Conditionally poor throughput to linux client behind pfSense



  • Hello,

    For awhile now this one system has had poor throughput to the internet over spectrum/charter cable despite good throughput when iperf is run between the system and pfSense.

    Originally, the system was working through a bridge in order to directly access it's static IP. And since bridging can slow down traffic as well I have since changed to a 1:1 NAT/Virtual IP/All ports forwarded for that static IP and this has not made any difference.

    I did catch an increase in throughput to 900/mbps up/down from the usual 40/mbps up/down but that seemed to be because the traffic was being routed out of the fiber connection and not the Spectrum cable connection.

    The whole network was prior on spectrum and even with spectrum on other computers and even android devices I could get 800mbps down by 40 mbps up so it should not be the connection itself. Also, the same intel nic port is connected to the Spectrum as before the fiber connection was provided.

    Throughput does increase to 500-600 mbps down if I bypass pfSense completely and connect that system directly to the spectrum equipment.

    It seems like an issue with the combination of pfSense/Spectrum/and that linux system.

    iperf between pfsense and the system and the system and pfsense is 900mbps/900mbps from the pfsense nic to the system's nic. iperf between pfsense and the system on the lan side interfaces is 3Mbps/3Mbps.

    What strange and unusual issue is causing the poor internet throughput from Spectrum via pfSense to that system?


  • Netgate Administrator

    The system in question has dual NICs? If not I'm not really understanding where you're seeing 3Mbps. That looks so low though that something fundamental must be broken there.

    The first thing I would look at here is packet size during the test from the system in question compare with some other system that is not limited.

    You might be seeing massive packet fragmentation or even just mostly dropped packets.

    Run a pcap. Check what that system is sending.

    Steve



  • @qsystems said in Conditionally poor throughput to linux client behind pfSense:

    It seems like an issue with the combination of pfSense/Spectrum/and that linux system.

    How are the cables? Defective cables can cause that sort of problem.


Log in to reply