Date: Mon, 12 Dec 2005 12:00:11 +0800 From: yayj <yayjsir@gmail.com> To: "Travis H." <solinym@gmail.com>, freebsd-pf@freebsd.org Subject: Re: My problem of pf rule Message-ID: <439CF5CB.6030207@gmail.com> In-Reply-To: <d4f1333a0512110318h1fde9fe5t94bfb06711691579@mail.gmail.com> References: <439A5545.1090308@gmail.com> <d4f1333a0512110318h1fde9fe5t94bfb06711691579@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Travis H. 写道: >>let's put aside the subnet routing env.s the int are in and the routing >>table of host is like this, if the dest IP of packet is in <set0> then >>it's forwarded to em0, if is in <set1> then em1. I turn on NAT on em0. >> >>there are two questions left: >>1. I wanna employ a flow control for the two fxp int on em0 other than. >>cuz NAT is applying on em0, I can't describe the flow of the two fxp int >>using 'on em0' respectively. I describe them on their source int like this: >> >>pass in on fxp0 inet from <fxp0_ip> to <set0> queue queue0 >>pass in on fxp0 inet from <fxp1_ip> to <set1> queue queue1 >> > >What's "a flow control"? I don't see why you can't specify "on em0", >even when NAT is in use. > > sorry, I made a mistake here. that means "traffic shaping". the src ip of all packets outgoing em0 is (em0).pf_faq says that. >>2. The host itself may also send data by em0 using the IP of em0, how >>can I describe this flow? Using cbq(default) or whatever? >> > >How about: >pass out on em0 from (em0) to any > > you mean "pass out on em0 from (em0) to any queue qself"? that's not working. all packets attempting to go out via em0 have the same src ip, (em0), including these from <fxp0_ip> and <fxp1_ip>.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?439CF5CB.6030207>