Date: Fri, 2 Apr 2004 22:53:36 -0900 From: "Mark Weisman" <mark@mystic1.net> To: <webmaster@jargonccna.cjb.net>, <freebsd-questions@freebsd.org> Subject: RE: Bandwidth hit in natd/ipfw on 4.4-RELEASE Message-ID: <88EB08D16800D34EA145D7DD2AA44998012E38@minnie.outland>
next in thread | raw e-mail | index | archive | help
My first question to help is why do you have any firewall at all?=20 firewall_type=3DOPEN Typically means that you have no ports being blocked? I'm hoping this is just for testing purposes?=20 I see in your natd.conf file you have a line for = unregistered_only=3DYES. This switch is for alteration of outgoing packets based on RFC 1918. I'm assuming then that you are looking at using natd for outgoing packets only? In which case in your files you would identify the natd_interface=3Ddc0 allowing for the unregistered statement to then = alter outgoing packets. I would also suggest if you have any LinkSys routers between your FBSD box and the Internet, that you examine them, as I have just recently replaced all my Internet hard routers with CISCO's due to the LinkSys being unable to hold an MTU setting. Just my two cents. Res Ipsa Loquitor, Mark-Nathaniel Weisman Site Master Mystic_One Internet Gaming Server Anchorage, Alaska http://games.mystic1.net -----Original Message----- From: webmaster@jargonccna.cjb.net [mailto:webmaster@jargonccna.cjb.net] Sent: Thursday, March 25, 2004 6:24 PM To: freebsd-questions@freebsd.org Subject: Bandwidth hit in natd/ipfw on 4.4-RELEASE Hey, I just my got NAT box running 4.4-RELEASE on an old Pentium 90 and=20 I'm experiencing a number of problems and I think they're related..=20 there's been a major bandwidth hit in all my web surfing and my ICQ, AOL and MSN (using both Trillian and Messenger) are dropping connections -- a lot. I don't think a single day's gone by without a connection dropping or two. As I said before, I've taken a bandwidth hit on my surfing as well -- to the point where connection attempts are completely timing out. I've included an abbreviated rc.conf and my natd.conf here.. rc.conf <snip> ifconfig_rl0=3D"DHCP" ifconfig_dc0=3D"inet 192.168.0.1 netmask 255.255.255.0" = inetd_enable=3D"YES" <snip> gateway_enable=3DYES natd_enable=3DYES natd_inteface=3Drl0 natd_flags=3D"-config /etc/natd.conf" firewall_enable=3DYES firewall_type=3DOPEN natd.conf unregistered_only yes same_ports yes log yes dynamic yes interface rl0 Did I do anything wrong? Miss anything? Add anything unnecessary? The=20 kernel's been recompiled as is appropriate. Thanks in advance. --=20 Matt Coe, CCNA Member-At-Large, Dalhousie University CS Society Fall 2003 'Ford! There's an infinite number of monkeys outside who want to talk to us about this script for Hamlet they've worked out.' -- DNA, 'The Hitch Hiker's Guide to the Galaxy', Arthur Philip Dent Sick of long-distance bills? Get Skype! www.skype.com _______________________________________________ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?88EB08D16800D34EA145D7DD2AA44998012E38>