From owner-freebsd-pf@FreeBSD.ORG  Tue Nov  7 04:54:34 2006
Return-Path: <owner-freebsd-pf@FreeBSD.ORG>
X-Original-To: freebsd-pf@freebsd.org
Delivered-To: freebsd-pf@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id A257C16A4F3
	for <freebsd-pf@freebsd.org>; Tue,  7 Nov 2006 04:54:34 +0000 (UTC)
	(envelope-from beastie@mra.co.id)
Received: from mx1.mra.co.id (fw.mra.co.id [202.57.14.4])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 1F2AC43D49
	for <freebsd-pf@freebsd.org>; Tue,  7 Nov 2006 04:54:22 +0000 (GMT)
	(envelope-from beastie@mra.co.id)
Received: from localhost (localhost.mra.co.id [127.0.0.1])
	by mx1.mra.co.id (Postfix) with ESMTP id 50DEB7237E;
	Tue,  7 Nov 2006 12:04:47 +0700 (WIT)
Received: from mx1.mra.co.id ([127.0.0.1])
	by localhost (mx1.mra.co.id [127.0.0.1]) (amavisd-new,
	port 10024) with ESMTP
	id 39252-10; Tue,  7 Nov 2006 12:04:46 +0700 (WIT)
Received: from beastie.mra.co.id (unknown [172.16.0.228])
	by mx1.mra.co.id (Postfix) with ESMTP id CC3BA7237C;
	Tue,  7 Nov 2006 12:04:43 +0700 (WIT)
From: Muhammad Reza <beastie@mra.co.id>
To: freebsd-pf@freebsd.org, daniel@benzedrine.cx
Date: Tue, 07 Nov 2006 01:00:51 +0700
Message-Id: <1162836051.23997.7.camel@beastie.mra.co.id>
Mime-Version: 1.0
X-Mailer: Evolution 2.0.2 (2.0.2-8) 
X-Virus-Scanned: by amavisd-new at mra.co.id
Content-Type: text/plain
Content-Transfer-Encoding: 7bit
X-Content-Filtered-By: Mailman/MimeDel 2.1.5
Cc: 
Subject: pf.conf + altq problem
X-BeenThere: freebsd-pf@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Technical discussion and general questions about packet filter
	\(pf\)" <freebsd-pf.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-pf>
List-Post: <mailto:freebsd-pf@freebsd.org>
List-Help: <mailto:freebsd-pf-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 07 Nov 2006 04:54:34 -0000

Dear All.

I start with the simple rule set in my pf bridge machine to limit
bandwidth 3Mbps  from my server on lan to internet and from internet to
my server on lan 
this my setup:

Internet ---xl1 xl2---LAN

and my pf.conf

lan="172.16.0.0/24"
#ALTQ at outgoing interface to limit traffic 3 MBps from lan to internet
altq on xl1 bandwidth 100% cbq queue {int_out,dflt_out}
queue int_out       bandwidth 3Mb
queue dflt_out      bandwidth  16Kb cbq (default)
#ALTQ at lan interface to limit traffic 3 MBps from internet to lan
altq on xl2 bandwidth 100% cbq queue {int_in,dflt_in}
queue int_in       bandwidth 3Mb   cbq (default)
queue dflt_in      bandwidth  16Kb

block on xl1
pass in on xl1  from any to $lan
pass out on xl1 from $lan to any
pass out log on xl1 from 172.16.0.228 to 202.57.14.1 keep  state flags S/SA queue (int_out)

block on xl2
pass in on xl2 from $lan to any keep state
pass out on xl2  from any to $lan  keep state
#pass  out  log on xl2 from 202.57.14.1 to 172.16.0.228 keep state flags S/SA queue (int_in)

I have done some test with iperf with no luck.
Is there something wrong with this rule set to acompilished my need ?
Please help

Regards
Reza