Date: Fri, 6 Feb 2009 18:19:22 +0000 From: Alex Dehaini <alexdehaini@gmail.com> To: =?ISO-8859-1?Q?Istv=E1n_Szuk=E1cs?= <leccine@gmail.com> Cc: freebsd-performance@freebsd.org Subject: Re: Limiting open port RST response from 247 to 200 packets per second Message-ID: <4b008f7d0902061019v414ef35do1b84a3f2e6f0b48d@mail.gmail.com> In-Reply-To: <4b008f7d0902060724o6817f822ufb3ce8a8f9060fa8@mail.gmail.com> References: <4b008f7d0902060644o62a3942lf63ff6689c3b4d94@mail.gmail.com> <b8592ed80902060719y3be85e43q9ef200477735d1e2@mail.gmail.com> <4b008f7d0902060724o6817f822ufb3ce8a8f9060fa8@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Any ideas On Fri, Feb 6, 2009 at 3:24 PM, Alex Dehaini <alexdehaini@gmail.com> wrote: > I increased net.inet.icmp.icmplim to 2000 but this does not make any > change. Here is my output > > myserver# sysctl -a | grep net.inet.icmp.icmplim > net.inet.icmp.icmplim: 2000 > net.inet.icmp.icmplim_output: 1 > > After increasing inet.icmp.icmplim to 2000 and startign Squid, I don't ge= t > the errors below > > Feb 5 20:39:44 myserver /kernel: Limiting open port RST response from 24= 7 > to 200 packets per second > Feb 5 20:39:44 myserver /kernel: Limiting open port RST response from 24= 7 > to 200 packets per second > Feb 5 20:39:45 myserver /kernel: Limiting open port RST response from 23= 9 > to 200 packets per second > > But traffic still drops. > > Alex > > > > On Fri, Feb 6, 2009 at 3:19 PM, Istv=E1n Szuk=E1cs <leccine@gmail.com> wr= ote: > >> Hi! >> >> >> lix@test:~$sysctl -a | grep net.inet.icmp.icmplim >> net.inet.icmp.icmplim: 200 >> net.inet.icmp.icmplim_output: 1 >> >> >> Regards, >> Istvan >> >> On Fri, Feb 6, 2009 at 2:44 PM, Alex Dehaini <alexdehaini@gmail.com>wrot= e: >> >>> Hi Guys, >>> >>> I have some issues with Squid on Freebsd. I am running FreeBSD release >>> 4.9 >>> and Squid version 2.5. >>> >>> I have setup FreeBSD as a bridge so that all traffic from my network ca= n >>> transparently pass through the FreeBSD server. I am running Squid on th= e >>> same server and I created an ipfw rule to redirect port 80 to port 3128= . >>> >>> Normally, when Squid is not started - we see traffic close to 30MB >>> flowing >>> through the server. Immediately I start squid, the traffic drops to hal= f >>> and >>> sometimes lower and stays there. When this happens, I have a lot of >>> clients >>> that will call and complain they can't access the Internet. At the same >>> time, I get these log messages >>> >>> *Feb 5 20:39:44 myserver /kernel: Limiting open port RST response from >>> 247 >>> to 200 packets per second >>> Feb 5 20:39:44 myserver /kernel: Limiting open port RST response from >>> 247 >>> to 200 packets per second >>> Feb 5 20:39:45 myserver /kernel: Limiting open port RST response from >>> 239 >>> to 200 packets per second >>> Feb 5 20:39:45 myserver /kernel: Limiting open port RST response from >>> 239 >>> to 200 packets per second >>> Feb 5 20:39:46 myserver /kernel: Limiting open port RST response from >>> 273 >>> to 200 packets per second >>> Feb 5 20:39:46 myserver /kernel: Limiting open port RST response from >>> 273 >>> to 200 packets per second >>> Feb 5 20:39:47 myserver /kernel: Limiting open port RST response from >>> 228 >>> to 200 packets per second >>> Feb 5 20:39:47 myserver /kernel: Limiting open port RST response from >>> 228 >>> to 200 packets per second >>> Feb 5 20:39:48 myserver /kernel: Limiting open port RST response from >>> 225 >>> to 200 packets per second >>> Feb 5 20:39:48 myserver /kernel: Limiting open port RST response from >>> 225 >>> to 200 packets per second >>> Feb 5 20:39:49 myserver /kernel: Limiting open port RST response from >>> 244 >>> to 200 packets per second >>> Feb 5 20:39:49 myserver /kernel: Limiting open port RST response from >>> 244 >>> to 200 packets per second >>> Feb 5 20:39:50 myserver /kernel: Limiting open port RST response from >>> 259 >>> to 200 packets per second >>> Feb 5 20:39:50 myserver /kernel: Limiting open port RST response from >>> 259 >>> to 200 packets per second >>> Feb 5 20:39:51 myserver /kernel: Limiting open port RST response from >>> 234 >>> to 200 packets per second >>> Feb 5 20:39:51 myserver /kernel: Limiting open port RST response from >>> 234 >>> to 200 packets per second >>> Feb 5 20:39:52 myserver /kernel: Limiting open port RST response from >>> 243 >>> to 200 packets per second >>> Feb 5 20:39:52 myserver /kernel: Limiting open port RST response from >>> 243 >>> to 200 packets per second >>> Feb 5 20:39:53 myserver /kernel: Limiting open port RST response from >>> 218 >>> to 200 packets per second >>> Feb 5 20:39:53 myserver /kernel: Limiting open port RST response from >>> 218 >>> to 200 packets per second >>> Feb 5 20:39:55 myserver /kernel: Limiting open port RST response from >>> 233 >>> to 200 packets per second >>> Feb 5 20:39:55 myserver /kernel: Limiting open port RST response from >>> 233 >>> to 200 packets per second >>> Feb 5 20:39:56 myserver /kernel: Limiting open port RST response from >>> 241 >>> to 200 packets per second >>> Feb 5 20:39:56 myserver /kernel: Limiting open port RST response from >>> 241 >>> to 200 packets per second >>> Feb 5 20:39:57 myserver /kernel: Limiting open port RST response from >>> 220 >>> to 200 packets per second >>> Feb 5 20:39:57 myserver /kernel: Limiting open port RST response from >>> 220 >>> to 200 packets per second >>> Feb 5 20:39:58 myserver /kernel: Limiting open port RST response from >>> 206 >>> to 200 packets per second >>> Feb 5 20:39:58 myserver /kernel: Limiting open port RST response from >>> 206 >>> to 200 packets per second >>> Feb 5 20:40:01 myserver /kernel: Limiting open port RST response from >>> 223 >>> to 200 packets per second >>> Feb 5 20:40:01 myserver /kernel: Limiting open port RST response from >>> 223 >>> to 200 packets per second* >>> >>> When I stop Squid, everything returns to normal. Any idea what is causi= ng >>> this. I will appreciate any help. >>> >>> Thanks >>> >>> -- >>> Alex Dehaini >>> Developer >>> Site - www.alexdehaini.com >>> Email - alexdehaini@gmail.com >>> _______________________________________________ >>> freebsd-performance@freebsd.org mailing list >>> http://lists.freebsd.org/mailman/listinfo/freebsd-performance >>> To unsubscribe, send any mail to " >>> freebsd-performance-unsubscribe@freebsd.org" >>> >> >> >> >> -- >> the sun shines for all >> > > > > -- > Alex Dehaini > Developer > Site - www.alexdehaini.com > Email - alexdehaini@gmail.com > --=20 Alex Dehaini Developer Site - www.alexdehaini.com Email - alexdehaini@gmail.com
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4b008f7d0902061019v414ef35do1b84a3f2e6f0b48d>