pfSense Support Subscription

Author Topic: 10 Mbit NetCard. Performance.  (Read 4606 times)

0 Members and 1 Guest are viewing this topic.

Offline Jesse7

  • Jr. Member
  • **
  • Posts: 98
  • Karma: +0/-0
    • View Profile
10 Mbit NetCard. Performance.
« on: November 06, 2005, 09:07:17 pm »
I am using a 10Mbit network card for my WAN connection to my PF box and 100Mbit for my LAN connection.

My DSL speed is only 2Mbit/128k.  My question is.  Will having the slow 10Mbit effect any performance anywhere?  I have a very basic setup.  I know it won't effect my Lan traffic as it will not pass through PF box unless it wants to get to the internet.  Only thing I have noticed it effecting so far is my proxy cache loads as slow as the 10Mbit network card or slower.

Offline Patrick_

  • Full Member
  • ***
  • Posts: 167
  • Karma: +0/-0
    • View Profile
    • LiquidObject
Re: 10 Mbit NetCard. Performance.
« Reply #1 on: November 07, 2005, 10:22:48 am »
You shouldn't notice any difference. As far as performance problems make sure all the ports are running full-duplex mode and you should be set.
--------------------------------------------------------------------------------------
pfSense Documentation Wiki
pfctl reference
Personal Blog

Offline billm

  • Administrator
  • Hero Member
  • *****
  • Posts: 731
  • Karma: +1/-0
    • View Profile
    • UCSecurity - Technology discovery and ramblings
Re: 10 Mbit NetCard. Performance.
« Reply #2 on: November 07, 2005, 10:15:21 pm »
I am using a 10Mbit network card for my WAN connection to my PF box and 100Mbit for my LAN connection.

My DSL speed is only 2Mbit/128k.  My question is.  Will having the slow 10Mbit effect any performance anywhere?  I have a very basic setup.  I know it won't effect my Lan traffic as it will not pass through PF box unless it wants to get to the internet.  Only thing I have noticed it effecting so far is my proxy cache loads as slow as the 10Mbit network card or slower.

That's odd, is the proxy on the WAN side of the pfSense box?  In which case, naturally the fastest you'll ever see from that is a hair under 10Mbit :)

--Bill
pfSense core developer
blog - http://www.ucsecurity.com/
twitter - billmarquette

Offline Jesse7

  • Jr. Member
  • **
  • Posts: 98
  • Karma: +0/-0
    • View Profile
Re: 10 Mbit NetCard. Performance.
« Reply #3 on: November 08, 2005, 01:36:21 pm »
Actually I am not sure anymore.  And yeh I usually see speeds just under 10Mbit but it does get slower and slower down to about 2Mbit,, perhaps its the traffic shaping ill try turning it off, so maybe the 10mbit card the lan connection.  I'll have to open up the machine to find out.  Would be nice to be able to add some comments somewhere when you first setup the box so you can remember exactly what is what ( I lost my diagram I drew).

Offline billm

  • Administrator
  • Hero Member
  • *****
  • Posts: 731
  • Karma: +1/-0
    • View Profile
    • UCSecurity - Technology discovery and ramblings
Re: 10 Mbit NetCard. Performance.
« Reply #4 on: November 08, 2005, 04:04:05 pm »
Ahhh, traffic shaping will do it.  BTW, shaping won't work for the squid package as the endpoint is actually the firewall and the way ALTQ works, it needs to shape traffic going _through_ the firewall.

--Bill
pfSense core developer
blog - http://www.ucsecurity.com/
twitter - billmarquette

Offline Jesse7

  • Jr. Member
  • **
  • Posts: 98
  • Karma: +0/-0
    • View Profile
Re: 10 Mbit NetCard. Performance.
« Reply #5 on: November 11, 2005, 03:59:57 pm »
Turns out my LAN was 10m/bit and my Wan was 100M/b so my traffic shaping would have been going  crazy too.  I have switched it around now (which was painless). 

Offline Jesse7

  • Jr. Member
  • **
  • Posts: 98
  • Karma: +0/-0
    • View Profile
Re: 10 Mbit NetCard. Performance.
« Reply #6 on: November 12, 2005, 03:37:08 pm »
Ahhh, traffic shaping will do it.  BTW, shaping won't work for the squid package as the endpoint is actually the firewall and the way ALTQ works, it needs to shape traffic going _through_ the firewall.

--Bill

Hi I should probably start a new thread but the above post is what I need some advice on.  I have since swapped my Wan and Lan.  So the Lan is now the 100Mb which means my cached files pop up almost instantly which is great.  For example a 20 meg file is cached and from another PC I download the same file instantly.  Before it would take about 5 seconds.

Unless my traffic shaping is turned on.  It gets shapped down to the speed I set for my net connection. 2Mbit.  So its fast .. just not instant.  It's no big deal but how can I make it so cached stuff is not shapped.  Is it a config problem?

Offline billm

  • Administrator
  • Hero Member
  • *****
  • Posts: 731
  • Karma: +1/-0
    • View Profile
    • UCSecurity - Technology discovery and ramblings
Re: 10 Mbit NetCard. Performance.
« Reply #7 on: November 13, 2005, 10:04:11 am »
Ahhh, traffic shaping will do it.  BTW, shaping won't work for the squid package as the endpoint is actually the firewall and the way ALTQ works, it needs to shape traffic going _through_ the firewall.

--Bill

Hi I should probably start a new thread but the above post is what I need some advice on.  I have since swapped my Wan and Lan.  So the Lan is now the 100Mb which means my cached files pop up almost instantly which is great.  For example a 20 meg file is cached and from another PC I download the same file instantly.  Before it would take about 5 seconds.

Unless my traffic shaping is turned on.  It gets shapped down to the speed I set for my net connection. 2Mbit.  So its fast .. just not instant.  It's no big deal but how can I make it so cached stuff is not shapped.  Is it a config problem?

Shaper issue unfortunately.  So here's the deal (I've actually posted this elsewhere too).  ALTQ queues packets outbound from the firewall, not inbound to it (not exactly possible to queue inbound if you think about it).  The shaper is setup to queue packets outbound on the WAN interface (your upstream bandwidth) and outbound on the LAN interface (your downstream bandwidth).  As such, inbound to squid will not get shaped - it can't due to the limitations in ALTQ, but the outbound (potentially cached) traffic from squid will not only get shaped, but will, assuming cached traffic, impact your available downstream bandwidth.

You can try playing around with the queues and rules, but that's going to result in a lot of pain I'm betting (and my last attempt to do this exact thing left me scratching my head trying to figure out why it wasn't working right).  For now, the only thing I can say is that you'll need to live with the limitations (hopefully it's not too bad for you), figure out a workaround and post it here (and I'll sticky it), or disable the shaper (which I'm sure is enabled for a reason!).

--Bill
pfSense core developer
blog - http://www.ucsecurity.com/
twitter - billmarquette

Offline Jesse7

  • Jr. Member
  • **
  • Posts: 98
  • Karma: +0/-0
    • View Profile
Re: 10 Mbit NetCard. Performance.
« Reply #8 on: November 13, 2005, 02:07:27 pm »
Thanks. Is pretty much what I thought.  I did do some reading around before posting, I was just hoping someone maybe had a workaround.

I am happy for it to be shapped.