From owner-freebsd-stable Mon Jan 29 9:46:44 2001 Delivered-To: freebsd-stable@freebsd.org Received: from smtp1.sentex.ca (smtp1.sentex.ca [199.212.134.4]) by hub.freebsd.org (Postfix) with ESMTP id 092BC37B400 for ; Mon, 29 Jan 2001 09:46:24 -0800 (PST) Received: from simoeon.sentex.net (simeon.sentex.ca [209.112.4.47]) by smtp1.sentex.ca (8.11.2/8.11.1) with ESMTP id f0THkMF09680; Mon, 29 Jan 2001 12:46:22 -0500 (EST) (envelope-from mike@sentex.net) Message-Id: <5.0.1.4.0.20010129123814.03768a90@marble.sentex.ca> X-Sender: mdtpop@marble.sentex.ca X-Mailer: QUALCOMM Windows Eudora Version 5.0.1 Date: Mon, 29 Jan 2001 12:40:10 -0500 To: David Wolfskill , freebsd-stable@FreeBSD.ORG From: Mike Tancsa Subject: Re: ipnat vs natd and ipf vs ipfw (fwd) In-Reply-To: <200101291735.f0THZaf84267@pau-amma.whistle.com> References: <5.0.1.4.0.20010129121235.037a5ec0@marble.sentex.ca> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG At 09:35 AM 1/29/01 -0800, David Wolfskill wrote: > >Date: Mon, 29 Jan 2001 12:15:25 -0500 > >From: Mike Tancsa > > >>Curious. My home firewall is (still) running FreeBSD 3.2-R; and it's a > >>P-120 with 16 MB memory... yet I was able to FTP a good-sized (>1 MB) > >>file from ftp.freebsd.org at >150 FB/s. And I'm using ipfw & natd. > > >Perhaps it was due to some interaction with natd and PPPoE. Not sure. From > >the machine itself, I could get full rate throughput on all applications. > >It was only from the machines behind the FreeBSD box where I would notice a > >significant speed drop when using NAT. Going through squid, or even socks5 > >was/is quick-- only with nat would I see the speed drop (e.g. downloading > >binary attachments from my news server). But as soon as I switched to > >ipnat, the speed was at expected levels from all my home workstations on > >all services. > >Well, I do have a static IP address (good thing for running nameservers, >eh?). Other than that, I don't see anything obviously so different in >configuration that might indicate the difference in behavior. Me too as the ISP is me :-) The only other thing I can think of is that the MTU on my internal machines is not 1500 to get around and problematic P-MTU issues. ---Mike To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message