From owner-freebsd-pf@FreeBSD.ORG Fri Jan 27 14:31:44 2006 Return-Path: X-Original-To: freebsd-pf@freebsd.org Delivered-To: freebsd-pf@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6C8E816A420 for ; Fri, 27 Jan 2006 14:31:44 +0000 (GMT) (envelope-from dr.clau@gmail.com) Received: from wproxy.gmail.com (wproxy.gmail.com [64.233.184.194]) by mx1.FreeBSD.org (Postfix) with ESMTP id B76EF44111 for ; Fri, 27 Jan 2006 14:31:43 +0000 (GMT) (envelope-from dr.clau@gmail.com) Received: by wproxy.gmail.com with SMTP id 67so731153wri for ; Fri, 27 Jan 2006 06:31:43 -0800 (PST) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=l1TKaGnqAqxhLa54rzhGrCOCN9EWOyHgIKKNk9FBzjeQBSwJvAq0B/YIM1uYXdhB9TKK06AS8gfIVyRPJP9aFpOmJfSbVmEHDOje4VS2hCe+DWQQHw5mNTPI06GlwdLTYgG32WcRufpKJ1wS1l6JG+cPLhfdngiTAzLbOLZKSjE= Received: by 10.64.150.1 with SMTP id x1mr288549qbd; Fri, 27 Jan 2006 06:31:42 -0800 (PST) Received: by 10.64.209.16 with HTTP; Fri, 27 Jan 2006 06:31:42 -0800 (PST) Message-ID: Date: Fri, 27 Jan 2006 16:31:42 +0200 From: Claudiu Dragalina-Paraipan To: husnu demir In-Reply-To: <20060127135434.GA1073182@metu.edu.tr> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline References: <20060127135434.GA1073182@metu.edu.tr> Cc: freebsd-pf@freebsd.org Subject: Re: pf and VLAN support. X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 27 Jan 2006 14:31:44 -0000 Hi, I use the same method, and I have about 15 VLANs. I have ALTQ active on fxp1 interface (where all VLANs are sitting), and I assign traffic to altq depending on which vlan interface it arrives/goes. This way the bandwidth can be shared between VLANs easily. Regards, On 1/27/06, husnu demir wrote: > Hi, > > Last week I tried to use PF+ALTQ+VLAN combination and found out that ALTQ= doesnot support VLAN. Then after some searching found out that giving ALTQ= support on the root device and queue'ing to the VLAN device is sufficient = to use. But I could not find any reference for that info, either pf.conf or= ALTQ manual. man altq says that > > " The tun(4) and ng_iface(4) pseudo drivers also do support ALTQ" > > but does not mention about the vlan. Is this solution correct? If it is, = whay anybody did not reference to that INFO. > > > Thanks. > > > .... > altq on bge0 cbq bandwidth 0.05Mb queue { icmp } # BGE0 is the mai= n interface for VLAN1. > queue icmp_internal cbq(default) > .... > > pass in quick on vlan1 inet proto icmp from xxxxxxxx to any \ > icmp-type $icmp_tips keep state (max 1000) queue icmp_internal #= queue is used for the VLAN1 interface. > .... -- Claudiu Dragalina-Paraipan