DO NOT UPGRADE TO CENTOS 5.7!!!!!!!!!!!! ??? ??? ??? ??? ??? ???
we have been running pfSense 2.0-RC3 for a few months inside of a kvm virtual machine, has run like a dream.
we upgraded to the latest centos 5.7 and all hell broke lose. any time someone downloads large amounts of data from the network thru or the loadbalancer / nat the pings to the router goto 1000+ and never stop going higher, until the router times out and does what appears to be some kind of internal reset
we attempted to force the mtu to 1500, tried the old centos 5.6 kernel, setup tarffic shaping in every way one can imagine, no matter what at some point the network and thru put just bombed right out and pings went thru the roof.
we took the same pfSense 2.0-RC3 kvm image and loaded it as guest back into a fresh host install of centos5.6 iso, and it runs perfectly again, looking forward to trying centos 6 some day.
we have 1 wan 1lan 1g interface, moving roughly 5-50 megabit at any time. load balancer, nat , vpn, bgp, etc.
MAKE SURE YOU DISABLE yum-updateD, and dont run a yum update past centos 5.6!
i am kind of thinking maybe somewhere in libvirtd,kvm,qemu there may be some kind of network io spilcer of some kind which is causing things to lose their mind, while i was downloading at 1.02megabytes from the network thru the router pfsense was reporting that i was doing 40megabit of traffic in the shaper. beyond me!
??? ??? ??? ??? ??? ???
if anyone can send me my weekend back let me know!