Limiting open port RST response from 247 to 200 packets per
second
Alex Dehaini
alexdehaini at gmail.com
Fri Feb 6 10:19:24 PST 2009
Any ideas
On Fri, Feb 6, 2009 at 3:24 PM, Alex Dehaini <alexdehaini at gmail.com> wrote:
> I increased net.inet.icmp.icmplim to 2000 but this does not make any
> change. Here is my output
>
> myserver# sysctl -a | grep net.inet.icmp.icmplim
> net.inet.icmp.icmplim: 2000
> net.inet.icmp.icmplim_output: 1
>
> After increasing inet.icmp.icmplim to 2000 and startign Squid, I don't get
> the errors below
>
> Feb 5 20:39:44 myserver /kernel: Limiting open port RST response from 247
> to 200 packets per second
> Feb 5 20:39:44 myserver /kernel: Limiting open port RST response from 247
> to 200 packets per second
> Feb 5 20:39:45 myserver /kernel: Limiting open port RST response from 239
> to 200 packets per second
>
> But traffic still drops.
>
> Alex
>
>
>
> On Fri, Feb 6, 2009 at 3:19 PM, István Szukács <leccine at gmail.com> wrote:
>
>> Hi!
>>
>>
>> lix at test:~$sysctl -a | grep net.inet.icmp.icmplim
>> net.inet.icmp.icmplim: 200
>> net.inet.icmp.icmplim_output: 1
>>
>>
>> Regards,
>> Istvan
>>
>> On Fri, Feb 6, 2009 at 2:44 PM, Alex Dehaini <alexdehaini at gmail.com>wrote:
>>
>>> Hi Guys,
>>>
>>> I have some issues with Squid on Freebsd. I am running FreeBSD release
>>> 4.9
>>> and Squid version 2.5.
>>>
>>> I have setup FreeBSD as a bridge so that all traffic from my network can
>>> transparently pass through the FreeBSD server. I am running Squid on the
>>> same server and I created an ipfw rule to redirect port 80 to port 3128.
>>>
>>> Normally, when Squid is not started - we see traffic close to 30MB
>>> flowing
>>> through the server. Immediately I start squid, the traffic drops to half
>>> and
>>> sometimes lower and stays there. When this happens, I have a lot of
>>> clients
>>> that will call and complain they can't access the Internet. At the same
>>> time, I get these log messages
>>>
>>> *Feb 5 20:39:44 myserver /kernel: Limiting open port RST response from
>>> 247
>>> to 200 packets per second
>>> Feb 5 20:39:44 myserver /kernel: Limiting open port RST response from
>>> 247
>>> to 200 packets per second
>>> Feb 5 20:39:45 myserver /kernel: Limiting open port RST response from
>>> 239
>>> to 200 packets per second
>>> Feb 5 20:39:45 myserver /kernel: Limiting open port RST response from
>>> 239
>>> to 200 packets per second
>>> Feb 5 20:39:46 myserver /kernel: Limiting open port RST response from
>>> 273
>>> to 200 packets per second
>>> Feb 5 20:39:46 myserver /kernel: Limiting open port RST response from
>>> 273
>>> to 200 packets per second
>>> Feb 5 20:39:47 myserver /kernel: Limiting open port RST response from
>>> 228
>>> to 200 packets per second
>>> Feb 5 20:39:47 myserver /kernel: Limiting open port RST response from
>>> 228
>>> to 200 packets per second
>>> Feb 5 20:39:48 myserver /kernel: Limiting open port RST response from
>>> 225
>>> to 200 packets per second
>>> Feb 5 20:39:48 myserver /kernel: Limiting open port RST response from
>>> 225
>>> to 200 packets per second
>>> Feb 5 20:39:49 myserver /kernel: Limiting open port RST response from
>>> 244
>>> to 200 packets per second
>>> Feb 5 20:39:49 myserver /kernel: Limiting open port RST response from
>>> 244
>>> to 200 packets per second
>>> Feb 5 20:39:50 myserver /kernel: Limiting open port RST response from
>>> 259
>>> to 200 packets per second
>>> Feb 5 20:39:50 myserver /kernel: Limiting open port RST response from
>>> 259
>>> to 200 packets per second
>>> Feb 5 20:39:51 myserver /kernel: Limiting open port RST response from
>>> 234
>>> to 200 packets per second
>>> Feb 5 20:39:51 myserver /kernel: Limiting open port RST response from
>>> 234
>>> to 200 packets per second
>>> Feb 5 20:39:52 myserver /kernel: Limiting open port RST response from
>>> 243
>>> to 200 packets per second
>>> Feb 5 20:39:52 myserver /kernel: Limiting open port RST response from
>>> 243
>>> to 200 packets per second
>>> Feb 5 20:39:53 myserver /kernel: Limiting open port RST response from
>>> 218
>>> to 200 packets per second
>>> Feb 5 20:39:53 myserver /kernel: Limiting open port RST response from
>>> 218
>>> to 200 packets per second
>>> Feb 5 20:39:55 myserver /kernel: Limiting open port RST response from
>>> 233
>>> to 200 packets per second
>>> Feb 5 20:39:55 myserver /kernel: Limiting open port RST response from
>>> 233
>>> to 200 packets per second
>>> Feb 5 20:39:56 myserver /kernel: Limiting open port RST response from
>>> 241
>>> to 200 packets per second
>>> Feb 5 20:39:56 myserver /kernel: Limiting open port RST response from
>>> 241
>>> to 200 packets per second
>>> Feb 5 20:39:57 myserver /kernel: Limiting open port RST response from
>>> 220
>>> to 200 packets per second
>>> Feb 5 20:39:57 myserver /kernel: Limiting open port RST response from
>>> 220
>>> to 200 packets per second
>>> Feb 5 20:39:58 myserver /kernel: Limiting open port RST response from
>>> 206
>>> to 200 packets per second
>>> Feb 5 20:39:58 myserver /kernel: Limiting open port RST response from
>>> 206
>>> to 200 packets per second
>>> Feb 5 20:40:01 myserver /kernel: Limiting open port RST response from
>>> 223
>>> to 200 packets per second
>>> Feb 5 20:40:01 myserver /kernel: Limiting open port RST response from
>>> 223
>>> to 200 packets per second*
>>>
>>> When I stop Squid, everything returns to normal. Any idea what is causing
>>> this. I will appreciate any help.
>>>
>>> Thanks
>>>
>>> --
>>> Alex Dehaini
>>> Developer
>>> Site - www.alexdehaini.com
>>> Email - alexdehaini at gmail.com
>>> _______________________________________________
>>> freebsd-performance at freebsd.org mailing list
>>> http://lists.freebsd.org/mailman/listinfo/freebsd-performance
>>> To unsubscribe, send any mail to "
>>> freebsd-performance-unsubscribe at freebsd.org"
>>>
>>
>>
>>
>> --
>> the sun shines for all
>>
>
>
>
> --
> Alex Dehaini
> Developer
> Site - www.alexdehaini.com
> Email - alexdehaini at gmail.com
>
--
Alex Dehaini
Developer
Site - www.alexdehaini.com
Email - alexdehaini at gmail.com
More information about the freebsd-performance
mailing list