On 21 Jan 2010, at 16:10, David Young wrote: > On Wed, Jan 20, 2010 at 07:58:30PM +0000, Martin Johnson wrote: >> Hello, >> >> Has anyone measured the maximum number of packets-per-second that a >> 5501 can handle as a router - ideally using PPPoE mode for the WAN >> side? >> >> I'm running pfSense 1.2.3 (based on FreeBSD 7.2) on an ADSL link, >> running PPPoE with a Draytek Vigor 120 modem. Normally this setup is >> solid, but if I run Nessus with default settings against lots of IP >> addresses, the PPPoE session drops. pfSense shows high CPU utilization >> when this happens. > > What happens to latency while you run Nessus? If you ping something on > the other end of the ADSL link before, during, and after a Nessus run, > does the round-trip time jump way up while Nessus runs?
Latency gets higher, but not crazy. In the end I worked around the problem by backing off the scan parameters in Nessus, coupled with limits set in the traffic shaper in pfSense. It still seems odd that high traffic levels can bring down the PPPoE interface. In an ideal world I'd re-test with a more powerful pfSense box in order to establish whether the NET5501 was under-sized for the task, but my test windows are limited, so it's not something I can easily repeat. I usually run Nessus etc from a different network. Cheers, - Martin _______________________________________________ Soekris-tech mailing list [email protected] http://lists.soekris.com/mailman/listinfo/soekris-tech
