Low throughput on Esxi 6.0 update 3
-
Doesn't mean you will get connections over 4 paths on the other connection (sever side)..
4 in a lagg does not = 4GB, it just means 4 different gig paths.. Even distribution across the 4 different paths doesn't always come out even.. Depends on how your switch works out which phy path to use and the other end of that path if some server, etc..
This is been a misunderstanding for a long time.. Not really sure where the misunderstanding got started but it is wide spread cross the internet..
Lagg is good for mitigation of a failed port or a failed cable, etc. And while it can give more bandwidth on an uplink between say switches.. But if you want more than 1ge, then the you should use a faster connection.. 2ge fiber. 10ge, 40ge, etc. Just because you have 4x 1ge in a lagg/portchannel/etherchannel/etc doesn't mean your going to be able to see 4ge go across it..
-
Than Johnpoz, really useful information. in the lag there are other options like round-robin and load balance. which one is better? right now my cisco switch and pfsense configuration is LACP.
I'm not looking for increasing a client' session bandwidth more than 1g. but I have 16 users which will copy files on the network alot. -
So please draw out how your clients get to the server… What is the physical path(s) traffic will flow through.. Is pfsense routing between a client vlan and a server vlan?
You do understand that multiple vlans on same physical path is automatically a hairpin right.. And routing from 1 vlan to another vlan that is on same physical nics.. Double hairpin, etc.
So please draw up the full physical connections from a client to a server.. What cisco switch(es)? Pfsense is VM so how do you have this configure in pfsense and physical nics connected to the vswitch..
-
So please draw out how your clients get to the server… What is the physical path(s) traffic will flow through.. Is pfsense routing between a client vlan and a server vlan?
You do understand that multiple vlans on same physical path is automatically a hairpin right.. And routing from 1 vlan to another vlan that is on same physical nics.. Double hairpin, etc.
So please draw up the full physical connections from a client to a server.. What cisco switch(es)? Pfsense is VM so how do you have this configure in pfsense and physical nics connected to the vswitch..
all of my switches are cisco, core switch is 3850x all ports 10g, 2x10G uplinks to another 3850x switch which my esxi host is connected to.
I figured out I haven't changed my esxi host management network to the newly installed 10G ethernet adapter. So the first thing I did today was switching management network to the new ethernet card. Then I gave a vmxnet3 with vlan id 4095 which is trunk to the pfsense vm, created my vlans and made any to any rules, now when i test with iperf, I give about 3G/s -
Testing from what to what vmx3 to vmx3 over a vswitch?
if all your ports are 10ge, where and why would you have 1ge 4 port laggs?
-
Testing from what to what vmx3 to vmx3 over a vswitch?
if all your ports are 10ge, where and why would you have 1ge 4 port laggs?
That was a physical server with 4 nics.
Yes now I'm on a vmware vm with 1 vmxnet3 , no need for laggs.But now I have another problem!
I have defined two vlans and allowed any to any on both. I can ping clients from one vlan to another. but it's just ping!! nothing else works! like http, https, or even smb.
What could be wrong? is it a driver issue? I disabled hardware large receive offload but no luck -
Did you install the vmware tools, those got broken while back.. Just use the openvm tools package.
Without seeing your rules impossible to say what your problem is - maybe you "think" you allowed any any.. when all you allowed was icmp.. Maybe your host your trying to ping have host firewall - this is very common user error.
To be honest is freebsd 11 even on the supported 6.0 list - pretty sure 11.x not supported until 6.5
-
Did you install the vmware tools, those got broken while back.. Just use the openvm tools package.
I installed openvm tools
Without seeing your rules impossible to say what your problem is - maybe you "think" you allowed any any.. when all you allowed was icmp.. Maybe your host your trying to ping have host firewall - this is very common user error.
host firewall is completely off
and about the rules I'll attach a photoTo be honest is freebsd 11 even on the supported 6.0 list - pretty sure 11.x not supported until 6.5
so I have to upgrade esxi host?
-
"so I have to upgrade esxi host?"
You should of done that a long time ago… What reason are you running 6.0? 6.5 came out Nov 2016... Shoot even your update 3 is over a year old..
While I am not saying 11.x will not work on 6.5... I just do not see the reason that you would not update? Good luck calling for support to a company that doesn't list X on their compatibility list..
And while it might work just fine - if so why has the company not updated their list to say 11.x is supported on 6.0 update 3?
-
Yeah you should be running 6.5 but as johnpoz says it may work fine in 6.0.
If you are seeing ICMP work but not TCP it is often an asymmetric routing issue. Is there some other path between those VLANs?
It could also be packet size issue. Try pinging with much larger packets.
Steve
