From owner-freebsd-questions  Wed Jun 12 10:34: 6 2002
Delivered-To: freebsd-questions@freebsd.org
Received: from www.omicnet.com (ip-208-181-72-171.adsl.radiant.net [208.181.72.171])
	by hub.freebsd.org (Postfix) with ESMTP id C946437B40B
	for <freebsd-questions@freebsd.org>; Wed, 12 Jun 2002 10:33:59 -0700 (PDT)
Received: from inspector2 (130-94-160-46-dsl.hevanet.com [130.94.160.46])
	by www.omicnet.com (8.9.3/8.9.2) with SMTP id KAA17796
	for <freebsd-questions@freebsd.org>; Wed, 12 Jun 2002 10:33:57 -0700
From: Joshua Lokken <inspector.us@omicnet.com>
To: freebsd-questions@freebsd.org
Date: Wed, 12 Jun 2002 10:33:27 -0700
X-Priority: 3 (Normal)
Message-Id: <VTWVZWZYYWBAGAOJ08PKNMVTAJE2WB0.3d0785e7@inspector2>
Subject: Gateway slowing things down
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
X-Mailer: Opera 6.03 build 1107
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

Hello all

i have setup a P133/32M box with FreeBSD 4.5R as a gateway to my 
net.  For testing purposes, I have the firewall set to 'open'.  I have a 
cable modem and use DHCP.  From my private box, Athlon 
1.2/512DDR, I can ping anywhere just fine.  For example, I can ping 
cvsup7.freebsd.org (my fastest mirror) with no problem, however, when 
I attempt to 'cvsup' the ports,  my throughput speed is reduced 
_severely_!  In fact, I get very little activity at all.  I see:

Connected to cvsup7.freebsd.org
	#several seconds later
Updating collection ports-all
	#several minutes later
Editing.....(whatever it says there..)
	
and that's about it.  If I disconnect from the gateway and reconfigure the 
private box directly with DHCP , its faster than hell.

I am wondering if this is the expected result for this type of gateway 
setup?  Do I need to use a bigger box for the gateway?  Or is it 
possible that I have settings fouled up somewhere?  For info, I have

in the kernel:

options IPFIREWALL
options IPFIREWALL_VERBOSE
options IPDIVERT

in /etc/rc.conf:

gateway_enable="YES"
firewall_enable="YES"
firewall_type="OPEN"	#temporarily, of course
natd_enable="YES"
natd_interface="ed1"	#my outside NIC

I was stoked to get this to work at all, being such a newbie.  I could use 
some suggestions.  Thanks in advance, and please cc to me at 
inspector.us@omicnet.com, as I am not currently subscribed to the list.


  
Best Regards,

Joshua Lokken
OMIC Portland Branch




To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message