From owner-freebsd-questions@FreeBSD.ORG  Fri Oct 24 03:23:40 2003
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 4B37316A4B3
	for <freebsd-questions@freebsd.org>;
	Fri, 24 Oct 2003 03:23:40 -0700 (PDT)
Received: from web21101.mail.yahoo.com (web21101.mail.yahoo.com
	[216.136.227.103])
	by mx1.FreeBSD.org (Postfix) with SMTP id C0B0843F85
	for <freebsd-questions@freebsd.org>;
	Fri, 24 Oct 2003 03:23:39 -0700 (PDT)
	(envelope-from materribile@yahoo.com)
Message-ID: <20031024102339.20793.qmail@web21101.mail.yahoo.com>
Received: from [24.228.74.10] by web21101.mail.yahoo.com via HTTP;
	Fri, 24 Oct 2003 03:23:39 PDT
Date: Fri, 24 Oct 2003 03:23:39 -0700 (PDT)
From: Mark Terribile <materribile@yahoo.com>
To: freebsd-questions@freebsd.org
In-Reply-To: <20031023190312.D149D16A4C0@hub.freebsd.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Subject: IPFW + BRIDGE: network capacity question
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 24 Oct 2003 10:23:40 -0000


Christopher Schulte writes:

> ...  I have an Intel D815EGEW board with a single PIII 1GHZ, ...
> Assume that it will be processing at peak all of this at once:
> 	500 TCP connections with long lived sessions ...
> 	500 UDP 'connections'
> 	500 web (HTTP port 80 tcp) connections per second (graphics,
>       small html pages)
> 		The HTTP sessions will be short lived, so lots of TCP
> handshakes at *least* a good portion will not utilize persistant HTTP

It's been a while since I was inside HTTP, but you may have a problem.

When the remote end drops a TCP connection, you may re-use the port
immediately.  When you drop it, the protocol stack on your side must
wait 120 seconds (check the number!) before reusing that port number.
If you try to drop and re-use 500 connections per second, you will
run into this as there are only 65536 ports per address, and some of
them are reserved or wired down.

Someone else please check me on this.

                                            Mark Terribile

__________________________________
Do you Yahoo!?
The New Yahoo! Shopping - with improved product search
http://shopping.yahoo.com