Re: enabling ip_forward, slow my network rate

To: debian-firewall@lists.debian.org
Subject: Re: enabling ip_forward, slow my network rate
From: Paolo <oopla@users.sf.net>
Date: Fri, 30 May 2008 01:47:30 +0200
Message-id: <[🔎] 20080529234729.GD25160@localhost>
Mail-followup-to: oopla@liszt.debian.org, debian-firewall@lists.debian.org
In-reply-to: <[🔎] 483F14BF.4090201@mely.minbas.cu>
References: <[🔎] 483F0A50.70006@mely.minbas.cu> <[🔎] 20080529202530.GC25160@localhost> <[🔎] 483F14BF.4090201@mely.minbas.cu>

On Thu, May 29, 2008 at 04:40:31PM -0400, Manuel Mely wrote:
> >
> >kernel version?

still missing ...

> #lsmod
> ...
> iptable_nat             7812  1
> ip_nat                 17740  1 iptable_nat
...

> I'm not running any firewall rule. The default policies are this:

so why do you have ip_*/xt_* modules loaded? unless I misunderstand your 
orig msg, you're just doing

%  sysctl -w net.ipv4.ip_forward=1

then if that's the case, check both situations without unneeded modules.
In the (old) case I mentioned, the w/round was to unload+reload the modules
(if/when needed).

Checking here on Etch + 2.4.25.4, no nf modules, I see no differences 
between ip_fw 0/1.

-- 
paolo

Reply to:

Follow-Ups:
- Re: enabling ip_forward, slow my network rate
  - From: Paolo <oopla@users.sf.net>
- Re: enabling ip_forward, slow my network rate
  - From: Manuel Mely <mmelyp@gmail.com>

References:
- enabling ip_forward, slow my network rate
  - From: Manuel Mely <mmelyp@gmail.com>
- Re: enabling ip_forward, slow my network rate
  - From: Paolo <oopla@users.sf.net>
- Re: enabling ip_forward, slow my network rate
  - From: Manuel Mely <mmelyp@gmail.com>

Prev by Date: Re: enabling ip_forward, slow my network rate
Next by Date: Re: enabling ip_forward, slow my network rate
Previous by thread: Re: enabling ip_forward, slow my network rate
Next by thread: Re: enabling ip_forward, slow my network rate
Index(es):
- Date
- Thread