Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    no traffic shaping on NAT forwarded ports

    Traffic Shaping
    3
    4
    3.7k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      sirocco
      last edited by

      I found than shaper per IP works, but if I set external port forward for an IP - pfsense stops shaping this IP - outgoing queue exists but shows only part of traffic.

      1 Reply Last reply Reply Quote 0
      • H
        hoba
        last edited by

        The shaper is stateful, so only new connectionas are assigned to a queue. Reset your states at diagnostics>states, reset state tab, and see if it works like intended after that.

        1 Reply Last reply Reply Quote 0
        • B
          billm
          last edited by

          @sirocco:

          I found than shaper per IP works, but if I set external port forward for an IP - pfsense stops shaping this IP - outgoing queue exists but shows only part of traffic.

          Need more information for this.

          Version
          Screenshots of the port forward
          Screenshots of the queues and rules

          config.xml and /tmp/rules.debug would be helpful too

          –Bill

          pfSense core developer
          blog - http://www.ucsecurity.com/
          twitter - billmarquette

          1 Reply Last reply Reply Quote 0
          • S
            sirocco
            last edited by

            tcp/udp port forward from external 22105 to internal 192.168.105.105:22105
            some other forwards to 192.168.1.2

            internal network is 192.168.0.0/16

            queues:
            upload:

            name: up105105
            bw = 1%
            priority = 1
            m2= 25kB
            RED,ECN,
            qWanroot

            other filelds are empty

            download: the same as above but
            name: down105105
            m2 is empty
            qLanroot

            rule:
            upload queue - up105105
            download queue - down105105 (I found that specifying here qP2Pdown doesn't work)
            LAN->WAN
            protocol: any
            source: 192.168.105.105 (single host)
            rest of fields are empty/default

            squid is running in transparent mode,

            version: snapshot 25/03/2006

            config-siroccofw1.local-20060405004147.xml.tar.gz.txt

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.