1. W

    Network goes away after some time

    I've run into a strange issue attempting to deploy FreeBSD production servers for the first time. I've deployed 3 servers (2 web and 1 dbase) running FreeBSD 13.3 on OMC/Kamatera. When I boot the servers I can connect fine using ssh or curl (plain http to the web server home page). However...
  2. K

    IPFW TCP protocol becomes non-working for PPTP-client after ipfw nat

    Hi everyone! I need help with strange situation. There is a host (12.2) with jails, one of these jails is a vpn server (mpd5) with internal eth1= and another one is a mail server with internal eth1= The vpn jail is a vnet jail, and the mail jail is a simple jail...
  3. CyberCr33p

    Solved TCP RACK and SACK

    I download a file using a server in Germany from a server in USA. Good speed (15-24MB/s): sysctl net.inet.tcp.functions_default=rack sysctl net.inet.tcp.sack.enable=1 Good speed (15-24MB/s): sysctl net.inet.tcp.functions_default=freebsd sysctl net.inet.tcp.sack.enable=1 It starts with...
  4. scott_sch

    PF Fundamentals of packet filtering with pf

    The purpose of this post is to try and clarify a few basic ideas in packet filtering that I'm having trouble reducing to firm principles in practice. 0. PF lives in the kernel and handles all packets as they pass between NI(C)'s and daemons 1. Packets are identified by the NIC of origin and...
  5. sidetone

    Netflix found vulnerabilities in FreeBSD
  6. S

    Netstat Statistics

    Hi all, could someone point me to a good place where I can read more about the details in the statistics shown by netstat -s? Would like to know more on "acks for unsent data" particularly. Also, is it normal to have large number for "acks for unsent data"? Here is the count for "acks for...
  7. P

    Implementing ECN+

    Hi, I am trying to implement ECN+/Wait algorithm(rfc5562) in the kernel. I need to add enable ECN Echo bit in TCP header while sending SYN packet during connection establishment. I am not able find the code where SYN and ACK packets are handled during connection establishment. Any guidance...
  8. Charlie Root

    Solved tcp packets lost after upgrade OS

    Hi, I have upgrade my server from freeBSD 10.3 to FreeBSD 11.1-RELEASE after upgraded, I am facing with TCP packets lost issue. By mtr with ICMP it fine: [root@m1 conf.d]# mtr -r -c 10 Start: Tue Mar 27 21:01:17 2018 HOST: Loss% Snt Last Avg Best Wrst StDev...
  9. Martian

    PF redirect local outgoing packets

    Hello, I'm trying to setup port multiplexing using sslh importantly I have to use that nice 'transparent' feature that makes traffic from sslh distributed locally to look like it comes from external interface. It looks something like this : Browser[A]-----------[http/ssl]-------> sslh[B 443]...
  10. G

    Solved FreeBSD 11 unreliable TCP connections

    I have a laptop running FreeBSD 11.0 amd64, a server that was running FreeBSD 10.1 i386, and a gateway machine running FreeBSD 10.2 i386 . Everything worked fine. I recently "upgraded" the server machine to FreeBSD 11.0 amd64, and TCP started falling apart between the laptop and the server...
  11. zoujiaqing

    about linux 4.9 google commit for BBR congestion control

    BBR Article: linux 4.9 patch: FreeBSD should also be improved.