From owner-freebsd-questions Thu Sep 26 15:36:17 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3D98337B401 for ; Thu, 26 Sep 2002 15:36:16 -0700 (PDT) Received: from smtp2.knology.net (user-24-214-63-14.knology.net [24.214.63.14]) by mx1.FreeBSD.org (Postfix) with SMTP id 5EBFA43E42 for ; Thu, 26 Sep 2002 15:36:15 -0700 (PDT) (envelope-from dkelly@HiWAAY.net) Received: (qmail 11128 invoked from network); 26 Sep 2002 22:36:05 -0000 Received: from unknown (HELO grumpy.dyndns.org) (24.214.34.52) by smtp2.knology.net with SMTP; 26 Sep 2002 22:36:05 -0000 Content-Type: text/plain; charset="iso-8859-1" From: David Kelly To: freebsd-questions@FreeBSD.ORG Subject: Re: Performance issues with natd Date: Thu, 26 Sep 2002 17:36:08 -0500 User-Agent: KMail/1.4.3 References: <007401c264bd$d97909e0$0401a8c0@win2000> <20020925220803.GC17390@grumpy.dyndns.org> <20020926130244.GD2034@tiiu.internal> In-Reply-To: <20020926130244.GD2034@tiiu.internal> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Message-Id: <200209261736.08425.dkelly@HiWAAY.net> Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Thursday 26 September 2002 08:02 am, Vallo Kallaste wrote: > > All that said, even old (16bit)NE2000 clone will easily sustain > 800+kB/s on my old 133Mhz Pentium with CPU load 20% or so. 400kB/s > versus 100kB/s throughput difference in this particular case isn't > matter of 3Com vs. Via NIC, I guess. I'll suggest trying out > IPFilter (ipf) and let us know of the results. Yeah, and I run ipfirewall/divert/natd on PII-300's between xl0 and fxp0 and have no thruput problems. I don't remember what or if he said his firewall ruleset was like, or if it was "open". The difference between his system and my systems is a built-for-cheap Rhine chipset NIC. Rhythm is important in TCP/IP. When all the rowers stroke in unison then the boat moves fast and smooth. When one rower strokes to a different drum then the ride is rougher. Ssh via terminal on MacOS X to FreeBSD sshd is bursty and slow to update the terminal window when connected thru my ipfw/FreeBSD router. Better Telnet With SSH under Classic is slick and smooth. Scp in the terminal window has excellent thruput. The burstyness of ssh is due to conflicting rhythms of the schedulers on the remote end, firewall, and the MacOS client end. And I think the same sort of thing is happening in this thread. -- David Kelly N4HHE, dkelly@hiwaay.net ===================================================================== The human mind ordinarily operates at only ten percent of its capacity -- the rest is overhead for the operating system. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message