From owner-freebsd-pf@FreeBSD.ORG  Mon Aug 13 04:30:58 2007
Return-Path: <owner-freebsd-pf@FreeBSD.ORG>
Delivered-To: freebsd-pf@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id D058316A41B
	for <freebsd-pf@freebsd.org>; Mon, 13 Aug 2007 04:30:57 +0000 (UTC)
	(envelope-from fox@verio.net)
Received: from dfw-smtpout1.email.verio.net (dfw-smtpout1.email.verio.net
	[129.250.36.41])
	by mx1.freebsd.org (Postfix) with ESMTP id 707C413C457
	for <freebsd-pf@freebsd.org>; Mon, 13 Aug 2007 04:30:57 +0000 (UTC)
	(envelope-from fox@verio.net)
Received: from [129.250.36.63] (helo=dfw-mmp3.email.verio.net)
	by dfw-smtpout1.email.verio.net with esmtp id 1IKRZw-000163-R2
	for freebsd-pf@freebsd.org; Mon, 13 Aug 2007 04:30:56 +0000
Received: from [129.250.40.241] (helo=limbo.int.dllstx01.us.it.verio.net)
	by dfw-mmp3.email.verio.net with esmtp id 1IKRZw-0006TO-LJ
	for freebsd-pf@freebsd.org; Mon, 13 Aug 2007 04:30:56 +0000
Received: by limbo.int.dllstx01.us.it.verio.net (Postfix, from userid 1000)
	id 4BFB88E296; Sun, 12 Aug 2007 23:30:50 -0500 (CDT)
Date: Sun, 12 Aug 2007 23:30:50 -0500
From: David DeSimone <fox@verio.net>
To: freebsd-pf@freebsd.org
Message-ID: <20070813043049.GA32692@verio.net>
Mail-Followup-To: freebsd-pf@freebsd.org
References: <46BFD392.2020804@spin.net.id>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii; x-action=pgp-signed
Content-Disposition: inline
In-Reply-To: <46BFD392.2020804@spin.net.id>
Precedence: bulk
User-Agent: Mutt/1.5.9i
Subject: Re: Using PF + ALTQ in FreeBSD 6.2
X-BeenThere: freebsd-pf@freebsd.org
X-Mailman-Version: 2.1.5
List-Id: "Technical discussion and general questions about packet filter
	\(pf\)" <freebsd-pf.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-pf>
List-Post: <mailto:freebsd-pf@freebsd.org>
List-Help: <mailto:freebsd-pf-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 13 Aug 2007 04:30:58 -0000

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Dian Candra <dian@spin.net.id> wrote:
>
> client -> rl0------fxp0 ---> internet
>             (router)
> 
> I could limit outgoing traffic from client, but not incoming traffic.

I'm curious what you think your router can do to prevent hosts on the
internet from sending traffic too fast.

Once you have received the packets, it is too late to limit their
arrival rate.

- -- 
David DeSimone == Network Admin == fox@verio.net
  "It took me fifteen years to discover that I had no
   talent for writing, but I couldn't give it up because
   by that time I was too famous.  -- Robert Benchley
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)

iD8DBQFGv955FSrKRjX5eCoRApZ2AJ9uvyIL3W1F/g1T/8J6OKAepKSK+gCeKpzq
14DXl/Ayjo2ZsR07s9FHfH8=
=qCr3
-----END PGP SIGNATURE-----