From owner-freebsd-questions@FreeBSD.ORG Tue Jan 20 14:07:51 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 28BF516A4CE for ; Tue, 20 Jan 2004 14:07:51 -0800 (PST) Received: from mx0.dmpriest.net.uk (mx0.dmpriest.net.uk [62.13.128.30]) by mx1.FreeBSD.org (Postfix) with ESMTP id E670043D6E for ; Tue, 20 Jan 2004 14:07:21 -0800 (PST) (envelope-from kpielorz@tdx.co.uk) Received: from rainbow (adsl-blk-62-13-130-225.dmpriest.net.uk [62.13.130.232] (may be forged)) by mx0.dmpriest.net.uk (8.11.6/8.11.6/Kp) with ESMTP id i0KM7IC80332 for ; Tue, 20 Jan 2004 22:07:18 GMT Date: Tue, 20 Jan 2004 22:07:24 +0000 From: Karl Pielorz To: freebsd-questions@freebsd.org Message-ID: <100014500.1074636444@rainbow> X-Mailer: Mulberry/3.1.0 (Win32) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline Subject: FreeBSD tunnels / performance et'al (gif/tun etc.) X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 20 Jan 2004 22:07:51 -0000 Hi All, I've just setup a FreeBSD tunnel (we've tried both gif and tun [via nos-tun]) now between two fairly large networks of machines... We've routed multiple class C networks over the tunnel - only to find the performance is, basically abysmal :( If I do a transfer from the machines 'wan' facing addresses directly, it works fine [we get about 230Kbytes a sec, on a 2mbit link between the hosts] - if I do a transfer from machine to machine via the tunnel endpoint IP's - we get about 140-160Kbytes a second... But 'general' traffic going across the link gets really lousy rates, and seems very 'staccato' (e.g. a few hundred bytes per second to a host). We've been careful re. MTU sizes by deploying tcpmssd where needed (e.g. for gif) Has anyone got any experience of routing large networks of traffic via tunnels under FreeBSD? As a comparison a linksys vpn box did the same thing for a single VPN and got nearly 200k with one host, and degraded 'fairly' with others online [but unfortunately doesn't have the support for multiple networks over the VPN etc. that we need]. Any help, info, or experience greatly appreciated... -Karl