From owner-freebsd-questions Wed Feb 27 3:48:36 2002 Delivered-To: freebsd-questions@freebsd.org Received: from ns2.wananchi.com (ns2.wananchi.com [62.8.64.4]) by hub.freebsd.org (Postfix) with ESMTP id 3D0E437B41A for ; Wed, 27 Feb 2002 03:48:29 -0800 (PST) Received: from wash by ns2.wananchi.com with local (Exim 3.35 #1 (FreeBSD)) id 16g2a9-000ION-00; Wed, 27 Feb 2002 14:49:13 +0300 Date: Wed, 27 Feb 2002 14:49:13 +0300 From: Odhiambo Washington To: FBSD-Q Cc: Ceri Subject: Re: IPFW/Dummynet - Internet Access Message-ID: <20020227114913.GE23054@ns2.wananchi.com> Mail-Followup-To: Odhiambo Washington , FBSD-Q , Ceri References: <20020227104755.GC23054@ns2.wananchi.com> <20020227110513.GA4011@rhadamanth> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20020227110513.GA4011@rhadamanth> User-Agent: Mutt/1.3.25i X-Disclaimer: Any views expressed in this message,where not explicitly attributed otherwise, are mine alone!. X-Fortune: Everyone talks about apathy, but no one ____does anything about it. X-Operating-System: FreeBSD 4.5-STABLE i386 X-Best-Window-Manager: XFCE X-Designation: Systems Administrator, Wananchi Online Ltd. X-Location: Nairobi, KE, East Africa. X-Uptime: 2:44PM up 19 days, 19:31, 2 users, load averages: 1.11, 1.13, 1.15 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG * Ceri [20020227 14:06]: wrote: > On Wed, Feb 27, 2002 at 01:47:55PM +0300, Odhiambo Washington wrote: > > Hey Wash, > > > I'd like to give Internet access to some residents of a building BUT I want > > to have every user on their own private network (diff IP, no broadcast > > traffic to the other) and also do bandwidth limiting. > > > > QUESTION 1: Is it possible that I can configure each port on switch as a unique vlan, > > have the port that your FreeBSD box connects to pass all vlans, and then > > setup 3 VLAN interfaces on the FreeBSD box, one for each VLAN/client? > > Yes, it's called a trunk port in Cisco. > > > My problem is that I don't want the clients/vlans to see one another. > > No problem - just don't route them to each other. > > > I am being told that this is not the way vlans work, that vlans will require > > multiple switches, yes??? > > I don't believe that to be correct. > You can use VLANs with just one switch. Could someone elaborate/expound (even give reference URLs) more on this. I have to convince our network engineer here that this can be done. We have a CISCO 2900 series switch which I need to prod him to give me fo this test. He asserts that this can not be done and quotes the following URL - http://www.cisco.com/univercd/cc/td/doc/product/lan/cat6000/sft_6_1/configgd/vlans.htm > > QUESTION 2: I've already run IPFW on a FreeBSD box and while I am new to ipfw, I > > see it's already running fine, bar for the tuning that it will require to achieve > > the goal. If I want to do bandwidth limiting using dummynet, using the instructions > > at www.mostgraveconcern.com/freebsd/ , at what point in rc.ipfw do I introduce the > > dummynet rules, at the end??? > > Can't answer that one. > Can't you just use pipes (or does that require dummynet) ? My bad. I believe there is something that has not come out clear here. Aren't pipes not part of dummynet application? Since I am new at this, I seem a bit lost. Can I use pipes with a kernl _not_ built with dummynet? Thanks again. -Wash S y s t e m s A d m i n. -- Odhiambo Washington "The box said 'Requires Wananchi Online Ltd. www.wananchi.com Windows 95, NT, or better,' Tel: 254 2 313985-9 Fax: 254 2 313922 so I installed FreeBSD." GSM: 254 72 743 223 GSM: 254 733 744 121 This sig is McQ! :-) ++ Taxes, n.: Of life's two certainties, the only one for which you can get an extension. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message