NAT performance tweaks

Eric Anderson anderson at
Wed May 7 08:14:28 PDT 2003

veedee at wrote:
> If you have a large network behind your NAT server, defining LARGE_NAT in
> src/contrib/ipfilter/ip_nat.h and src/sys/contrib/ipfilter/netinet/ip_nat.h
> might help. Don't forget to recompile the kernel and ipfilter.
> Strange enough, I used to have huge pings (up to 80ms in a totally switched
> gigabit network) after a few hours of utilization before fiddling with

What would you call a "large network"?

Is "LARGE_NAT" something that is able to be made into a sysctl tweak 
(and if so, should it be?)?


Eric Anderson	   Systems Administrator      Centaur Technology
Attitudes are contagious, is yours worth catching?

More information about the freebsd-performance mailing list