You can try rise some "System tunables"
net.inet.tcp.recvspace 524288 net.inet.tcp.sendspace 524288 net.raw.recvspace 524288 net.inet.raw.recvspace 524288 net.raw.sendspace 524288 net.inet.raw.maxdgram 524288 net.link.ifqmaxlen 2048 net.inet.tcp.recvbuf_inc 65536 net.inet.udp.recvspace 524288 net.inet.tcp.sendbuf_inc 65536 net.inet.tcp.mssdflt 1460 net.inet.tcp.minmss 536 On Wed, Oct 4, 2017 at 5:08 AM, Christoph Haas <em...@christoph-haas.de> wrote: > Dear list, > > I have become a huge fan of pfSense and managed to replace our old > routers at work by two nifty Netgate SG-4860 gateways. They work nearly > perfectly. I just have a few seperate internal VLANs (e.g. for > administration, monitoring and backup) that give me a headache. Every > day at the same time(s) there are spikes in traffic (I can see in the > dashboard) between two VLANs. Traffic goes up to pretty much 800 Mbps > for 1-2 minutes. > > During that time our monitoring system goes wild. High latencies and > even ping losses. CPU load of the router is shown at around 50%. Once > the traffic goes below 800 Mbps all is instantly fine again. > > I tried to simplify the firewall rules (e.g. let through all the > traffic) but that did not help. Is there anything I can do? Any hidden > switches? Anything to find and fix the situation? Traffic shaping for > ICMP? Unicorn dust? > > Thanks in advance for your hints. > > …Christoph > _______________________________________________ > pfSense mailing list > https://lists.pfsense.org/mailman/listinfo/list > Support the project with Gold! https://pfsense.org/gold -- Ivo R. Tonev +55 61 98409-2642 i...@tonev.com.br _______________________________________________ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold
