Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


View this topic in a long page with up to 500 replies per page Create new topic
1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11
370 posts

Ultimate Geek
+1 received by user: 85


  Reply # 1647634 8-Oct-2016 10:21
Send private message

dt:

 

 

Orcon, Auckland, North Shore, Albany.

 

Running a pfSense router made up of an i3, 8GB memory and a quad port Intel Pro/1000 PT server NIC.

 

CAT6 from the ONT to router, CAT6 from the router to my PC running a PCI-E Intel 1340-t2 server NIC.

 

I was getting between 200-500 up and down on the Orcon supplied fritzbox.. 

 

 

Have you thought about creating an 2Gbps link via NIC bonding between your pfsense box and your PC?

 

Just wondered if those speeds would increase a little.

 

Would be interested to hear if anyone is running gigabit fibre through a stock FreeBSD or OpenBSD router.

 

 


174 posts

Master Geek
+1 received by user: 38


  Reply # 1647638 8-Oct-2016 10:27
Send private message

michaelmurfy:

 

@lagbort before you buy a new router could you please try the following:

 

1) Download Advanced Tomato and flash it on your router.
2) Set it up as normal then go into Advanced -> Miscellaneous to enable Hardware NAT (can't remember what it is actually called), reboot.
3) Test again over Ethernet - see if you see any improvement.

 

This router has the capability to do Gigabit with Hardware NAT enabled so will be interested to see if you see any changes.

 

 

After installing Advanced Tomato

 

 

 

 

Reading around it appears the standard firmware cant do CTF over PPPOE.

 

 

 

All is well now, thanks for the help!

 

 


 
 
 
 


34 posts

Geek
+1 received by user: 11


  Reply # 1647716 8-Oct-2016 16:16
Send private message

dt:

 

 

Orcon, Auckland, North Shore, Albany.

 

Running a pfSense router made up of an i3, 8GB memory and a quad port Intel Pro/1000 PT server NIC.

 

CAT6 from the ONT to router, CAT6 from the router to my PC running a PCI-E Intel 1340-t2 server NIC.

 

 

 

I was getting between 200-500 up and down on the Orcon supplied fritzbox.. 

 

 

 

 

Awesome, is pfsense virtualized?  I'm running it (on 100/20Mbps Bigpipe) in ESXi with 1 core and 512MB, I think it runs around 30% memory utilization and similar CPU but sometimes goes up to 100% (with no noticeable changes in performance).  Will look at increasing the resources and possibly replacing/upgrading the host soon especially when I go to gigabit.


279 posts

Ultimate Geek
+1 received by user: 39


  Reply # 1647728 8-Oct-2016 16:56
Send private message

I feel like I'm doing something wrong.

 

BigPipe/Dunedin.

 

CAT6 via Asus RT-AC87U w/ Merlin (hardware acceleration CTF only):

 

 

Direct to ONT:

 

 

 


370 posts

Ultimate Geek
+1 received by user: 85


  Reply # 1647735 8-Oct-2016 17:06
Send private message

Intravix:

 

 

 

Awesome, is pfsense virtualized?  I'm running it (on 100/20Mbps Bigpipe) in ESXi with 1 core and 512MB, I think it runs around 30% memory utilization and similar CPU but sometimes goes up to 100% (with no noticeable changes in performance).  Will look at increasing the resources and possibly replacing/upgrading the host soon especially when I go to gigabit.

 

 

I don't think dt was running that virtualized and the golden rule is that you really shouldn't run anything like pfSense as a VM. If your version of pfSense is 2.2 (or above) then you should be running with dual (or more cores) as pf itself is now SMP compatible. On a 100Mbps connection it should really be dual core and say 2GB RAM. For 1Gbps then ideally dual/quad core and 2-4GB RAM.

 

But your virtualized pfSense VM needs a beef up.


34 posts

Geek
+1 received by user: 11


  Reply # 1647742 8-Oct-2016 17:14
Send private message

cynnicallemon:

 

Intravix:

 

 

 

Awesome, is pfsense virtualized?  I'm running it (on 100/20Mbps Bigpipe) in ESXi with 1 core and 512MB, I think it runs around 30% memory utilization and similar CPU but sometimes goes up to 100% (with no noticeable changes in performance).  Will look at increasing the resources and possibly replacing/upgrading the host soon especially when I go to gigabit.

 

 

I don't think dt was running that virtualized and the golden rule is that you really shouldn't run anything like pfSense as a VM. If your version of pfSense is 2.2 (or above) then you should be running with dual (or more cores) as pf itself is now SMP compatible. On a 100Mbps connection it should really be dual core and say 2GB RAM. For 1Gbps then ideally dual/quad core and 2-4GB RAM.

 

But your virtualized pfSense VM needs a beef up.

 

 

 

 

I've seen a lot of recommendations along those lines, and some the other way too stating VM isolation is good enough.  I followed a guide which suggested specs, but I read that the new version is written for multiple cores, I'll probably migrate it soon to the host it's on and use another PC as a web/other server.


zyo

278 posts

Ultimate Geek
+1 received by user: 23


  Reply # 1647846 9-Oct-2016 06:51
Send private message

michaelmurfy:

@lagbort before you buy a new router could you please try the following:


1) Download Advanced Tomato and flash it on your router.
2) Set it up as normal then go into Advanced -> Miscellaneous to enable Hardware NAT (can't remember what it is actually called), reboot.
3) Test again over Ethernet - see if you see any improvement.


This router has the capability to do Gigabit with Hardware NAT enabled so will be interested to see if you see any changes.



Speaking of advanced tomato on r7000
Do you know if it supports 11ac ? In the wireless mode drop down for the 5ghz band there is only a and n.

There is an option for 80mhz channel width.

Mr Snotty
8426 posts

Uber Geek
+1 received by user: 4353

Moderator
Trusted
Lifetime subscriber

  Reply # 1647855 9-Oct-2016 08:01
Send private message

zyo:
michaelmurfy:

@lagbort before you buy a new router could you please try the following:


1) Download Advanced Tomato and flash it on your router.
2) Set it up as normal then go into Advanced -> Miscellaneous to enable Hardware NAT (can't remember what it is actually called), reboot.
3) Test again over Ethernet - see if you see any improvement.


This router has the capability to do Gigabit with Hardware NAT enabled so will be interested to see if you see any changes.



Speaking of advanced tomato on r7000
Do you know if it supports 11ac ? In the wireless mode drop down for the 5ghz band there is only a and n.

There is an option for 80mhz channel width.


In my experience it does (@mdf can comment further as he bought my router).

I have not used one since last year. Had the Edgerouter since.




dan

1017 posts

Uber Geek
+1 received by user: 95

Lifetime subscriber

  Reply # 1647861 9-Oct-2016 08:38
Send private message

Xeon:

 

I feel like I'm doing something wrong.

 

BigPipe/Dunedin.

 

CAT6 via Asus RT-AC87U w/ Merlin (hardware acceleration CTF only):

 

 

Direct to ONT:

 

 

 

 

 

 

 

you may be limited by the capabilities of the PC/laptop/whatever actually doing the speed test?


370 posts

Ultimate Geek
+1 received by user: 85


  Reply # 1647863 9-Oct-2016 08:48
Send private message

Xeon:

 

I feel like I'm doing something wrong.

 

BigPipe/Dunedin.

 

CAT6 via Asus RT-AC87U w/ Merlin (hardware acceleration CTF only):

 

 

 

If you're in Dunedin then it would be better to select a server in Dunedin to do your speedtest from as it may yield better results but those test to Auckland should be way better.


3979 posts

Uber Geek
+1 received by user: 2685

Trusted
Spark NZ

  Reply # 1647868 9-Oct-2016 08:49
Send private message

cynnicallemon:

 

Xeon:

 

I feel like I'm doing something wrong.

 

BigPipe/Dunedin.

 

CAT6 via Asus RT-AC87U w/ Merlin (hardware acceleration CTF only):

 

 

 

If you're in Dunedin then it would be better to select a server in Dunedin to do your speedtest from as it may yield better results but those test to Auckland should be way better.

 

 

 

 

This shouldn't make a significant difference with speedtest.net servers. I have personally reviewed the reporting from Spark's 3 speedtest.net servers and I can see 900+Mbps results from DUnedin against our Christchurch, Wellington and Auckland servers.

 

 

 

Cheers- N


370 posts

Ultimate Geek
+1 received by user: 85


  Reply # 1647904 9-Oct-2016 10:25
Send private message

Talkiet:

 

cynnicallemon:

 

Xeon:

 

I feel like I'm doing something wrong.

 

BigPipe/Dunedin.

 

CAT6 via Asus RT-AC87U w/ Merlin (hardware acceleration CTF only):

 

 

 

If you're in Dunedin then it would be better to select a server in Dunedin to do your speedtest from as it may yield better results but those test to Auckland should be way better.

 

 

 

This shouldn't make a significant difference with speedtest.net servers. I have personally reviewed the reporting from Spark's 3 speedtest.net servers and I can see 900+Mbps results from DUnedin against our Christchurch, Wellington and Auckland servers.

 

 Cheers- N

 

 

Agreed, it shouldn't make a great difference but if you're troubleshooting speed issues I would think it's best to pick the Dunedin servers in this case as you rule out potential networking problems over that 1400km distance that might reflect a non optimal test.


27578 posts

Uber Geek
+1 received by user: 7039

Moderator
Trusted
Biddle Corp
Lifetime subscriber

  Reply # 1647908 9-Oct-2016 10:58
Send private message

cynnicallemon:

 

Talkiet:

 

cynnicallemon:

 

Xeon:

 

I feel like I'm doing something wrong.

 

BigPipe/Dunedin.

 

CAT6 via Asus RT-AC87U w/ Merlin (hardware acceleration CTF only):

 

 

 

If you're in Dunedin then it would be better to select a server in Dunedin to do your speedtest from as it may yield better results but those test to Auckland should be way better.

 

 

 

This shouldn't make a significant difference with speedtest.net servers. I have personally reviewed the reporting from Spark's 3 speedtest.net servers and I can see 900+Mbps results from DUnedin against our Christchurch, Wellington and Auckland servers.

 

 Cheers- N

 

 

Agreed, it shouldn't make a great difference but if you're troubleshooting speed issues I would think it's best to pick the Dunedin servers in this case as you rule out potential networking problems over that 1400km distance that might reflect a non optimal test.

 

 

But that depends if the provider is peering in Dunedin. We know that Big Pipe's only BNG is Auckland so if you're testing to a Dunedin server on a Big Pipe connection the traffic will go to Auckland and then back.

 

It's also very safe to assume there are a number of NZ speedtest servers only running on 1GB connections.

 

 

 

 


dt

367 posts

Ultimate Geek
+1 received by user: 54


  Reply # 1648792 10-Oct-2016 22:30
Send private message

Intravix:

 

 

 

Awesome, is pfsense virtualized?  I'm running it (on 100/20Mbps Bigpipe) in ESXi with 1 core and 512MB, I think it runs around 30% memory utilization and similar CPU but sometimes goes up to 100% (with no noticeable changes in performance).  Will look at increasing the resources and possibly replacing/upgrading the host soon especially when I go to gigabit.

 

 

 

 

I'm running a physical box. This setup appears to be way overkill however. CPU very rarely goes up to 15% and memory sits around 5-10%. Pretty much running a full UTM suite as well.

 

It was a re purposed HTPC I had laying around. currently looking to build something less beefy with lower power requirements.

 

I did see a blog where someone put in the effort running multiple tests in virtual/physcial configurations and there was next to no difference in the results

 

 

 

cynnicallemon:

 

 

 

Have you thought about creating an 2Gbps link via NIC bonding between your pfsense box and your PC?

 

Just wondered if those speeds would increase a little.

 

Would be interested to hear if anyone is running gigabit fibre through a stock FreeBSD or OpenBSD router.

 

 

 

 

 

 

Will give it a crack tomorrow evening and post up the results

 

My connection seems to be getting faster by the day at the moment

 

 

 

 

 

 

 

 

 


mdf

2162 posts

Uber Geek
+1 received by user: 665

Trusted
Subscriber

  Reply # 1648794 10-Oct-2016 22:39
Send private message

michaelmurfy:
zyo:
michaelmurfy:

 

@lagbort before you buy a new router could you please try the following:

 

 

 

1) Download Advanced Tomato and flash it on your router.
2) Set it up as normal then go into Advanced -> Miscellaneous to enable Hardware NAT (can't remember what it is actually called), reboot.
3) Test again over Ethernet - see if you see any improvement.

 

 

 

This router has the capability to do Gigabit with Hardware NAT enabled so will be interested to see if you see any changes.

 



Speaking of advanced tomato on r7000
Do you know if it supports 11ac ? In the wireless mode drop down for the 5ghz band there is only a and n.

There is an option for 80mhz channel width.


In my experience it does (@mdf can comment further as he bought my router).

I have not used one since last year. Had the Edgerouter since.

 

You know, that is an excellent question. Is there a way to determine conclusively whether you're connecting to a 5GHz AC or N network? Other than the speed? I'm being somewhat limited by the AC devices I have available.

 

From the looks of things, there isn't an option to force AC only.


1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11
View this topic in a long page with up to 500 replies per page Create new topic


Donate via Givealittle


Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Amazon introduces new Kindle with adjustable front light
Posted 21-Mar-2019 20:14


A call from the companies providing internet access for the great majority of New Zealanders, to the companies with the greatest influence over social media content
Posted 19-Mar-2019 15:21


Two e-scooter companies selected for Wellington trial
Posted 15-Mar-2019 17:33


GeForce GTX 1660 available now
Posted 15-Mar-2019 08:47


Artificial Intelligence to double the rate of innovation in New Zealand by 2021
Posted 13-Mar-2019 14:47


LG demonstrates smart home concepts at LG InnoFest
Posted 13-Mar-2019 14:45


New Zealanders buying more expensive smartphones
Posted 11-Mar-2019 09:52


2degrees Offers Amazon Prime Video to Broadband Customers
Posted 8-Mar-2019 14:10


D-Link ANZ launches D-Fend AC2600 Wi-Fi Router Protected by McAfee
Posted 7-Mar-2019 11:09


Slingshot commissions celebrities to design new modems
Posted 5-Mar-2019 08:58


Symantec Annual Threat Report reveals more ambitious, destructive and stealthy attacks
Posted 28-Feb-2019 10:14


FUJIFILM launches high performing X-T30
Posted 28-Feb-2019 09:40


Netflix is killing content piracy says research
Posted 28-Feb-2019 09:33


Trend Micro finds shifting threats require kiwis to rethink security priorities
Posted 28-Feb-2019 09:27


Mainfreight uses Spark IoT Asset Tracking service
Posted 28-Feb-2019 09:25



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.