CENTOS 6.2 = good
-
after our centos 5.6 which was working fine upgraded to centos 5.7 our pfsense router was not working at all you can see the details here http://forum.pfsense.org/index.php/topic,41410.msg213884.html#msg213884
i just wanted to post and let everyone know the same pfsense image 2.0-rc3 that was working great in centos 5.6 (not in 5.7) is running like a dream in centos 6.2 KVM with a dedicated intel nic, using e1000, we also have control groups enabled!
(looking forward to trying the 2.x when it supports kvm virtio+ relayd updates) the dev threads werent clear if 2.0.1 is the same as 2.1.
-
6.2 was working great, just upgraded to centos 6.3 and it is completely screwed just like centos 5.7 and later.
any high volume data thruput or wait long enough and pfsense pings skyrocket from 1000-4000 ms and hang then somehow reset to normal.
god save me!
-
disabling iptables and ip6tables appears to have made the spikes less severe, but there are still spikes.
-
Topic is relevant to the development of pfSense? ???
-
after buying a copy of rhel for support here are the findings.
pfsense + nat works ok on kvm
centos 5.6
centos 5.9
rhel 5.6
rhel 5.9we know for sure it works on a basic level but if you overload it with traffic it will timeout using
centos 5.7
centos 5.8stress test was performed with wbox hitting a website behind the firewalls (nat)
./wbox http://192.168.2.62/ 30000 compr clients 50 wait 0each router had one em0_vlan100 wan and em0 lan
5.7 , 5.8 time out after just letting the stress test run,
if you try downloading a file from the nat server it will only move at a few k a second during the stress test.
good news is everything on 5.9 looks like its working fine!!
-
also confirmed updating via "yum update" from a nonworking 5.7 to 5.9 resolved the horrific lag issues!