router stops working because of udp packets
Tom Samplonius
tom at sdf.com
Sat May 17 00:47:50 PDT 2003
On Sat, 17 May 2003, Thomas Krause -CI- wrote:
> Thank's to all for your response. I'll question the customer on Monday
> and probably sell him a firewall. (Should I notice that I hate Microsoft
> software?)
Rather than sell him a firewall, sell him a clue. The MS-SQL
vulnerability that Slammer exploits was made public many months ago.
> > It is the Slammer worm. It can easily generate 60Mbps of traffic on a
> > fast ethernet LAN. It seems that your router does not have enough
> > resources to route that much. Perhaps add more mbufs, and more efficient
> > network cards. If using the fxp driver, use the link0 flag to reduce
> > interupts.
>
> There is one fxp and one xl card in that box - but how to use
> the link0 flag? ( 'man fxp' doesn't help)
If the man page doesn't mention it, it probably isn't supported in your
version of FreeBSD. It is pretty new.
> >>BTW: 4.6.2-RELEASE-p9 is running on the router.
> >
> >
> > You should probably upgrade to 4.8 too.
>
> Until now 4.6.2 was running very well - and I doubt that 4.8 would
> forward that traffic. (Anyway, I've a reason to upgrade to 4.7 at least)
Well, with the packet bundling support in fxp, it would do much better.
Up to 8 packets could be handled per interupt. There is no reason to go
to 4.7, when 4.8 is available. Trust me, it is way better.
> Regards,
> Thomas.
Tom
More information about the freebsd-isp
mailing list