From owner-freebsd-isp@FreeBSD.ORG Wed Sep 27 21:30:35 2006 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 715D816A6E6 for ; Wed, 27 Sep 2006 21:30:35 +0000 (UTC) (envelope-from ormandj@corenode.com) Received: from zone2.corenode.com (zone2.corenode.com [66.91.129.184]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9CA2343E16 for ; Wed, 27 Sep 2006 21:29:33 +0000 (GMT) (envelope-from ormandj@corenode.com) Received: from corenode.com ([127.0.0.1]) by zone2.corenode.com (Sun Java System Messaging Server 6.2-6.01 (built Apr 3 2006)) with ESMTP id <0J69000GLT2Q0N10@zone2.corenode.com> for freebsd-isp@freebsd.org; Wed, 27 Sep 2006 11:30:26 -1000 (HST) Received: from [66.91.129.182] by zone2.corenode.com (mshttpd); Wed, 27 Sep 2006 11:30:26 -1000 Date: Wed, 27 Sep 2006 11:30:26 -1000 From: "David J. Orman" In-reply-to: <451AEB8A.20501@telcom.net> To: akachler@telcom.net Message-id: MIME-version: 1.0 X-Mailer: Sun Java(tm) System Messenger Express 6.2-6.01 (built Apr 3 2006) Content-type: text/plain; charset=us-ascii Content-language: en Content-transfer-encoding: 7BIT Content-disposition: inline X-Accept-Language: en Priority: normal References: <451AE254.3050603@telcom.net> <451AEB8A.20501@telcom.net> Cc: freebsd-isp@freebsd.org Subject: Re: pf/altq X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 27 Sep 2006 21:30:35 -0000 > Thank you for your response David. > We basically need to limit the bandwidth of each one of our > customers > based on what they have contracted. Some customers have simple, > mostly > web traffic, while some others have very complex patterns with lots > of > DNS/mail/web/ssh/etc. >From what you are describing, it sounds doable with decent hardware. It's certainly worth a shot, pf/altq is fairly easy to work with, and shouldn't take you more than a few hours to get FreeBSD installed, the network configured, the rules in place, and the traffic shaping going. Tons of howtos all over the net. I used the OpenBSD documentation on PF to get myself going, from what I remember. > But your telling me that sustained 80Mbps is possible tells me that > it > is a robust system. Like most things coming from the OpenBSD project, I think "robust" accurate describes it. I just had issues with hardware reliability, I couldn't do N+1 redundancy on all parts like I can with hardware routers. BGP/etc was also a mess to work with, so for my situation it was better to go the HW route. That said, I did very much like the flexibility of having a general purpose machine/OS - it allowed me to do some creative things that I might be limited on with the pure HW solutions from the likes of Cisco/Juniper/etc. > We haven't even started testing, but your response gives us the > confidence to at least spend the time testing. Great! I don't think you'll be disappointed. :) > Thanks again David. Anytime! Cheers, David