Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


View this topic in a long page with up to 500 replies per page Create new topic
1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11
370 posts

Ultimate Geek
+1 received by user: 85


  Reply # 1647634 8-Oct-2016 10:21
Send private message

dt:

 

 

Orcon, Auckland, North Shore, Albany.

 

Running a pfSense router made up of an i3, 8GB memory and a quad port Intel Pro/1000 PT server NIC.

 

CAT6 from the ONT to router, CAT6 from the router to my PC running a PCI-E Intel 1340-t2 server NIC.

 

I was getting between 200-500 up and down on the Orcon supplied fritzbox.. 

 

 

Have you thought about creating an 2Gbps link via NIC bonding between your pfsense box and your PC?

 

Just wondered if those speeds would increase a little.

 

Would be interested to hear if anyone is running gigabit fibre through a stock FreeBSD or OpenBSD router.

 

 


172 posts

Master Geek
+1 received by user: 37


  Reply # 1647638 8-Oct-2016 10:27
Send private message

michaelmurfy:

 

@lagbort before you buy a new router could you please try the following:

 

1) Download Advanced Tomato and flash it on your router.
2) Set it up as normal then go into Advanced -> Miscellaneous to enable Hardware NAT (can't remember what it is actually called), reboot.
3) Test again over Ethernet - see if you see any improvement.

 

This router has the capability to do Gigabit with Hardware NAT enabled so will be interested to see if you see any changes.

 

 

After installing Advanced Tomato

 

 

 

 

Reading around it appears the standard firmware cant do CTF over PPPOE.

 

 

 

All is well now, thanks for the help!

 

 


 
 
 
 


32 posts

Geek
+1 received by user: 10


  Reply # 1647716 8-Oct-2016 16:16
Send private message

dt:

 

 

Orcon, Auckland, North Shore, Albany.

 

Running a pfSense router made up of an i3, 8GB memory and a quad port Intel Pro/1000 PT server NIC.

 

CAT6 from the ONT to router, CAT6 from the router to my PC running a PCI-E Intel 1340-t2 server NIC.

 

 

 

I was getting between 200-500 up and down on the Orcon supplied fritzbox.. 

 

 

 

 

Awesome, is pfsense virtualized?  I'm running it (on 100/20Mbps Bigpipe) in ESXi with 1 core and 512MB, I think it runs around 30% memory utilization and similar CPU but sometimes goes up to 100% (with no noticeable changes in performance).  Will look at increasing the resources and possibly replacing/upgrading the host soon especially when I go to gigabit.


279 posts

Ultimate Geek
+1 received by user: 39


  Reply # 1647728 8-Oct-2016 16:56
Send private message

I feel like I'm doing something wrong.

 

BigPipe/Dunedin.

 

CAT6 via Asus RT-AC87U w/ Merlin (hardware acceleration CTF only):

 

 

Direct to ONT:

 

 

 


370 posts

Ultimate Geek
+1 received by user: 85


  Reply # 1647735 8-Oct-2016 17:06
Send private message

Intravix:

 

 

 

Awesome, is pfsense virtualized?  I'm running it (on 100/20Mbps Bigpipe) in ESXi with 1 core and 512MB, I think it runs around 30% memory utilization and similar CPU but sometimes goes up to 100% (with no noticeable changes in performance).  Will look at increasing the resources and possibly replacing/upgrading the host soon especially when I go to gigabit.

 

 

I don't think dt was running that virtualized and the golden rule is that you really shouldn't run anything like pfSense as a VM. If your version of pfSense is 2.2 (or above) then you should be running with dual (or more cores) as pf itself is now SMP compatible. On a 100Mbps connection it should really be dual core and say 2GB RAM. For 1Gbps then ideally dual/quad core and 2-4GB RAM.

 

But your virtualized pfSense VM needs a beef up.


32 posts

Geek
+1 received by user: 10


  Reply # 1647742 8-Oct-2016 17:14
Send private message

cynnicallemon:

 

Intravix:

 

 

 

Awesome, is pfsense virtualized?  I'm running it (on 100/20Mbps Bigpipe) in ESXi with 1 core and 512MB, I think it runs around 30% memory utilization and similar CPU but sometimes goes up to 100% (with no noticeable changes in performance).  Will look at increasing the resources and possibly replacing/upgrading the host soon especially when I go to gigabit.

 

 

I don't think dt was running that virtualized and the golden rule is that you really shouldn't run anything like pfSense as a VM. If your version of pfSense is 2.2 (or above) then you should be running with dual (or more cores) as pf itself is now SMP compatible. On a 100Mbps connection it should really be dual core and say 2GB RAM. For 1Gbps then ideally dual/quad core and 2-4GB RAM.

 

But your virtualized pfSense VM needs a beef up.

 

 

 

 

I've seen a lot of recommendations along those lines, and some the other way too stating VM isolation is good enough.  I followed a guide which suggested specs, but I read that the new version is written for multiple cores, I'll probably migrate it soon to the host it's on and use another PC as a web/other server.


zyo

225 posts

Master Geek
+1 received by user: 19


  Reply # 1647846 9-Oct-2016 06:51
Send private message

michaelmurfy:

@lagbort before you buy a new router could you please try the following:


1) Download Advanced Tomato and flash it on your router.
2) Set it up as normal then go into Advanced -> Miscellaneous to enable Hardware NAT (can't remember what it is actually called), reboot.
3) Test again over Ethernet - see if you see any improvement.


This router has the capability to do Gigabit with Hardware NAT enabled so will be interested to see if you see any changes.



Speaking of advanced tomato on r7000
Do you know if it supports 11ac ? In the wireless mode drop down for the 5ghz band there is only a and n.

There is an option for 80mhz channel width.





Mr Snotty
8075 posts

Uber Geek
+1 received by user: 4051

Moderator
Trusted
Lifetime subscriber

  Reply # 1647855 9-Oct-2016 08:01
Send private message

zyo:
michaelmurfy:

@lagbort before you buy a new router could you please try the following:


1) Download Advanced Tomato and flash it on your router.
2) Set it up as normal then go into Advanced -> Miscellaneous to enable Hardware NAT (can't remember what it is actually called), reboot.
3) Test again over Ethernet - see if you see any improvement.


This router has the capability to do Gigabit with Hardware NAT enabled so will be interested to see if you see any changes.



Speaking of advanced tomato on r7000
Do you know if it supports 11ac ? In the wireless mode drop down for the 5ghz band there is only a and n.

There is an option for 80mhz channel width.


In my experience it does (@mdf can comment further as he bought my router).

I have not used one since last year. Had the Edgerouter since.




dan

986 posts

Ultimate Geek
+1 received by user: 89


  Reply # 1647861 9-Oct-2016 08:38
Send private message

Xeon:

 

I feel like I'm doing something wrong.

 

BigPipe/Dunedin.

 

CAT6 via Asus RT-AC87U w/ Merlin (hardware acceleration CTF only):

 

 

Direct to ONT:

 

 

 

 

 

 

 

you may be limited by the capabilities of the PC/laptop/whatever actually doing the speed test?


370 posts

Ultimate Geek
+1 received by user: 85


  Reply # 1647863 9-Oct-2016 08:48
Send private message

Xeon:

 

I feel like I'm doing something wrong.

 

BigPipe/Dunedin.

 

CAT6 via Asus RT-AC87U w/ Merlin (hardware acceleration CTF only):

 

 

 

If you're in Dunedin then it would be better to select a server in Dunedin to do your speedtest from as it may yield better results but those test to Auckland should be way better.


3759 posts

Uber Geek
+1 received by user: 2275

Trusted
Spark NZ

  Reply # 1647868 9-Oct-2016 08:49
Send private message

cynnicallemon:

 

Xeon:

 

I feel like I'm doing something wrong.

 

BigPipe/Dunedin.

 

CAT6 via Asus RT-AC87U w/ Merlin (hardware acceleration CTF only):

 

 

 

If you're in Dunedin then it would be better to select a server in Dunedin to do your speedtest from as it may yield better results but those test to Auckland should be way better.

 

 

 

 

This shouldn't make a significant difference with speedtest.net servers. I have personally reviewed the reporting from Spark's 3 speedtest.net servers and I can see 900+Mbps results from DUnedin against our Christchurch, Wellington and Auckland servers.

 

 

 

Cheers- N


370 posts

Ultimate Geek
+1 received by user: 85


  Reply # 1647904 9-Oct-2016 10:25
Send private message

Talkiet:

 

cynnicallemon:

 

Xeon:

 

I feel like I'm doing something wrong.

 

BigPipe/Dunedin.

 

CAT6 via Asus RT-AC87U w/ Merlin (hardware acceleration CTF only):

 

 

 

If you're in Dunedin then it would be better to select a server in Dunedin to do your speedtest from as it may yield better results but those test to Auckland should be way better.

 

 

 

This shouldn't make a significant difference with speedtest.net servers. I have personally reviewed the reporting from Spark's 3 speedtest.net servers and I can see 900+Mbps results from DUnedin against our Christchurch, Wellington and Auckland servers.

 

 Cheers- N

 

 

Agreed, it shouldn't make a great difference but if you're troubleshooting speed issues I would think it's best to pick the Dunedin servers in this case as you rule out potential networking problems over that 1400km distance that might reflect a non optimal test.


27267 posts

Uber Geek
+1 received by user: 6695

Moderator
Trusted
Biddle Corp
Lifetime subscriber

  Reply # 1647908 9-Oct-2016 10:58
Send private message

cynnicallemon:

 

Talkiet:

 

cynnicallemon:

 

Xeon:

 

I feel like I'm doing something wrong.

 

BigPipe/Dunedin.

 

CAT6 via Asus RT-AC87U w/ Merlin (hardware acceleration CTF only):

 

 

 

If you're in Dunedin then it would be better to select a server in Dunedin to do your speedtest from as it may yield better results but those test to Auckland should be way better.

 

 

 

This shouldn't make a significant difference with speedtest.net servers. I have personally reviewed the reporting from Spark's 3 speedtest.net servers and I can see 900+Mbps results from DUnedin against our Christchurch, Wellington and Auckland servers.

 

 Cheers- N

 

 

Agreed, it shouldn't make a great difference but if you're troubleshooting speed issues I would think it's best to pick the Dunedin servers in this case as you rule out potential networking problems over that 1400km distance that might reflect a non optimal test.

 

 

But that depends if the provider is peering in Dunedin. We know that Big Pipe's only BNG is Auckland so if you're testing to a Dunedin server on a Big Pipe connection the traffic will go to Auckland and then back.

 

It's also very safe to assume there are a number of NZ speedtest servers only running on 1GB connections.

 

 

 

 


dt

326 posts

Ultimate Geek
+1 received by user: 41


  Reply # 1648792 10-Oct-2016 22:30
Send private message

Intravix:

 

 

 

Awesome, is pfsense virtualized?  I'm running it (on 100/20Mbps Bigpipe) in ESXi with 1 core and 512MB, I think it runs around 30% memory utilization and similar CPU but sometimes goes up to 100% (with no noticeable changes in performance).  Will look at increasing the resources and possibly replacing/upgrading the host soon especially when I go to gigabit.

 

 

 

 

I'm running a physical box. This setup appears to be way overkill however. CPU very rarely goes up to 15% and memory sits around 5-10%. Pretty much running a full UTM suite as well.

 

It was a re purposed HTPC I had laying around. currently looking to build something less beefy with lower power requirements.

 

I did see a blog where someone put in the effort running multiple tests in virtual/physcial configurations and there was next to no difference in the results

 

 

 

cynnicallemon:

 

 

 

Have you thought about creating an 2Gbps link via NIC bonding between your pfsense box and your PC?

 

Just wondered if those speeds would increase a little.

 

Would be interested to hear if anyone is running gigabit fibre through a stock FreeBSD or OpenBSD router.

 

 

 

 

 

 

Will give it a crack tomorrow evening and post up the results

 

My connection seems to be getting faster by the day at the moment

 

 

 

 

 

 

 

 

 


mdf

2027 posts

Uber Geek
+1 received by user: 599

Trusted
Subscriber

  Reply # 1648794 10-Oct-2016 22:39
Send private message

michaelmurfy:
zyo:
michaelmurfy:

 

@lagbort before you buy a new router could you please try the following:

 

 

 

1) Download Advanced Tomato and flash it on your router.
2) Set it up as normal then go into Advanced -> Miscellaneous to enable Hardware NAT (can't remember what it is actually called), reboot.
3) Test again over Ethernet - see if you see any improvement.

 

 

 

This router has the capability to do Gigabit with Hardware NAT enabled so will be interested to see if you see any changes.

 



Speaking of advanced tomato on r7000
Do you know if it supports 11ac ? In the wireless mode drop down for the 5ghz band there is only a and n.

There is an option for 80mhz channel width.


In my experience it does (@mdf can comment further as he bought my router).

I have not used one since last year. Had the Edgerouter since.

 

You know, that is an excellent question. Is there a way to determine conclusively whether you're connecting to a 5GHz AC or N network? Other than the speed? I'm being somewhat limited by the AC devices I have available.

 

From the looks of things, there isn't an option to force AC only.


1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11
View this topic in a long page with up to 500 replies per page Create new topic



Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.