From owner-freebsd-pf@FreeBSD.ORG Wed Jul 23 16:26:48 2008 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 0E2FE1065672 for ; Wed, 23 Jul 2008 16:26:48 +0000 (UTC) (envelope-from catalin@starcomms.com) Received: from webmail.starcomms.com (starcomms.com [41.205.191.5]) by mx1.freebsd.org (Postfix) with SMTP id 556F18FC1D for ; Wed, 23 Jul 2008 16:26:40 +0000 (UTC) (envelope-from catalin@starcomms.com) Received: from (webmail.starcomms.com [172.16.2.31]) by webmail.starcomms.com with smtp id 68ac_5769dae2_58c7_11dd_b0d3_001143cecab4; Wed, 23 Jul 2008 15:55:09 +0100 Received: from STA-HQ-S001.starcomms.local ([172.16.2.28]) by webmail.starcomms.com with Microsoft SMTPSVC(6.0.3790.3959); Wed, 23 Jul 2008 15:50:41 +0100 X-MimeOLE: Produced By Microsoft Exchange V6.5 Content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Date: Wed, 23 Jul 2008 15:51:12 +0100 Message-ID: <3A0AA7018522134597ED63B3B794C92A027402C3@STA-HQ-S001.starcomms.local> In-Reply-To: <8dfae1c10807230603o1060aa69jc9ccf2e4bc66f275@mail.gmail.com> X-MS-Has-Attach: X-MS-TNEF-Correlator: thread-topic: Limiting client bandwidth with PF thread-index: Acjs0mVI/yYcrCP4SF6/rYBKrtgo/gAAPu1Q References: <8dfae1c10807230603o1060aa69jc9ccf2e4bc66f275@mail.gmail.com> From: "Catalin Miclaus" To: "Walter Venable" X-OriginalArrivalTime: 23 Jul 2008 14:50:41.0421 (UTC) FILETIME=[7A4D73D0:01C8ECD3] X-NAIMIME-Disclaimer: 1 X-NAIMIME-Modified: 1 Cc: freebsd-pf@freebsd.org Subject: RE: Limiting client bandwidth with PF X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 23 Jul 2008 16:26:48 -0000 Hello Walter, There are some open bugs for pf with altq. You may want to consider ipfw and pipes to achieve same. Best Regards Catalin Miclaus Network/Security ISP-Data Starcomms Ltd. -----Original Message----- From: owner-freebsd-pf@freebsd.org [mailto:owner-freebsd-pf@freebsd.org] On Behalf Of Walter Venable Sent: Wednesday, July 23, 2008 2:04 PM To: freebsd-pf@freebsd.org Subject: Limiting client bandwidth with PF Hi all, I'm having some trouble getting pf to do what I want. I'm a newbie to pf, so I can't get my configuration quite right. We have a 3Mb/1Mb connection and I want to limit my clients each to 128Kbps/64Kbps. First things first, limit them to 128Kbps, but that isn't even working, as clients are still maxing at 3Mbps: $ cat /etc/pf.conf int_if=3D"rl0" ext_if=3D"nfe0" int_net=3D"192.168.2.0/24" altq on $ext_if hfsc bandwidth 3Mb queue { clients } queue clients bandwidth 128Kb hfsc ( default rio ) pass in quick log on $int_if proto tcp from $int_net to any \ flags S/SA keep state queue clients $ sudo pfctl -sq queue root_nfe0 on nfe0 bandwidth 3Mb priority 0 {clients} queue clients on nfe0 bandwidth 128Kb hfsc( rio default ) Can anyone say why this isn't working? More info about the network if you need it: Internet -- Router (192.168.1.1) -- (nfe0 @ 192.168.1.200 ) FreeBSD Gateway (rl0 @ 192.168.2.1) -- switch -- Clients (192.168.2.0/24) _______________________________________________ freebsd-pf@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-pf To unsubscribe, send any mail to "freebsd-pf-unsubscribe@freebsd.org" DISCLAIMER: The information contained in this message (including any atta= chments) is confidential and may be privileged. If you have received it b= y mistake please notify the sender by return e-mail and permanently delet= e this message and any attachments from your system. Any form of dissemin= ation, use, review, distribution, printing or copying of this message in = whole or in part is strictly prohibited if you are not the intended recip= ient of this e-mail. Please note that e-mails are susceptible to change. = STARCOMMS PLC shall not be liable for the improper or incomplete transmis= sion of the information contained in this communication nor for any delay= in its receipt or damage to your system. STARCOMMS PLC does not guarante= e that the integrity of this communication has been maintained or that th= is communication is free of viruses, interceptions or interferences. STAR= COMMS PLC reserves the right to monitor all e-mail communications, whethe= r related to the business of STARCOMMS or not, through its internal or ex= ternal networks.