Messages

Hi All,

Just finished migrating to a new machine (dell optiplex 7040 SFF).
1x Intel 82599 -dual 10G
1x Intel I219-LM onboard.

I'm running VXMNET driver.

Lan is connected to 10G WAN to 1G virtual adapter ( KPN Fiber 1GB up/down).

Below result from my desktop in other room:



Would this be ok as test (done several), or can this be sqeezed a bit more?

Let me know what you think,
Cheers

Hoi,

Ik heb OPNSense draaien als VM op mijn ESX server dat werkt prima echter heb ik mijn huidige opzet the VLAN op de Vswitch staan.
Vswitch0= management vlan0
Vswitch1=LAN vlan0
Vswitch2=WAN  vlan6

De opzet werkt zo, echter zou ik de vlan tag niet op de switch willen zetten maar inopnsense zelf zodat ik makelijk kan schakelen tussen KPN en Odido. Echter als ik op OPnsense een vlan6 maak en die aan de ppoe koppel heb ik geen internet verbinding meer.

Vswitch2      Opnsense            status
Vlan6         alleen ppoe           OK
Vlan6         Vlan6                NOK
vlan0         vlan6                NOK

Toch zie ik mensen die dit voorelkaar hebben met ESX VMX, mis ik iets.

Alle hulp is welkom.

Groetjes,
Hemant

Hi,

I just received my Kaleao Mini PCI-E Interl I350-T3 and doing some tests with :
OPNsense 23.1.1_2-amd64
FreeBSD 13.1-RELEASE-p6
OpenSSL 1.1.1t 7 Feb 2023

CPU i I5-4690S 8GB memory as a virtual machine on ESX with passthrough and getting the following restults:

Iperf -c IPADDRESS:

[ ID] Interval           Transfer     Bitrate         Retr  Cwnd
[  5]   0.00-1.00   sec  56.4 MBytes   473 Mbits/sec   16    166 KBytes
[  5]   1.00-2.00   sec  57.2 MBytes   480 Mbits/sec    4    277 KBytes
[  5]   2.00-3.00   sec  55.5 MBytes   466 Mbits/sec    9    248 KBytes
[  5]   3.00-4.00   sec  58.4 MBytes   489 Mbits/sec   13    217 KBytes
[  5]   4.00-5.00   sec  58.6 MBytes   492 Mbits/sec   24    139 KBytes
[  5]   5.00-6.00   sec  58.1 MBytes   487 Mbits/sec   16    190 KBytes
[  5]   6.00-7.00   sec  55.9 MBytes   469 Mbits/sec   11    183 KBytes
[  5]   7.00-8.00   sec  56.5 MBytes   474 Mbits/sec    2    337 KBytes
[  5]   8.00-9.00   sec  57.7 MBytes   484 Mbits/sec   30    295 KBytes
[  5]   9.00-10.00  sec  59.5 MBytes   499 Mbits/sec    2    307 KBytes
- - - - - - - - - - - - - - - - - - - - - - - - -
[ ID] Interval           Transfer     Bitrate         Retr
[  5]   0.00-10.00  sec   574 MBytes   481 Mbits/sec  127             sender
[  5]   0.00-10.00  sec   573 MBytes   481 Mbits/sec                  receiver


with:

iperf3 -c IPADDRESS -u -t 60 -i 10 -b 1000M

[ ID] Interval           Transfer     Bitrate         Total Datagrams
[  5]   0.00-10.00  sec  1.11 GBytes   957 Mbits/sec  1678000
[  5]  10.00-20.00  sec  1.11 GBytes   956 Mbits/sec  1554568
[  5]  20.00-30.00  sec  1.11 GBytes   956 Mbits/sec  1530808
[  5]  30.00-40.00  sec  1.11 GBytes   956 Mbits/sec  1792589
[  5]  40.00-50.00  sec  1.11 GBytes   956 Mbits/sec  1582055
[  5]  50.00-60.00  sec  1.11 GBytes   956 Mbits/sec  1712025
- - - - - - - - - - - - - - - - - - - - - - - - -
[ ID] Interval           Transfer     Bitrate         Jitter    Lost/Total Datagrams
[  5]   0.00-60.00  sec  6.68 GBytes   956 Mbits/sec  0.000 ms  0/9850045 (0%)  sender
[  5]   0.00-60.01  sec  6.51 GBytes   932 Mbits/sec  0.016 ms  5057030/9844748 (51%)  receiver


I would expect similar results with both iperf3 commands however first one gives me 1/2 the speed.
So my question is there something wrong and which shows the actual performance of my fiber connection.

Feel free to chip in.

*side note: did test with both IPS enabled and disabled, CRC, TSO,LRO are also disabled.

Thanks,
Hemant

Hi,

I did some addtional testing.
I can see the entries in the live view without being blocked.
I can also see the antries in the acces log like this:
9530 xxx.xxx.xxx.xxx TCP_TUNNEL/200 39 CONNECT www.google.com:443 - HIER_DIRECT/142.251.36.36 -

But the pages do not load.

The starnge thing is that it works when using Transparent proxy, but I want caching onlu for specific clients.

Hemant

Hi,

I just finished the basic setup using the documentation available.
A simple setup for caching web (not transparent). I did put my network on the allow list. Even but the client in unrestricted session.

I don't need to login so it is cleared. started the proxy service on the LAN and checked with telnet an router ip - 3128 is reachable.

However when I try to browse with Google or Edge, pages are not loaded. (windows 10)
Checked ping google which work from command line.

Did I miss something?

I have a firewall outbound rule for IP4 and 6 -> to WAN Internet *.

Any help appreciated.

Hemant

Hi all,

Im new to opnsense and trying to install a system.
Met setup
I3-2130
4 gbram
128gb ssd
Intel pro 1000 mt dual nic.

Im testing lan wan througput bt not getting more than 350 mbps.
Im trying to build a system that could easy saturate a 1 gbps wan link.

From the different topics i read that intel was the way to go.
I checked my cpu load while doing iperf en load is less 10 %.

Disable offload is ticked.

Not sure what the issue is so need some help these cards sould be able to fill 1gbps which they do when using a vanilla linux.

All help appreciated.

Cheers,
Hemant