From owner-freebsd-questions@FreeBSD.ORG  Mon Apr  4 18:42:10 2005
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 0668E16A4CE
	for <freebsd-questions@freebsd.org>;
	Mon,  4 Apr 2005 18:42:10 +0000 (GMT)
Received: from orb.pobox.com (orb.pobox.com [207.8.226.5])
	by mx1.FreeBSD.org (Postfix) with ESMTP id BC09F43D55
	for <freebsd-questions@freebsd.org>;
	Mon,  4 Apr 2005 18:42:09 +0000 (GMT)	(envelope-from LukeD@pobox.com)
Received: from orb (localhost [127.0.0.1])
	by orb.pobox.com (Postfix) with ESMTP
	id 8BC212BD; Mon,  4 Apr 2005 14:42:07 -0400 (EDT)
Received: from evrtwa1-ar19-4-41-048-029.evrtwa1.dsl-verizon.net
	(evrtwa1-ar19-4-41-048-029.evrtwa1.dsl-verizon.net [4.41.48.29])
	(using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
	(No client certificate requested)
	by orb.sasl.smtp.pobox.com (Postfix) with ESMTP id BC1748B;
	Mon,  4 Apr 2005 14:42:05 -0400 (EDT)
Date: Mon, 4 Apr 2005 10:41:56 -0700 (PDT)
From: LukeD@pobox.com
X-X-Sender: lukas@border.crystalsphere.multiverse
To: Brian John <brianjohn@fusemail.com>
In-Reply-To: <42509456.1060304@fusemail.com>
Message-ID: <20050404103139.V5130@border.crystalsphere.multiverse>
References: <42509456.1060304@fusemail.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed
cc: freebsd-questions@freebsd.org
Subject: Re: help with pf
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
Reply-To: LukeD@pobox.com
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 04 Apr 2005 18:42:10 -0000

On Sun, 3 Apr 2005, Brian John wrote:

> altq on $ext_if priq
> queue mail priority 13
> queue ssh priority 12
> queue web priority 14

I see one syntactical thing you missed.
You have to define your child queues in your altq declaration.  Something 
like:
altq on $ext_if priq queue {mail, ssh, web}

Also, after you get the syntax right, unless the maximum bandwidth of your 
outside line is the same as the maximum bandwidth of your network card 
(does this ever happen?) you're going to want to use the "bandwidth" 
keyword in that declaration also, and pick a proper value for it. Picking 
the right bandwidth value seems to be an art form that requires a lot of 
trial and error and liberal use of "pfctl -vvs queue"

If traffic shaping isn't working and your queues are always empty, then 
the number is too high.  If the queues are filling up and dropping too 
many packets, then either the number is too low or you're just generating 
more traffic than you can handle well.

Luke Dean