From owner-freebsd-pf@FreeBSD.ORG Mon May 12 14:18:37 2008 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id BB062106566C for ; Mon, 12 May 2008 14:18:37 +0000 (UTC) (envelope-from salvador_d13@yahoo.com.ph) Received: from n7.bullet.mud.yahoo.com (n7.bullet.mud.yahoo.com [216.252.100.58]) by mx1.freebsd.org (Postfix) with SMTP id 852E08FC12 for ; Mon, 12 May 2008 14:18:37 +0000 (UTC) (envelope-from salvador_d13@yahoo.com.ph) Received: from [209.191.108.96] by n7.bullet.mud.yahoo.com with NNFMP; 12 May 2008 14:06:18 -0000 Received: from [209.191.119.183] by t3.bullet.mud.yahoo.com with NNFMP; 12 May 2008 14:06:18 -0000 Received: from [127.0.0.1] by omp106.mail.mud.yahoo.com with NNFMP; 12 May 2008 14:06:18 -0000 X-Yahoo-Newman-Property: ymail-3 X-Yahoo-Newman-Id: 799547.49904.bm@omp106.mail.mud.yahoo.com Received: (qmail 5259 invoked by uid 60001); 12 May 2008 14:06:16 -0000 DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com.ph; h=X-YMail-OSG:Received:Date:From:Subject:To:In-Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding:Message-ID; b=3jX1eyNFAr9FkhulMDaecmrd9K8pKB2buBDPEz70GyBvSHckPPGGuMCgqEJrmOiwL186a0m8qcOYlXXCtIotBXi9ZcSfESbCbMroA/edP2J1r9Vrf4coCVFckN9FbfcaiYLSD/YuQcbcFI1HauNV2K9LF5fLcgtE3meamrPsFQQ=; X-YMail-OSG: j9xnmP8VM1l7x7d6nLZsJre3h89eypqDIHZNn1piGqJlpC98311gLfAAnFJsDi0ixw-- Received: from [58.71.34.138] by web76113.mail.sg1.yahoo.com via HTTP; Mon, 12 May 2008 07:06:16 PDT Date: Mon, 12 May 2008 07:06:16 -0700 (PDT) From: Diego Salvador To: Max Laier , freebsd-pf@freebsd.org In-Reply-To: <200805121453.32022.max@love2party.net> MIME-Version: 1.0 Message-ID: <694237.4939.qm@web76113.mail.sg1.yahoo.com> Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 8bit X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: Subject: Re: Using ALTQ without PF in FreeBSD X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 12 May 2008 14:18:37 -0000 Hi Max, Thanks for your reply and explanation! I now understand why ALTQ is in PF-mode. What are the things needed to be done in order ALTQ to be SMPng compliant? What is the use of the option ALTQ_NOPCC in the kernel? This is described to be used for SMP kernels? Yes, I will look also on the pfil(9). Thanks, Diego Salvador Max Laier wrote: Hello Diego, On Monday 12 May 2008 07:41:30 Diego Salvador wrote: > Hi! Is it possible to use ALTQ in FreeBSD without PF? Because what I > want to achieve is to build a QoS system/machine in a Diffserv or > Intserv network without firewall. It seems like ALTQ is tightly coupled > with PF. I have read this http://pf4freebsd.love2party.net/altq.html > that ALTQ integration in FreeBSD is in PF-Mode not in COMPAT Mode? Can > someone elaborate the difference between these types of modes? The info > describes FreeBSD-5, Is it still affecting FreeBSD-6.2/6.3 and > FreeBSD-7.0 releases? In NetBSD, ALTQ can be used without PF or other > means of firewall. basically there are two parts to traffic shaping: 1) Classification of traffic 2) The actual queuing ALTQ used to do both, i.e. you could specify classifications based on src/dst/dscp/... in altqd and it would dig into the packets itself. This classification, however, turned out to be absolutely incompatible with the SMPng goals and when I imported ALTQ it was decided to disable it (because nobody had interest in locking it down for SMPng compliance). The classification in "PF-mode" is rather simple: any firewall (or other policy tool plugged into the pfil(9) API) can classify packets for ALTQ by adding a mbuf_tag to the packet. ALTQ only takes care of the actual queuing. Today, IPFW and PF are able to classify packets this way. IIRC, there are patches floating around to teach IPFW about DSCP (they might even be in the tree already). If neither tool meets your requirements, it should be easy enough to plug an application specific filter into pfil(9) that would do the classification. -- /"\ Best regards, | mlaier@freebsd.org \ / Max Laier | ICQ #67774661 X http://pf4freebsd.love2party.net/ | mlaier@EFnet / \ ASCII Ribbon Campaign | Against HTML Mail and News --------------------------------- Tired of spam? Yahoo! Mail has the best spam protection around http://ph.mail.yahoo.com