Slow Masquerade in 2.4.16
Hi,
I have a Debian unstable box connected via 33k modem
to an ISP, and recieve at approx 3.4kB/s from a local
mirror.
Through a 10MBaud coax lan I can transfer at almost
1MB/s.
However when masquerading for win98 OR linux boxes on
the lan, the throughput drops to around 1kB/sec, and
seems to regularly drop packets.
I am using 2.4.16 and have compiled all relevant
modules (see below for module list).
This is my iptable setup (from
Masquerading-Simple-HOWTO.gz):
echo -n "Starting IP masquerading"
echo "1" > /proc/sys/net/ipv4/ip_forward
modprobe iptable_nat
iptables -F; iptables -t nat -F; iptables -t mangle -F
iptables -t nat -A POSTROUTING -o ppp0 -j MASQUERADE
iptables -A INPUT -m state --state ESTABLISHED,RELATED
-j ACCEPT
iptables -A INPUT -m state --state NEW -i ! ppp0 -j
ACCEPT
iptables -P INPUT DROP
iptables -A FORWARD -i ppp0 -o ppp0 -j REJECT
(I have also tried the simple:
iptables -t nat -A POSTROUTING -o ppp0 -j MASQUERADE
by itself, no difference).
Using iptables 1.2.5-6,netbase 4.07
Can anyone suggest a way to track down this problem?
Regards,
Mark.
Module Size Used by
ppp_deflate 39456 0 (autoclean)
bsd_comp 4032 0 (autoclean)
ppp_async 6064 1 (autoclean)
ppp_generic 16608 3 (autoclean)
[ppp_deflate bsd_comp ppp_async]
slhc 4416 1 (autoclean)
[ppp_generic]
ipt_REJECT 2784 1 (autoclean)
ipt_state 608 2 (autoclean)
ipt_MASQUERADE 1200 1 (autoclean)
iptable_mangle 1696 0 (autoclean) (unused)
iptable_filter 1728 0 (autoclean) (unused)
iptable_nat 12528 0 [ipt_MASQUERADE]
ip_conntrack 12624 2 [ipt_state
ipt_MASQUERADE iptable_nat]
ip_tables 10304 8 [ipt_REJECT
ipt_state ipt_MASQUERADE iptable_m
angle iptable_filter iptable_nat]
http://movies.yahoo.com.au - Yahoo! Movies
- Vote for your nominees in our online Oscars pool.
Reply to: