From owner-freebsd-pf@FreeBSD.ORG Sun Jan 16 16:08:15 2005 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7AEBD16A4CE for ; Sun, 16 Jan 2005 16:08:15 +0000 (GMT) Received: from sparky.gotobg.net (sparky.gotobg.net [212.36.9.10]) by mx1.FreeBSD.org (Postfix) with ESMTP id C76E243D2F for ; Sun, 16 Jan 2005 16:08:13 +0000 (GMT) (envelope-from mzk@anti-offline.net) Received: from [83.228.114.66] (helo=mzk) by sparky.gotobg.net with esmtpa (Exim 4.43 (FreeBSD)) id 1CqCwW-000CZG-36 for freebsd-pf@freebsd.org; Sun, 16 Jan 2005 18:07:56 +0200 From: mzk To: X-Mailer: PocoMail 3.2 (2000) - Licensed Version Date: Sun, 16 Jan 2005 18:11:53 +0200 Message-ID: <2005116181153.945997@mzk> Mime-Version: 1.0 Content-Type: text/plain; charset="windows-1251" Content-Transfer-Encoding: quoted-printable X-AntiAbuse: This header was added to track abuse, please include it with any abuse report X-AntiAbuse: Primary Hostname - sparky.gotobg.net X-AntiAbuse: Original Domain - freebsd.org X-AntiAbuse: Originator/Caller UID/GID - [0 0] / [26 6] X-AntiAbuse: Sender Address Domain - anti-offline.net X-Source: X-Source-Args: X-Source-Dir: Subject: Ingress + outgress traffic shape X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Technical discussion and general questions about packet filter (pf) List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 16 Jan 2005 16:08:15 -0000 Hello. Have anyone made ingress + outgress traffic shape? I am doing altq on= $int_if and $ext_if, then pass in from $user to any queue user_up (this queue is on altq $ext_if),= then pass out from any to $user queue user_down (this queue is on altq $int_if).= As i know (not 100% sure), i could shape only `outgoing` traffic, therefore my= rules have this look. With or without using keep state every time only one rule is= used (user_up or user_down). The traffic, which does not go through the= queue, is going though the default queue for the interface. I tried with= (respective without, and combinations) quick, keep state, removing and changing `in` and= `out` rule directions. Second i want to ask wether i can use only one rule for several computers= (like ipfw + dummynet, 1 pipe used for every different host in the network,= different queue is created for different flows). Hope someone could help ;) Thank's in= advance!