Date: Wed, 13 Dec 2006 15:31:44 -0500 (EST) From: Charles Sprickman <spork@bway.net> To: Pete French <petefrench@ticketswitch.com> Cc: freebsd-stable@freebsd.org Subject: Re: pf killing NFS Message-ID: <20061213152911.L95481@sporker.bway.net> In-Reply-To: <E1GuRuH-000DHU-QA@dilbert.ticketswitch.com> References: <E1GuRuH-000DHU-QA@dilbert.ticketswitch.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 13 Dec 2006, Pete French wrote: >> I'm running a 6.2-RC1 box (cvsup'd today) that has two broadcom nics. One >> is an internal network (nfs) and the other is external. > ... >> Doing something like "ls /usr/ports" will just hang until interrupted. >> Using tcp for nfs makes it workable, but very slow. > > Oddly enough I hit precisely this problem last night - with a cvsup from a > few days ago. I have tried adding the 'no-df' flag to the scrub rules, but this > did not help much. What I ended up doing was this: I pulled the "scrub in all" line and replaced it with a "scrub in on bge0". I don't really care about scrubbing on the internal network. All works as expected now. Glad to have the bad checksum error explained, that had me thinking I'd be visiting the co-lo to track down a flakey cable. :) Charles > scrub in on bge0 proto tcp fragment reassemble random-id > > so that I am not scrubbing UDP traffic. this works fine. > > -pete. >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20061213152911.L95481>