Limiting open port RST response from 247 to 200 packets per
second
Ivan Voras
ivoras at freebsd.org
Sat Feb 7 09:05:05 PST 2009
Alex Dehaini wrote:
> Hi Guys,
>
> I have some issues with Squid on Freebsd. I am running FreeBSD release 4.9
> and Squid version 2.5.
>
> I have setup FreeBSD as a bridge so that all traffic from my network can
> transparently pass through the FreeBSD server. I am running Squid on the
> same server and I created an ipfw rule to redirect port 80 to port 3128.
>
> Normally, when Squid is not started - we see traffic close to 30MB flowing
> through the server. Immediately I start squid, the traffic drops to half and
> sometimes lower and stays there. When this happens, I have a lot of clients
> that will call and complain they can't access the Internet. At the same
> time, I get these log messages
>
> *Feb 5 20:39:44 myserver /kernel: Limiting open port RST response from 247
> to 200 packets per second
> Feb 5 20:39:44 myserver /kernel: Limiting open port RST response from 247
> to 200 packets per second
> When I stop Squid, everything returns to normal. Any idea what is causing
> this. I will appreciate any help.
RST response means a client has tried to connect to a TCP port and
didn't succeed. In your case, is squid actually doing anything? Are
there any traffic in your logs?
By increasing icmplim you only lifted the supression of the outgoing RST
packets, you didn't solve your problem.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 258 bytes
Desc: OpenPGP digital signature
Url : http://lists.freebsd.org/pipermail/freebsd-performance/attachments/20090207/5ab92dd4/signature.pgp
More information about the freebsd-performance
mailing list