���oA$�86hm����5���Ӛ��S@�j���ެE���gl��
�)�0JG���`%�k�3�5��P��a��C?���σ
׳HE�t}!�P���㏏%*���B�xb��Q�waKG����$6h�¦��M�v��e;��[o��-�Iی��&
���I,��T��c�ߎ#t �wPA�@��l0�P�+�KXB��պT	z���G�v;N��c��I3��&��JĬ���UP�N��a��?�/�%�W��6G۟N�0�00����k���#X��d��\�=0
	*�H��
0{10	UUS10UFlorida10U
Cuda Systems LLC10UCuda Systems CA1%0#UCuda Systems LLC 2017 Int CA0
170817212120Z
220816212120Z0W10	UUS10UFlorida10U
Cuda Systems LLC10Ukarl@denninger.net0�"0
	*�H��
�0�
��T��[I�-ΆϏdn;�Å�@שy���.u�s�~_�Z�G%<��M��Y��d�\g��v�f��n�s�a��1'6����E�gyjs�"C� [�{��~��_���K���Pn+<�*�pv���#Q�����+��H���/���7[-v��qD��V^U>�f��%�GX�)��H.��|l`�M(C�r�>е͇6����#�o��dc"Y�ljҦ�ln8�@�5S�A�0���&ۖ"���OGj?��U��DWZ5	��dDB7k-)�9�����I�zs��-�JA���v
��J��6L���$�Ն����1Sm�Y.��Lqw*��SH;E��F'�D�Ħ��H��]��M��O��������g���Q���Q�|M�ٙ��ג2Z��9y��@���y�]}6ٽe��Y9��Y2�xˆ�$T�=�e�CǺ��ǵb�n֛�{��j��|��@�LL�t�1�[D�k5:$=�	`�	�M���0��0<+00.0,+0� http://ocsp.cudasystems.net:88880	U00	`�H��B�0U��0U%0++03	`�H��B
&$OpenSSL Generated Client Certificate0U�%�՞V=���؁�;�bzQ0��U#��0���]�^§������Q�\ӎϡ�����0��10	UUS10UFlorida10U	Niceville10U
Cuda Systems LLC10UCuda Systems CA1!0UCuda Systems LLC 2017 CA��H���^��Ōc!5�
�H0U0�karl@denninger.net0
	*�H��
��۠�A0�-j%-�-$%���g2#ޡ��1�^��>���{K+�u��GE���v1���ş7Af&b�&O�;.��;A5���*U��)N��D2bF��|\=�]<�sˋL!��wrw���٧>��Y���M���Ä���3\mW�R�� h�Sv���!�_�zv�����l�?� ��3_�� �xU%�\�^����#���O*���Gk̍�YI_�&�Fꊛ�����@&�1�n�������}� ͬ:��{�hT�P3��B.�;���bU�8:Z��=^���Gw�8���!k-��@���x�E��@�i�,+'�Iᐚ:f��hz�tX7/�(h�Y`��� O�.������1}a`�%�RW��^�a�k������ǂp�C�Au�fgDix�UT��Щ/�7��}�%=j��nVZvcF����<�M=
�2^G�KH5魉
�_���O�4ެ�Byʈ���y��S��k�w=5�@h�.0�z�>�
W�1�0�0��0{10	UUS10UFlorida10U
Cuda Systems LLC10UCuda Systems CA1%0#UCuda Systems LLC 2017 Int CA��k���#X��d��\�=0
	`�He��E0	*�H��
	1	*�H��
0	*�H��
	1
181209164747Z0O	*�H��
	1B@�>�ue�����i#|�V.�yV�gy}[Ercu��ꜚ�P���c�@���@�˫����`L�0l	*�H��
	1_0]0	`�He*0	`�He0
*�H��
0*�H��
�0
*�H��
@0+0
*�H��
(0��	+�71��0��0{10	UUS10UFlorida10U
Cuda Systems LLC10UCuda Systems CA1%0#UCuda Systems LLC 2017 Int CA��k���#X��d��\�=0��*�H��
	1�����0{10	UUS10UFlorida10U
Cuda Systems LLC10UCuda Systems CA1%0#UCuda Systems LLC 2017 Int CA��k���#X��d��\�=0
	*�H��
�3�	�?>�j�a[��"��~��.�c�#TF�!0Ka�(�T�@���ϕE$�����}�����\��r~����	�M?/x�61���_���������F7�<�?<���b���~�ɛr�,�t1���8F��2�jB�r*��"A�d{I�k!���0�kEI�y�_��Nm���{��h�Ve{k�	�[�~��Q����\闇��
�q�.I����i����^��{>�-����2Q���"�:|�5r9��"���-�ٛ��n�;kL���r�#��c������c-
��P3��B���b�(��Q>�mLX�g1l&�E�@�:H�<pE���B�'��
R-{_<�W.\�.������H�����C���T�K#����\����,�{0�
;"��E��f~����0XV=��ԏ�iYX��K���=�a�CU�c	�mGU�_��������m�'v[�(����>�'���5!��so��w��v

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?65c2e315-4106-dd57-b149-45f127b1056b>

Header And Logo

Peripheral Links

Site Navigation

Header And Logo

Peripheral Links

Search

Site Navigation