From owner-freebsd-questions  Thu Aug  8  4:31: 3 2002
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 0622B37B40D
	for <freebsd-questions@freebsd.org>; Thu,  8 Aug 2002 04:30:58 -0700 (PDT)
Received: from mail.rz.uni-ulm.de (gemini.rz.uni-ulm.de [134.60.246.16])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 8EF2143E72
	for <freebsd-questions@freebsd.org>; Thu,  8 Aug 2002 04:30:56 -0700 (PDT)
	(envelope-from Siegbert.Baude@gmx.de)
Received: from lilith (lilith.wh-wurm.uni-ulm.de [134.60.106.64])
	by mail.rz.uni-ulm.de (8.12.5/8.12.5) with SMTP id g78BUs66020804
	(version=TLSv1/SSLv3 cipher=RC4-MD5 bits=128 verify=NOT);
	Thu, 8 Aug 2002 13:30:54 +0200 (MEST)
Message-ID: <009d01c23ecf$0df7ef20$406a3c86@whwurm.uniulm.de>
From: "Siegbert Baude" <Siegbert.Baude@gmx.de>
To: "Roger 'Rocky' Vetterberg" <listsub@rambo.simx.org>,
	"Patrick Thomas" <root@utility.clubscholarship.com>
Cc: <freebsd-questions@freebsd.org>
References: <20020807135406.O28830-100000@utility.clubscholarship.com> <3D522F8C.8060605@rambo.simx.org>
Subject: Re: need tunings for a loaded freeBSD firewall
Date: Thu, 8 Aug 2002 13:30:52 +0200
MIME-Version: 1.0
Content-Type: text/plain;
	charset="Windows-1252"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 5.50.4807.1700
X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4807.1700
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

Hi,

> >Recently, for reasons I cannot discern, it is choking
> > on traffic.  Most ftp transfers run at 5-8 Kb/s (as opposed to
300-500 K)
> > and pings with large packet sizes drop a lot of packets.

> What kind of nic's do you use?
> I had similar problems with a firewall, allthough it had a much
> higher throughput then 2MBit/s.
> I solved it by rewriting some ipfw rules and change nic's.
> When switching the 3Com 905's to a couple of Intel Etherexpress
> Pro 10/100 the performance increased and the load on the machine
> decreased.

I once faced similar problems on a Linux router. Found out, that NIC and
switch couldn't agree on half- or full-duplex, switching in second
rhythm between both of them. So to be sure, check if your setup is still
consistent with regard to speed/duplex of your connection. Auto
negotiation simply fails in some cases due to ambiguous specifications.

BTW, my problem stayed with both the Linux 2.2 and the 3com drivers for
my 905c and only disappeared after upgrading to Linux 2.4, so guess.

Ciao
Siegbert


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message