6.x, 4.x ipfw/dummynet pf/altq - network performance issues

Justin Robertson justin at sk1llz.net
Wed Feb 7 02:52:53 UTC 2007


  So in a sense I should be able to do away with the transparent bridge. 
However, 6.x in any mode (bridge or not) was still incapable of pushing 
the traffic that 4.x could. This would certainly help remove one machine 
from the mix, but still requires running 4.x to get any real 
performance. :-\

Julian Elischer wrote:
> Justin Robertson wrote:
>> Err, forgot to reply to -net, at anyrate, layer 2 isn't useful as it 
>> doesn't undertand ip addresses, ports, protocols, etc.
>
> filtereing at the NIC (sysctl net.link.ether.ipfw=1 or something 
> similar) lets you do layer 3 filtereing at the NIC layer..
>
>>
>> Julian Elischer wrote:
>>> Justin Robertson wrote:
>>>>
>>>
>>>
>>>
>>>> Splitting the task into a transparent filtering bridge with a 
>>>> separate routing box appears to clear it up entirely.
>>>
>>> how does that differ from using mac level ipfw?
>>>
>>> i.e. turning on filtering at the NIC (layer 2).
>>>
>>> (have you tried doing that?)
>>>
>>
>> _______________________________________________
>> freebsd-net at freebsd.org mailing list
>> http://lists.freebsd.org/mailman/listinfo/freebsd-net
>> To unsubscribe, send any mail to "freebsd-net-unsubscribe at freebsd.org"
>
>



More information about the freebsd-net mailing list