Date: Tue, 02 Dec 2008 10:42:27 +0200 From: Andrei Kolu <antik@bsd.ee> To: Peter Jeremy <peterjeremy@optushome.com.au>, freebsd-pf@freebsd.org, freebsd-isp@freebsd.org Subject: Re: PF + ALTQ - Bandwidth per customer Message-ID: <4934F4F3.1030808@bsd.ee> In-Reply-To: <20081202075634.GT51761@server.vk2pj.dyndns.org> References: <20081124180411.0b065be5@wolwerine> <705757.42117.qm@web38504.mail.mud.yahoo.com> <11167f520812011508u46b04e7dmb1d5d22675dc778d@mail.gmail.com> <20081202075634.GT51761@server.vk2pj.dyndns.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Peter Jeremy wrote: > On 2008-Dec-01 17:08:40 -0600, "Sam Fourman Jr." <sfourman@gmail.com> wrote: > >> So I would like to hear some ideas on how we could use FreeBSD or any other BSD >> to limit bandwidth per customer( say one customer (with root access) >> per server ) >> > > That description sounds like it simplifies to "limit bandwidth based on > IP address" - which is fairly trivial for ipfw+dummynet or pf+altq. > > ipfw+dummynet is really ugly traffic "shaper" (let's face it there is no shaping going on), because instead of limiting bandwidth it will drop packets to simulate bad connection. I hear many years about "trivial" configuration per user bandwidth limit with pf+altq but never saw ANY code... You can't set bandwidth limit with PF like 3Mbit per 100 clients if your lan card is 100Mbit. This is just lame- in reality clients never use all bandwidth and never all clients are connected all the time. Even Linux ipfilter does it for years with insane cryptic commandline but it just works. > ipfw+dummynet can also filter on uid/gid but I believe there are some > race conditions in that code > >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4934F4F3.1030808>