Bandwith limited on 2.3.2-RELEASE why??



  • Dear all,

    last month my ISP propagated that they are updating offer to double speeds to 40Mbit download and 3Mbit upload. And it was ok for couple of days. Now suddenly mine download speed is 28,5Mbit no more - no less… I have not changed anything on my PfSense setting for long time. It works - dont touch.
    Im sweeping everything, page by page to find what could limit it, but mine knowledge is not that deep.
    Does anyone have any possible idea what can cause speed drop od cca 26% ?

    I tried, ISP (suprisingly) not lying i really have 40Mbit on direct modem to PC connection. I have static public IP if that means anything.

    Interfaces look like this

    WAN 1000baseT <full-duplex>93.x.x.x -> re0
    LAN 100baseTX <full-duplex>192.168.1.1 ->ae0

    No limiters, no traffic shaping. Only Squid because of Squidguard, PFblocked dnsbl. And thats it.

    If someone have any idea what could go wrong here i would appreciate some help to find this ghost leak.

    Thank you in advance.</full-duplex></full-duplex>



  • Temporarily disable both squid and pfBlocker and try again.  Remove as much from the equation as possible.


  • LAYER 8 Global Moderator

    I don't think there is anything in pfblocker that could do it, squid would be my bet



  • I tried, no go. I disabled em all. Still same issue. Strange thing is that its behave like its something limited. Its flat line on arround 30Mbit.



  • Please ppls,

    does anyone has any idea what could cause this? Could it be NIC cards to degrade after some time? Bit strange to degrade to exactly 30Mbits but everything is possible.

    Please if someone has any idea what could cause this please share thoughts. Is there any way to test id within PfSense just to see is it problem on WAN or LAN side?

    Many thnx


  • LAYER 8 Moderator

    Is that a typo in your first post or do you really have the 100MBit Port on the LAN side instead on the WAN side? Why don't you use the gigabit port on LAN when you have max 40MBit/s on the WAN side and use the 100MBit one for that? I find it a bit strange to configure that way.



  • Its not typo it is like that. But mine PfSense goes into 1Gbit switch, so no lan traffic actually goes via LAN interface…. or yes? Its PC with two nic, one is wan other is lan, and then 24 port switch.

    Did i do something wrong?

    Thnx for response.



  • Just a note, but the nics in your system are not known for stellar performance. Realteks suck, but should be able to handle your speed. I have little experience with Attansic/Atheros nics, but they may be the one nic in FreeBSD with a worse reputation than Realtek.


  • LAYER 8 Moderator

    But mine PfSense goes into 1Gbit switch, so no lan traffic actually goes via LAN interface…. or yes? Its PC with two nic, one is wan other is lan, and then 24 port switch.

    What do you mean by "no LAN traffic goes via LAN interface"!? That make no sense at all. You have built a router with two NICs and put the faster one on the WAN side on a modem link, that is no faster than 40MBit/s as you write and put the slow 100MBit/s link to a GIGABIT Switch!? That's nonsense in my opinion. Why would you do that? Put the slow 100Mbps NIC on your WAN and modem side as your modem link won't be faster that 40 anyway and put the Gigabit Interface onto your Gbps Switch where it belongs! Why artificially limit your LAN connection if you don't have to? Also one NIC or the other may connect worse with auto sensing. Perhaps your Gigabit Switch doesn't like your slow interface that much? I'd sort that out first and double check all connections if the auto negotiation is going bonkers somewhere.

    Also what dotdash said, the NICs aren't known for stellar performance.



  • @JeGr:

    But mine PfSense goes into 1Gbit switch, so no lan traffic actually goes via LAN interface…. or yes? Its PC with two nic, one is wan other is lan, and then 24 port switch.

    What do you mean by "no LAN traffic goes via LAN interface"!? That make no sense at all. You have built a router with two NICs and put the faster one on the WAN side on a modem link, that is no faster than 40MBit/s as you write and put the slow 100MBit/s link to a GIGABIT Switch!? That's nonsense in my opinion. Why would you do that? Put the slow 100Mbps NIC on your WAN and modem side as your modem link won't be faster that 40 anyway and put the Gigabit Interface onto your Gbps Switch where it belongs! Why artificially limit your LAN connection if you don't have to? Also one NIC or the other may connect worse with auto sensing. Perhaps your Gigabit Switch doesn't like your slow interface that much? I'd sort that out first and double check all connections if the auto negotiation is going bonkers somewhere.

    Also what dotdash said, the NICs aren't known for stellar performance.

    What you said about chane sides of NIC it make sense. But i have gigabit speen in my LAN environment, so i thought it does not matter. I will change that and revert with results. Also, ill try to find intel based nics, that would be much better.

    Thanks.



  • @ha11oga11o:

    @JeGr:

    But mine PfSense goes into 1Gbit switch, so no lan traffic actually goes via LAN interface…. or yes? Its PC with two nic, one is wan other is lan, and then 24 port switch.

    What do you mean by "no LAN traffic goes via LAN interface"!? That make no sense at all. You have built a router with two NICs and put the faster one on the WAN side on a modem link, that is no faster than 40MBit/s as you write and put the slow 100MBit/s link to a GIGABIT Switch!? That's nonsense in my opinion. Why would you do that? Put the slow 100Mbps NIC on your WAN and modem side as your modem link won't be faster that 40 anyway and put the Gigabit Interface onto your Gbps Switch where it belongs! Why artificially limit your LAN connection if you don't have to? Also one NIC or the other may connect worse with auto sensing. Perhaps your Gigabit Switch doesn't like your slow interface that much? I'd sort that out first and double check all connections if the auto negotiation is going bonkers somewhere.

    Also what dotdash said, the NICs aren't known for stellar performance.

    What you said about chane sides of NIC it make sense. But i have gigabit speen in my LAN environment, so i thought it does not matter. I will change that and revert with results. Also, ill try to find intel based nics, that would be much better.

    Thanks.

    I reverted sides with NICs… had same issue. I simply reinstalled fresh and seems it works for now. Something somewhere it was wrong, thats for sure. But seems its easier to reinstall it and do settings from zero.

    Thanks for guidance.


Log in to reply