From owner-freebsd-questions@FreeBSD.ORG Sun Nov 11 17:03:38 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 502C316A469 for ; Sun, 11 Nov 2007 17:03:38 +0000 (UTC) (envelope-from girishvenkatachalam@gmail.com) Received: from ro-out-1112.google.com (ro-out-1112.google.com [72.14.202.176]) by mx1.freebsd.org (Postfix) with ESMTP id AFF9913C480 for ; Sun, 11 Nov 2007 17:03:37 +0000 (UTC) (envelope-from girishvenkatachalam@gmail.com) Received: by ro-out-1112.google.com with SMTP id m6so1123097roe for ; Sun, 11 Nov 2007 09:03:24 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:received:date:from:to:subject:message-id:reply-to:mail-followup-to:references:mime-version:content-type:content-disposition:in-reply-to:user-agent; bh=7kQKR0P2jDAXDxyRalP5f7FrXItXxjbMZILpT2R59iU=; b=D9DCw4HoQdBGuqYjRupfZ2IoCq+MGcWoj7excNQtk7jUOrSFBkCjd1AerxWaNFUKfVM1rSaclItn7zCU9NcPUCRka7uEOfghzT/di40miD5N4wUvrmqG3Lx8scTGkXJfdERt1VRli3y7Ki7+70BX0R3CsAJV2QgDTfztWOwIJf4= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:date:from:to:subject:message-id:reply-to:mail-followup-to:references:mime-version:content-type:content-disposition:in-reply-to:user-agent; b=NzU9kaZcp1sT/jZ3Z4/XbeFiVBsOhtet4rbmjPD396bYQvCvpafbNfqiV+iL9rxG4hCAQLy8n6qFKXPXH4puKZOjvvwM+2cDROUCrUp2EbqQ62oIw9s8FPgg2e9xa0xHwuQhK28GpXhVJkiB7w+qICYRs0F3NnP3mwZ0m1STyFM= Received: by 10.141.78.14 with SMTP id f14mr1954639rvl.1194792211761; Sun, 11 Nov 2007 06:43:31 -0800 (PST) Received: from saraswathy.susmita.org ( [59.92.32.241]) by mx.google.com with ESMTPS id b8sm8014683rvf.2007.11.11.06.43.29 (version=TLSv1/SSLv3 cipher=OTHER); Sun, 11 Nov 2007 06:43:30 -0800 (PST) Received: by saraswathy.susmita.org (Postfix, from userid 1002) id 46695143E7; Sun, 11 Nov 2007 20:13:25 +0530 (IST) Date: Sun, 11 Nov 2007 20:13:25 +0530 From: Girish Venkatachalam To: freebsd-questions@freebsd.org Message-ID: <20071111144325.GA3433@saraswathy.susmita.org> Mail-Followup-To: freebsd-questions@freebsd.org References: <53330.192.168.13.8.1194786209.squirrel@www.boosten.org> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <53330.192.168.13.8.1194786209.squirrel@www.boosten.org> User-Agent: Mutt/1.5.12-2006-07-14 Subject: Re: Quick question about PF and ALTQ X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: girishvenkatachalam@gmail.com List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 11 Nov 2007 17:03:38 -0000 On 14:03:29 Nov 11, Peter Boosten wrote: > Hi all, > > One quick question: is it possible to filter specific kinds of traffic > with altq, traffic that is not bound to specific IP addresses, like online > radio? > Yes. Not altq(It is for QoS). But pf can of course. :) localip = "www.shoutcast.com" radioport = 554 block quick out on fxp0 proto tcp from any to $remoteip port $radioport Here is an example for you lift and plonk into your /etc/pf.conf. :) Best of luck! Obviously the IP and port are fictitious. This will block all the incoming traffic from any internal IP to the online radio service. Hope this helps. regards, Girish What is the port for online radio? Many use http. If you want to block RTSP, then I guess it should be 554