nfs and ipfw
Crist J. Clark
crist.clark at attbi.com
Thu May 1 15:15:48 PDT 2003
On Thu, May 01, 2003 at 12:38:12PM -0500, Robert Johannes wrote:
> I've tried your suggestion, and even added a log option to the frag rule
> below, but I don't see anything being denied or dropped from the
> nfsclient. Instead, the frags are accepted, but it is as if the server
> doesn't have anything to say back, and so it never says anything back.
> Meanwhile, the nfsclient keeps sending the frag traffic to the
> server.
Is the server sending back any ICMP type 11 code 1?
> I've not tried the tcp option for nfs yet, my main concern being
> performance. I read that performance for tcp nfs is not on per with udp
> nfs.
That depends on who you ask. Many people insist TCP performance is
better. It depends a lot on how you use it and whether you tune NFS
appropriately for each type of transport. And tuning NFS is much more
an art than a science.
--
Crist J. Clark | cjclark at alum.mit.edu
| cjclark at jhu.edu
http://people.freebsd.org/~cjc/ | cjc at freebsd.org
More information about the freebsd-ipfw
mailing list