Date: Sun, 5 Jun 2011 23:10:56 +0100 From: Greg Hennessy <Greg.Hennessy@nviz.net> To: Dmitri Budko <admin@isphost.com.ua> Cc: "freebsd-pf@freebsd.org" <freebsd-pf@freebsd.org> Subject: RE: pf speed drops Message-ID: <9EB23F6C23A8B6488E8BCC92A48E8326127766A91B@PEMEXMBXVS04.jellyfishnet.co.uk.local> In-Reply-To: <4DEB8058.6020708@isphost.com.ua> References: <4DEB4FA5.6020808@isphost.com.ua> <9EB23F6C23A8B6488E8BCC92A48E8326127766A8D6@PEMEXMBXVS04.jellyfishnet.co.uk.local> <4DEB8058.6020708@isphost.com.ua>
next in thread | previous in thread | raw e-mail | index | archive | help
What is the profile of the network traffic ? Protocol ? Connections/second ? Packet size ? Change the policy to Block log all Pass log all keep state Perform the test again, check the firewall logs to see what if anything is being dropped. 500 megabits/second a lot of traffic for an internet connected device. The state table could be filling up for example. http://prefetch.net/articles/monitoringpf.html http://www.packetmischief.ca/2011/02/17/hitting-the-pf-state-table-limit/ > -----Original Message----- > From: Dmitri Budko [mailto:admin@isphost.com.ua] > Sent: Sunday, 5 June 2011 11:11 PM > To: Greg Hennessy > Cc: freebsd-pf@freebsd.org > Subject: Re: pf speed drops > > Hello > I look via systat -if 1 > > Greg Hennessy пишет: > > As measured by? > > > > > > > >> -----Original Message----- > >> From: owner-freebsd-pf@freebsd.org [mailto:owner-freebsd- > >> pf@freebsd.org] On Behalf Of Dmitri Budko > >> Sent: Sunday, 5 June 2011 7:43 PM > >> To: freebsd-pf@freebsd.org > >> Subject: pf speed drops > >> > >> Hello. > >> When I turn on the PF server internet speed drops from 500 megabits to > >> 100, after the shutdown goes back to 500 > >> > >> The rules are simple > >> > >> pass in all > >> pass out all > >> > >> OS: FreeBSD GW 7.3-RELEASE FreeBSD 7.3-RELEASE # 3 > >> Network card: em0: <Intel(R) PRO/1000 Network Connection 6.9.6> > >> > >> How is it possible to solve this problem? > >> _______________________________________________ > >> freebsd-pf@freebsd.org mailing list > >> http://lists.freebsd.org/mailman/listinfo/freebsd-pf > >> To unsubscribe, send any mail to "freebsd-pf-unsubscribe@freebsd.org" > >>
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?9EB23F6C23A8B6488E8BCC92A48E8326127766A91B>