Terrible Internet Speeds
-
"Squid, SquidGuard"
Then your not actually downloading anything, the proxy is..
-
Thanks for the input Belt, I have been tracking this, but I can't seem to identify any one device that is using it all.
Could the squid stuff be what is slowing the connection down so dramatically?
I am new to this stuff, the guy who built this box has now left, so sorry for my lack of knowledge
Thanks
-
Try just setting up dummynet and see if it solves the problem.
For your connection create two pipes, one namede up and the other down.
Set down for 80,000Kbps and up for 32,000Kbps.
Under each create one queue weighted 100, set the mask on down to destination and to source on up and select /24 for each.Now go to diagnostics > command prompt and run the following command:
ipfw sched 1 config pipe 1 type fq_codel && ipfw sched 2 config pipe 2 type fq_codelNow go to your firewall rules and for all of your pass rules go to advanced options and add the queues you just made, save and apply.
From left to right select up then down.This will solve your problem if one client is hogging bandwidth. Even if that's not your problem it will make your network more better.
-
What are you downloading and from where? If it's, say an .iso from a legitimate website, you still won't see that 100mbps, but you'll get very decent speeds. But if you're downloading a movie via torrent then that speed depends on the seeders as much as yourself. You may have 40mbps upload, but others probably may have something much worse. The fastest speeds available to me is 60mbps down and 5mbps up. And I live in a fairly developed area.
-
not even get a 1MB download.
Thanks Belt9 I will give that a try. Thank you.
-
"not even get a 1MB download. "
From where from what? before you were saying it was
"our actual download speed varies between 0.5 -1 mbp"
-
You are testing to speedtest.net from a client behind pfSense and seeing ~100Mbps? Yet a file download on that same client is ~1Mbps?
Hard to see how anything on the firewall could cause that. Seems more like something upstream that's optimising speedtest.net.
With that significant a slowdown I would usually check Status > Interfaces for errors or collisions on any interface. That would affect Speedtest equally though.
Steve
-
"the guy who built this box has now left, so sorry for my lack of knowledge "
So it was like this when the guy built it, or has something changed?
-
Yes, very good point!
Is the connection new if the box is not?
That also points to a speed/duplex mismatch.
Steve
-
That also points to a speed/duplex mismatch.
How often does that happen these days? Equipment is normally configured to autonegotiate and fixed speed or half duplex have to be specifically configured. What does the pfSense dashboard show for the WAN & LAN bandwidth? Are there any managed switches that might be misconfigured? Given that speedtest shows 100 Mb, I doubt anything has wrong speed or duplex.
-
Far more often than you might hope! We regularly see customers hit this sort of issue when their provider supplies them new upstream hardware and it's set to fixed speed/duplex. And the other way around less often.
Definitely worth checking.
Steve
-
I don't think I've ever seen that from an ISP. On the other hand, I have seen misconfigured switches on a couple of occasions. Regardless, if he's getting 100 Mb from speedtest, I doubt that's the issue. Perhaps a bit more info on where he's downloading from might shed some light… Or perhaps looking at what's on the wire, to see if any problems show themselves.
-
Turn up another inside interface that doesn't use squid/squidguard and test again.
