Try running your own DNS servers/resolvers. I doubt the firewall is introducing any latency that's human detectable. (we're talking typically sub-milli-second times on a machine that fast). A lot of times when I hear abotu things like that it's the resolvers they're using.
You can also do traffic shaping/QOS, but that only makes a difference when there's contention. --On June 23, 2008 4:19:02 PM -0600 Joshua Perry <[EMAIL PROTECTED]> wrote: > > Hey everyone, > > We are currently using Shorewall 3.2.4 on a Gentoo distro with a > dual-core Pentium 2.8Ghz and 1GB Ram. It is setup running NAT as our > default network gateway to a 10Mb direct internet connection. > > I am wondering if there is some way to measure the latency produced by > the firewall and if there are some standard kernel settings that can help > latency. I am even willing to build a kernel with some low-latency > patches if it may help. > > I ask this question because even though our internet connection is mostly > idle it feels sluggish. Throughput seems on target, but browsing seems > slower than on my own cable connection at home. > > Thanks, > Josh Perry -- "Genius might be described as a supreme capacity for getting its possessors into trouble of all kinds." -- Samuel Butler ------------------------------------------------------------------------- Check out the new SourceForge.net Marketplace. It's the best place to buy or sell services for just about anything Open Source. http://sourceforge.net/services/buy/index.php _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
