Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Configuring limiters immediately black holes WAN traffic?

    Scheduled Pinned Locked Moved Traffic Shaping
    1 Posts 1 Posters 367 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • I
      inferno480
      last edited by

      Ok, having a weird problem. I've been wanting to experiment with FQ_CODEL / TailDrop so I followed the guides and information in this thread:

      https://forum.netgate.com/topic/171158/qos-traffic-shaping-limiters-fq_codel-on-22-05?_=1685248754560

      However, once I configure the limiters and activate the firewall rules, the second I reset the states, all traffic in & out of my WAN interface stops completely. I've also tried a reboot to no avail.

      I am running Multi-WAN; I've tried setting the gateway in the Floating firewall rules to the Gateway Group, but the same problem occurred.

      I figure I HAVE to be doing something horribly wrong, but when I check Diagnostics > Limiter Info, I always get:

      "Limiters:
      No limiters were found on this system."

      These are my <filter> and <dnshaper> config clauses from my config.xml; I am running 23.05 (never tried setting this up on earlier releases).

      Any ideas on things to check or anything I might be doing wrong?

      <filter>
		<rule>
			<id></id>
			<tracker>1685250548</tracker>
			<type>pass</type>
			<interface>wan</interface>
			<ipprotocol>inet</ipprotocol>
			<tag></tag>
			<tagged></tagged>
			<direction>out</direction>
			<quick>yes</quick>
			<floating>yes</floating>
			<max></max>
			<max-src-nodes></max-src-nodes>
			<max-src-conn></max-src-conn>
			<max-src-states></max-src-states>
			<statetimeout></statetimeout>
			<statetype><![CDATA[keep state]]></statetype>
			<os></os>
			<srcmac></srcmac>
			<dstmac></dstmac>
			<source>
				<network>wanip</network>
			</source>
			<destination>
				<any></any>
			</destination>
			<descr><![CDATA[WAN CoDel Limiters]]></descr>
			<gateway>WANGW</gateway>
			<dnpipe>WANupQ</dnpipe>
			<pdnpipe>WANdownQ</pdnpipe>
			<bridgeto></bridgeto>
			<created>
				<time>1685250548</time>
				<username><![CDATA[admin@censored (Local Database)]]></username>
			</created>
			<updated>
				<time>1685251163</time>
				<username><![CDATA[admin@censored (Local Database)]]></username>
			</updated>
		</rule>
		<rule>
			<id></id>
			<tracker>1685250752</tracker>
			<type>pass</type>
			<interface>wan</interface>
			<ipprotocol>inet6</ipprotocol>
			<tag></tag>
			<tagged></tagged>
			<direction>out</direction>
			<quick>yes</quick>
			<floating>yes</floating>
			<max></max>
			<max-src-nodes></max-src-nodes>
			<max-src-conn></max-src-conn>
			<max-src-states></max-src-states>
			<statetimeout></statetimeout>
			<statetype><![CDATA[keep state]]></statetype>
			<os></os>
			<srcmac></srcmac>
			<dstmac></dstmac>
			<source>
				<network>wanip</network>
			</source>
			<destination>
				<any></any>
			</destination>
			<descr><![CDATA[WAN CoDel Limiters]]></descr>
			<gateway>WANGWv6</gateway>
			<dnpipe>WANupQ</dnpipe>
			<pdnpipe>WANdownQ</pdnpipe>
			<bridgeto></bridgeto>
			<created>
				<time>1685250752</time>
				<username><![CDATA[admin@censored (Local Database)]]></username>
			</created>
			<updated>
				<time>1685251172</time>
				<username><![CDATA[admin@censored (Local Database)]]></username>
			</updated>
		</rule>

















	<dnshaper>
		<queue>
			<name>WANup</name>
			<number>1</number>
			<qlimit>5000</qlimit>
			<plr></plr>
			<description><![CDATA[WAN Upload]]></description>
			<bandwidth>
				<item>
					<bw>5700</bw>
					<burst></burst>
					<bwscale>Mb</bwscale>
					<bwsched>none</bwsched>
				</item>
			</bandwidth>
			<enabled>on</enabled>
			<buckets></buckets>
			<mask>none</mask>
			<maskbits></maskbits>
			<maskbitsv6></maskbitsv6>
			<delay>0</delay>
			<sched>fq_codel</sched>
			<param_fq_codel_target>5</param_fq_codel_target>
			<param_fq_codel_interval>100</param_fq_codel_interval>
			<param_fq_codel_quantum>300</param_fq_codel_quantum>
			<param_fq_codel_limit>10240</param_fq_codel_limit>
			<param_fq_codel_flows>1024</param_fq_codel_flows>
			<aqm>droptail</aqm>
			<ecn>on</ecn>
			<queue>
				<name>WANupQ</name>
				<number>1</number>
				<qlimit></qlimit>
				<description><![CDATA[WAN Upload Queue]]></description>
				<weight></weight>
				<enabled>on</enabled>
				<buckets></buckets>
				<mask>none</mask>
				<maskbits></maskbits>
				<maskbitsv6></maskbitsv6>
				<aqm>droptail</aqm>
				<ecn></ecn>
			</queue>
		</queue>
		<queue>
			<name>WANdown</name>
			<number>2</number>
			<qlimit>5000</qlimit>
			<plr></plr>
			<description><![CDATA[WAN Download]]></description>
			<bandwidth>
				<item>
					<bw>5700</bw>
					<burst></burst>
					<bwscale>Mb</bwscale>
					<bwsched>none</bwsched>
				</item>
			</bandwidth>
			<enabled>on</enabled>
			<buckets></buckets>
			<mask>none</mask>
			<maskbits></maskbits>
			<maskbitsv6></maskbitsv6>
			<delay>0</delay>
			<sched>fq_codel</sched>
			<param_fq_codel_target>5</param_fq_codel_target>
			<param_fq_codel_interval>100</param_fq_codel_interval>
			<param_fq_codel_quantum>300</param_fq_codel_quantum>
			<param_fq_codel_limit>10240</param_fq_codel_limit>
			<param_fq_codel_flows>1024</param_fq_codel_flows>
			<aqm>droptail</aqm>
			<ecn>on</ecn>
			<queue>
				<name>WANdownQ</name>
				<number>2</number>
				<qlimit></qlimit>
				<description><![CDATA[WAN Download Queue]]></description>
				<weight></weight>
				<enabled>on</enabled>
				<buckets></buckets>
				<mask>none</mask>
				<maskbits></maskbits>
				<maskbitsv6></maskbitsv6>
				<aqm>droptail</aqm>
				<ecn></ecn>
			</queue>
		</queue>
	</dnshaper>
      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.