Lan Traffic is Lower Then Wan Traffic



  • I m using pfsense 2 for my home network with 10 pc from January 2011 . my objective is to shape every pc with a limited speed. everything is fine but it seems that my lan traffic is lower then my wan traffic by at least 10% in dashboard. if i install squid it increases 25% to 35%. my wan speed is 2mbps but i hardly getting 1.5 to 1.8mbps at lan.

    my hardware
    cpu: Pentium(R) Dual-Core CPU E5700 @ 3.00GHz
    Ram: 2gb ddr3
    2 nic(external built is not configured)

    with
    2.0-RC3 (i386)
    built on Fri Jun 24 16:21:49 EDT 2011 (i have also tried other versions & other hardware)

    packages

    1. arping
    2.arpwatch
    3.bandwidthd
    4. Lightsquid
    5.squid
    6.squidGuard(not enabled)

    any suggestion?



  • The dashboard widget is only refreshing every second. There could be a delay between WAN and LAN traffic.

    Are you using any squid custom options like caching windows updates and so on ? (range_offset_limit -1) ?
    It could be possible, that squid itself is downloading the whole file and your LAN client is only needing a part of that file.

    How long is you squid running ? In the first time squid needs to cache alle files you browse. In future there should be a possitiv effect



  • thanks for reply.

    no i m not using any custom rules. and my max cache fle size is only 4096kB.
    i have tested it for several days after full of 40gb cache it acts same.

    it was not like this with one of the  last November 2010 release. that was ok. but after that from jan 2011 i m facing this problem.

    is there anything can be by traffic shaper?



  • Check the queues see if there are dropped packets.



  • Is it encapsulation?

    WAN-side will have NAT headers added etc.



  • Your packets / data IN on WAN no where near match the OUT on LAN. It looks like a large amount of traffic is being dropped. Maybe you're blocking legitimate traffic through a rule. I would do as Alan87 suggested and check for dropped packets.



  • @Alan87i:

    Check the queues see if there are dropped packets.

    Nope My queues page sow nothing. i didnt configured any queue. just used limiter.

    Latest Status While proxy disabled. i had stop squid otherwise it just killing me. Please guys help. I really need squid.



  • Try removing the shaper all together  just to rule it out.



  • If you are connecting e.g. via OpenVPN from WAN site to pfsense GUI than there is only WAN and no LAN traffic.

    Could it be a package which downloads blocklists like squidguard ?



  • @Nachtfalke:

    If you are connecting e.g. via OpenVPN from WAN site to pfsense GUI than there is only WAN and no LAN traffic.

    Could it be a package which downloads blocklists like squidguard ?

    No opevpn No squid guard.

    @Alan87i:

    Try removing the shaper all together  just to rule it out.

    but i really need them.


Locked