From owner-freebsd-questions Mon Jul 16 14:22:52 2001 Delivered-To: freebsd-questions@freebsd.org Received: from jhb-imta.mweb.co.za (jhb-imta.mweb.co.za [196.2.48.244]) by hub.freebsd.org (Postfix) with ESMTP id 1E5BF37B405 for ; Mon, 16 Jul 2001 14:22:47 -0700 (PDT) (envelope-from h20soul@mweb.co.za) Received: from Liquidsoul ([196.30.38.182]) by jhb-imta.mweb.co.za (Sun Internet Mail Server sims.3.5.2000.03.23.18.03.p10) with SMTP id <0GGL00HZY349BW@jhb-imta.mweb.co.za> for freebsd-questions@FreeBSD.ORG; Mon, 16 Jul 2001 22:48:14 +0200 (GMT-2) Date: Mon, 16 Jul 2001 22:49:43 +0200 From: Gideon Subject: Bandwidth limiting with a bridge (Kernel panics and resets) To: freebsd-questions@FreeBSD.ORG Message-id: <001d01c10e39$39b87840$020101c8@Liquidsoul.my.domain> MIME-version: 1.0 X-Mailer: Microsoft Outlook Express 4.72.3110.1 Content-type: multipart/alternative; boundary="----=_NextPart_000_0008_01C10E49.9AD90580" X-MSMail-Priority: Normal X-MimeOLE: Produced By Microsoft MimeOLE V4.72.3110.3 X-Priority: 3 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG This is a multi-part message in MIME format. ------=_NextPart_000_0008_01C10E49.9AD90580 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable I've setup a bridge with network cards ed0 and ed2 . ed2 is the network = card connected to the cisco router and ed0 is the network card connected = to the rest of the lan . the bridge is working perfectly but i need to = cap the bandwidth certain clients are getting from the router .=20 I tried these two rules :=20 $fwcmd add pipe 1 ip from any to $fwcmd add pipe 2 ip from to any $fwcmd pipe 1 config bw 64Kbit/s queue 10Kbytes $fwcmd pipe 2 config bw 64Kbit/s queue 10Kbytes the limiting works finewith these four rules . BUT .. when i ping a = clientip from the cisco router's side the kernel panics and reboots . Also as far as i can c that rule is bypassable by the clients all they = need to do is put the cisco in as a gateway and not the bridge . Any1 maybe know whots wrong and maybe how to fix it ? I've tried all sorts of rules but they end up either rebooting the = system or just not working at all .=20 ------=_NextPart_000_0008_01C10E49.9AD90580 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
I've setup a bridge with network = cards ed0 and=20 ed2 . ed2 is the network card connected to the cisco router and ed0 is = the=20 network card connected to the rest of the lan . the bridge is working = perfectly=20 but i need to cap the bandwidth certain clients are getting from the = router .=20
I tried these two rules : =
$fwcmd add pipe 1 ip from any to=20 <clientip>
$fwcmd add pipe 2 ip from = <clientip> to=20 any
$fwcmd pipe 1 config bw 64Kbit/s = queue=20 10Kbytes
$fwcmd pipe 2 config bw 64Kbit/s = queue=20 10Kbytes
the limiting works finewith these = four rules .=20 BUT .. when i ping a clientip from the cisco router's side the kernel = panics and=20 reboots .
Also as far as i can c that rule is = bypassable=20 by the clients all they need to do is put the cisco in as a gateway and = not the=20 bridge .
Any1 maybe know whots wrong and = maybe how to fix=20 it ?
I've tried all sorts of rules but = they end up=20 either rebooting the system or just not working at all .=20
------=_NextPart_000_0008_01C10E49.9AD90580-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message