From owner-freebsd-questions Sun Nov 22 10:28:27 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id KAA29092 for freebsd-questions-outgoing; Sun, 22 Nov 1998 10:28:27 -0800 (PST) (envelope-from owner-freebsd-questions@FreeBSD.ORG) Received: from ds9.dreamhaven.org (dt091n3e.san.rr.com [204.210.47.62]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id KAA29087 for ; Sun, 22 Nov 1998 10:28:23 -0800 (PST) (envelope-from data@dreamhaven.net) Received: (qmail 15536 invoked by uid 1010); 22 Nov 1998 18:27:30 -0000 Date: Sun, 22 Nov 1998 10:27:30 -0800 (PST) From: Bryce Newall X-Sender: data@ds9.dreamhaven.org To: FreeBSD Questions List Subject: slow connection Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Greetings all! (Never a dull moment with me, is there?) I've been running into some trouble with one of my machines at home. I've got 2 FreeBSD boxes hooked up to my cable modem -- one is mine, and one belongs to a friend who lives in Texas. I haven't been able to figure out what it is, but there's *something* that is making access outside of my machine extremely slow. I thought at first it was something on my friend's machine (a high-volume mailing list, or web server, etc.) that was slowing down my entire cable modem connection, but that's not the case. If I log into the console of her machine and traceroute outbound, the ping times are normal (under 60ms). However, if I log into my machine's console and traceroute outbound, the ping times are nearly 1000ms. I've shut down every possible service on my machine I can think of -- httpd, named, even the login program that logs me into my cable modem provider (Road Runner). Nothing seems to help. Netstat shows only a handful of TCP/UDP connections, most of which are my outgoing connections to other machines (telnet port, ssh port, etc.). The one thing that does seem odd is that my machine has a *lot* of entries under Active Unix domain sockets, where my friend's machine has only a few. Here's an example: (My machine) [17]data@ds9:/home/data % netstat -n | grep -c stream 20 [18]data@ds9:/home/data % netstat -n | grep -c dgram 10 (My friend's machine) [6]data@quixotic:/users/data % netstat -n | grep -c stream 0 [7]data@quixotic:/users/data % netstat -n | grep -c dgram 10 I, unfortunately, do not know a whole lot about Unix domain sockets (I know little to nothing about them, actually), so I don't know what dgrams and streams are. However, I do find it odd that while we both show the same number of "dgram"'s, I show 20 "stream"'s while she shows none. I'm suspicious that my machine is either doing something to itself, or that it could be an outside attack against it. Although I would think an outside attack would affect her machine too, and not just mine, since internally I have more network bandwidth than I have to my cable ISP. So my question to you all is: Does anyone have any suggestions on what I should check to see what the hay is going on? And please feel free to be as basic as you want... don't worry about insulting my intelligence. :) Thanks in advance! ********************************************************************** * Bryce Newall * Email: data@dreamhaven.net * * WWW: http://home.dreamhaven.net/~data * * "Insanity takes its toll. Please have exact change." * ********************************************************************** To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message