Date: Fri, 12 Oct 2001 12:13:56 +0200 From: Eric Masson <e-masson@kisoft-services.com> To: Mailing List FreeBSD Stable <freebsd-stable@FreeBSD.org> Subject: 4.4-RELEASE, gateway thoughput issues Message-ID: <86itdlrwrf.fsf@notbsdems.nantes.kisoft-services.com>
next in thread | raw e-mail | index | archive | help
--=-=-=
Hello,
I'm trying to setup a dsl gateway for a small lan w/ a 486 running
4.4-RELEASE.
The box has 2 nics ed0 & ed1, ed0 has a fixed address and ed1 is only
ifconfig'd up to link the dsl TA via pppoe.
The box runs ipnat + ipfilter to protect the inside lan.
ipf & netgraph are loaded from /boot/loader.conf
Symptoms are the following :
- All traffic beetween the gateway and the internet runs at the expected
rate, 55 to 64 Kbytes/s.
- All traffic that passes from any host on the lan to the internet
through the 486 runs at very low rates, from 0,5 to 8 Kbytes/s w/
pauses in the traffic, udp & icmp don't seem to be affected by the
problem.
I've tried w/ and w/o ipnat+ipfilter (in this case w/ ppp(8) -nat
option) and the problem lasts.
Any thoughts ?
Some information & config files :
## uname -a
--=-=-=
Content-Disposition: attachment; filename=uname
FreeBSD rtrbsdchatsr.chantilly.kisoft-services.com 4.4-RELEASE FreeBSD 4.4-RELEASE #0: Fri Oct 12 10:35:30 CEST 2001 root@srvbsdchassv.chantilly.kisoft-services.com:/usr/obj/usr/src/sys/PS1 i386
--=-=-=
## dmesg
--=-=-=
Content-Disposition: attachment; filename=dmesg
Copyright (c) 1992-2001 The FreeBSD Project.
Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994
The Regents of the University of California. All rights reserved.
FreeBSD 4.4-RELEASE #0: Fri Oct 12 10:35:30 CEST 2001
root@srvbsdchassv.chantilly.kisoft-services.com:/usr/obj/usr/src/sys/PS1
Timecounter "i8254" frequency 1193182 Hz
CPU: i486DX (486-class CPU)
real memory = 35651584 (34816K bytes)
avail memory = 32165888 (31412K bytes)
Preloaded elf kernel "kernel" at 0xc027e000.
Preloaded elf module "netgraph.ko" at 0xc027e09c.
Preloaded elf module "ipl.ko" at 0xc027e13c.
npx0: <math processor> on motherboard
npx0: INT 16 interface
isa0: <ISA bus> on motherboard
orm0: <Option ROM> at iomem 0xe0000-0xe7fff on isa0
fdc0: <NEC 72065B or clone> at port 0x3f0-0x3f5,0x3f7 irq 6 drq 2 on isa0
fdc0: FIFO enabled, 8 bytes threshold
fd0: <1440-KB 3.5" drive> on fdc0 drive 0
ata0 at port 0x1f0-0x1f7,0x3f6 irq 14 on isa0
atkbdc0: <Keyboard controller (i8042)> at port 0x60,0x64 on isa0
atkbd0: <AT Keyboard> flags 0x1 irq 1 on atkbdc0
kbd0 at atkbd0
psm0: <PS/2 Mouse> irq 12 on atkbdc0
psm0: model Generic PS/2 mouse, device ID 0
vga0: <Generic ISA VGA> at port 0x3c0-0x3df iomem 0xa0000-0xbffff on isa0
sc0: <System console> at flags 0x100 on isa0
sc0: VGA <16 virtual consoles, flags=0x300>
sio0 at port 0x3f8-0x3ff irq 4 flags 0x10 on isa0
sio0: type 16450
sio1 at port 0x2f8-0x2ff irq 3 on isa0
sio1: type 16450
ed0 at port 0x280-0x29f irq 5 on isa0
ed0: address 52:54:40:25:96:c8, type NE2000 (16 bit)
ed1 at port 0x300-0x31f irq 10 on isa0
ed1: address 52:54:40:25:a4:72, type NE2000 (16 bit)
IP Filter: v3.4.20 initialized. Default = pass all, Logging = enabled
ad0: 249MB <ST3290A> [1001/15/34] at ata0-master BIOSPIO
Mounting root from ufs:/dev/ad0s1a
--=-=-=
## ifconfig -a
--=-=-=
Content-Disposition: attachment; filename=ifconfig
ed0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
inet 192.168.0.14 netmask 0xffffff00 broadcast 192.168.0.255
ether 52:54:40:25:96:c8
ed1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
ether 52:54:40:25:a4:72
lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> mtu 16384
inet 127.0.0.1 netmask 0xff000000
tun0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1492
inet 193.56.60.242 --> 194.206.78.3 netmask 0xffffff00
Opened by PID 127
--=-=-=
## /etc/rc.conf
--=-=-=
Content-Disposition: attachment; filename=rc.conf
# Lan & Wan setup
hostname="rtrbsdchatsr.chantilly.kisoft-services.com"
network_interfaces="lo0 ed0 ed1"
ifconfig_ed0="inet 192.168.0.14 netmask 255.255.255.0"
ifconfig_ed1="up"
gateway_enable="YES"
ppp_enable="YES"
ppp_nat="NO"
ppp_mode="ddial"
ppp_profile="teaser"
ipfilter_enable="YES"
ipnat_enable="YES"
ipmon_enable="YES"
# Security
#kern_securelevel_enable="YES"
kern_securelevel="2"
# Daemon control
inetd_enable="NO"
portmap_enable="NO"
nfs_server_enable="NO"
sendmail_enable="NO"
sshd_enable="YES"
syslodg_flags="-s -s"
# Console settings
keymap="fr.iso.acc"
--=-=-=
## /etc/ppp/ppp.conf
--=-=-=
Content-Disposition: attachment; filename=ppp.conf
default:
ident FreeBSD user-ppp VERSION (built COMPILATIONDATE)
set log phase tun command
enable tcpmssfixup
teaser:
set dial
set login
enable lqr
set device PPPoE:ed1
set authname MYNAME
set authkey MYPWD
set ifaddr 10.0.0.1/0 10.0.0.2/0
add! default hisaddr
--=-=-=
## /etc/ppp/ppp.linkup
--=-=-=
Content-Disposition: attachment; filename=ppp.linkup
# Refresh Ipfilter
MYADDR:
!bg /sbin/ipf -y
--=-=-=
## kernel configuration file
--=-=-=
Content-Disposition: attachment; filename=PS1
#
# $FreeBSD: src/sys/i386/conf/GENERIC,v 1.246.2.20 2000/10/31 23:16:07 n_hibma Exp $
machine i386
cpu I486_CPU
ident IBMPS1
maxusers 128
makeoptions DEBUG=-g #Build kernel with gdb(1) debug symbols
options INET # InterNETworking
options FFS # Berkeley Fast Filesystem
options FFS_ROOT # FFS usable as root device [keep this!]
options PROCFS # Process filesystem
options COMPAT_43 # Compatible with BSD 4.3 [KEEP THIS!]
options USERCONFIG # boot -c editor
options ICMP_BANDLIM # Rate limit bad replies
options KBD_INSTALL_CDEV # install a CDEV entry in /dev
# Isa bus
device isa
# Floppy drives
device fdc0 at isa? port IO_FD1 irq 6 drq 2
device fd0 at fdc0 drive 0
# ATA and ATAPI devices
device ata0 at isa? port IO_WD1 irq 14
device atadisk # ATA disk drives
device atapicd # ATAPI CDROM drives
# Console control
device atkbdc0 at isa? port IO_KBD
device atkbd0 at atkbdc? irq 1 flags 0x1
device psm0 at atkbdc? irq 12
device vga0 at isa?
device sc0 at isa? flags 0x100
# Floating point support - do not disable.
device npx0 at nexus? port IO_NPX irq 13
# Serial (COM) ports
device sio0 at isa? port IO_COM1 flags 0x10 irq 4
device sio1 at isa? port IO_COM2 irq 3
# ISA Ethernet NICs
device miibus
device ed0 at isa? port 0x280 irq 5
device ed1 at isa? port 0x300 irq 10
# Pseudo devices - the number indicates how many units to allocated.
pseudo-device loop # Network loopback
pseudo-device ether # Ethernet support
pseudo-device tun # Packet tunnel.
pseudo-device pty # Pseudo-ttys (telnet etc)
pseudo-device bpf # Berkeley packet filter
pseudo-device vn # Vnode driver
--=-=-=
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: 8bit
Regards
Eric Masson
--
«En fait, le but de la fission de fcol etais de creer encore plus de
trafic sur usenet car les newbies postent de toutes facons sur tous les
groupes avec linux dedans.»
-+- MA in Guide du linuxien pervers - "De la linuxitude..." -+-
--=-=-=--
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?86itdlrwrf.fsf>