Date: Wed, 29 Sep 2010 22:44:53 +0200 From: =?ISO-8859-1?Q?Samuel_Mart=EDn_Moro?= <faust64@gmail.com> To: freebsd-performance@freebsd.org Subject: freebsd router Message-ID: <AANLkTim1XueAwOgjoKXiFh_epcx8m12mzgD%2BpNoR5y_u@mail.gmail.com>
next in thread | raw e-mail | index | archive | help
Hi, I'm trying to replace my (dying) gateway with a qnap ts-509 (1G DDR, celero= n m420 1.6Ghzs). I'm using mfsBSD, based on FreeBSD-RELEASE-8.1 amd64. It's almost ready (zfs, nfs, dns, pf, ...), I'm checking everything's OK to swap the gate. I noticed that opening a new connection to distant or local computer is (very) slow. After that, everything works perfectly fine. So I had a look at sysctl, and tried to fix that problem. Now, when I start a ping on a client from my network (disabled on the gate)= , I have something like that: faust@alpha ~ : time ping -c 4 google.com PING google.com (66.249.92.104) 56(84) bytes of data. 64 bytes from par03s01-in-f104.1e100.net (66.249.92.104): icmp_seq=3D1 ttl= =3D53 time=3D7.12 ms 64 bytes from par03s01-in-f104.1e100.net (66.249.92.104): icmp_seq=3D2 ttl= =3D53 time=3D7.32 ms 64 bytes from par03s01-in-f104.1e100.net (66.249.92.104): icmp_seq=3D3 ttl= =3D53 time=3D7.18 ms 64 bytes from par03s01-in-f104.1e100.net (66.249.92.104): icmp_seq=3D4 ttl= =3D53 time=3D7.18 ms --- google.com ping statistics --- 4 packets transmitted, 4 received, 0% packet loss, time 15034ms rtt min/avg/max/mdev =3D 7.126/7.205/7.329/0.128 ms 0.000u 0.000s 0:25.08 0.0% 0+0k 0+0io 0pf+0w So, it takes 5 seconds to display the first line (connect), and then 5 second per ping. 25 seconds, for 4 pings... Obviously, my tries doesn't make it work any better... I found some infos here<http://people.freebsd.org/~hmp/utilities/satbl/sysctl-net.html>; , here <http://www.freebsd.org/doc/handbook/configtuning-kernel-limits.html= > , there <http://silverwraith.com/papers/freebsd-ddos.php>; and there<http://www.freebsdblog.org/52/sysctlconf-sample/>; But I'm still not sure about the tuning implications for most of those vars= . Here is my sysctl.conf: kern.coredump=3D0 kern.ipc.somaxconn=3D4096 net.inet.ip.check_interface=3D1 net.inet.ip.fastforwarding=3D1 net.inet.ip.forwarding=3D1 net.inet.ip.portrange.first=3D1024 net.inet.ip.portrange.last=3D65535 net.inet.ip.rtexpire=3D2 net.inet.ip.rtmaxcache=3D256 net.inet.ip.rtminexpire=3D2 net.inet.ip.ttl=3D42 net.inet.udp.blackhole=3D1 net.inet.tcp.blackhole=3D2 net.inet.tcp.delacktime=3D42 net.inet.tcp.delayed_ack=3D0 net.inet.tcp.drop_synfin=3D1 net.inet.tcp.fast_finwait2_recycle=3D1 net.inet.tcp.icmp_may_rst=3D0 net.inet.icmp.icmplim=3D42 net.inet.tcp.ecn.enable=3D1 net.inet.tcp.msl=3D5000 net.inet.tcp.rfc1323=3D0 net.inet.tcp.inflight.enable=3D1 net.inet.tcp.inflight.max=3D1073725440 net.inet.tcp.inflight.stab=3D20 net.inet.tcp.inflight.min=3D1024 net.inet.tcp.recvspace=3D82320 net.inet.tcp.sendspace=3D82320 net.inet.udp.maxdgram=3D82320 net.inet.udp.recvspace=3D82320 net.inet.raw.maxdgram=3D82320 net.inet.raw.recvspace=3D82320 net.local.dgram.maxdgram=3D82320 net.local.dgram.recvspace=3D82320 net.local.stream.sendspace=3D82320 net.local.stream.recvspace=3D82320 net.inet.tcp.local_slowstart_flightsize=3D10 net.inet.tcp.nolocaltimewait=3D1 vfs.read_max=3D32 So, I was wondering, is something wrong in there? Or should I keep looking somewhere else? Where? Thanks for your help, --=20 Samuel Mart=EDn Moro {EPITECH.} tek5
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?AANLkTim1XueAwOgjoKXiFh_epcx8m12mzgD%2BpNoR5y_u>