Hey experts! I'm building a network enhancement project on my network to deal with the growth over the last 12 months for better traffic efficiency.
Right now, I'm trying to determine the best TCP window sizes on my servers. I can build the window sizes to match my WAN links, but then, my LAN connections to the servers will suffer.
If I modify my TCP Window to my LAN connections, my WAN routers will be overwhelmed with lots of dropped packes.
I realize the window will "slide" to an appropriate level over my WAN, but that is alot of unnecessary traffic and CPU on the router and it's interfaces until the window size is at an appropriate level to sustain.
QoS will certainly help, when trying to load balance the data traffic. However, QoS will only help the traffic on the line. If the Operating System is only sending throttled traffic, then QoS will have little bearing.
The problem is, out-of-the-box operating systems ship with a default setting, that is too generalized. You really *should* "tune" the network settings of the OS to your network according to your network specifications and applications.
I agree with you, that TCP Windowing is dynamic by nature. But, only to it's maximum size, then it "slides" down, until both systems agree on the data. If I already know how much the systems can talk, then I can *help* them use a higher throughput.
Using your bandwidth, delay, and application requirements, you can "tune" your servers for more efficient networking. Once you do that, you use QoS to help prioritize the traffic between many systems "on the line". Microsoft, Sun, RedHat, etc, do not know your network, so they "ship" with a default setting, that works across all kinds of networks.
For example, the maximum TCP Windows for certain OS's are:
This document gives several answers on frequently asked questions for PFRv3 channel state behavior.
Q1: What are all the channel operational states from a BR (border role) perspective and what are the rules/conditions to be in each st...
The need was to reach an host inside a LAN through a VPN connection managed by the LAN gateway (Cisco 1921).
The LAN gateway performs NAT and there was a dedicate nat rule for the host i wanted to reach through VPN.
I couldn't connect to the hos...