From owner-freebsd-ipfw@FreeBSD.ORG Sat Feb 7 18:44:10 2004 Return-Path: Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 11C4516A4CE for ; Sat, 7 Feb 2004 18:44:10 -0800 (PST) Received: from oahu.WURLDLINK.NET (oahu.wurldlink.net [66.193.144.7]) by mx1.FreeBSD.org (Postfix) with ESMTP id C86BB43D1F for ; Sat, 7 Feb 2004 18:44:09 -0800 (PST) (envelope-from vince@oahu.WURLDLINK.NET) Received: from oahu.WURLDLINK.NET (vince@localhost.WURLDLINK.NET [127.0.0.1]) by oahu.WURLDLINK.NET (8.12.9/8.12.9) with ESMTP id i182hrqQ003192; Sat, 7 Feb 2004 16:44:03 -1000 (HST) Received: from localhost (vince@localhost)i182hq4g003189; Sat, 7 Feb 2004 16:43:52 -1000 (HST) Date: Sat, 7 Feb 2004 16:43:52 -1000 (HST) From: Vincent Poy To: freebsd-ipfw@FreeBSD.ORG Message-ID: <20040207164255.P8264-100000@oahu.WURLDLINK.NET> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Subject: FreeBSD Traffic Shaping help needed X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 08 Feb 2004 02:44:10 -0000 Greetings all: I have a ADSL connection where the upstream pipe is smaller than the downstream with it at 1.5Mbps/384kbps now and will be upgrading to 6Mbps/608kbps soon. The issue I'm having is that whenever I upload, it fills the upstream to full capacity and the downstream would lag as the ACKs can't be send back in time. I only have one interface (xl0) on my notebook so what I want to do is exclude the traffic between 209.204.138.224/29 and 192.168.0.0/16 from being part of the three queues shown below as the IP ranges are all local on the Cisco Catalyst Gigabit Ethernet switch and the FreeBSD box is already functioning correctly as a NAT router with these options in the KERNEL config: options IPFIREWALL options IPDIVERT options DUMMYNET options BRIDGE This is what my script looks like so far: ipfw enable one_pass ipfw add pipe 1 config bw 384Kbit/s ipfw add queue 1 all from any to any out xmit xl0 ipfw add queue 1 config pipe 1 weight 20 ipfw add allow all from 192.168.0.0/16 to 192.168.0.0/16 ipfw add allow all from 192.168.0.0/16 to 209.204.138.224/29 ipfw add allow all from 209.204.138.224/29 to 209.204.138.224/29 ipfw add allow all from 209.204.138.224/29 to 209.204.138.224/29 ipfw add queue 1 from any to any ipfw add allow all from 192.168.0.0/16 to 192.168.0.0/16 ipfw add allow all from 192.168.0.0/16 to 209.204.138.224/29 ipfw add allow all from 209.204.138.224/29 to 209.204.138.224/29 ipfw add allow all from 209.204.138.224/29 to 209.204.138.224/29 ipfw add queue 2 from any to any ipfw add queue 2 tcp from any to any 22 out xmit xl0 ipfw add queue 2 udp from any to any out xmit xl0 ipfw add queue 2 config pipe 1 weight 25 ipfw add allow all from 192.168.0.0/16 to 192.168.0.0/16 ipfw add allow all from 192.168.0.0/16 to 209.204.138.224/29 ipfw add allow all from 209.204.138.224/29 to 209.204.138.224/29 ipfw add allow all from 209.204.138.224/29 to 209.204.138.224/29 ipfw add queue 3 from any to any ipfw add queue 3 tcp tcpflags ack iplen 0-80 from any to any out xmit xl0 ipfw add queue 3 config pipe 1 weight 30 Am I doing this correctly since how do I exclude the define IP's only from each of the 3 individual queues as I noticed it doesn't really specify the queue number? Thanks! Cheers, Vince - vince@WURLDLINK.NET - Vice President ________ __ ____ Unix Networking Operations - FreeBSD-Real Unix for Free / / / / | / |[__ ] WurldLink Corporation / / / / | / | __] ] San Francisco - Honolulu - Hong Kong / / / / / |/ / | __] ] HongKong Stars/Gravis UltraSound Mailing Lists Admin /_/_/_/_/|___/|_|[____] Almighty1@IRC - oahu.DAL.NET Hawaii's DALnet IRC Network Server Admin