From owner-freebsd-ipfw@FreeBSD.ORG  Tue Jan  4 21:55:45 2011
Return-Path: <owner-freebsd-ipfw@FreeBSD.ORG>
Delivered-To: freebsd-ipfw@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 5BD44106566B
	for <freebsd-ipfw@freebsd.org>; Tue,  4 Jan 2011 21:55:45 +0000 (UTC)
	(envelope-from mike@magicislandtechnologies.com)
Received: from mail.magicislandtechnologies.com
	(mail.magicislandtechnologies.com [74.208.96.3])
	by mx1.freebsd.org (Postfix) with ESMTP id F209F8FC15
	for <freebsd-ipfw@freebsd.org>; Tue,  4 Jan 2011 21:55:44 +0000 (UTC)
Received: (qmail 31042 invoked from network); 5 Jan 2011 01:18:55 +0300
Received: from c-68-42-75-112.hsd1.mi.comcast.net (HELO ?192.168.0.103?)
	(68.42.75.112)
	by mail.magicislandtechnologies.com with SMTP; 5 Jan 2011 01:18:55 +0300
Message-ID: <4D23A04A.3040107@magicislandtechnologies.com>
Date: Wed, 05 Jan 2011 01:33:46 +0300
From: Michael Spratt <mike@magicislandtechnologies.com>
User-Agent: Thunderbird 2.0.0.22 (X11/20090605)
MIME-Version: 1.0
To: freebsd-ipfw@freebsd.org
References: <AANLkTinHW9wOyf1woxGLMurEsF=Yk3M8wt7+FM-C_9ya@mail.gmail.com>
	<20110104145253.GB8235@onelab2.iet.unipi.it>
In-Reply-To: <20110104145253.GB8235@onelab2.iet.unipi.it>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Cc: adrian@xenion.com.au, Douglas Lampi <doug@magicislandtechnologies.com>
Subject: soft-cap, 
X-BeenThere: freebsd-ipfw@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: IPFW Technical Discussions <freebsd-ipfw.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ipfw>
List-Post: <mailto:freebsd-ipfw@freebsd.org>
List-Help: <mailto:freebsd-ipfw-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 04 Jan 2011 21:55:45 -0000

Dear friends,  linux/ipfw/dummynet/transparent-bridge, am trying to cap 
users to upload/TX rates, but allow them to go over if the link is not 
congested.

The example below limits each src-ip mask-IP's TX from 10.10.0.0/20 to 
128Kbp/s,  and from 10.20.0.0/20 to 1024Kbp/s.
-------------------------------------------------------------------------------------
ipfw pipe 1 config bw 128Kbit/s mask src-ip 0xffffffff
ipfw pipe 2 config bw 1024Kbit/s mask src-ip 0xffffffff
ipfw 10001 add pipe 1 ip from 10.10.0.0/20 to any out xmit br0   
ipfw 10001 add pipe 2 ip from 10.20.0.0/20 to any out xmit br0   
?How to define total link size 100/100Mbit/s and allow individual ip's 
to exceed rate limit when link is not full?
---------------------------------------------------------------------------------
This simply places a HARD CAP on each IP. 

My question is, how to allow each IP to exceed that hard limit if the 
bandwidth on the up-link is available.  IE. If there is free bandwidth  
let them use it; if not scale users exceeding their subscibed data rate 
down until they are down to their subscribed limit?

My WAN uplink is 100Mbp/s
I want to give the clients the benefit of exceeding their TX dynamic 
pipe cap-limit,  when the system has spare bandwdith.

I welcome any feedback. Thanks -Mike 1-214-901-3232