From owner-freebsd-isp@FreeBSD.ORG Tue Dec 2 09:22:13 2008 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id E8DBC1065672; Tue, 2 Dec 2008 09:22:13 +0000 (UTC) (envelope-from peterjeremy@optushome.com.au) Received: from mail15.syd.optusnet.com.au (mail15.syd.optusnet.com.au [211.29.132.196]) by mx1.freebsd.org (Postfix) with ESMTP id 84A4B8FC19; Tue, 2 Dec 2008 09:22:13 +0000 (UTC) (envelope-from peterjeremy@optushome.com.au) Received: from server.vk2pj.dyndns.org (c122-106-215-175.belrs3.nsw.optusnet.com.au [122.106.215.175]) by mail15.syd.optusnet.com.au (8.13.1/8.13.1) with ESMTP id mB29M4Sx026680 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Tue, 2 Dec 2008 20:22:06 +1100 X-Bogosity: Ham, spamicity=0.000000 Received: from server.vk2pj.dyndns.org (localhost.vk2pj.dyndns.org [127.0.0.1]) by server.vk2pj.dyndns.org (8.14.3/8.14.3) with ESMTP id mB29M4fr058669; Tue, 2 Dec 2008 20:22:04 +1100 (EST) (envelope-from peter@server.vk2pj.dyndns.org) Received: (from peter@localhost) by server.vk2pj.dyndns.org (8.14.3/8.14.3/Submit) id mB29M4Fg058668; Tue, 2 Dec 2008 20:22:04 +1100 (EST) (envelope-from peter) Date: Tue, 2 Dec 2008 20:22:04 +1100 From: Peter Jeremy To: Andrei Kolu Message-ID: <20081202092204.GU51761@server.vk2pj.dyndns.org> References: <20081124180411.0b065be5@wolwerine> <705757.42117.qm@web38504.mail.mud.yahoo.com> <11167f520812011508u46b04e7dmb1d5d22675dc778d@mail.gmail.com> <20081202075634.GT51761@server.vk2pj.dyndns.org> <4934F4F3.1030808@bsd.ee> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="lYjFa3qL1bvncypl" Content-Disposition: inline In-Reply-To: <4934F4F3.1030808@bsd.ee> X-PGP-Key: http://members.optusnet.com.au/peterjeremy/pubkey.asc User-Agent: Mutt/1.5.18 (2008-05-17) Cc: freebsd-isp@freebsd.org, freebsd-pf@freebsd.org Subject: Re: PF + ALTQ - Bandwidth per customer X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 02 Dec 2008 09:22:14 -0000 --lYjFa3qL1bvncypl Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On 2008-Dec-02 10:42:27 +0200, Andrei Kolu wrote: >> That description sounds like it simplifies to "limit bandwidth based on >> IP address" - which is fairly trivial for ipfw+dummynet or pf+altq. >> =20 >ipfw+dummynet is really ugly traffic "shaper" (let's face it there is no= =20 >shaping going on), because instead of limiting bandwidth it will drop=20 >packets to simulate bad connection. I've been using ipfw+dummynet for traffic shaping for 7 or 8 years without problems (and have recently moved to pf+dummynet). I don't understand your comment about limiting bandwidth: An incoming packet is put on a queue that is emptied at no more than the (simulated) available outbound bandwidth. If the queue is full then incoming packets will be dropped. This is the same behaviour as any other router (or switch). What do you want/expect? > I hear many years about "trivial"=20 >configuration per user bandwidth limit with pf+altq but never saw ANY=20 >code... Note that I never mentioned per-user bandwidth with pf+altq - though it looks possible. There are some trivial traffic-shaping examples in pf.conf(5) but I will admit that I've never tried to actually use altq - I use dummynet because I need functionality that isn't present in altq. --=20 Peter Jeremy Please excuse any delays as the result of my ISP's inability to implement an MTA that is either RFC2821-compliant or matches their claimed behaviour. --lYjFa3qL1bvncypl Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.9 (FreeBSD) iEYEARECAAYFAkk0/jwACgkQ/opHv/APuIcOugCgo8LM3HE/0oSzFy0HbcffjFm+ jaYAoJ3GQW98vGR9Szi2XyiM0dJoG1ek =xp16 -----END PGP SIGNATURE----- --lYjFa3qL1bvncypl--