Re: performance problem with my home network
Joe Hu wrote:
>
> >Your routing table looks strange. You have two entries for the
> >192.168.1.0 network -- one without a gateway and one with a gateway of
> >192.168.1.3. Try removing this gateway on the internal network to make
>
> Actually, the original routing table did look like this:
>
> Kernel IP routing table
> Destination Gateway Genmask Flags Metric Ref Use
> Iface
> 192.168.1.0 0.0.0.0 255.255.255.0 U 0 0 0 eth1
> 146.115.74.0 0.0.0.0 255.255.254.0 U 0 0 0 eth0
> 0.0.0.0 146.115.74.1 0.0.0.0 UG 0 0 0 eth0
>
> I added the "strange" one just for experiment. Both way didn't work. I still
> couldn't figure out why the windows machine is so slow. Please help me.
>
> joe
>
> --
> To UNSUBSCRIBE, email to debian-firewall-request@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Don't know if you're still looking but:
>From Linux Kernel v2.4.9 Configuration (`make menuconfig' dialog):
CONFIG_IP_NF_TARGET_TCPMSS:
This option adds a `TCPMSS' target which allows you to alter the MSS
value of TCP SYN packets to control the maximum size for that connection
(usually limiting it to your outgoing MTU minus 40).
This is to block criminally braindead ISP's or servers which block ICMP
Fragmentation Needed packets. THE SYMPTOMS (caps mine) of this problem
are that everything works fine from your Linux firewall/router, but
machines behind it can never exchange large packets:
1) Web browsers connect, then hang with no data received.
2) Small mail works fine, but large emails hang.
3) ssh works fine, but scp hangs after initial handshaking.
WORKAROUND: activate this option and add a rule to your firewall
configuration like:
iptables -A FORWARD -p tcp --tcp-flags SYN,RST SYN -j TCPMSS
--clamp-mss-to-pmtu
Reply to: