Gilberto Villani Brito wrote:
Try use those options in your pf.conf:
set limit { states 10, src-nodes 10, frags 5000 }
I did this. After about a day of usage and no significant uploads/
downloads (unlike the previous two times) I started getting the same
problems.
I am
(Hi! I had sent this to freebsd-questions first. Didnt get a response, so
sending it to freebsd-pf. Its a CARP question.)
Hi,
I have two machines. Each have two interfaces, xl0 and fxp0. And each have
two carp interfaces -- carp1 (xl0 of both) and carp2 (fxp0 of both). One of
the machines
Hi Gavin,
Check your /etc/make.conf. I remember that you can disable it if
NO_PF=YES is not commented out. Also, I remember reading it somewhere
that pf requires 'device bpf' in the kernel (which you might want to
check for that too). I presume you used a copy of GENERIC kernel file
and comment
I have followed the instructions in the FreeBSD Handbook for implementing pf,
but when I run pfctl -e, I get:
pfctl: /dev/pf: No such file or directory".
I do an ls of /dev and sure enough, there's no pf device. I have googled for a
couple of days (!) and my fingers are about to fall off and
On 1/24/08, Alexandre Vieira <[EMAIL PROTECTED]> wrote:
> FYI
>
> http://www.freshports.org/net/relayd/
>
> kudos to kuriyama@
>
> --
> Alexandre Vieira - [EMAIL PROTECTED]
Yay! Thanks to everyone involved in bringing this over. I was about
to start porting this and you just saved me a lot of ti
On Thu, Jan 24, 2008 at 10:35:07AM -0800, Tommy Pham wrote:
> Are your serves (web, mail, etc.) inside a LAN or DMZ behind the pf
> box? If so, you're missing NAT and rdr rules. It may help if you can
> make a network layout of your setup like
>
> Internet <---> router/firewall (FreeBSD pf box) <
On Jan 15, 2008 9:58 PM, Alexandre Vieira <[EMAIL PROTECTED]> wrote:
>
>
> On Jan 15, 2008 8:29 PM, Brad <[EMAIL PROTECTED]> wrote:
>
> > On Tuesday 15 January 2008 15:24:52 Bruce M. Simpson wrote:
> > > Alexandre Vieira wrote:
> > > > Hello all,
> > > >
> > > > I remember that there was a port (n
Hi Stefan,
I suggest you cvs the source to branch RELENG_7 and rebuild world
kernel. (Rebuilding kernel helps a little but still have performance
hits.) I had major performance issues with RC1 on my P3 box (128 RAM)
with load hitting 6+ in top. Now the load averages at 0.15.
Regards,
Tommy
--
Hi Jeremy,
Are your serves (web, mail, etc.) inside a LAN or DMZ behind the pf
box? If so, you're missing NAT and rdr rules. It may help if you can
make a network layout of your setup like
Internet <---> router/firewall (FreeBSD pf box) <---> LAN
^
|
Abdullah Ibn Hamad Al-Marri wrote:
- Original Message
From: Stefan Lambrev <[EMAIL PROTECTED]>
To: freebsd-pf@freebsd.org
Sent: Thursday, January 24, 2008 6:39:41 PM
Subject: PF makes em0 taskq to eat 100% CPU
Hello,
I'm doing some tests and benchmarks and I'm testing pf on
bridg
- Original Message
> From: Stefan Lambrev <[EMAIL PROTECTED]>
> To: freebsd-pf@freebsd.org
> Sent: Thursday, January 24, 2008 6:39:41 PM
> Subject: PF makes em0 taskq to eat 100% CPU
>
> Hello,
>
> I'm doing some tests and benchmarks and I'm testing pf on
> bridge
>
firewall.
> One of
Hello,
I'm doing some tests and benchmarks and I'm testing pf on bridge firewall.
One of the specific tests is how PF will handle SYN flood from random
source addresses.
While the bridge is w/o activated PF, I see 12-14MB/s traffic.
When I enable the PF the traffic drops to 2-5MB/s and I'm star
Volodymyr Kostyrko пишет:
It seems that I have failed to properly configure my machine to allow
windows scaling. Whenever another host connects to my machine with
window scaling enabled my host stop respond to his request after certain
number of seconds. However, if I forcefully turn off rfc132
13 matches
Mail list logo
