Date: Tue, 12 Apr 2022 12:43:10 +0200 From: Kristof Provost <kp@FreeBSD.org> To: Matt Garber <matt.garber@gmail.com> Cc: mike tancsa <mike@sentex.net>, FreeBSD-STABLE Mailing List <freebsd-stable@freebsd.org> Subject: Re: vtnet rxcsum broken for forwarding RELENG_13 ? Message-ID: <0FE1F488-EEA5-4010-9926-2D9567E8461F@FreeBSD.org> In-Reply-To: <CANwXMPPUEYWOoYLcYGhzMpP=MOd-oNrT4S7NJUy8AE52cPRvEg@mail.gmail.com> References: <d30a54ad-6b93-456e-64fc-75d1b09b2fb3@sentex.net> <CANwXMPPUEYWOoYLcYGhzMpP=MOd-oNrT4S7NJUy8AE52cPRvEg@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On 12 Apr 2022, at 2:07, Matt Garber wrote: > On Mon, Apr 11, 2022 at 7:15 PM mike tancsa <mike@sentex.net> wrote: > >> I was setting up a VM pf firewall and noticed I was not able to nat out >> for some reason. Looking at the pcap, it seems when the vm is in >> forwarding mode, I get tcp checksum errors. If I do a >> >> ifconfig vtnet1 -rxcsum >> >> ifconfig vtnet0 -rxcsum >> >> nat then seems to work fine >> >> The setup is a simple VM with the hypervisor libvirt/KVM ubuntu 20 LTS. >> Guest is RELENG_13 from Apr 11/2022. If I change to em nics in the VM, >> all is fine out of the box. >> >> >> I opened up https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=263229 > > > > Unless someone knows otherwise, I’ve been under the impression that PF — or > potentially any of the other FreeBSD firewalls (?), but I use PF — has been > “broken” in that regard on Linux KVM-based FreeBSD guests for years. As > such I’ve always needed to use csum_disable flags on the vtnet interfaces > or suffer *extremely* poor network performance, even for servers not doing > NAT forwarding. > That PF checksum issue was fixed c110fc49da2995d10d60d908af0838ecb4be9bee, back in 2015. Kristof
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?0FE1F488-EEA5-4010-9926-2D9567E8461F>