Some good detail in there. I also found some useful information here MSS Problems with Sun PPPoE . Additionally, I reviewed my Linux router config to see what may be "working" and found that it's likely that the following firewall rule was addressing the issue I'm now experiencing with Solaris.
Too bad it wasn't that simple with the Solaris setup . I'll attempt to tune the Solaris setup and see how I make out.
---------- Post updated 04-09-11 at 08:04 PM ---------- Previous update was 04-08-11 at 08:16 PM ----------
It's working now...and appears to be performing, but is it optimal?...I'm not sure yet. For those who wish to tackle using Solaris as a firewall/router against a PPPoE connection, I'll put my details here.
By default, the negotiated MTU over PPPoE is going to be 1492.
Using the 1492 MTU as the model, I've knocked 40 off for a max MSS number of 1452 for the TCP stack to use.
Code:
ndd -set /dev/tcp tcp_mss_max_ipv4 1452
In addition to this I'll want to turn off Path MTU Discovery.
When discussing inodes and data blocks, I know Solaris creates these data blocks with a total size of 8192b, divided into eight 1024b "fragments." It stores data in "contiguous" fragments and solaris doesn't allow a file to use portions of two different fragments. If the file size permits, then the... (4 Replies)
Greetings, and thank you for your time.
I am cracking the whip to self-teach myself Unix because I think it will be the best platform for me to really open my mind and be creative. Sadly I lack anyone experienced in Unix to nag with questions, so you will be seeing a lot of me here I am sure... (4 Replies)
Hello People,
Please can someone help me with destination IP address NAT and Port transalation using ipnat in Solaris 8.
Scenario: Box A(192.168.100.1/24) and Box B (192.168.100.50/24) are connected phyically and logically(vlan) on the same network switch.
Box A hosts an... (0 Replies)
Hello,
| am trying to setup ipfilter on solaris express snv_91 but I don't seem to have the following file available.
/etc/ipf/pfil.ap
Is this an older way of configuring the interface?, I have all the packages installed.
Thanks, (1 Reply)
Simply question which should I use. correct me if I'm wrong but Solaris Express is taking the place of Opensolaris and is officially sanctioned by Oracle and OpenIndiana is what used to be OpenSolaris.
If I opt for OpenIndiana is it going to follow the official Oracle Solaris releases or are... (3 Replies)
Hi all,
I decided to replace my linux router/firewall with Solaris 11 express. This is a pppoe connection directly to my server...no router boxes. I got everything setup, but the performance is terrible on the NAT....really slow. A web page that loads on the server instantly will take... (3 Replies)
What are the differences between these systems? I have to use Oracle's product but I do not know who to choose (3 Replies)
Discussion started by: PtaQ
3 Replies
LEARN ABOUT PHP
ndd
ndd(1M) System Administration Commands ndd(1M)NAME
ndd - get and set driver configuration parameters
SYNOPSIS
ndd [-set] driver parameter [value]
DESCRIPTION
ndd gets and sets selected configuration parameters in some kernel drivers. Currently, ndd only supports the drivers that implement the
TCP/IP Internet protocol family. Each driver chooses which parameters to make visible using ndd. Since these parameters are usually
tightly coupled to the implementation, they are likely to change from release to release. Some parameters may be read-only.
If the -set option is omitted, ndd queries the named driver, retrieves the value associated with the specified parameter, and prints it. If
the -set option is given, ndd passes value, which must be specified, down to the named driver which assigns it to the named parameter.
By convention, drivers that support ndd also support a special read-only parameter named ``?'' which can be used to list the parameters
supported by the driver.
EXAMPLES
Example 1: Getting Parameters Supported By The TCP Driver
To see which parameters are supported by the TCP driver, use the following command:
example% ndd /dev/tcp ?
The parameter name ``?'' may need to be escaped with a backslash to prevent its being interpreted as a shell meta character.
The following command sets the value of the parameter ip_forwarding in the dual stack IP driver to zero. This disables IPv4 packet forward-
ing.
example% ndd -set /dev/ip ip_forwarding 0
Similarly, in order to disable IPv6 packet forwarding, the value of parameter ip6_forwarding
example% ndd -set /dev/ip ip6_forwarding 0
To view the current IPv4 forwarding table, use the following command:
example% ndd /dev/ip ipv4_ire_status
To view the current IPv6 forwarding table, use the following command:
example% ndd /dev/ip ipv6_ire_status
ATTRIBUTES
See attributes(5) for descriptions of the following attributes:
+-----------------------------+-----------------------------+
| ATTRIBUTE TYPE | ATTRIBUTE VALUE |
+-----------------------------+-----------------------------+
|Availability |SUNWcsu |
+-----------------------------+-----------------------------+
SEE ALSO nca(1), ioctl(2), attributes(5), arp(7P), ip(7P), ip6(7P), tcp(7P), udp(7P)NOTES
The parameters supported by each driver may change from release to release. Like programs that read /dev/kmem, user programs or shell
scripts that execute ndd should be prepared for parameter names to change.
The ioctl() command that ndd uses to communicate with drivers is likely to change in a future release. User programs should avoid making
dependencies on it.
The meanings of many ndd parameters make sense only if you understand how the driver is implemented.
SunOS 5.10 8 Nov 1999 ndd(1M)
04-09-2011
. I'll attempt to tune the Solaris setup and see how I make out.