From owner-freebsd-pf@FreeBSD.ORG Tue Aug 14 19:23:43 2007 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C5E7A16A41A for ; Tue, 14 Aug 2007 19:23:43 +0000 (UTC) (envelope-from patpro@patpro.net) Received: from smtp1-g19.free.fr (smtp1-g19.free.fr [212.27.42.27]) by mx1.freebsd.org (Postfix) with ESMTP id 8E47C13C469 for ; Tue, 14 Aug 2007 19:23:43 +0000 (UTC) (envelope-from patpro@patpro.net) Received: from smtp1-g19.free.fr (localhost.localdomain [127.0.0.1]) by smtp1-g19.free.fr (Postfix) with ESMTP id 4E3601AB2BA; Tue, 14 Aug 2007 21:23:42 +0200 (CEST) Received: from boleskine.patpro.net (boleskine.patpro.net [82.235.12.223]) by smtp1-g19.free.fr (Postfix) with ESMTP id 225031AB2A9; Tue, 14 Aug 2007 21:23:41 +0200 (CEST) Received: from [192.168.0.2] (unknown [192.168.0.2]) by boleskine.patpro.net (Postfix) with ESMTP id 26F5D1CC40; Tue, 14 Aug 2007 21:23:41 +0200 (CEST) In-Reply-To: <20070802062413.GB32306@insomnia.benzedrine.cx> References: <611A93D3-A392-493B-80ED-4C5AC77AA77A@patpro.net> <20070802062413.GB32306@insomnia.benzedrine.cx> Mime-Version: 1.0 (Apple Message framework v752.2) Content-Type: text/plain; charset=ISO-8859-1; delsp=yes; format=flowed Message-Id: <25950E32-2B7A-49C6-A6E0-98FFAB3574BE@patpro.net> Content-Transfer-Encoding: quoted-printable From: Patrick Proniewski Date: Tue, 14 Aug 2007 21:23:40 +0200 To: freebsd-pf@freebsd.org X-Mailer: Apple Mail (2.752.2) Cc: Greg Hennessy Subject: Re: strange "throttling" issue with pf on xDSL connection X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 14 Aug 2007 19:23:43 -0000 Hi all, On 02 ao=FBt 2007, at 08:24, Daniel Hartmeier wrote: > On Wed, Aug 01, 2007 at 05:42:19PM +0200, Patrick Proniewski wrote: > >> While playing around with systat I've discovered that the transfer >> rate can be as low as 20 KB/s and as high as 850 KB/s on a single >> download from http://test-debit.free.fr, but the mean value will >> always be around 120-150 KB/s when pf is active. =46rom one sample to >> another (every second), the transfer rate is very erratic. >> If I disable pf on ext_if (set skip on $ext_if), the transfer rate >> reaches quickly 850 KB/s and is almost stable. It decreases to >> 400-450 KB/s for 1 or 2 seconds, 3 or 4 times per minute. > > Enable pf debug logging (pfctl -xm), note output of pfctl -si, =20 > reproduce > the problem. Then run pfctl -si again. See /var/log/messages for lines > from pf. Post all three outputs ;) logging and other forensic methods were of no help here, but I've =20 made several tests, commenting and un-commenting pf rules. I've found =20= the guilty piece of rule. my pf.conf used to have this rule: pass out on $ext_if proto tcp all modulate state flags S/SA I've changed options to: pass out on $ext_if proto tcp all flags S/SA keep state then my bandwidth is no longer throttled ! Looks like the servers/networks I'm connected to do not like =20 "modulate state". regards, pat=