SecurityFocus

limiting (prioritizing) traffic with ipfw2 Dec 20 2002 03:32AM
Miha Verlic (miha krneki org) (2 replies)

Hello,
even though this list seems dead to me, I'm giving it a shot ;-)

I'm setting up opensource mirror, and I would like to allow 45mbit/s of outgoing bandwidth to networks (approx 40 subnets) our ISP has peerings to, and 2mbit/s of bandwidth to everyone else.

I've tried the following:

peering="{ network1/20 or network2/24 or network3/22 or etc... }"
ipfw add pipe 30 ip from ${server} to ${peering} out via ${maingw}
ipfw pipe 30 config bw 45Mbit/s
ipfw add pipe 31 ip from ${server} to any out via ${maingw}
ipfw pipe 31 config bw 2Mbit/s

However, this is sending all data through 2 pipes, thus limiting everyone to 2mbit/s.
I've tried several other options, but no luck, since ! is not allowed in 'or' blocks.

Any ideas?
I'm running freebsd 4.7-stable with ipfw2 compiled in.

--Miha

---------------------------------------------------------------------
To unsubscribe, e-mail: focus-bsd-unsubscribe (at) securityfocus (dot) com [email concealed]
For additional commands, e-mail: focus-bsd-help (at) securityfocus (dot) com [email concealed]

[ reply ]

RE: limiting (prioritizing) traffic with ipfw2 Dec 21 2002 01:10AM
Roger Seielstad (roger wiredeuclid COM) (1 replies)

RE: limiting (prioritizing) traffic with ipfw2 Dec 22 2002 12:11AM
Miha Verlic (miha krneki org)

Re: limiting (prioritizing) traffic with ipfw2 Dec 20 2002 07:42PM
Damian Gerow (damian sentex net) (1 replies)

Re: limiting (prioritizing) traffic with ipfw2 Dec 20 2002 10:49PM
Peter van Dijk (peter dataloss nl) (1 replies)

Re: limiting (prioritizing) traffic with ipfw2 Dec 22 2002 12:19AM
Miha Verlic (miha krneki org)