Thank you and all the best to all of you  :)

@sullrich:

@maunded:

Yes, the client software reports the errors, I believe they were all request timeouts, when I say 10+ I mean there were on average about 10-15 errors in 9000 requests

I dont have the vmtools loaded on any of the servers, I will try that next week.

Any idea why the request/sec was so low for pf?  I thought that it may be because the client software I am using is sending all requests from one machine?  Does pf have some sort of connection throttling?  Is it trying to defend itself against a SYN flood? Is there anywhere I might start to look for errors?

D.

In a nutshell: VMWare + FreeBSD networking performance sucks.  I would try these tests with real hardware.  I know this is not what you want to hear but its true.

There's also a possibility that it's state table collisions (pf flushes expired states every 10 seconds by default).  In the real world you'll see connections from a larger number of IP addresses so this tends to be less of an issue.  This may, or may not be the problem here, just offering up another suggestion ;)

FWIW, I've got hosts that do 1000 state table insertions and removals / second with 90K active states w/ no problems.  This is on PF's native platform though, I can't speak for FreeBSD although a number of people have mentioned similar numbers to me personally.

–Bill

In reality, it's not an old box, Its an "old" HP DL-380 G4 (about 1 year of life)…
I see on the BIOS and they support boot by the usb port.

thanks again

@Cyrandir:

…Only drawback would be if the turkey actually made it's saving throw....

HAHAHAH now THAT is humor!!!

@submicron:

I saw that lighty has been moved back into the tree, which is great news.  As I understand it, using lighty will make captive portal really snappy but what are the other benefits we can expect to enjoy from the transition?

Have you followed the mini_httpd bugs threads?  That alone makes it worth it.

Other than that:

fast-cgi

additional caching

bsd license

output-compression

doesnt need to fork for every incoming connection

Hi ZGamer,
Take a look here http://www.routerboard.com/rb44.html.
This ain't low profile but at least it's multiport…
Hope it helps.
Cheers

@smoked1:

Mailing lists are a bit of a pain. I think everything should be on the forums.

What you think is different from what others think.  A forum allows people to be "loose" whereas a mailing list makes you think twice before blabbering.  Not saying your blabeering, just pointing out the differences that I have noticed.

@sullrich:

@Cyrandir:

That's dirt cheap!  Too bad I don't really have a good excuse to buy one…. Good tip for the community though!

How about a 9.99$ one?  Just wait until black friday…

http://www.blackfridayads.com/stores.php?sid=6

Ya, I was looking around on the black friday stuff. For the stuff for Black friday there were 1 gig compact flash cards for like $30ish….heck compusa has 160gig sata drives for $19

sounds good!  we'll take it!

That's great! We can centralize the discussion for the PFSense and share the experience to anybody who interested for PFSense!!! I am lovin it!!!  ;D