From owner-freebsd-performance@FreeBSD.ORG  Sat Jan 13 00:26:45 2007
Return-Path: <owner-freebsd-performance@FreeBSD.ORG>
X-Original-To: freebsd-performance@freebsd.org
Delivered-To: freebsd-performance@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id 1FFF316A492
	for <freebsd-performance@freebsd.org>;
	Sat, 13 Jan 2007 00:26:45 +0000 (UTC)
	(envelope-from fbsd-performance@mawer.org)
Received: from customer-domains.icp-qv1-irony7.iinet.net.au
	(customer-domains.icp-qv1-irony7.iinet.net.au [203.59.1.128])
	by mx1.freebsd.org (Postfix) with ESMTP id 963C113C468
	for <freebsd-performance@freebsd.org>;
	Sat, 13 Jan 2007 00:26:42 +0000 (UTC)
	(envelope-from fbsd-performance@mawer.org)
Received: from 203-206-173-235.perm.iinet.net.au (HELO [10.24.1.1])
	([203.206.173.235])
	by customer-domains.icp-qv1-irony7.iinet.net.au with ESMTP;
	13 Jan 2007 07:56:31 +0800
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: AgAAAIGup0XLzq3r/2dsb2JhbAAN
X-IronPort-AV: i="4.13,180,1167580800"; 
	d="scan'208"; a="480304591:sNHT15409532"
Message-ID: <45A81FA5.3090701@mawer.org>
Date: Sat, 13 Jan 2007 10:54:13 +1100
From: Antony Mawer <fbsd-performance@mawer.org>
User-Agent: Thunderbird 1.5.0.9 (Windows/20061207)
MIME-Version: 1.0
To: Patrick Proniewski <patpro@patpro.net>
References: <CB7DCA86-1D28-4B8E-AFA9-E7BB577FCCA6@patpro.net>	<AA6F584E-A1F9-4B23-98DA-8538B85CA1DB@foolishgames.com>
	<7CA8AE1A-3925-404C-9F69-32AC4FFBB379@patpro.net>
In-Reply-To: <7CA8AE1A-3925-404C-9F69-32AC4FFBB379@patpro.net>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Cc: Lucas Holt <luke@foolishgames.com>, freebsd-performance@freebsd.org
Subject: Re: network perf : em driver ?
X-BeenThere: freebsd-performance@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Performance/tuning <freebsd-performance.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-performance>,
	<mailto:freebsd-performance-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-performance>
List-Post: <mailto:freebsd-performance@freebsd.org>
List-Help: <mailto:freebsd-performance-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-performance>,
	<mailto:freebsd-performance-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 13 Jan 2007 00:26:45 -0000

On 13/01/2007 10:08 AM, Patrick Proniewski wrote:
> the FreeBSD has 1 GB DDR2 ECC, 2 250GB SATA II HDD (but motherboard 
> controler is on SATA I) and uses pf:
> 
> # pfctl -s all
> TRANSLATION RULES:
> nat on fxp0 inet from 192.168.0.0/24 to any -> (fxp0) round-robin
> 
> FILTER RULES:
> scrub in all fragment reassemble
> block return all
> block return in log quick proto tcp from <sshscan> to any port = ssh
> pass quick on lo0 all
> [ bunch of block in/out and pass in rules applying only on fxp0, the 
> external IF ]
> pass in inet proto icmp all icmp-type echoreq keep state
> pass in on em0 inet from 192.168.0.0/24 to any keep state
> pass out on em0 inet from any to 192.168.0.0/24 keep state
> [ few pass out rules applying only on fxp0, the external IF ]
> No queue in use

Does disabling pf/clearing out the rules make any difference to the 
speeds you can achieve? In particular I'm not sure what the performance 
impact of the "scrub in all" might be. Certainly worth a quick test!

--Antony