Re: [pfSense] What am I doing wrong? <10mbit through SG-1000
It's from the wan to an internal switch. The switch has VLAN's, but there's only one untagged VLAN on this port. The WAN port thus gets a local IP in the 192.168.4.0/24 network. I set the SG-1000's LAN to be in the 172.16 range so as to not conflict with it. That range isn't used elsewhere on my network. The main router also runs pfSense. It's an SG-2440. The traffic graphs show about 5mbit going to that VLAN interface while running the speed test currently. Also watching pfTop while running the test in the background shows a similarly low speed and no other traffic to speak of. I'd think a loop should show up somewhere on this? And my laptop should be experiencing the same thing while on the same network? On 08/02/17 07:41, WebDawg wrote: that is from the wan to the modem? The only other thing I can see is that you have some type of routing loop...or network loop? Any VLANing going on? On Wed, Feb 8, 2017 at 12:40 AM, Øyvind 'bolt' Hvidsten <b...@dhampir.no> wrote: It would seem to be negotiating for gigabit. My switch also thinks so. Note that the cable to my laptop is not plugged in at the moment, but I'm currently running the speed tests locally through the console. : ifconfig | grep -E "^[a-z0-9]|media:" cpsw0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500 media: Ethernet autoselect (1000baseT ) cpsw1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500 media: Ethernet autoselect (none) lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> metric 0 mtu 16384 enc0: flags=0<> metric 0 mtu 1536 pflog0: flags=100 metric 0 mtu 33184 pfsync0: flags=0<> metric 0 mtu 1500 On 08/02/17 07:31, WebDawg wrote: Check the interface settings, is it negotiating, 10mbit? status, interfaces? On Tue, Feb 7, 2017 at 11:59 PM, Øyvind 'bolt' Hvidsten <b...@dhampir.no> wrote: I have an SG-1000 on which I experience very low throughput. When I plug my laptop to the cable that normally goes into the SG-1000's WAN port, I get a download speed of roughtly 100mbit (ISP limited) when I run "curl http://ipv4.download.thinkbroadband.com/1GB.zip >/dev/null" Plugging that same cable into the SG-1000 and connecting my laptop directly to its LAN port instead, I get less than 10mbit. Running the curl command directly on the console of the SG-1000 gives me the same abysmal result. [2.4.0-BETA][root@my.network.local]/root: curl http://ipv4.download.thinkbroadband.com/1GB.zip >/dev/null % Total% Received % Xferd Average Speed TimeTime Time Current Dload Upload Total SpentLeft Speed 2 1024M2 29.5M0 0 598k 0 0:29:10 0:00:50 0:28:20 523k This is after I just flashed it with today's image (20170207) and ran through the setup wizard in the browser. No other settings have been altered. What can I do here? Best regards, Øyvind Hvidsten ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold
Re: [pfSense] What am I doing wrong? <10mbit through SG-1000
It would seem to be negotiating for gigabit. My switch also thinks so. Note that the cable to my laptop is not plugged in at the moment, but I'm currently running the speed tests locally through the console. : ifconfig | grep -E "^[a-z0-9]|media:" cpsw0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500 media: Ethernet autoselect (1000baseT ) cpsw1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500 media: Ethernet autoselect (none) lo0: flags=8049<UP,LOOPBACK,RUNNING,MULTICAST> metric 0 mtu 16384 enc0: flags=0<> metric 0 mtu 1536 pflog0: flags=100 metric 0 mtu 33184 pfsync0: flags=0<> metric 0 mtu 1500 On 08/02/17 07:31, WebDawg wrote: Check the interface settings, is it negotiating, 10mbit? status, interfaces? On Tue, Feb 7, 2017 at 11:59 PM, Øyvind 'bolt' Hvidsten <b...@dhampir.no> wrote: I have an SG-1000 on which I experience very low throughput. When I plug my laptop to the cable that normally goes into the SG-1000's WAN port, I get a download speed of roughtly 100mbit (ISP limited) when I run "curl http://ipv4.download.thinkbroadband.com/1GB.zip >/dev/null" Plugging that same cable into the SG-1000 and connecting my laptop directly to its LAN port instead, I get less than 10mbit. Running the curl command directly on the console of the SG-1000 gives me the same abysmal result. [2.4.0-BETA][root@my.network.local]/root: curl http://ipv4.download.thinkbroadband.com/1GB.zip >/dev/null % Total% Received % Xferd Average Speed TimeTime Time Current Dload Upload Total SpentLeft Speed 2 1024M2 29.5M0 0 598k 0 0:29:10 0:00:50 0:28:20 523k This is after I just flashed it with today's image (20170207) and ran through the setup wizard in the browser. No other settings have been altered. What can I do here? Best regards, Øyvind Hvidsten ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold
Re: [pfSense] What am I doing wrong? <10mbit through SG-1000
Check the interface settings, is it negotiating, 10mbit? status, interfaces? On Tue, Feb 7, 2017 at 11:59 PM, Øyvind 'bolt' Hvidsten <b...@dhampir.no> wrote: > I have an SG-1000 on which I experience very low throughput. > > When I plug my laptop to the cable that normally goes into the SG-1000's > WAN port, I get a download speed of roughtly 100mbit (ISP limited) when I > run "curl http://ipv4.download.thinkbroadband.com/1GB.zip >/dev/null" > > Plugging that same cable into the SG-1000 and connecting my laptop > directly to its LAN port instead, I get less than 10mbit. > > Running the curl command directly on the console of the SG-1000 gives me > the same abysmal result. > > [2.4.0-BETA][root@my.network.local]/root: curl > http://ipv4.download.thinkbroadband.com/1GB.zip >/dev/null > % Total% Received % Xferd Average Speed TimeTime Time > Current > Dload Upload Total SpentLeft > Speed > 2 1024M2 29.5M0 0 598k 0 0:29:10 0:00:50 0:28:20 > 523k > > This is after I just flashed it with today's image (20170207) and ran > through the setup wizard in the browser. No other settings have been > altered. > > What can I do here? > > > Best regards, > Øyvind Hvidsten > ___ > pfSense mailing list > https://lists.pfsense.org/mailman/listinfo/list > Support the project with Gold! https://pfsense.org/gold ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold
[pfSense] What am I doing wrong? <10mbit through SG-1000
I have an SG-1000 on which I experience very low throughput. When I plug my laptop to the cable that normally goes into the SG-1000's WAN port, I get a download speed of roughtly 100mbit (ISP limited) when I run "curl http://ipv4.download.thinkbroadband.com/1GB.zip >/dev/null" Plugging that same cable into the SG-1000 and connecting my laptop directly to its LAN port instead, I get less than 10mbit. Running the curl command directly on the console of the SG-1000 gives me the same abysmal result. [2.4.0-BETA][root@my.network.local]/root: curl http://ipv4.download.thinkbroadband.com/1GB.zip >/dev/null % Total% Received % Xferd Average Speed TimeTime Time Current Dload Upload Total SpentLeft Speed 2 1024M2 29.5M0 0 598k 0 0:29:10 0:00:50 0:28:20 523k This is after I just flashed it with today's image (20170207) and ran through the setup wizard in the browser. No other settings have been altered. What can I do here? Best regards, Øyvind Hvidsten ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold
Re: [pfSense] Inbound HAProxy or Load Balancer
On 07/02/2017 18:00, list-requ...@lists.pfsense.org wrote: i try to get an internal load balancer running. I Setup HA proxy with an public IP: 123.123.123.123 and i have 2 webservers: 10.0.3.99 and 10.0.3.98. When i connect from outside of 10.0.3.0/24 it works as expected but when i try to use make a connection from the internal lan 10.0.3.0/24 i got no response. (Presumably you mean when you connect from 10.0.3.x to 123.123.123.123) Are you actually using the HAproxy package, or are you just using regular load-balanced pools (Services > Load Balancer)? If you are using load-balanced pools, read on. I read somethink about NAT reflection but i didnt understand how to configure it correctly. https://doc.pfsense.org/index.php/Why_can%27t_I_access_forwarded_ports_on_my_WAN_IP_from_my_LAN/OPTx_networks Go to System>Advanced, Firewall/NAT, scroll down to "NAT Reflection mode for port forwards", and change from "Disabled" to "Pure NAT" What happens is: * packet is sent from client with src 10.0.3.5 (say), destination 123.123.123.123 * packet follows default gateway and arrives at pfSense * as well as rewriting the dest to 10.0.33.98 (or 99), NAT reflection means that it rewrites the source to 10.0.3.1 (or whatever your pfSense LAN addr is) * the packet arrives at the destination web server with src 10.0.3.1 and dest 10.0.33.98 * the return packet has src 10.0.33.98 and dst 10.0.3.1 * hence it arrives back at pfSense * pfSense rewrites it to src 123.123.123.123 dest 10.0.3.5 This ensures that pfSense is in the loop for both the outbound and inbound packets. However your webserver logs will show the connection coming from 10.0.3.1, not from the true client IP address. HTH, Brian. ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold
[pfSense] Inbound HAProxy or Load Balancer
Hi there, i try to get an internal load balancer running. I Setup HA proxy with an public IP: 123.123.123.123 and i have 2 webservers: 10.0.3.99 and 10.0.3.98. When i connect from outside of 10.0.3.0/24 it works as expected but when i try to use make a connection from the internal lan 10.0.3.0/24 i got no response. I read somethink about NAT reflection but i didnt understand how to configure it correctly. Could someone give me an expample how to configure inbound load balancing with HA proxy oder load balancer? Cheers Daniel ___ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold
