Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Additional TCP Congestion Control Algorithms

    Scheduled Pinned Locked Moved 2.3.3 Development Snapshots
    7 Posts 6 Posters 4.9k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • P
      Paint
      last edited by

      Currently I am loading the cc_htcp.ko module and manually changing the default net.inet.tcp.cc.algorithm from newreno -> htcp

      Can we add additional TCP Congestion Control Algorithms to the pfSense kernel?

      I have had no issues using HTCP using 2.3.3 or 2.3.2. Thanks!

      Current Kernel:

      [2.3.3-DEVELOPMENT][root@pfSense.lan]/root/scripts: sysctl net.inet.tcp.cc.available
      net.inet.tcp.cc.available: newreno
      

      I have a manual script to make sure /boot/modules/cc_htcp.ko exists after upgrades, etc.

      Manually added cc_htcp.ko module:

      [2.3.3-DEVELOPMENT][root@pfSense.lan]/root/scripts: sysctl net.inet.tcp.cc.available
      net.inet.tcp.cc.available: newreno, htcp
      

      I have attached some TCP Congestion Kernel Modules from the FreeBSD AMD64 10.3 Release ISO for anyone that would like to manually load these into /boot/modules and load them via /boot/loader.conf.local

      FreeBSD-10.3-TCP_AMD64.zip

      pfSense i5-4590
      940/880 mbit Fiber Internet from FiOS
      BROCADE ICX6450 48Port L3-Managed Switch w/4x 10GB ports
      Netgear R8000 AP (DD-WRT)

      1 Reply Last reply Reply Quote 0
      • R
        robi
        last edited by

        +1 for this

        1 Reply Last reply Reply Quote 0
        • C
          cmb
          last edited by

          You realize that does nothing in most people's use cases, right? That's only applicable to any traffic initiated by the firewall itself, not to traffic passing through it. Outside of circumstances like squid, that's very little of your traffic.

          Still wouldn't hurt to add, maybe someone can get that added.

          1 Reply Last reply Reply Quote 0
          • P
            Paint
            last edited by

            @cmb:

            You realize that does nothing in most people's use cases, right? That's only applicable to any traffic initiated by the firewall itself, not to traffic passing through it. Outside of circumstances like squid, that's very little of your traffic.

            Still wouldn't hurt to add, maybe someone can get that added.

            Agreed…. thanks CMB

            pfSense i5-4590
            940/880 mbit Fiber Internet from FiOS
            BROCADE ICX6450 48Port L3-Managed Switch w/4x 10GB ports
            Netgear R8000 AP (DD-WRT)

            1 Reply Last reply Reply Quote 0
            • H
              Harvy66
              last edited by

              In other words, TCP algorithms only affect the end-points, not the hops.

              1 Reply Last reply Reply Quote 0
              • N
                Nullity
                last edited by

                Would additional TCP algos be useful when using pfSense as a VPN server? Is pfSense not acting as an end-point in that scenerio?

                Please correct any obvious misinformation in my posts.
                -Not a professional; an arrogant ignoramous.

                1 Reply Last reply Reply Quote 0
                • jimpJ
                  jimp Rebel Alliance Developer Netgate
                  last edited by

                  @Nullity:

                  Would additional TCP algos be useful when using pfSense as a VPN server? Is pfSense not acting as an end-point in that scenerio?

                  Only if the VPN itself was using TCP, which it would not be if you cared about performance. Otherwise it's still just passing packets.

                  Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

                  Need help fast? Netgate Global Support!

                  Do not Chat/PM for help!

                  1 Reply Last reply Reply Quote 0
                  • First post
                    Last post
                  Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.