From owner-freebsd-performance@FreeBSD.ORG Fri Feb 6 15:41:29 2009 Return-Path: Delivered-To: freebsd-performance@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id DC310106566C for ; Fri, 6 Feb 2009 15:41:28 +0000 (UTC) (envelope-from leccine@gmail.com) Received: from mail-ew0-f21.google.com (mail-ew0-f21.google.com [209.85.219.21]) by mx1.freebsd.org (Postfix) with ESMTP id 36F7C8FC13 for ; Fri, 6 Feb 2009 15:41:27 +0000 (UTC) (envelope-from leccine@gmail.com) Received: by ewy14 with SMTP id 14so1652732ewy.19 for ; Fri, 06 Feb 2009 07:41:27 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:cc:content-type; bh=Et8c78T2c0Y+V7F49gtKNz+ozqVHHoz/Of/Aax7lVik=; b=mUQuYXfB/x3u3oWSKe66mSsW26qa/QANSspeWXQaL30fyDr3G95y5OWIEeknL0Fm3f 8sfW8JaWdy5E0oApkVjpC9XDMyeie4vySvnP25UQeFG1AowjVVQquvmc8Qyj5JeI7WDW mtCnWs7dpy2KrRaehKMmRt4Po+JOVRE8adKVs= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; b=DXIkq0wsLVVbQkj5Pm9xKJx0HWafQ3fi3ru+CJW5S/8QywHzOlCO4Nh9oWK0gAN6LI 88SLSqP6z1etG30SPBttgT63+fZpSLaHKdNJA/AG/D5PaLYQKTt+YkVtb14/qN29dISR ns8T+QaAOFHj4PN7oIFSBtYx3cY5jsdlLupPU= MIME-Version: 1.0 Received: by 10.210.58.17 with SMTP id g17mr1374961eba.149.1233933540960; Fri, 06 Feb 2009 07:19:00 -0800 (PST) In-Reply-To: <4b008f7d0902060644o62a3942lf63ff6689c3b4d94@mail.gmail.com> References: <4b008f7d0902060644o62a3942lf63ff6689c3b4d94@mail.gmail.com> Date: Fri, 6 Feb 2009 15:19:00 +0000 Message-ID: From: =?ISO-8859-1?Q?Istv=E1n_Szuk=E1cs?= To: Alex Dehaini Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: freebsd-performance@freebsd.org Subject: Re: Limiting open port RST response from 247 to 200 packets per second X-BeenThere: freebsd-performance@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Performance/tuning List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 06 Feb 2009 15:41:29 -0000 Hi! lix@test:~$sysctl -a | grep net.inet.icmp.icmplim net.inet.icmp.icmplim: 200 net.inet.icmp.icmplim_output: 1 Regards, Istvan On Fri, Feb 6, 2009 at 2:44 PM, Alex Dehaini wrote: > Hi Guys, > > I have some issues with Squid on Freebsd. I am running FreeBSD release 4.9 > and Squid version 2.5. > > I have setup FreeBSD as a bridge so that all traffic from my network can > transparently pass through the FreeBSD server. I am running Squid on the > same server and I created an ipfw rule to redirect port 80 to port 3128. > > Normally, when Squid is not started - we see traffic close to 30MB flowing > through the server. Immediately I start squid, the traffic drops to half > and > sometimes lower and stays there. When this happens, I have a lot of clients > that will call and complain they can't access the Internet. At the same > time, I get these log messages > > *Feb 5 20:39:44 myserver /kernel: Limiting open port RST response from 247 > to 200 packets per second > Feb 5 20:39:44 myserver /kernel: Limiting open port RST response from 247 > to 200 packets per second > Feb 5 20:39:45 myserver /kernel: Limiting open port RST response from 239 > to 200 packets per second > Feb 5 20:39:45 myserver /kernel: Limiting open port RST response from 239 > to 200 packets per second > Feb 5 20:39:46 myserver /kernel: Limiting open port RST response from 273 > to 200 packets per second > Feb 5 20:39:46 myserver /kernel: Limiting open port RST response from 273 > to 200 packets per second > Feb 5 20:39:47 myserver /kernel: Limiting open port RST response from 228 > to 200 packets per second > Feb 5 20:39:47 myserver /kernel: Limiting open port RST response from 228 > to 200 packets per second > Feb 5 20:39:48 myserver /kernel: Limiting open port RST response from 225 > to 200 packets per second > Feb 5 20:39:48 myserver /kernel: Limiting open port RST response from 225 > to 200 packets per second > Feb 5 20:39:49 myserver /kernel: Limiting open port RST response from 244 > to 200 packets per second > Feb 5 20:39:49 myserver /kernel: Limiting open port RST response from 244 > to 200 packets per second > Feb 5 20:39:50 myserver /kernel: Limiting open port RST response from 259 > to 200 packets per second > Feb 5 20:39:50 myserver /kernel: Limiting open port RST response from 259 > to 200 packets per second > Feb 5 20:39:51 myserver /kernel: Limiting open port RST response from 234 > to 200 packets per second > Feb 5 20:39:51 myserver /kernel: Limiting open port RST response from 234 > to 200 packets per second > Feb 5 20:39:52 myserver /kernel: Limiting open port RST response from 243 > to 200 packets per second > Feb 5 20:39:52 myserver /kernel: Limiting open port RST response from 243 > to 200 packets per second > Feb 5 20:39:53 myserver /kernel: Limiting open port RST response from 218 > to 200 packets per second > Feb 5 20:39:53 myserver /kernel: Limiting open port RST response from 218 > to 200 packets per second > Feb 5 20:39:55 myserver /kernel: Limiting open port RST response from 233 > to 200 packets per second > Feb 5 20:39:55 myserver /kernel: Limiting open port RST response from 233 > to 200 packets per second > Feb 5 20:39:56 myserver /kernel: Limiting open port RST response from 241 > to 200 packets per second > Feb 5 20:39:56 myserver /kernel: Limiting open port RST response from 241 > to 200 packets per second > Feb 5 20:39:57 myserver /kernel: Limiting open port RST response from 220 > to 200 packets per second > Feb 5 20:39:57 myserver /kernel: Limiting open port RST response from 220 > to 200 packets per second > Feb 5 20:39:58 myserver /kernel: Limiting open port RST response from 206 > to 200 packets per second > Feb 5 20:39:58 myserver /kernel: Limiting open port RST response from 206 > to 200 packets per second > Feb 5 20:40:01 myserver /kernel: Limiting open port RST response from 223 > to 200 packets per second > Feb 5 20:40:01 myserver /kernel: Limiting open port RST response from 223 > to 200 packets per second* > > When I stop Squid, everything returns to normal. Any idea what is causing > this. I will appreciate any help. > > Thanks > > -- > Alex Dehaini > Developer > Site - www.alexdehaini.com > Email - alexdehaini@gmail.com > _______________________________________________ > freebsd-performance@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-performance > To unsubscribe, send any mail to " > freebsd-performance-unsubscribe@freebsd.org" > -- the sun shines for all