syn_nospam_uw <syn_nospam_uw@hotmail.com> writes:

> I am still using an OpenBSD 4.0 firewall for my home cable
> connection. I actually have 5000 (down) and 500 (up). Now if I start
> an upload and download at the same time everything will get really
> really slow The same test at a friends place with a sonicwall
> firewall and exactly the same ISP everything is still quite fast even
> if there is a download and upload happening at the same time.

There have been some significant performance improvements in PF over
the last few releases, so upgrading to something more recent is likely
to help improve things. If you preorder your 4.3 set now, there is
even a chance you get it delivered before or on the official release
date (May 1st).

You didn't show us your rule set, but one classical and fairly simple
trick is the high and low priority queues trick, see eg [1], simply
pushing the ACKs faster, is likely to make a noticeable difference.


[1] http://home.nuug.no/~peter/pf/en/alt...tml#ALTQACKPRI

--
Peter N. M. Hansteen, member of the first RFC 1149 implementation team
http://bsdly.blogspot.com/ http://www.bsdly.net/ http://www.nuug.no/
"Remember to set the evil bit on all malicious network traffic"
delilah spamd[29949]: 85.152.224.147: disconnected after 42673 seconds.