From owner-freebsd-stable@FreeBSD.ORG Mon Jun 2 23:57:24 2003 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E919E37B401 for ; Mon, 2 Jun 2003 23:57:23 -0700 (PDT) Received: from www.svzserv.kemerovo.su (www.svzserv.kemerovo.su [213.184.65.80]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3ED6143F93 for ; Mon, 2 Jun 2003 23:57:22 -0700 (PDT) (envelope-from eugen@kuzbass.ru) Received: from kuzbass.ru (kost [213.184.65.82])h536vIYt027229; Tue, 3 Jun 2003 14:57:18 +0800 (KRAST) (envelope-from eugen@kuzbass.ru) Message-ID: <3EDC4645.60D9E016@kuzbass.ru> Date: Tue, 03 Jun 2003 14:55:01 +0800 From: Eugene Grosbein Organization: SVZServ X-Mailer: Mozilla 4.8 [en] (Win98; U) X-Accept-Language: ru,en MIME-Version: 1.0 To: bigtruck@ownij.com References: <1054583721.3edbaba959c81@webmail.ownij.com> Content-Type: text/plain; charset=koi8-r Content-Transfer-Encoding: 7bit cc: freebsd-stable@freebsd.org Subject: Re: 4.8-Stable DummyNet X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 03 Jun 2003 06:57:24 -0000 bigtruck@ownij.com wrote: > > Hi. We just opened a gaming center and have chosen to run a FreeBsd box for > our firewall. IPFW is configured at it's very basic running natd through rl0 > and allowing any to any connections from the lan to the outer world. Natd > controls access to the lan. > > We have a 6.0 mb/s ADSL net connection for all the gaming clients to use, > however if a gamer starts downloading a file, that file takes precendence and > causes everyone's pings 'in-game' to sky rocket to unplayable levels. I have > done some reading on DummyNet which is attached at the hip with IPFW, however I > have been unsuccessful in getting it to work properly. First of all, you should shape traffic on LAN imho, it will give you much more control over situation. Second, you should create two dummynet pipes, one for incoming and one for outgoing traffic and set 6.0Mbit/s for its bandwidth parameter. Then, you can engage WF2Q feature of dummynet that is capable of "fair allocation" of bandwidth between competitors. You create two queues using 'mask src-ip 0xffffffff' for outgoing traffic and 'mask dst-ip 0xffffffff' for incoming. And you divert all of LAN traffic going into queues. That may be quite good for you. Furthermore, you can engage GRED for preventing excessive TCP packet drops, but that should be next stage. Eugene Grosbein