strange "throttling" issue with pf on xDSL connection
Patrick Proniewski
patpro at patpro.net
Thu Aug 2 06:52:51 UTC 2007
On 01 août 2007, at 18:21, Greg Hennessy wrote:
>> block drop in log quick on $ext_if from $priv_nets to any
>> block drop out log quick on $ext_if from any to $priv_nets
>
> Superfluous, a default block policy should catch these.
Well, I've just tried a very light rule set:
ext_if = "fxp0"
int_if = "em0"
scrub in all
nat on $ext_if from 192.168.0.1/24 to any -> $ext_if
pass quick log all keep state
with this, my transfer rate reaches 700-750 KB/s, so I think there is
something wrong with my full rule set.
patpro
More information about the freebsd-pf
mailing list