Still having trouble with my new firewall rules. Sometimes web pages take a long time to load (up to a minute), just looks like connections open very slowly or packets travel slowly.
Not sure what this is. Have no increased my network buffers and max sockets, which did help with my network speed. I can now transfer 20MB/s on my Gigabyte lan. Far short from the supposed 100MB/s I should get, I know. But currently don't have the time to figure out why I don't get that speed.
Also played with turning off net.inet.ip.dummynet.io_fast, that might have effect as well. Currently it's on again, so let's see how it behaves. Those intermittent lags are quite noticeable: you click on a link, and nothing happens, so let's see if I get that today or not.
Maybe I should upgrade to FreeBSD 8 as I'm still on FreeBSD 6.4. Could do in-kernel nat as well.
Our school also needs better internet, so I'm thinking of deploying a pfsense box with a cheap ADSL modem. I could do traffic shaping with lowest bandwidth for the students and higher priority for staff and voip. And of course have Squid, so browsing experience should become much better.