Date: Fri, 16 May 2003 23:05:46 -0700 (PDT) From: Tom Samplonius <tom@sdf.com> To: Thomas Krause -CI- <freebsd-isp@chef-ingenieur.de> Cc: freebsd-isp@freebsd.org Subject: Re: router stops working because of udp packets Message-ID: <Pine.BSF.4.05.10305162302230.2996-100000@misery.sdf.com> In-Reply-To: <3EC5E7A9.7020802@chef-ingenieur.de>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, 17 May 2003, Thomas Krause -CI- wrote: > Thank's to all for your response. I'll question the customer on Monday > and probably sell him a firewall. (Should I notice that I hate Microsoft > software?) Rather than sell him a firewall, sell him a clue. The MS-SQL vulnerability that Slammer exploits was made public many months ago. > > It is the Slammer worm. It can easily generate 60Mbps of traffic on a > > fast ethernet LAN. It seems that your router does not have enough > > resources to route that much. Perhaps add more mbufs, and more efficient > > network cards. If using the fxp driver, use the link0 flag to reduce > > interupts. > > There is one fxp and one xl card in that box - but how to use > the link0 flag? ( 'man fxp' doesn't help) If the man page doesn't mention it, it probably isn't supported in your version of FreeBSD. It is pretty new. > >>BTW: 4.6.2-RELEASE-p9 is running on the router. > > > > > > You should probably upgrade to 4.8 too. > > Until now 4.6.2 was running very well - and I doubt that 4.8 would > forward that traffic. (Anyway, I've a reason to upgrade to 4.7 at least) Well, with the packet bundling support in fxp, it would do much better. Up to 8 packets could be handled per interupt. There is no reason to go to 4.7, when 4.8 is available. Trust me, it is way better. > Regards, > Thomas. Tom
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.05.10305162302230.2996-100000>