Date: Thu, 7 Jun 2012 22:12:56 +0300 From: =?windows-1254?Q?Yavuz_Ma=FElak?= <yavuz.maslak@ihlas.net.tr> To: <freebsd-questions@freebsd.org> Subject: doesn't dummynet work with vlan ? Message-ID: <06aa01cd44e1$8bcf6e50$a36e4af0$@ihlas.net.tr>
next in thread | raw e-mail | index | archive | help
Hello there=A0 I use freebsd8.2 I added dummynet and other followings into the kernel; options IPFIREWALL #firewall options IPFIREWALL_VERBOSE #print information about options IPFIREWALL_FORWARD #enable trasparent proxy support=A0 options IPFIREWALL_DEFAULT_TO_ACCEPT #allow everything by default options HZ=3D1000 options DUMMYNET options IPDIVERT options DEVICE_POLLING I have 4 networks which seperate from eachother with vlan. I wish to bandlimit for every vlan network using dummynet. I have 2 ethernet cards for that. one of them is wan other one is = inbound is tagged. vlan works well I configured a network to limit using dummynet; ipfw.sh ### ipfw -f flush ipfw pipe 11 config bw 2Mbit/s # Vlan104 ipfw pipe 12 config bw 2Mbit/s # 6.Port on the switch ipfw add pipe 11 ip from any to 10.12.4.0/24 in via em0 ipfw add pipe 12 ip from 10.12.4.0/24 to any out xmit em0 ### em0 is for outside in the server. as a client my pc is in vlan104 namely i am behind the firewall when i execute the ipfw.sh, I can't reach to the internet. ipfw add pipe 12 ip from 10.12.4.0/24 to any out xmit em0=A0 above line works it actually limits but ; ipfw add pipe 11 ip from any to 10.12.4.0/24 in via em0=A0 above line doesn't work properly it obstructs my http and icmp requests. so i can't reach to internet. Whereas i remove "ipfw add pipe 11 ip from any to 10.12.4.0/24 in via = em0" from ipfw.sh I can either ping at outbound or reach to internet.=A0 I tried vlan104 instead of em0 "in via em0"=A0 that doesn't help me. I don't use proxy. I use nat =20 What can be the problem ? Thanks
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?06aa01cd44e1$8bcf6e50$a36e4af0$>