[ previous ] [ next ] [ threads ]
 
 From:  "Chris Buechler" <cbuechler at gmail dot com>
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] net4501 webgui slowness tests and results
 Date:  Thu, 21 Jun 2007 20:52:38 -0400
On 6/20/07, Albert Lash <albert dot lash at gmail dot com> wrote:
> Chris:
>
> All boxes run m0n0wall. The VPN is IPSEC based and connects two WRAP boxes.
> The net4501 is in front of one of them, it allows all traffic to pass
> through both the wan and opt1 interfaces.
>
> The long commands do not drop when I have "allow fragmented packets" checked
> on the net4501 for both wan and opt1 firewall rules. The MTU is not set and
> left to default on all interfaces on all three devices.  This configuration
> causes the net4501 webgui to go slower, over one minute for a page refresh.
>

So the only issue with fragmented packets allowed is the webGUI is
slow? I wouldn't worry about it then, it's not like you use your
firewall's GUI enough that it really matters.

-Chris