From owner-freebsd-questions@FreeBSD.ORG Sat Aug 7 11:11:17 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 884CC16A4CE for ; Sat, 7 Aug 2004 11:11:17 +0000 (GMT) Received: from mymail.netmagicians.com (mymail.netmagicians.com [202.87.39.126]) by mx1.FreeBSD.org (Postfix) with SMTP id 0235B43D58 for ; Sat, 7 Aug 2004 11:11:16 +0000 (GMT) (envelope-from sid@netmagicsolutions.com) Received: (qmail 23271 invoked from network); 7 Aug 2004 11:23:50 -0000 Received: from sid@netmagicsolutions.com by mymail.netmagicians.com by uid 504 with qmail-scanner-1.16 (uvscan: v4.3.20/v4100. Clear:. Processed in 0.749051 secs); 07 Aug 2004 11:23:50 -0000 Received: from intra.netmagicsolutions.com (HELO ?10.1.1.161?) (202.87.39.242) by mymail.netmagicians.com with SMTP; 7 Aug 2004 11:23:49 -0000 Message-ID: <4114B8D1.2070508@netmagicsolutions.com> Date: Sat, 07 Aug 2004 16:41:13 +0530 From: Siddhartha Jain User-Agent: Mozilla Thunderbird 0.7.1 (Windows/20040626) X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-questions@freebsd.org X-Enigmail-Version: 0.84.2.0 X-Enigmail-Supports: pgp-inline, pgp-mime Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Subject: IPFW + Bridge + Dummynet X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 07 Aug 2004 11:11:17 -0000 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello, I read all the FAQs and stuff I could find after googling and got IPFW+Bridging+Dummynet working but still wanted to confirm my config. Some basic info: ================== FreeBSD bsdband.netmagic.com 4.10-RELEASE FreeBSD 4.10-RELEASE #1: Fri Aug 6 22:45:47 IST 2004 root@bsdband.netmagic.com:/usr/src/sys/compile/MYKERNEL i386 At the tail of MYKERNEL config: =============================== options IPFIREWALL options IPFIREWALL_VERBOSE options IPFIREWALL_DEFAULT_TO_ACCEPT options BRIDGE options DUMMYNET options HZ=1000 In /etc/sysctl.conf =================== net.link.ether.bridge_cfg=ed0,rl0 net.link.ether.bridge=1 net.link.ether.bridge_ipfw=1 net.link.ether.ipfw=1 net.inet.ip.fw.one_pass=1 net.inet.ip.fw.enable=0 Now, I want to do bandwidth shaping by using the box as a bridge only. I don't want any IP routing or firewalling to be done on the box. Are the above parameters proper and appropriate? Is there something else I should add for better performance etc? Thanks, Siddhartha -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (MingW32) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFBFLjROGaxOP7knVwRAs2RAJ93Yw7ReAgIr0sPMspIKYU6TcxV2ACfcN1j VoJghkrtGmcERwsoDanBry4= =NbTg -----END PGP SIGNATURE-----