From owner-freebsd-questions@FreeBSD.ORG Mon Feb 26 11:59:06 2007 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id B158816A414 for ; Mon, 26 Feb 2007 11:59:06 +0000 (UTC) (envelope-from jbronson@wixb.com) Received: from outbound.mailhop.org (outbound.mailhop.org [63.208.196.171]) by mx1.freebsd.org (Postfix) with ESMTP id 7DF9813C4A3 for ; Mon, 26 Feb 2007 11:59:06 +0000 (UTC) (envelope-from jbronson@wixb.com) Received: from adsl-69-210-44-126.dsl.milwwi.ameritech.net ([69.210.44.126] helo=cheyenne.sixcompanies.com) by outbound.mailhop.org with esmtpsa (TLSv1:AES256-SHA:256) (Exim 4.63) (envelope-from ) id 1HLeVV-000HCL-H1; Mon, 26 Feb 2007 06:59:05 -0500 Received: from dakota.sixcompanies.com (cheyenne.sixcompanies.com [10.43.82.170]) by cheyenne.sixcompanies.com (8.14.0/8.14.0) with ESMTP id l1QBx46X006755; Mon, 26 Feb 2007 05:59:04 -0600 (CST) X-Mail-Handler: MailHop Outbound by DynDNS X-Originating-IP: 69.210.44.126 X-Report-Abuse-To: abuse@dyndns.com (see http://www.mailhop.org/outbound/abuse.html for abuse reporting information) X-MHO-User: lonebandit Message-Id: <200702261159.l1QBx46X006755@cheyenne.sixcompanies.com> X-Mailer: QUALCOMM Windows Eudora Version 7.1.0.9 Date: Mon, 26 Feb 2007 05:59:58 -0600 To: "James Seward" From: "J.D. Bronson" In-Reply-To: <720051dc0702260052v8e4d2b2v9bbca164bfe87a4b@mail.gmail.com > References: <200702252202.l1PM2r46003312@cheyenne.sixcompanies.com> <720051dc0702260052v8e4d2b2v9bbca164bfe87a4b@mail.gmail.com> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Cc: freebsd-questions@freebsd.org Subject: Re: pf and keep/modulate state on 6.2 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 26 Feb 2007 11:59:06 -0000 At 02:52 AM 02/26/2007, you wrote: >Wow, this fixed my FTP-over-DSL-to-6.2 problem too. With modulate >state, I was getting ~30K/sec. With just keep state, I'm now getting >more like what my connection is capable of. This is between two 6.2 >hosts on opposite sides of the Atlantic. > >Ted, I use pf because I like the format of the configuration file, I >like the logging and pftop, and like how it's harder to lock yourself >out of a remote machine by accident :) > >/JMS I use pf since its newer (I think?) and I came from openbsd..pf just works and the config file is nice and sweet. I had thought that modulate state would put a load on my proc, but sheesh, its a p4-3.06 - thats more than robust for a router. I wonder if we should file a bug on this? I am glad my post helped here. I still use modulate state for any INCOMING connections though (www/smtp/etc). -JD