There is little changes on orion.janforman.com (imagehosting), where I was completely removed Apache webserver in last days and all work is now on NGINX webserver (big speed improvement, memory consumption drop in idle state to 8MB, faster onfly compression/encryption with support of Camellia-256 TLSv1 and GZip level 6). Also there is completely reinstalled mail server which now don’t run spamassasin but only greylisting solution. PHP on explorer.janforman.com and orion.janforman.com is connected in respawn fastcgi mode.
Domain name servers are switched to ns1.janforman.com and ns2.janforman.com.
Webmail updated and now supports vCard import/export /w telephone, better IMAP folder implementation, mail flags and more cool AJAX stuff.

Servers are now running in Parallels Virtuozzo technology.
All services are authorized/configured by SQL query, so there are no accounts for long time.

There is a new schema in servers section, take a look!
A lot of Russian technology is here … ;-)

…And of Course Total traffic is now approx. 0.7TB/per month
(avg. 5-10Mbit/s, 835-3505/packets per second)

GPU Clock: 285MHz (270MHz default)
Memory Clock: 480MHz (400MHz default)
128MB RAM / 64bit
DVI / CRT / TV / Dual View – Fully Supported
BIOS Version 4.34.20.66.00

BIOS Download

—
Someone may find it useful…

Server oriented optimalization. Be careful this is not 100% RFC compatible, but working nice on my servers

echo “32767″ >/proc/sys/net/ipv4/tcp_max_tw_buckets_ub
echo “1024 65000″ >/proc/sys/net/ipv4/ip_local_port_range
echo “250 32000 100 128″ >/proc/sys/kernel/sem
echo “65536″ >/proc/sys/net/ipv4/tcp_max_orphans
echo “4096 87380 16777216″ >/proc/sys/net/ipv4/tcp_rmem
echo “4096 65536 16777216″ >/proc/sys/net/ipv4/tcp_wmem
echo “16777216″ >/proc/sys/net/core/rmem_max
echo “16777216″ >/proc/sys/net/core/wmem_max
echo “262144″ >/proc/sys/net/core/netdev_max_backlog
echo “15″>/proc/sys/net/ipv4/tcp_fin_timeout
echo “1″ >/proc/sys/net/ipv4/icmp_echo_ignore_broadcasts
echo “1″ >/proc/sys/net/ipv4/icmp_echo_ignore_all
echo “1″ >/proc/sys/net/ipv4/
icmp_ignore_bogus_error_responses
echo “1″ >/proc/sys/net/ipv4/ip_no_pmtu_disc
echo “0″ >/proc/sys/net/ipv4/tcp_rfc1337
echo “1″ >/proc/sys/net/ipv4/tcp_orphan_retries
echo “1″ >/proc/sys/net/ipv4/tcp_tw_recycle
echo “1″ >/proc/sys/net/ipv4/tcp_tw_reuse
echo “10″>/proc/sys/net/ipv4/tcp_keepalive_intvl
echo “2″ >/proc/sys/net/ipv4/tcp_keepalive_probes
echo “0″ >/proc/sys/net/ipv4/tcp_sack
echo “0″ >/proc/sys/net/ipv4/tcp_timestamps
echo “0″ >/proc/sys/net/ipv4/tcp_window_scaling
echo “30″>/proc/sys/net/ipv4/tcp_keepalive_time
echo “65536″ >/proc/sys/fs/file-max
ulimit -n 65536
ifconfig eth0 txqueuelen 2000
ifconfig eth0 mtu 1400

// lower MTU for some connections, possible values are
// 1400 (safe), 1436, 1492
// 9000 for 1GBit connections (for less interrupts per second :-)

Don’t worry, there is a little trick to speed up SFTP over SSH connection. For better speed raise priority of BLOWFISH cipher (BLOWFISH is much faster than AES). You may have double increase speed while uploading/downloading files. Security goes down lightly.

Realtek RTL8186 Datasheet v0.95

// eth0 – interface connected directly to 5-port switch
// eth1 – interface WAN
// wlan0 – wifi minipci directly connected to IC
// maximum transmit thru NAT-router 18Mbit/s
// maximum transmit thru wireless device 23Mbit/s WIFI (54g)
// maximum transmit thru bridge 52Mbit/s (WAN-LAN)
// measured latency thru linux router 1ms
// RTL8305SC Switch
// — maximum throughput in switch 91Mbit/s (halfduplex port-port)
// — maximum throughput in switch 160Mbit-s (fullduplex port-port)
// CPU – MIPS R3000 clone 180Mhz
// better to use AES WPA2 than any other because of HW acceleration

TUNING PARAMETERS IN BASH —

iwpriv wlan0 set_mib disable_olbc=1
iwpriv wlan0 set_mib ack_timeout=22
ifconfig eth0 txqueuelen 32
ifconfig eth1 txqueuelen 32
ifconfig br0 txqueuelen 32
ifconfig wlan0 txqueuelen 32
echo "0 0">/proc/sys/vm/pagetable_cache
echo "0" >/proc/sys/vm/max-readahead
echo "0" >/proc/sys/vm/min-readahead
echo "200">/proc/sys/net/core/netdev_max_backlog
echo "50" >/proc/sys/net/core/mod_cong
echo "30" >/proc/sys/net/core/lo_cong
echo "10" >/proc/sys/net/core/no_cong
echo "131072" >/proc/sys/net/core/wmem_max
echo "131072" >/proc/sys/net/core/rmem_max
echo "0" >/proc/sys/net/ipv4/tcp_retrans_collapse
echo "0" >/proc/sys/net/ipv4/tcp_timestamps
echo "0" >/proc/sys/net/ipv4/tcp_window_scaling
echo "0" >/proc/sys/net/ipv4/tcp_sack
echo "1" >/proc/sys/net/ipv4/ip_no_pmtu_disc
echo "30" >/proc/sys/net/ipv4/tcp_keepalive_time
echo "2" >/proc/sys/net/ipv4/tcp_keepalive_probes
echo "10" >/proc/sys/net/ipv4/tcp_keepalive_intvl
echo "15" >/proc/sys/net/ipv4/tcp_fin_timeout
echo "1" >/proc/sys/net/ipv4/tcp_tw_recycle
echo "0" >/proc/sys/net/ipv4/tcp_rfc1337
echo "1024 4096" >/proc/sys/net/ipv4/ip_local_port_range
echo "1" >/proc/sys/net/ipv4/icmp_echo_ignore_all
echo "1" >/proc/sys/net/ipv4/icmp_echo_ignore_broadcasts
echo "1" >/proc/sys/net/ipv4/icmp_ignore_bogus_error_responses
echo "4096 65536 131072" >/proc/sys/net/ipv4/tcp_wmem
echo "4096 87378 131072" >/proc/sys/net/ipv4/tcp_rmem
echo "0" >/proc/sys/net/ipv4/conf/all/accept_source_route
echo "0" >/proc/sys/net/ipv4/conf/all/accept_redirects
echo "1" >/proc/sys/net/ipv4/conf/all/rp_filter
echo "0" >/proc/sys/net/ipv4/conf/default/accept_source_route
echo "0" >/proc/sys/net/ipv4/conf/default/accept_redirects
echo "1" >/proc/sys/net/ipv4/conf/default/rp_filter
echo "1800">/proc/sys/net/ipv4/netfilter/ip_conntrack_tcp_timeout_established
echo "300">/proc/sys/net/ipv4/netfilter/ip_conntrack_generic_timeout
echo "60" >/proc/sys/net/ipv4/netfilter/ip_conntrack_tcp_timeout_close_wait
echo "30" >/proc/sys/net/ipv4/netfilter/ip_conntrack_tcp_timeout_syn_recv
echo "60" >/proc/sys/net/ipv4/netfilter/ip_conntrack_tcp_timeout_syn_sent
echo "30" >/proc/sys/net/ipv4/netfilter/ip_conntrack_tcp_timeout_time_wait
echo "60" >/proc/sys/net/ipv4/netfilter/ip_conntrack_tcp_timeout_fin_wait
echo "5" >/proc/sys/net/ipv4/netfilter/ip_conntrack_tcp_timeout_close
echo "4096">/proc/sys/net/ipv4/route/max_size
echo "2048">/proc/sys/net/ipv4/route/gc_thresh

TUNING PARAMETERS IN BASH —

// Select “G Mode only” in configuration
// Beacon Interval 800ms
// ACK Timeout 22μsec (up to 300 meters) or 91μsec (long distance)
// Short Preamble
// 802.11g Protection – Disabled