From owner-freebsd-ipfw@FreeBSD.ORG Wed Apr 14 07:56:45 2004 Return-Path: Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id EC3C916A4D0 for ; Wed, 14 Apr 2004 07:56:45 -0700 (PDT) Received: from xorpc.icir.org (xorpc.icir.org [192.150.187.68]) by mx1.FreeBSD.org (Postfix) with ESMTP id D72C443D49 for ; Wed, 14 Apr 2004 07:56:45 -0700 (PDT) (envelope-from rizzo@icir.org) Received: from xorpc.icir.org (localhost [127.0.0.1]) by xorpc.icir.org (8.12.9p1/8.12.8) with ESMTP id i3EEuigd096428; Wed, 14 Apr 2004 07:56:44 -0700 (PDT) (envelope-from rizzo@xorpc.icir.org) Received: (from rizzo@localhost) by xorpc.icir.org (8.12.9p1/8.12.3/Submit) id i3EEui9U096427; Wed, 14 Apr 2004 07:56:44 -0700 (PDT) (envelope-from rizzo) Date: Wed, 14 Apr 2004 07:56:44 -0700 From: Luigi Rizzo To: Ludo Koren Message-ID: <20040414075644.A95599@xorpc.icir.org> References: <004e01c4221d$12e96c60$6466a8c0@wolf> <200404141451.i3EEpjJH069188@lk106.tempest.sk> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: <200404141451.i3EEpjJH069188@lk106.tempest.sk>; from lk@tempest.sk on Wed, Apr 14, 2004 at 04:51:45PM +0200 cc: ipfw@freebsd.org cc: tscrum@aaawebsolution.com Subject: Re: limiting bandwith X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 14 Apr 2004 14:56:46 -0000 On Wed, Apr 14, 2004 at 04:51:45PM +0200, Ludo Koren wrote: > > > > I do not believe there is a way to "postpone" traffic with > > dummynet other than what is available with queues, not to > > mention I don't think you'd ever want to, really. The config > > below will give mail a lower priority to all of the other > > traffic, both in and out. > > > Nat interactive addresses? Hmmm... you mean you want ipfw to > > forward local addresses using nat? you want to dole out local > > ip addresses, dhcp? Not really sure of the question here, but > > I'm sure its answered by following the link below to the > > freebsd handbook. > > > I wrote `interactive' (ticks), and I meant addresses that are used to > connect to ssh, web, etc (interactive processes). All these addresses > are NAT-ed. For these, your setup is working fine. Thank you very > much. > > The problem, I still have, is the following: the SMTP is flowing > through, I am not relaying e-mail on this host. It seems to me, I > cannot put together a rule which pass the traffic and add it to the > queue except when I use keep-state flag. In this setup (keep-state), > Luigi wrote it does not work. i said your configuration does not work the way you want. It is possible to write a proper configuration that does what you want but it is left as an exercise to the reader. cheers luigi