From owner-freebsd-net Mon Sep 30 10:36:21 2002 Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 18FAE37B401 for ; Mon, 30 Sep 2002 10:36:20 -0700 (PDT) Received: from iguana.icir.org (iguana.icir.org [192.150.187.36]) by mx1.FreeBSD.org (Postfix) with ESMTP id BC5CD43E42 for ; Mon, 30 Sep 2002 10:36:19 -0700 (PDT) (envelope-from rizzo@iguana.icir.org) Received: from iguana.icir.org (localhost [127.0.0.1]) by iguana.icir.org (8.12.3/8.11.3) with ESMTP id g8UHaIIb004090; Mon, 30 Sep 2002 10:36:18 -0700 (PDT) (envelope-from rizzo@iguana.icir.org) Received: (from rizzo@localhost) by iguana.icir.org (8.12.3/8.12.3/Submit) id g8UHaHxa004089; Mon, 30 Sep 2002 10:36:17 -0700 (PDT) (envelope-from rizzo) Date: Mon, 30 Sep 2002 10:36:17 -0700 From: Luigi Rizzo To: Andre Oppermann Cc: freebsd-net@FreeBSD.ORG, jeker@n-r-g.com Subject: Re: New natd available Message-ID: <20020930103617.A4019@iguana.icir.org> References: <3D9861CA.F3225DE7@pipeline.ch> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: <3D9861CA.F3225DE7@pipeline.ch>; from oppermann@pipeline.ch on Mon, Sep 30, 2002 at 04:38:02PM +0200 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Andre, could you briefly comment how the new libalias+natd differ (or are planned to differ) from the old one -- e.g. do they implement keepalives, move-to-front of sessions in the hash chains, fixe to known bugs in the old one ? One common complaint with the old libalias is that performance tends to trash with time -- this seems to be due to the very long timeout (24hrs ?) for sessions, coupled to the fact that newly created sesssions are appended to the end of the hash chains so over time the lookup times tend to become larger and larger. One easy fix to this behaviour is to move to the front of the hash chain a session descriptor upon a successful lookup. This keeps fresh sessions near the head of the chain while stale ones drift towards the end. thanks luigi > Hello all > > In the FreeBSD May-June 2002 Status Report we have announced a natd > rewrite to make it's configuration options more powerful and support > more ip addresses to nat to. > > The first functional preview is available here: > > http://diehard.n-r-g.com/stuff/freebsd/ > > Please check this out and test it with real traffic. We'd appreciate > any feedback about the syntax and any bugs. It'll get some more style > treatment before declaring it for full public consumption. > > Next in row is the tcphostcache in a couple of days. After that the > new routing table is coming. > > -- > Andre > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-net" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message