Internet is slow behind pfsense
-
well seems your internet is just slow 2.6mbps is not something I would classify as speedy ;)
so if your seeing the same speeds with or without pfsense - what are you using to judge that it is slow?
home i have two lines coming inside :)
200 MB/sec and 4MB/sec
i am using the 4Mbps for the Lab,
when i send the test using Pfsense the speed is just low till 1Mbps and some is less than 1 MB.
wihtout pfsense its reach 2 MBis this something with jumbo frames?
-
Why would you have jumbo frames.. Do you have jumbo frames on your public side connection?
-
We have combinations of milli and Mega, bits and Bytes here. Please try to use consistent units especially when discussing bandwidth. ;)
1Mbps is very low. Do you have some connection issue? Do you see collisions in Status > Interfaces? What does 'ifconfig -a' report?
Steve
-
We have combinations of milli and Mega, bits and Bytes here. Please try to use consistent units especially when discussing bandwidth. ;)
1Mbps is very low. Do you have some connection issue? Do you see collisions in Status > Interfaces? What does 'ifconfig -a' report?
Steve
sorry Steven
i meant i have home 200Mb/s line home which is working fine without any issues
i have on my LAB a sport line with 4 Mb /s
when i am behind the Pfsense i run a test on speedtest.net i get 1Mbps/s which is really low.
when i am connected directly to the ISP model and i run the speedtest.net i get between 2 and 3.5 Mbps /sIfconfig -a report is
$ ifconfig -a vmx0: flags=8843 <up,broadcast,running,simplex,multicast>metric 0 mtu 1500 options=60009b <rxcsum,txcsum,vlan_mtu,vlan_hwtagging,vlan_hwcsum,rxcsum_ipv6,txcsum_ipv6>ether 00:0c:29:c0:1d:a3 inet6 fe80::20c:29ff:fec0:1da3%vmx0 prefixlen 64 scopeid 0x1 inet 192.168.1.60 netmask 0xffffff00 broadcast 192.168.1.255 nd6 options=21 <performnud,auto_linklocal>media: Ethernet autoselect status: active vmx1: flags=8843 <up,broadcast,running,simplex,multicast>metric 0 mtu 1500 options=60009b <rxcsum,txcsum,vlan_mtu,vlan_hwtagging,vlan_hwcsum,rxcsum_ipv6,txcsum_ipv6>ether 00:0c:29:c0:1d:ad inet6 fe80::20c:29ff:fec0:1dad%vmx1 prefixlen 64 scopeid 0x2 inet 192.168.6.1 netmask 0xffffff00 broadcast 192.168.6.255 nd6 options=21 <performnud,auto_linklocal>media: Ethernet autoselect status: active pflog0: flags=100 <promisc>metric 0 mtu 33144 pfsync0: flags=0<> metric 0 mtu 1500 syncpeer: 224.0.0.240 maxupd: 128 defer: on syncok: 1 lo0: flags=8049 <up,loopback,running,multicast>metric 0 mtu 16384 options=600003 <rxcsum,txcsum,rxcsum_ipv6,txcsum_ipv6>inet 127.0.0.1 netmask 0xff000000 inet6 ::1 prefixlen 128 inet6 fe80::1%lo0 prefixlen 64 scopeid 0x5 nd6 options=21 <performnud,auto_linklocal>enc0: flags=0<> metric 0 mtu 1536 nd6 options=21 <performnud,auto_linklocal>ovpns1: flags=8051 <up,pointopoint,running,multicast>metric 0 mtu 1500 options=80000 <linkstate>inet6 fe80::20c:29ff:fec0:1da3%ovpns1 prefixlen 64 scopeid 0x7 inet 10.0.8.1 --> 10.0.8.2 netmask 0xffffffff nd6 options=21 <performnud,auto_linklocal>Opened by PID 1222</performnud,auto_linklocal></linkstate></up,pointopoint,running,multicast></performnud,auto_linklocal></performnud,auto_linklocal></rxcsum,txcsum,rxcsum_ipv6,txcsum_ipv6></up,loopback,running,multicast></promisc></performnud,auto_linklocal></rxcsum,txcsum,vlan_mtu,vlan_hwtagging,vlan_hwcsum,rxcsum_ipv6,txcsum_ipv6></up,broadcast,running,simplex,multicast></performnud,auto_linklocal></rxcsum,txcsum,vlan_mtu,vlan_hwtagging,vlan_hwcsum,rxcsum_ipv6,txcsum_ipv6></up,broadcast,running,simplex,multicast> -
so in your OP you stated that speed was the same both with and without pfsense..
when i run a speedtest.net its comes back with and without pfsense its 2.60 Mbps
-
pfSense doesnt slow the internet down….traffic does :D
-
so in your OP you stated that speed was the same both with and without pfsense..
when i run a speedtest.net its comes back with and without pfsense its 2.60 Mbps
i meant behind pfsense is slow,
direct with the ISP modem is fastpfSense doesnt slow the internet down….traffic does :D
i love Pfsense more than my wife :) and yes it doesn't slow the internet and i am using it on my production and very happy with it .
-
Try running a download test instead. You can download a file from a known good source directly on the pfSense box. That way you know if the restriction you're seeing is at the WAN or LAN. For example:
[2.1.5-RELEASE][root@pfsense.fire.box]/root(1): fetch -o /dev/null http://download.thinkbroadband.com/50MB.zip /dev/null 100% of 50 MB 8550 kBpsThat work well in the UK but you may want to choose some file closer to you. Though at 1Mbps you're probably fine.
Compare that with downloading the file behind pfSense or directly.
Steve
-
i love Pfsense more than my wife :)
:o
I'd recommend to see if there's an upgrade pack for wife available ;D ;D ;D ;D
-
A more recent model of wife could be good to get the speed you want…
-
Try running a download test instead. You can download a file from a known good source directly on the pfSense box. That way you know if the restriction you're seeing is at the WAN or LAN. For example:
[2.1.5-RELEASE][root@pfsense.fire.box]/root(1): fetch -o /dev/null http://download.thinkbroadband.com/50MB.zip /dev/null 100% of 50 MB 8550 kBpsThat work well in the UK but you may want to choose some file closer to you. Though at 1Mbps you're probably fine.
Compare that with downloading the file behind pfSense or directly.
Steve
Thank you Steve,
this behind the Pfsense :
/root: fetch -o /dev/null http://download.thinkbroadband.com/50MB.zip /dev/null 8% of 50 MB 169 kBps 05m47sthis directly to the internet :
etch -o /dev/null http://download.thinkbroadband.com/50MB.zip /dev/null 53% of 50 MB 1965 kBps 00m14sPS : i've updated to the 2.2 release
-
So, are either of those on the pfSense VM itself?
-
And what vm do you have it setup on? You stated this was a VM. Workstation, Player, Esxi? How is it setup? How much cpu, how much ram - how the nics connected to your physical network/host? Are they bridged or natted?
So my pfsense is also vm..
[2.2-RELEASE][root@pfSense.local.lan]/root: fetch -o /dev/null http://www.wswd.net/testdownloadfiles/512MB.zip
/dev/null 30% of 512 MB 7284 kBps 00m52sNeeded a bit bigger file 50MB done so fast could get a good speed indication. And the UK bit far from me, wasn't seeing good speeds there.
this is from another vm behind pfsense, didn't have fetch so used wget
135,725,046 7.11MB/s eta 60sGoing to need some details of how your VM is setup, etc.
-
And what vm do you have it setup on? You stated this was a VM. Workstation, Player, Esxi? How is it setup? How much cpu, how much ram - how the nics connected to your physical network/host? Are they bridged or natted?
So my pfsense is also vm..
[2.2-RELEASE][root@pfSense.local.lan]/root: fetch -o /dev/null http://www.wswd.net/testdownloadfiles/512MB.zip
/dev/null 30% of 512 MB 7284 kBps 00m52sNeeded a bit bigger file 50MB done so fast could get a good speed indication. And the UK bit far from me, wasn't seeing good speeds there.
this is from another vm behind pfsense, didn't have fetch so used wget
135,725,046 7.11MB/s eta 60sGoing to need some details of how your VM is setup, etc.
Hi John thank you for trying to help me fix this.
the Guest OS :FreeBSD (64-bit)
Compatibility ESXI 5.5 ( VM Version 10 )
VMware Tools : Running version 2147483647
Pfsense has two Virtuals NICS, VMX3
NIC 1 is LAN
NIC 0 is WAN
2 CPUs
Memory 2048 MB, ( 112 USED )
Two Disks : 8 GB SSD for the OS, and 40 GB for cashing " Not configured yet "
Firewall rules are standart nothing special really, no VLANS.
NAT Port 443,Between Pfsense and Internet there is ISP Modem,
Thank you
So, are either of those on the pfSense VM itself?
yes they are the same VM, only first test is using Pfsense as it Gateway ( the slow one ) and second test is not ( the fastest one )
I am not saying pfsense is slowing the traffic, i think there is somewhere miss configuration.
i am using pfsense on a production and very happy about it . -
So run that command on the pfSense VM itself and you will know if the speed restriction is at the WAN or LAN interface.
Steve
-
So run that command on the pfSense VM itself and you will know if the speed restriction is at the WAN or LAN interface.
Steve
i am sorry not sure quiet i understand you,
what commands do i need to run ? -
Run the fetch command at the pfSense console.
If you see the full download speed there you know the throttling exists between pfSense and the LAN side clients.Steve
-
"VMware Tools : Running version 2147483647"
What tools? The native tools, there has been nothing but issues with the native tools.. I think that build number reflects 3rd party tools, where did you get that build number? That is not a valid number. The current version number of the openvm tools package is 1280544_10 that I see
I would suggest you do a clean install of pfsense, not install the tools - test speed. Then install the openvm tools not the native ones. What instructions did you follow, there are some things that need to be fixed up with the openvm tools to get the shutdown to work correctly, etc.
When I was playing with the native tools couldn't get anything to work other than ping, etc.
And what is your esxi host, and how is it connected to the real world? What vswitch setup do you have? Where exactly did you do those fetch tests on - you didn't do them on pfsense itself?
-
What tools? The native tools, there has been nothing but issues with the native tools..
Yeah, that package is totally horrible, best removed altogether from 2.2
-
Not sure where he is getting that build number for his tools, that is not a valid number.
on pfsense with the openvpn tools install I show this
[2.2-RELEASE][root@pfSense.local.lan]/root: vmware-toolbox-cmd -v
9.4.0.25793 (build-1280544)On a linux box with the current native tools I show this
ubuntu:~$ vmware-toolbox-cmd -v
9.4.11.42879 (build-2400950)If I google that buld number for vmware tools shows as unmanaged.. not a standard build number and is just the decimal value of 0x7fffffff, so not sure where or what he has installed for tools if any to be honest.
Other question I have is what build number of esxi 5.5 - the version of freebsd 10.1, in 2.2 is not fully supported until update 2 of esxi 5.5, build 2068190, the current build number is 2456374 which 4 patches past update 2.
I am running 2.2 pfsense on vm on esxi with the openvm tools and it is running fantastic.. Other than the apinger showing me that my gateway is like 1.2 ms, I WISH ;) I have really not seen any issues at all.
My connections in esxi host to the real world is like this - see attached. So would be curious to see how he has it setup.
My host has 4 physical nic ports connected to vswitches. Pfsense has a nic in each vswitch, the wan physical nic is directly connected to my cable modem. This puts a public IP on pfsense wan. Then there is wlan and lan and dmz. The vmkern is on its own nic not connected to pfsense just tied to the lan. When you share port groups with vmkern and another network (lan say) seems to slow down performance moving files to and from the datastore - since I have enough phsyical nics why not break it out, etc.
I run a vlan on the wlan nic in pfsense for guest wireless, etc. The lan and wlan physical nics connect to a managed switch with vlans for the lan and wlan/guestwlan segments because there a few physical devices on the wlan not just AP and controller, printer makes airprint easier when on the wireless network. And I put my dvrs which are wired on it as well since makes it easier or ipad app to find them, etc.
So curious how the OP setup is.. I would assume it should be something very sim to this.
