From owner-freebsd-questions@FreeBSD.ORG Mon Aug 9 13:20:45 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4432616A4CE for ; Mon, 9 Aug 2004 13:20:45 +0000 (GMT) Received: from mymail.netmagicians.com (mymail.netmagicians.com [202.87.39.126]) by mx1.FreeBSD.org (Postfix) with SMTP id B8A3943D39 for ; Mon, 9 Aug 2004 13:20:43 +0000 (GMT) (envelope-from sid@netmagicsolutions.com) Received: (qmail 26693 invoked from network); 9 Aug 2004 13:35:04 -0000 Received: from sid@netmagicsolutions.com by mymail.netmagicians.com by uid 504 with qmail-scanner-1.16 (uvscan: v4.3.20/v4100. Clear:. Processed in 0.743697 secs); 09 Aug 2004 13:35:04 -0000 Received: from intra.netmagicsolutions.com (HELO ?10.1.1.161?) (202.87.39.242) by mymail.netmagicians.com with SMTP; 9 Aug 2004 13:35:03 -0000 Message-ID: <41177A29.70105@netmagicsolutions.com> Date: Mon, 09 Aug 2004 18:50:41 +0530 From: Siddhartha Jain User-Agent: Mozilla Thunderbird 0.7.1 (Windows/20040626) X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-questions@freebsd.org References: <41175C18.2010206@netmagicsolutions.com> In-Reply-To: <41175C18.2010206@netmagicsolutions.com> X-Enigmail-Version: 0.84.2.0 X-Enigmail-Supports: pgp-inline, pgp-mime Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Subject: Re: Bandwidth shaping for different flows X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 09 Aug 2004 13:20:45 -0000 Siddhartha Jain wrote: > Hello, > > I want to do bandwidth shaping using dummynet. I want the box to act as > a bridge only and no layer-3 filtering. To that effect, I have the > following parameters in /etc/sysctl.conf: > > net.link.ether.bridge_cfg=ed0,rl0 > net.link.ether.bridge=1 > net.link.ether.bridge_ipfw=1 > net.link.ether.ipfw=1 > net.inet.ip.fw.one_pass=1 > net.inet.ip.fw.enable=0 > > > My first question is that does this ensure that packets are processed at > the bridge level and not at layer-3? I am a bit confused between these > two parameters: > net.link.ether.bridge_ipfw, and > net.link.ether.ipfw > > What is the effect of each specifically? Still need to know this. > > Two is that I am trying to allocate different bandwidth limits for: > 1. Internet to home-network-A (in and out) - 128Kbps > 2. Home-network-B to Home-Network-A (in and out) - 1Mbps > > So I do: > ipfw -f flush > ipfw add pipe 1 ip from any to Network-A > ipfw add pipe 2 ip from Network-B to Network-A > ipfw pipe 1 config bw 128Kbit/s queue 10 > ipfw pipe 2 config bw 1000Kbit/s queue 10 > > But I find that the effective limit is 128Kbps only for all transfers!! > Why isn't the traffic between Network-A and B put in pipe-2? Sorry, stupid question. I realised that the packets enters a pipe as soon as one matches it profile and does not go thru the whole rule-base before entering a pipe. So just changed precedence. Works now. Thanks, Siddhartha