From owner-freebsd-stable  Sat May 26 23:12:20 2001
Delivered-To: freebsd-stable@freebsd.org
Received: from segfault.kiev.ua (segfault.kiev.ua [193.193.193.4])
	by hub.freebsd.org (Postfix) with ESMTP id 75B7737B422
	for <freebsd-stable@FreeBSD.ORG>; Sat, 26 May 2001 23:12:10 -0700 (PDT)
	(envelope-from netch@iv.nn.kiev.ua)
Received: (from uucp@localhost)
	by segfault.kiev.ua (8) with UUCP id JEQ06775;
	Sun, 27 May 2001 09:12:01 +0300 (EEST)
	(envelope-from netch@iv.nn.kiev.ua)
Received: (from netch@localhost)
	by iv.nn.kiev.ua (8.11.3/8.11.3) id f4R6Bew01901;
	Sun, 27 May 2001 09:11:40 +0300 (EEST)
	(envelope-from netch)
Date: Sun, 27 May 2001 09:11:40 +0300
From: Valentin Nechayev <netch@iv.nn.kiev.ua>
To: Normand Leclerc <leclercn@videotron.ca>
Cc: freebsd-stable@FreeBSD.ORG
Subject: Re: ip_divert blues (was natd blues)
Message-ID: <20010527091140.A1554@iv.nn.kiev.ua>
References: <3B1059DD.8090505@videotron.ca>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <3B1059DD.8090505@videotron.ca>; from leclercn@videotron.ca on Sat, May 26, 2001 at 09:35:25PM -0400
X-42: On
Sender: owner-freebsd-stable@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-stable.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo?subject=subscribe%20freebsd-stable>
List-Unsubscribe: <mailto:majordomo?subject=unsubscribe%20freebsd-stable>
X-Loop: FreeBSD.ORG

 Sat, May 26, 2001 at 21:35:25, leclercn (Normand Leclerc) wrote about "ip_divert blues (was natd blues)": 

>      I recently posted help on a slowdown problem when using natd.  I 
> found out that ipfilter (ipnat) is doing the very same thing: slowdown.  
> I trimed down the kernel to almost nothing, I removed a network adapter 
> I didn't need; in brief, I did everything I could think of ...  nothing 
> has changed.  My cable modem is as slow as an ADSL.
>    I have two rules in my firewall when using natd:
>        - 100 divert natd all from any to any via rl0
>        - 200 pass all from any to any
>    On the nat machine, I start a transfer with my ISP's ftp server to be 
> able to reach maximum transfer speed.  I get something like 50k/s.  On 
> the fly, I add a third rule: 50 pass all from any to any.  Suddently, my 
> transfer rate goes up to nearly 170k/s.

You didn't do standard system load meterings. Please tell:
`uptime' output (LA values),
`top' output - does natd occupy top position or not; exact WCPU and CPU values;
`systat -io' output - percents of processor in each mode (idle/user/sys/intr);
`systat -vm' output - number of interrupts, context switches, syscalls
per second;

Also try get collisions, input and output errors on interface with netstat.

All these data may help with diagnostics, but without them diagnostics
is almost impossible.

>    The nat machine is a P90 with 32megs of ram.  It has a 3com 3B905BTX 
> and a cheaper nic connected to the cable modem (realtek).
>    Ideas?  Has the IP divertion become that slow?


/netch

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message