Date: Thu, 9 Nov 2006 15:32:37 -0800 From: "Michael K. Smith - Adhost" <mksmith@adhost.com> To: "Joao Barros" <joao.barros@gmail.com>, "Bill Moran" <wmoran@collaborativefusion.com> Cc: Mark <cvrider@yahoo.com>, freebsd-questions@freebsd.org Subject: RE: access-lists and QoS implementation Message-ID: <17838240D9A5544AAA5FF95F8D520316014A7F4D@ad-exh01.adhost.lan> In-Reply-To: <70e8236f0611091236u7cb5be24n32cbfa947ce02086@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Hello: -----Original Message----- From: owner-freebsd-questions@freebsd.org [mailto:owner-freebsd-questions@freebsd.org] On Behalf Of Joao Barros Sent: Thursday, November 09, 2006 12:36 PM To: Bill Moran Cc: Mark; freebsd-questions@freebsd.org Subject: Re: access-lists and QoS implementation On 11/9/06, Bill Moran <wmoran@collaborativefusion.com> wrote: > In response to Mark <cvrider@yahoo.com>: > > > I would like to use my FreeBSD box as an ip router, > > yet it lacks some functionality seen in Cisco boxes. I > > am looking for a way to create access lists and also > > do QoS such as LLQ, priority queing, etc. How can this > > be accomplished in FreeBSD? Also, is there a FreeBSD > > implementation of NBAR to classify traffic based on > > higher layer packet information? For example, I would > > like to allocate 20% bandwidth on an egress interface > > to traffic matching an ACL or a certain protocol. > > Have a look at pf. I believe it will do everything you need. > pf doesn't support layer 7 protocol inspection. For that take a look > at ng_tag which lives in CURRENT. If you want to match on an ACL (Layer 3) or Protocol (Layer 4) then you can use PF with AltQ for the actual classification and prioritization. Mike
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?17838240D9A5544AAA5FF95F8D520316014A7F4D>