From owner-freebsd-net@FreeBSD.ORG  Mon Nov 26 15:09:10 2007
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 51A8916A41A
	for <freebsd-net@freebsd.org>; Mon, 26 Nov 2007 15:09:10 +0000 (UTC)
	(envelope-from ecrist@secure-computing.net)
Received: from snipe.secure-computing.net (snipe.secure-computing.net
	[209.240.66.149])
	by mx1.freebsd.org (Postfix) with ESMTP id 22B2813C44B
	for <freebsd-net@freebsd.org>; Mon, 26 Nov 2007 15:09:09 +0000 (UTC)
	(envelope-from ecrist@secure-computing.net)
Received: from [10.0.0.14] (unknown [74.95.66.25])
	(using TLSv1 with cipher AES128-SHA (128/128 bits))
	(No client certificate requested)
	(Authenticated sender: ecrist@secure-computing.net)
	by snipe.secure-computing.net (Postfix) with ESMTP id AAB9E17043
	for <freebsd-net@freebsd.org>; Mon, 26 Nov 2007 09:09:03 -0600 (CST)
Message-Id: <44E698B8-B9D6-4770-93CF-FFF0C008F681@secure-computing.net>
From: Eric F Crist <ecrist@secure-computing.net>
To: freebsd-net@freebsd.org
Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes
Content-Transfer-Encoding: 7bit
Mime-Version: 1.0 (Apple Message framework v915)
Date: Mon, 26 Nov 2007 09:09:01 -0600
X-Mailer: Apple Mail (2.915)
Subject: 6.2+pf+CARP bandwidth issues
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 26 Nov 2007 15:09:10 -0000

Happy monday folks!

We have a couple of Dell PowerEdge 1650 systems in a CARP setup with  
pf as our firewall cluster.  I've noticed that if I connect my laptop  
behind these systems, I can achieve about 600kbps down and about  
1100kpbs upload.  If I connect to the other side, bypassing these  
systems, I can achieve our entire bandwidth cap provided by our  
colocation company.

What things should I look for as far as tuning goes?  Any gotchas I  
should look out for?  All the interfaces and switches in question are  
gigabit.  Some interfaces are fxp, others are onboard em.

Thanks for you replies!
-----
Eric F Crist
Secure Computing Networks