From owner-freebsd-questions Mon Dec 17 5:42:43 2001 Delivered-To: freebsd-questions@freebsd.org Received: from mail.inacom-sby.com (mail.inacom-sby.com [216.231.132.101]) by hub.freebsd.org (Postfix) with ESMTP id 5CA1537B417 for ; Mon, 17 Dec 2001 05:42:37 -0800 (PST) Received: by NTEXCHG with Internet Mail Service (5.5.2653.19) id ; Mon, 17 Dec 2001 08:40:03 -0500 Message-ID: <117506934F69D411A3B600E0296AA20005108A@NTEXCHG> From: Ron Hensley To: 'Vincent Chen' , 'FreeBSD maillist' Subject: RE: traffic shape Date: Mon, 17 Dec 2001 08:40:01 -0500 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG >ipfw add 100 pipe 101 tcp from any http to >ipfw add 100 pipe 102 tcp from to any http >ipfw pipe 101 config bw 512Kbit/s queue 20 mask all >ipfw pipe 102 config bw 32Kbit/s queue 5 mask all >When I download file from website without the pipe, >transfer rate is about 50 Kbytes/s. After the pipe >activated, transfer rate is about 30Kbytes/s. I wonder >where the extra bandwith is. you've limited your connections TO http servers (port 80 specifically) to 32Kbps is why that's all you see. The first one, 101 doesn't do anything. When you connect TO an http server the connection is FROM a port > 1024 on your end (Whatever's available) TO the WWW servers port 80. Likewise when those on the Nets connect TO a WWW server on your side, they connect FROM a port > 1024, TO your port 80. Your first mask, 101, is trying to limit connections FROM port 80, TO your IP Address. Computers will never connect FROM port 80. And your second mask, 102 is limiting traffic FROM you, TO WWW servers to 30Kbps To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message