Lan network very slow
-
Like I say, I'm not sure quite how those parts of the config file are generated. The traffic shaper is IMHO the most confusing part of pfSense. ;) I'll have to do some experimentation on my test box here.
You saved that config file and then forced a reload (or rebooted)? If the speed has increased then that certainly looks like the problem. The question now is why is catching your traffic when it looks like it should only be catching P2P traffic and what changed 3 weeks ago that caused it.Steve
-
Lan speed is a bit faster but wan speed is almost the same, when monitoring with traffic speed i get around 800kb.
I think the problem occured after upgrading the software.
-
Here some pictures from speedtest.net
The fastes is with captive portal turned off
The slowest is with captive portal turned on
-
Ah, OK. So with captive portal turned off you are getting full speed?
I had a play around with the traffic shaper this afternoon and I'm not really sure why you traffic seems to be being caught in it. I expected to find you had the 'catchall' selected but you don't appear to have.
Looking at your config file and comparing it with mine, generated by the wizard, there are many differences that I'm failing to explain. I think the easiest thing at this point would be to remove the traffic shaper completely, remove the <ezshaper>section from the config file manually and reapply the wizard. After backing up the config of course. ;)Unless anyone else has any ideas?
Steve</ezshaper>
-
i removed the ezshaper section, but this didn't solved the problem.
Is there a way to reinstall a early version of pfsense which worked ok for me.Then i will reinstall that verion and hopfully that one will work again ok.
Or some body else should have the solution, or a fix for the problem.
-
Need some help on this one !!!
-
You mean is there a way to downgrade remotely? I don't think so, though I've never tried.
Steve
-
i'm curently on 2.1.3 so i thinking of going back to 2.1.1 that is the latest working version so far i can recal.
But will it working again.there should be a solution for my problem.
-
I take it the site is a long way from you?
Reinstalling might be the only way to downgrade, I wouldn't go to 2.1.1 though that was the version vulnerable to Heartbleed. I guess it wouldn't be a problem if you upgraded immediately.
If you have removed all the traffic shaper rules from the webgui and the ezshaper section from the config file there shouldn't be any shaping happening. :-\ Is there anything left in the current config file?
Steve
-
You need to remove that attachment it should not be public.
Steve
-
The config file still contains the <shaper>section complete with all it's queues. It seems likely that your traffic is being diverted through one such queue for some reason. Though without any rules to do that it;s hard to see how.
Lets review:
Disabling the captive portal allows traffic to flow at full speed.
Removing all the traffic shaping rules via the webgui hasn't helped.
Changing the p2p ezshaper percentage did have an effect? Interestingly going through the wizard, 15% is the highest valid number there anyway.Interestingly the captive portal is the only part of pfsense that uses ipfw and not pf because it has to operate at layer2, I wonder if that is the cause?
You could try removing the shaper section of the config file and reloading/restoring. However manually playing with the config file will almost inevitably eventually lead to the box failing to boot due to some typo etc. If you remove the queues and something is still trying to use them what happens?
If you do try, replace:
<shaper>…...
.......</shaper>With simply:
<shaper>Steve</shaper></shaper> -
So <shaper>should be replaced with <\shaper></shaper>
-
No. In your config file the shaper section has opening and closing xml tags:
<shaper>all your shaper queues</shaper>In my config file, from a box that doesn't have traffic shaping, I have only one tag that's different to either of yours:
<shaper></shaper>I guess this designates that shaper section is empty or undefined.
Steve
-
Next week when i'm back on the camp site i go try this. I don't want to try this when i'm not around.
Or is it safe to do it remotly? -
If you can wait I would do so.
If you're on site I would first try a re-install and restore of 2.1.3. If you look at the backup/restore section in the webgui you have the option of backing up each part of the config file separately. You can then restore each part testing at each stage.
For your config the major parts that you'd rather not have to reconfigure manually are probably, DHCP server - with all the static leases you have, firewall rules and captive portal.
Take install media with you anything you might need. If you have a spare HD take that and swap it out so you can always fall back to the old one. :)Steve
-
finaly got a new machine up and running.
restored from backup captive portable and lan/wan setings.same speed issu. need some more advice.
i could disable captive portal but then we can't make any money out of it.
-
Hmm, so you restored only those sections of the config?
I'm away from home right now so I'm restricted to using only a tablet. Might not be much help. :-\Steve
-
Today i downloaded an old version 2.1.0 the first release, installed it. and my network is going like a rokket.
pffff finaly solved this problem.Don't know why the newer versions aren't working but i don't update pfsense again.
-
Hmm, not really solved then. :-
Did you try a clean install of 2.1.4? What version were you runninb before any of this trouble started?Steve
-
This is the current verion i'm running, and its running gooooood.
2.1-RELEASE (amd64)
built on Wed Sep 11 18:17:48 EDT 2013
FreeBSD 8.3-RELEASE-p11The latest version i had running from a newly installed live cd was 2.1.4 the download speed was terrible slow.
the problem is not solved, but for me i don't think i ever update my pfsense setup again.
