From owner-freebsd-pf@FreeBSD.ORG  Thu Aug  2 06:52:51 2007
Return-Path: <owner-freebsd-pf@FreeBSD.ORG>
Delivered-To: freebsd-pf@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 861BA16A418
	for <freebsd-pf@freebsd.org>; Thu,  2 Aug 2007 06:52:51 +0000 (UTC)
	(envelope-from patpro@patpro.net)
Received: from smtp1-g19.free.fr (smtp1-g19.free.fr [212.27.42.27])
	by mx1.freebsd.org (Postfix) with ESMTP id 45E0113C48D
	for <freebsd-pf@freebsd.org>; Thu,  2 Aug 2007 06:52:51 +0000 (UTC)
	(envelope-from patpro@patpro.net)
Received: from smtp1-g19.free.fr (localhost.localdomain [127.0.0.1])
	by smtp1-g19.free.fr (Postfix) with ESMTP id 78B5F1AB2CD
	for <freebsd-pf@freebsd.org>; Thu,  2 Aug 2007 08:52:50 +0200 (CEST)
Received: from boleskine.patpro.net (boleskine.patpro.net [82.235.12.223])
	by smtp1-g19.free.fr (Postfix) with ESMTP id 5CB861AB2D3
	for <freebsd-pf@freebsd.org>; Thu,  2 Aug 2007 08:52:50 +0200 (CEST)
Received: from [192.168.0.2] (unknown [192.168.0.2])
	by boleskine.patpro.net (Postfix) with ESMTP id A60971CC0E
	for <freebsd-pf@freebsd.org>; Thu,  2 Aug 2007 08:52:49 +0200 (CEST)
Mime-Version: 1.0 (Apple Message framework v752.2)
In-Reply-To: <000701c7d458$068f1780$13ad4680$@Hennessy@nviz.net>
References: <DE71F511-8553-401A-A16C-DF4CAA5DA6E3@patpro.net>
	<001101c7d441$0f61aa10$2e24fe30$@Hennessy@nviz.net>
	<569F9080-B78F-400B-B3C5-FCA05F04BF80@patpro.net>
	<000701c7d458$068f1780$13ad4680$@Hennessy@nviz.net>
Content-Type: text/plain; charset=ISO-8859-1; delsp=yes; format=flowed
Message-Id: <09A5E345-D13D-4F70-B40D-BECB13AD03D2@patpro.net>
Content-Transfer-Encoding: quoted-printable
From: Patrick Proniewski <patpro@patpro.net>
Date: Thu, 2 Aug 2007 08:53:08 +0200
To: freebsd-pf@freebsd.org
X-Mailer: Apple Mail (2.752.2)
Subject: Re: strange "throttling" issue with pf on xDSL connection
X-BeenThere: freebsd-pf@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Technical discussion and general questions about packet filter
	\(pf\)" <freebsd-pf.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-pf>
List-Post: <mailto:freebsd-pf@freebsd.org>
List-Help: <mailto:freebsd-pf-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 02 Aug 2007 06:52:51 -0000

On 01 ao=FBt 2007, at 18:21, Greg Hennessy wrote:

>> block drop in  log quick on $ext_if from $priv_nets to any
>> block drop out log quick on $ext_if from any to $priv_nets
>
> Superfluous, a default block policy should catch these.

Well, I've just tried a very light rule set:

ext_if =3D "fxp0"
int_if =3D "em0"
scrub in all
nat on $ext_if from 192.168.0.1/24 to any -> $ext_if
pass quick log all keep state

with this, my transfer rate reaches 700-750 KB/s, so I think there is =20=

something wrong with my full rule set.

patpro=