From owner-freebsd-pf@FreeBSD.ORG Mon Aug 22 07:25:59 2011 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 25599106564A for ; Mon, 22 Aug 2011 07:25:59 +0000 (UTC) (envelope-from ermal.luci@gmail.com) Received: from mail-yx0-f182.google.com (mail-yx0-f182.google.com [209.85.213.182]) by mx1.freebsd.org (Postfix) with ESMTP id CC3688FC0A for ; Mon, 22 Aug 2011 07:25:58 +0000 (UTC) Received: by yxn22 with SMTP id 22so2620436yxn.13 for ; Mon, 22 Aug 2011 00:25:58 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=gKji0LXGkKNNYy2Op12Sao3KK0kEDoxx/5z7c1aAYQI=; b=H5MFkPrnVIEemijIRiNRaalyubSHwaQeWYp9nyLf5+WUaHFhey4/0d+H79wGJkMT/H 8FAkpt6z2pvlCSyYMaelnp205E+ybslDnOYUzapDycBkkNA67qxj2bDe+2hH0HtriBfn nUhi09rVfOO6qOmKA8ZnaF89qIEuyprVX7V8k= MIME-Version: 1.0 Received: by 10.42.136.199 with SMTP id v7mr2449837ict.81.1313997958029; Mon, 22 Aug 2011 00:25:58 -0700 (PDT) Sender: ermal.luci@gmail.com Received: by 10.231.154.79 with HTTP; Mon, 22 Aug 2011 00:25:57 -0700 (PDT) In-Reply-To: <20110822022336.GL6142@pjdesk.au.alcatel-lucent.com> References: <200710171043.08126.max@love2party.net> <9a542da30710211232v4d3c930fg8ea778a12f3f16cb@mail.gmail.com> <9a542da30710280617t11e668e2o4d122998192f71c@mail.gmail.com> <20081103060321.GA45414@server.vk2pj.dyndns.org> <9a542da30811040753m1a2728bcu365c65da8fb61721@mail.gmail.com> <20110629044233.GB65891@pjdesk.au.alcatel-lucent.com> <20110713010029.GE65891@pjdesk.au.alcatel-lucent.com> <20110822022336.GL6142@pjdesk.au.alcatel-lucent.com> Date: Mon, 22 Aug 2011 09:25:57 +0200 X-Google-Sender-Auth: r1G6Lxt_ahL8prgBiV49BXjonFM Message-ID: From: =?ISO-8859-1?Q?Ermal_Lu=E7i?= To: Peter Jeremy Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Cc: Luigi Rizzo , "freebsd-pf@freebsd.org" Subject: Re: [PATCH] PF+dummynet X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 22 Aug 2011 07:25:59 -0000 On Mon, Aug 22, 2011 at 4:23 AM, Peter Jeremy wrote: > [This is fairly old but has recently bubbled to the top of my TODO list] > > On 2011-Jul-13 23:35:44 +0800, Ermal Lu=E7i wrote: >>I reverted back from having the pipes configured in pfctl because it >>will be a catching game with ipfw. >>To me it seems quite awkward that you cannot use ipfw to do all the >>configuration and >>just use the pipe/queue numbers for sending traffic to it on pfctl. > > Whereas, to me it seems awkward that you use pfctl to attach > dummynet flows to pf rules but you can't use pfctl to manage the > dmmmynet configuration. > To me this is a not really useful work. The only needed way for this is just feeling to have a solution integrated. Since 9.0 dummynet can be loaded without ipfw(4) and ipfw(8) tool can be used for it. > I have managed to integrate ipfw/dummynet.c into pfctl and it all > seems to work for me - except that flows are not persistent so that > my statistics doesn't work. =A0I am still working through to see if > this is something I broke or a new "feature". > > I hope to forward patches once I'm happy with it. > >>To me something that is glued on ipfw should stay there as it will get >>the best support. >>Possibly splitting dummynet configuration out to dnctl might have an argu= ment. > > IMHO, it would be a great improvement to separate dummynet from ipfw. > As a start it is very easy to separate dummynet functions from ipfw(8) and come up with a dnctl utility. Later on it can be improved. Just that a big warning would have to be put on ipfw(8) to let many people aware of this. This IMHO would be worth spending time on if you really want to feel dummynet as its own solution. It is not a very big job per se as well. CC'ing Luigi to see what he thinks about this. > -- > Peter Jeremy > --=20 Ermal