From owner-freebsd-pf@FreeBSD.ORG Mon Nov 27 18:42:44 2006 Return-Path: X-Original-To: freebsd-pf@freebsd.org Delivered-To: freebsd-pf@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 825AA16A416 for ; Mon, 27 Nov 2006 18:42:44 +0000 (UTC) (envelope-from tom@tomjudge.com) Received: from s200aog10.obsmtp.com (s200aog10.obsmtp.com [207.126.144.124]) by mx1.FreeBSD.org (Postfix) with SMTP id 6AA514412A for ; Mon, 27 Nov 2006 18:01:43 +0000 (GMT) (envelope-from tom@tomjudge.com) Received: from source ([63.174.175.251]) by eu1sys200aob010.postini.com ([207.126.147.11]) with SMTP; Mon, 27 Nov 2006 18:02:44 UTC Received: from [0.0.0.0] (buffy.mintel.co.uk [10.0.0.37]) by bbbx3.usdmm.com (Postfix) with ESMTP id 365855C70 for ; Mon, 27 Nov 2006 12:02:40 -0600 (CST) Message-ID: <456B27C7.4030704@tomjudge.com> Date: Mon, 27 Nov 2006 18:00:39 +0000 From: Tom Judge User-Agent: Thunderbird 1.5.0.7 (X11/20060922) MIME-Version: 1.0 To: freebsd-pf@freebsd.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Subject: PF and ALTQ queue option. X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 27 Nov 2006 18:42:44 -0000 Hi, I am looking at using cbq to prioritise video conference traffic over all of the rest of the traffic crossing our VPN. I was just wondering if the following configuration would to this (The vpn link is 2Mbit, in I will be running pf+altq at both ends of the link). altq on em0 cbq qbandwidth 2Mb queue { normal, vidconf } queue normal bandwidth 1Mb priority 0 cbq(ecn) queue vidconf bandwidth 1Mb priority 1 cbq(ecn) pass in on em0 from 172.17.0.123 to 10.0.0.123 queue vidconf pass out on em0 from 10.0.0.123 to 172.17.0.123 queue vidconf pass in on em0 from any to any queue normal pass out on em0 from any to any queue normal pass in quick on em0 from 172.17.0.0/16 to 10.0.0.0/16 pass out quick on em0 from 10.0.0.0/16 to 172.17.0.0/16 The main question I have is which queue will the traffic between 10.0.0.123 and 172.17.0.123. In the pf world it would seem it gets queued in normal, is this correct? if it is i guess i have to invert the rules like so: pass in on em0 from any to any queue normal pass out on em0 from any to any queue normal pass in on em0 from 172.17.0.123 to 10.0.0.123 queue vidconf pass out on em0 from 10.0.0.123 to 172.17.0.123 queue vidconf Thanks Tom