Limit Session Bandwidth

Sami Halabi sodynet1 at gmail.com
Mon Jan 7 06:59:52 UTC 2013 

Hi,
Thank you for the help.

sysctl net.inet.ip.fw.one_pass=0
introduces some issues to my configuration limits in my current
configuration, because limits aren't applied correctly since we continue
after the pipe, eg:
i had:
1900 pipe 1000 all from x.y.z.1 to any
2000 pipe 1001 all from any to x.y.z.1
2100 pipe 2000 all from x.y.z.0/24 to any
2100 pipe 2001 all from any to x.y.z.0/24
.
.
more pipes
.
..
6500 allow all from any to any

so the I had special limit(large) for x.y.z.1 IP but another limit in the
whole /24 that i didn't want it to affect.
any ideas how to solve it? i thought about skipto but I'm not sure how to
use.
Sami


On Sun, Jan 6, 2013 at 1:37 AM, Luigi Rizzo <rizzo at iet.unipi.it> wrote:

> On Sat, Jan 05, 2013 at 02:51:07PM +0200, Sami Halabi wrote:
> > Hi Luigi & Ozkan,
> >
> > Thanks for the response.
> >
> > Luigi i saw you said in some list never trust italians :), so i went step
> > by step.
> > first i put:
> > me out from a pipe
> >
> > sysctl net.inet.ip.fw.one_pass=0
> > ipfw pipe 123 config bw 1Mbit/s mask all
> > ipfw add 100 pipe 123 out
> >
> > ipfw add 120 allow ip from any to any
> >
> > Works like a charm.
> >
> > Next Step wil be:
> > ipfw pipe 456 config bw 10Mbit/s
> >
> >   ipfw sched 789 config mask all pipe 123
> >      or it should be:
> >   ipfw sched 789 config mask all pipe 456
>
> the latter.
>
> > ipfw add 110 queue 789 out
> >
> >
> > whats is the correct configuration ?
> >
> > the mask options isn't well documented, in the handbook its not even
> > mentiond.
>
> the manpage is slightly more up to date.
> The handbook is probably years behind.
>
> cheers
> luigi
>
> > same goes for scheduler...
> > I got the feeling that only few here know the options very welll... maybe
> > I'm wrong?
> >
> > Sami
> >
> >
> >
> > On Thu, Jan 3, 2013 at 12:46 PM, ?zkan KIRIK <ozkan.kirik at gmail.com>
> wrote:
> >
> > > I think there is a mistake at the sched config line. it should be as
> > >  ipfw sched 789 config mask all pipe 456
> > >
> > >
> > > On Thu, Jan 3, 2013 at 10:29 AM, Luigi Rizzo <rizzo at iet.unipi.it>
> wrote:
> > >
> > >> ipfw sched 789 config mask all pipe 123
> > >
> > >
> > >
> >
> >
> > --
> > Sami Halabi
> > Information Systems Engineer
> > NMS Projects Expert
> > FreeBSD SysAdmin Expert
>



-- 
Sami Halabi
Information Systems Engineer
NMS Projects Expert
FreeBSD SysAdmin Expert

More information about the freebsd-ipfw mailing list