Date: Wed, 21 Feb 2007 13:48:43 -0500 From: Bill Moran <wmoran@collaborativefusion.com> To: "=?ISO-8859-1?Q?\"Jos=E9?= Pablo =?ISO-8859-1?Q?Fern=E1ndez\"?=" <pablo.fernandez@rs.com.ar> Cc: freebsd-questions@freebsd.org Subject: Re: PF slowing down file copies Message-ID: <20070221134843.d96603b4.wmoran@collaborativefusion.com> In-Reply-To: <200702211527.06081.pablo.fernandez@rs.com.ar> References: <200702202021.55723.pablo.fernandez@rs.com.ar> <200702211441.29405.pablo.fernandez@rs.com.ar> <20070221125015.ad78d4dd.wmoran@collaborativefusion.com> <200702211527.06081.pablo.fernandez@rs.com.ar>
next in thread | previous in thread | raw e-mail | index | archive | help
In response to "Jos=E9 Pablo Fern=E1ndez" <pablo.fernandez@rs.com.ar>: > On Wednesday 21 February 2007 14:50, Bill Moran wrote: > > > When I disable PF I can't reach outside because that is what is in ch= arge > > > of NATing, but I can reach the other network, and the copy just works. > > > > Have you tried stripping your pf rules down to JUST nat to see if the > > problem changes? >=20 > If I put >=20 > pass in quick > pass out quick >=20 > just below the nat and rdr rules in pf.conf, then the copy happens ok, at= =20 > normal (fast) speed. Well, it's definitely pf that's doing it, then. Some basic diagnostics would be to add parts back into the pf one or two rules at a time to see exactly what rules are causing the issue. You could also post your entire ruleset to the list. It's possible that some pf guru will see an obvious mistake in the way they're laid out. --=20 Bill Moran Collaborative Fusion Inc.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20070221134843.d96603b4.wmoran>