From owner-freebsd-questions@FreeBSD.ORG  Sun Oct 29 03:11:06 2006
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 2DA7316A412
	for <freebsd-questions@freebsd.org>;
	Sun, 29 Oct 2006 03:11:06 +0000 (UTC)
	(envelope-from prvs=johnl=045026268d@iecc.com)
Received: from xuxa.iecc.com (xuxa.iecc.com [208.31.42.42])
	by mx1.FreeBSD.org (Postfix) with SMTP id A2F5643D53
	for <freebsd-questions@freebsd.org>;
	Sun, 29 Oct 2006 03:11:05 +0000 (GMT)
	(envelope-from prvs=johnl=045026268d@iecc.com)
Received: (qmail 18578 invoked from network); 29 Oct 2006 03:11:04 -0000
Received: from simone.iecc.com (208.31.42.47)
	by mail2.iecc.com with QMQP; 29 Oct 2006 03:11:04 -0000
Date: 29 Oct 2006 03:11:04 -0000
Message-ID: <20061029031104.46343.qmail@simone.iecc.com>
From: John Levine <johnl@iecc.com>
To: freebsd-questions@freebsd.org
Summary: 
Expires: 
Sender: 
Followup-To: 
Distribution: 
Organization: 
Keywords: 
Cc: 
Cleverness: some
Subject: More questions on sr sync driver, packet filters, and altq
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 29 Oct 2006 03:11:06 -0000

I am putting together a FreeBSD router to replace a tired old BSD/OS
one.  My external line is a T1, so I got a Wanic 400 on ebay. I have a
/24 that is about half full so I don't do NAT and don't expect to need
to do so.

I'm still trying to figure out the best way to do the packet
filtering.  Since there are a few Windows boxes on my network, the
main thing I want to do is to filter out nasty stuff, but I would also
like to do a little policy routing.  In particular, I have some VoIP
equipment,and I'd like to give its traffic priority.  Identifying
the traffic is easy, since the boxes have fixed IP addresses, but how
do I do the priority.  The altq man pages say that each driver has to
support altq, and the sr driver doesn't.

Can I do this with netgraph?  Is there something else I'm missing?

TIA,