|
|
Focus on BSD
limiting (prioritizing) traffic with ipfw2 Dec 20 2002 03:32AM Miha Verlic (miha krneki org) (2 replies) RE: limiting (prioritizing) traffic with ipfw2 Dec 21 2002 01:10AM Roger Seielstad (roger wiredeuclid COM) (1 replies) |
|
Privacy Statement |
> Hello,
> even though this list seems dead to me, I'm giving it a shot ;-)
>
> I'm setting up opensource mirror, and I would like to allow 45mbit/s of outgoing bandwidth to networks (approx 40 subnets) our ISP has peerings to, and 2mbit/s of bandwidth to everyone else.
>
> I've tried the following:
>
> peering="{ network1/20 or network2/24 or network3/22 or etc... }"
> ipfw add pipe 30 ip from ${server} to ${peering} out via ${maingw}
> ipfw pipe 30 config bw 45Mbit/s
> ipfw add pipe 31 ip from ${server} to any out via ${maingw}
> ipfw pipe 31 config bw 2Mbit/s
>
> However, this is sending all data through 2 pipes, thus limiting everyone to 2mbit/s.
> I've tried several other options, but no luck, since ! is not allowed in 'or' blocks.
>
> Any ideas?
> I'm running freebsd 4.7-stable with ipfw2 compiled in.
I'm an ipf man, not an ipfw man, so I'm guessing here...
But is there a way to 'jump' to a rule in ipfw? Something in my head
says there is. If so, you can try, after your
ipfw pipe 30 config by 45Mbit/s
to jump to a rule after the
ipfw pipe 31 config bw 2Mbit/s
That should get around the second pipe configuration.
If not, try searching the freebsd-net (at) freebsd (dot) org [email concealed] archives, as questions
similar to this are posted every so often.
- Damian
---------------------------------------------------------------------
To unsubscribe, e-mail: focus-bsd-unsubscribe (at) securityfocus (dot) com [email concealed]
For additional commands, e-mail: focus-bsd-help (at) securityfocus (dot) com [email concealed]
[ reply ]