[ previous ] [ next ] [ threads ]
 
 From:  Dany Nativel <dany underscore list at natzo dot com>
 To:  Pascal Watteel <pascal dot watteel at ces dot be>, m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] Network getting slower after 20 minutes
 Date:  Wed, 21 Jan 2004 10:25:12 -0500 
Thanks for your feedback, I'll give it a try.

Did you have the problem to ping the firewall from the stations located 
in the LAN ?

When it happens to me the LAN is completely down, I can't even access 
the monowall administration web page.



Pascal Watteel wrote:

>I have the same problem on a soekris board...
>
>Already changed the switch... and cables and networkcards of my -ping-
>pc
>
>I solved the problem by enabling the qos
>And doing what is said on this url http://m0n0.ch/wall/docs/book/view/35
>
>It solved my problem...  I also did this for ping and https and dns..
>
>Now its running fine... my ping time stay the same (almost) with or
>without downloads or uploads.
>
>Try it maybe
>
>-----Original Message-----
>From: Dany Nativel [mailto:dany underscore list at natzo dot com] 
>Sent: woensdag 21 januari 2004 16:00
>To: Brandon Holland; m0n0wall at lists dot m0n0 dot ch
>Subject: Re: [m0n0wall] Network getting slower after 20 minutes
>
>Now I'm lost !
>
>It's not the switch, nor the RTL8139 chipset, nor the memory. The PC is 
>an old Pentium 166.
>
>The good news it I'm looking at a Soekris board but I like to understand
>
>what's going on because this box has been running Ipcop for years 
>without a problem. I just want to make sure it's not a hidden bug that 
>would compromise other platforms !
>
>Dany
>
>Brandon Holland wrote:
>
>  
>
>>I'm using realtek chips in my router and they work great
>>
>>-----Original Message-----
>>From: Dany Nativel [mailto:dany underscore list at natzo dot com] 
>>Sent: Wednesday, January 21, 2004 6:16 AM
>>To: m0n0wall at lists dot m0n0 dot ch
>>Subject: Re: [m0n0wall] Network getting slower after 20 minutes
>>
>>I've tested the same system overnight without any switch and the
>>    
>>
>network
>  
>
>>was down this morning.
>>So No, it's no a deffective switch.  I guess it's a bug in the Realtek 
>>driver or something else in Monowall.
>>
>>Dany
>>
>>
>>Dany wrote:
>>
>> 
>>
>>    
>>
>>>Dany wrote:
>>>
>>>   
>>>
>>>      
>>>
>>>>Fred Weston wrote:
>>>>
>>>>     
>>>>
>>>>        
>>>>
>>>>>Dany wrote:
>>>>>
>>>>>       
>>>>>
>>>>>          
>>>>>
>>>>>>Fred Weston wrote:
>>>>>>
>>>>>>         
>>>>>>
>>>>>>            
>>>>>>
>>>>>>>Dany wrote:
>>>>>>>
>>>>>>>           
>>>>>>>
>>>>>>>              
>>>>>>>
>>>>>>>>Hello,
>>>>>>>>
>>>>>>>>I wanted to see if m0n0wall could replace my ipcop box which has 
>>>>>>>>been running for few years now.
>>>>>>>>Hardware is an old Compaq Pentium 200MHz with 200MB of memory and
>>>>>>>>             
>>>>>>>>
>>>>>>>>                
>>>>>>>>
>> 
>>
>>    
>>
>>>>>>>>two realtek NIC, a small switch and a SMC-2655W 802.11b AP.
>>>>>>>>
>>>>>>>>I used the following CD image (fairly new!) :
>>>>>>>>cdrom-pb25r595.iso
>>>>>>>>Version: Public Beta Release 25, Build #595
>>>>>>>>Release date: 01/17/2004
>>>>>>>>
>>>>>>>>Everything works fine, I really like it.
>>>>>>>>Just after installing it if I ping the firewall from a station I 
>>>>>>>>get "<10ms" but after let's say 20 minutes (random in fact) it 
>>>>>>>>goes to 80-100ms. This morning it was over 900ms. In some cases I
>>>>>>>>             
>>>>>>>>
>>>>>>>>                
>>>>>>>>
>> 
>>
>>    
>>
>>>>>>>>can't even get the firewall webpage so I have to reboot it the 
>>>>>>>>cold way. Names are taking longer to resolve (if they ever
>>>>>>>>             
>>>>>>>>
>>>>>>>>                
>>>>>>>>
>>resolve).
>> 
>>
>>    
>>
>>>>>>>>Any idea on this performance drop over the time ?
>>>>>>>>
>>>>>>>>Thank you
>>>>>>>>Dany
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>>             
>>>>>>>>
>>>>>>>>                
>>>>>>>>
>>--------------------------------------------------------------------- 
>> 
>>
>>    
>>
>>>>>>>>To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
>>>>>>>>For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>>             
>>>>>>>>
>>>>>>>>                
>>>>>>>>
>>>>>>>I can't think of any reason off the top of my head as to why you 
>>>>>>>would see this behaviour.  My only suggestion would be to try 
>>>>>>>removing everything non-essential such as the AP and switch and 
>>>>>>>try running it for a while with just a single PC connected to it 
>>>>>>>and see if the problem remains.  It sounds like you might be 
>>>>>>>overloading the MAC table on your switch, but with a setup that 
>>>>>>>small, that seems unlikely.
>>>>>>>
>>>>>>>           
>>>>>>>
>>>>>>>              
>>>>>>>
>>>>>>Today I got the problem after few hours.
>>>>>>Ping started to give long time and then no ping at all for both lan
>>>>>>         
>>>>>>
>>>>>>            
>>>>>>
>> 
>>
>>    
>>
>>>>>>and wan addresses.
>>>>>>I then disconnected the switch and AP and connected only one PC to 
>>>>>>the firewall usign a crossover cable but that didn't solve
>>>>>>         
>>>>>>
>>>>>>            
>>>>>>
>>anything.
>> 
>>
>>    
>>
>>>>>>Dany
>>>>>>
>>>>>>
>>>>>>         
>>>>>>
>>>>>>            
>>>>>>
>>---------------------------------------------------------------------
>> 
>>
>>    
>>
>>>>>>To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
>>>>>>For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
>>>>>>
>>>>>>
>>>>>>
>>>>>>         
>>>>>>
>>>>>>            
>>>>>>
>>>>>In your setup, are you running ipcop and m0n0 on the same hardware?
>>>>>       
>>>>>
>>>>>          
>>>>>
>> 
>>
>>    
>>
>>>>>If not, perhaps you could try replacing one or both NICs.  It may be
>>>>>       
>>>>>
>>>>>          
>>>>>
>> 
>>
>>    
>>
>>>>>worthwhile to simply start over with m0n0 by resetting it to 
>>>>>defaults.  Configure only your IP addresses and anything else 
>>>>>essential for it to function and then see if you still experience 
>>>>>the same symptoms.
>>>>>
>>>>>       
>>>>>
>>>>>          
>>>>>
>>>>same hardware,  to run ipcop I reboot with the HDD connected. For 
>>>>monowall, i just insert the CD and floppy.
>>>>This afternoon I restarted from scratch. I just use the DHCP server 
>>>>of the monowall box to get my clients internet access (no fancy rules
>>>>     
>>>>
>>>>        
>>>>
>> 
>>
>>    
>>
>>>>or bandwidth limitation).
>>>>
>>>>One thing I do is to give a an pre-defined IP address based the MAC 
>>>>address of each PC (outside the DHCP IP range).
>>>>
>>>>Dany
>>>>
>>>>---------------------------------------------------------------------
>>>>To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
>>>>For additional commands, e-mail: m0n0wall-help@lists.m0n0.c
>>>>     
>>>>
>>>>        
>>>>
>>>Don't know if that can help but here is my configuration :
>>>
>>>System: General setup
>>>*[x] Allow DNS server list to be overridden by DHCP/PPP on WAN
>>>
>>>*Services: DNS forwarder
>>>*[x] Enable DNS forwarder
>>>[ ] Register DHCP leases in DNS forwarder
>>>
>>>....override the results from the forwarders below.
>>>Host     Domain     IP     Description    ap      agora      
>>>192.168.0.50      SMC AP
>>>***
>>>
>>>   
>>>
>>>      
>>>
>>---------------------------------------------------------------------
>>To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
>>For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
>>
>>
>>
>> 
>>
>>    
>>
>
>
>---------------------------------------------------------------------
>To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
>For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
>
>
>
>  
>