There is nothing to do with traffic shaping here.

@jayden: guys i am using the latest pfsense on a 64bit machine, i am more skilled on mikrotik. I am wondering how do i share internet fairly on an interface?,eg if the set max seed is 4mbps, when one user is connected he will get the whole bandwidth and if 4 users are connected they will share fairly. You need to define what you mean by "fair" since there are multiple definitions. I'm going to assume you want bandwidth split evenly among the active IPs, which means you probably want to use limiters: https://forum.pfsense.org/index.php?topic=63531.msg364520#msg364520 You could instead use queues but it would be more complex since you would need to create a bunch of queues for the separate IPs.

I think CE is has feature parity, just not tweaked for any specific build. It's meant to work on most hardware out of the box.

@w0w: Try to tick "Quick" option checkbox. Thanks - that seems to have done the trick

I'll do that, thanks very much!

What is the problem you're trying to solve? To slow the traffic (aka reduce bandwidth consumption) or to reduce "slowness" caused by "hogs"?

I find limiting undesirable traffic is more difficult than prioritizing (loose term) desirable traffic.

@churchtechguy: @Nullity: The GUI has always been screwy. pftop is the best source. Did pftop ever show dropped packets? Yes, pfTop shows dropped packets, however I hardly ever see the queue length change from zero even when it is dropping packets, and it seems to drop the packets at just a fraction of the bandwidth I have designated for the queue. Have you double-checked that your WAN link isn't having bandwidth problems?

I have Win10 Pro and I never directly configured anything about domains. I do have a homegroup setup and the current network is firewalled as "private".

Thanks all. I'm not sure how, but I managed to create some LAN rules that on the P2P/Usenet ports that queued my traffic.

It seems like you should be able to do this setup with a limiter.  You could limit inbound bandwidth on your WAN to 3Mbps and then just let the other LAN have the rest.  You could do this pretty simply with two limiters… Download Limiter: Set bandwidth limit for downloads on the LAN interface, give it a description and check the enable box. Upload Limiter: Set bandwidth limit for uploads you would like on the LAN interface and give it a description and check the enable box. Click Apply to save and apply the changes to the firewall.  You should have two limiters setup now. Lets assume that your second LAN is the one you would like to limit.  Go to the rules for the LAN2 interface.  You may have your rules setup differently, but it is normal to have a default pass rule to allow LAN clients to pass traffic through the interface for internet access. Click to edit the default internet rule for your LAN2 interface. Click on the Advanced Options button Under the limiter section at the bottom Set: In = Upload Limiter Out = Download Limiter Save and apply the rules. Do a speed test from the LAN2 network and you should see that your upload and download traffic are limited to the amount you chose. On LAN1 you should still achieve full unthrottled bandwidth. I hope this helps.

So, what firewall do you have at your remote site?  Are they both pfsense boxes?  I'll assume that you do. Here is a little picture I made of a possible setup… [image: download.png] upload widget In this case on the Remote Site pfsense box you would setup a floating rule: Interface = WAN Protocol = UDP Direction = Out (I'm not sure if it matters really to leave it in/out) Destination port = 1197 Optional - If your datacenter has a static IP address you could put Destination IP = DataCenter IP Address Advanced –> Queues set them to be None / qVOIP (or whatever the name of the priority queue is for the vpn) On the DataCenter side: You should have a rule on your WAN interface to permit the traffic to enter from the internet on port 1197 (or port your server is on).  You can simply go under Advanced --> Queues and set the queue right there without floating rules.  Set it to be None / qVOIP. Always remember when working with traffic shaping changes that you can have some unexpected results if you don't go to Diagnostics and reset the firewall state table after the changes.

During a speed test, what is the system load reported by the Monitoring logs?

is this working on one pipe per host?

@Animosity022: I'm not sure the purpose of having the qLink over qInternet. Is that to just further segregating the bandwidth? AFAIK, qLink is important in a multi-LAN (& WAN?) environment where pfSense routes between LAN interfaces. qLink is intended to be for inter-LAN traffic (full link speed), while qInternet is intended for LAN<->WAN traffic.