[PLUG] IPtables and forwarding latency

Will Dyson on Mon, 4 Aug 2003 15:10:18 -0400

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

[PLUG] IPtables and forwarding latency

From: Will Dyson <will_dyson@pobox.com>

To: plug@lists.phillylinux.org

Subject: [PLUG] IPtables and forwarding latency

Date: 04 Aug 2003 15:07:35 -0400

Reply-to: plug@lists.phillylinux.org

Sender: plug-admin@lists.phillylinux.org

Friends, We have set up a client of ours with a Linux box (running the Gibraltar livecd distro) for a firewall/router/ip accounting solution. The shorewall program is used to configure iptables. Periodicly, the latency of pings through the router goes through the roof. From less than a millisecond to more than 500 on average. Issuing a 'shorewall restart' command (which clears and re-inserts the iptables rules) brings the latency back down to normal. The box is running the 2.4.20 kernel (with some patches from the Gibraltar maintainer), so this issue http://lwn.net/Articles/42344/ might be relevent (we have connection tracking, but not NAT turned on). But if that doesn't turn out to be the problem, does anyone have any other ideas? -- Will Dyson "Back off man, I'm a scientist!" -Dr. Peter Venkman _________________________________________________________________________ Philadelphia Linux Users Group -- http://www.phillylinux.org Announcements - http://lists.netisland.net/mailman/listinfo/plug-announce General Discussion -- http://lists.netisland.net/mailman/listinfo/plug

Prev by Date: RE: [PLUG] BIND troubleshooting / help

Next by Date: [PLUG] Very interesting article on contemporary copyright issues in the US

Previous by thread: [PLUG] Re: BIND troubleshooting / help

Next by thread: [PLUG] (no subject)

Index(es):

Date

Thread