From owner-freebsd-ipfw@FreeBSD.ORG Tue Nov 2 10:49:33 2004 Return-Path: Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0A97D16A4CE for ; Tue, 2 Nov 2004 10:49:33 +0000 (GMT) Received: from sloti.sofia.itdnet.net (sloti.sofia.ITDNet.net [212.116.151.3]) by mx1.FreeBSD.org (Postfix) with SMTP id 0C72C43D4C for ; Tue, 2 Nov 2004 10:49:29 +0000 (GMT) (envelope-from evgeny@sofia.itdnet.net) Received: (qmail 26528 invoked by uid 0); 2 Nov 2004 10:49:25 -0000 Received: from unknown (HELO ?127.0.0.1?) (212.116.151.30) by sloti.sofia.itdnet.net with SMTP; 2 Nov 2004 10:49:25 -0000 Message-ID: <418766FE.50702@sofia.itdnet.net> Date: Tue, 02 Nov 2004 12:52:46 +0200 From: Evgeny Ivanov User-Agent: Mozilla Thunderbird 0.7.3 (Windows/20040803) X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-ipfw@freebsd.org Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X-Content-Filtered-By: Mailman/MimeDel 2.1.1 Subject: bandwidth limitations X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 02 Nov 2004 10:49:33 -0000 HI all, I have a problem/question. This is something that I cannot explain to myself why it is happening. I have a machine wich acts like a router and traffic shaper for 3 networks. The upstream connection is about 100Mbps and I have 3 networks that must share this connectivity. The schema is something like that: / | net1-nic2| --- | SWITCH | -- | LAN | / / | nic 1| --- cable --- | net1-nic1| / Upstream ISP ---------- |ISP-NIC router / shaper |-- | nic 2| --- wireless link --- | net2-nic1| ---- | net2-nic2| ---- | SWITCH | --- | LAN | \ \ | nic 3| --- cable --- | net3-nic1| --- | net3-nic2 | ---- | SWITCH | --- | LAN | The machine was originaly installed on 4.9 Stable and was upgrated to 4.10. The IPFW is version 2 - because i needed to use the lookup tables and the autonic step change. I use the lookup tables to split the trafffic ( received from IPS for the 3 nets ) into 2 flows - a local one and international. I am doing that by describing the networks into table and then using skipto for sending it to different pipes. I dont use queue becaus it is not working quite well with ipfw2. The rules are like that: 00005 180161 262752066 skipto 1100 ip from table(1) to net2 out via fxp2 01000 8121 5276242 pipe 1000 ip from any to net2 out via fxp2 01100 180161 262752066 pipe 1100 ip from any to net2 out via fxp2 65535 88428442 64567418299 allow ip from any to any Same is for each other 2 nets. The router/shaper ISP-NIC has no any limitations. All NICs are fxp's. The problem is that I have is that when I load the ipfw rules I cannot use more than 30Mbps received from ISP-NIC. When I flush the rules the speed goes up to 80Mbps. Can anyone give an advice why is that? What should I do to use at least 80Mbps after applying the rules? Thanks in advance -- Evgeny Ivanov Sales Consultant Sofia 1111 28-30 Nikola Kopernik str. tel: +359 02/ 971 26 22 mobile: +359 886 000 321 e-mail: evgeny@sofia.itdnet.net www.itdnet.net