On 2022-12-19, David Hajes <[email protected]> wrote: > hi guys, > > I have simple PcEngines APU2 router running latest OpenBSD stable. > > em0 is WAN (bridge to CaTV modem with 1Gbps/100Mbps connectivity with normal > ether connectivity with DHCP...no special stuff like PPPoE) > > em1-3 is in vether/bridge mode with NAT routing to local network. > > I have complained to ISP about speeds because it supposes to run almost 1Gbps. > > results (speedtest.net used by ISP for some reason): > > 800+/85 Mbps measured by ISP technician directly from CaTV modem. > 440MBps/85Mbps simple NAT firewall pf.conf based on OpenBSD suggestions > 380/80Mbps with my strict firewall rules
APU2 is not particularly powerful. When running OpenBSD on it, it's pretty much OK for VDSL type speeds / 100M leased line / some slower FTTP. It's not really gigabit-capable. You aren't helping by making further requirements on the CPU by using it as a bridge as well; you might help things a bit by removing the bridge configuration on em1-3 and just have a standard single em1 interface, connect a real ethernet switch for additional machines. But I don't think that will get you really close to gigabit - maybe you can find another 100-150M or so, but that's probably about it. You will see better speeds from the APU hardware with other OS, though full gigabit with anything complex in terms of packet filtering is still a bit unlikely. If you want full gigabit from OpenBSD you'll need faster hw. > I have used following guide > http://dant.net.ru/calomel/network_performance.html No changes, same > performance. That guide is often quoted (though fortunately not quite so often these days). But it's fairly useless. -- Please keep replies on the mailing list.
