Skip site navigation (1)Skip section navigation (2) 
Date:      Sun, 22 Jul 2001 16:08:49 +0100
From:      Chris Elsworth <chris@shagged.org>
To:        freebsd-stable@FreeBSD.ORG
Subject:   ipfw, pipes, and weighting
Message-ID:  <20010722160849.A67008@shagged.org>
next in thread | raw e-mail | index | archive | help 
Ello all, 

I've just been playing with ipfw trying to get weighting to work. My end 
desire is this - make ssh lag-free regardless of what else is going on - 
ftp traffic being the worst offender.

So I set out with this:

ipfw add queue 1 ip from $LOCALNET to 195.11.55.73
ipfw add queue 2 ip from $LOCALNET to not 195.11.55.73

ipfw queue 1 config weight 100 pipe 1 mask src-ip 0xffffffff dst-ip 0xffffffff
ipfw queue 2 config weight 1 pipe 1 mask src-ip 0xffffffff dst-ip 0xffffffff

ipfw pipe 1 config bw 0


right at the top of my firewall sh script.

I was hoping this would give top priority anything going to 195.11.55.73, 
and bottom priority to anything not going there.

The output of ipfw pipe show looks correct - I can see a connection to 
195.11.55.73 from my box (which happened to be ssh)..

q00001: weight 100 pipe 1   50 sl. 1 queues (64 buckets) droptail
    mask: 0x00 0xffffffff/0x0000 -> 0xffffffff/0x0000
BKT Prot ___Source IP/port____ ____Dest. IP/port____ Tot_pkt/bytes Pkt/Byte Drp
 16 ip      195.11.8.226/0        195.11.55.73/0       90     5456  0    0   0
q00002: weight 1 pipe 1   50 sl. 41 queues (64 buckets) droptail
    mask: 0x00 0xffffffff/0x0000 -> 0xffffffff/0x0000
BKT Prot ___Source IP/port____ ____Dest. IP/port____ Tot_pkt/bytes  Pkt/Byte Drp
  2 ip      195.11.8.253/0      63.197.148.248/0       10      910  0    0   0
  4 ip      195.11.8.226/0      193.216.39.123/0        2       68  0    0   0


You can also see there were other connections accumulating in q00002 
(there were many more) so that part appears to be working - the right 
connections are going to the right queues.

What doesn't work is the weighting itself. I saw absolutely no difference 
whether I had those rules in or not.

What am I missing?

If you need any more info please shout.

Thanks in anticipation.

-- 
Chris Elsworth  -  Software & Systems Developer  /  Systems Administrator 
girls = time x money (and time is money)         .       chrise@demon.net
      = money^2 (money is root of all evil)     . .    tel: 020 8371 1041 
      = _/(evil^2) = evil                   t h u s    mob: 07968 324 693

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010722160849.A67008>