Date: Thu, 12 Feb 2009 04:26:26 -0500 From: Tom Uffner <tom@uffner.com> To: eculp <eculp@encontacto.net> Cc: freebsd-pf@freebsd.org Subject: Re: PF + ALTQ - Bandwidth per customer Message-ID: <4993EB42.2020503@uffner.com> In-Reply-To: <20081203071940.324735uokbfgyh6o@econet.encontacto.net> References: <76463C1E8CB14B958088F7E54C611560@ashevchenko> <493634DA.7000408@infoweapons.com> <20081203071940.324735uokbfgyh6o@econet.encontacto.net>
next in thread | previous in thread | raw e-mail | index | archive | help
eculp wrote: > I don't remember why but for some reason I have the idea that pf+altq is > not bidirectional. Am I mistaken? no solution that does not involve cooperation from your upstream connection(s) is truly bidirectional. it is easy to limit/shape your outbound traffic. on the other hand it is difficult if not impossible to unilaterally control the amount or sources of inbound data arriving at your border router(s) on it's way to various applications (mail servers, for example). you can _pretend_ to by dropping, queuing or otherwise limiting it once inside your network, but you cannot meaningfully prevent it from using your downlink bandwidth and potentially crowding out other, possibly more desirable, inbound data.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4993EB42.2020503>