Traffic shaper changes [90% completed, please send money to complete bounty]
-
Just an idea, PM those that haven't paid up or email them as i can see wcoolnet & Delphinus hasn't been around lately. And make a list here.
Following has donated to this bounty.
Still waiting to here from.
Maybe a list of features added could help getting more money.
hope it helps. -
Hi!
Would just like to check….
I've got:
- PPPOE with multiple IPs
- WAN, LAN and DMZ interfaces
- VOIP on LAN
- Email and Web on separate IPs in DMZ
What I'd like to be able to do is:
- Give VOIP highest priority
- Then Web
- Email low priority
Will this mod do what I want?
Thanks!
James. -
What it can do:
1- Supports CBQ, HFSC, PRIQ schedulers whith any combination of them on any number of interfaces. To suit any strange environment.
2- You can shape
Bridge, PPTP, PPPoE, OpenVPN or tun devices, IPSec incoming, Overall IPSec tunnels, L2TP, or any other device/software that does IP traffic in a distinguishable way.
3- You can create policy filtering as there is a new tab which allows expressing a late match syntax with support for tagging and matching on tags(i call them marks in the GUI), directions. Simple allows one PF expert to do policy filtering.
4- The queues are specified in each rule you create, there is no more a rules tab on the shaper section. This makes things cleaner and easier to manage.
5- You can shape/override DHCP, DNS, or any default policy of pfSense by just creating rules from the GUI.
6- The easiest way to create a policy for multiple interface shaping and filtering, at least in contrast with what i have used.
7- [Is on its way] Multiple wizards to use on different environments.Requirments:
1- Know how.
Meaning you should know what you want then i guarantee it can be done with this new module and the wizards should help on this,Am i missing anything Scott?!
-
What is with outgoing traffic eg. a range of ports within an ipsec-tunnel? Is this possible, for example
rdp -3389 outgoing traffic through the ipsec tunnel with a highest priority? -
For now it is not supported, but is planned after i totally finish the gui cleanup and some small fixes for the current one to be ready to use.
The incoming part should be ready approximately by mid September.
Let's hope the people will respect this bounty first.
-
i have send you a personal message…
-
Uppss that should read mid february. Just a mismatch with my native language :)
-
Also for the outgoing packets through the ipsec tunnel eg. portbased….
mid february :D
Please send me the first invoice for about 800 $ ....you have the details....
Greetings heiko
-
What it can do:
1- Supports CBQ, HFSC, PRIQ schedulers whith any combination of them on any number of interfaces. To suit any strange environment.
2- You can shape
Bridge, PPTP, PPPoE, OpenVPN or tun devices, IPSec incoming, Overall IPSec tunnels, L2TP, or any other device/software that does IP traffic in a distinguishable way.
3- You can create policy filtering as there is a new tab which allows expressing a late match syntax with support for tagging and matching on tags(i call them marks in the GUI), directions. Simple allows one PF expert to do policy filtering.
4- The queues are specified in each rule you create, there is no more a rules tab on the shaper section. This makes things cleaner and easier to manage.
5- You can shape/override DHCP, DNS, or any default policy of pfSense by just creating rules from the GUI.
6- The easiest way to create a policy for multiple interface shaping and filtering, at least in contrast with what i have used.
7- [Is on its way] Multiple wizards to use on different environments.Requirments:
1- Know how.
Meaning you should know what you want then i guarantee it can be done with this new module and the wizards should help on this,Am i missing anything Scott?!
Adding another feature so it remains as a documentation too:
8- If you have 3 different networks separated from each other and you want to combine to a single centralized management with pfSense and the new shaper, they can be handled/shaped separated or even provide failover for them. Kinda, basic support for different domains.
-
Eri,
however….it must only work as it should.... (ipsec shaping portbased incoming/outgoing)So, my payment is now 1600 $, per invoice 800 $.... that´s my offer.
Greetings
Heiko -
It will do that, possibly more!
-
I'll put in 200$ for shaping unrestricted by number of WANs and LANs.
Sorry, there's a lot of pages here, I can't read them all. Has this been accomplished?
(Perhaps another system could be devised for tracking some of these things?)
-
Yes, it is completed. Only cosmetics issues and some wizards are left. In addition there will be an addition requested by Heiko for IPSec.
Just the people that pledged here have not.
-
Gotcha. Thanks, I'll be sending that money in shortly.
-
Other than money is there anything I can do to help this process along ?
I have a pretty large deployment and decent traffic, I would be more than happy to help test if it would help. I also have a few php guys i could bring in to help.
-
sorry if it has been mentioned before but is this going as a package into 1.2RCX?
-
sorry if it has been mentioned before but is this going as a package into 1.2RCX?
Doubtful. We will make a custom version available to those who have donated so far but due to the fact that a lot of people have stiffed this bounty we will NOT be making a general version available for everyone.
If you happen to know one of the bounty contributors you might convince them to let you have the custom version when we release it but if I was them I would say no.
This entire ordeal is going to force us to change how we do future bounties. Money will be required UP FRONT before any work starts.
-
Can I make a donation of a couple hundred bucks and be able to get this update?
-
Can I make a donation of a couple hundred bucks and be able to get this update?
First of all, absolutely. We really want to get Ermal compensated for all of his hard work.
Second, we do not have a absolute release date for this custom version but can say it will be in the next 2-3 weeks after 1.2 is released.
If you are still interested send the donation to Chris Buechlers paypal account which is listed in the donations section of the website and please make sure you put "Traffic Shaper Bounty" somewhere in the description so we can remember who donated to this cause.
Thanks everyone that has donated so far.
-
Can I make a donation of a couple hundred bucks and be able to get this update?
First of all, absolutely. We really want to get Ermal compensated for all of his hard work.
Second, we do not have a absolute release date for this custom version but can say it will be in the next 2-3 weeks after 1.2 is released.
If you are still interested send the donation to Chris Buechlers paypal account which is listed in the donations section of the website and please make sure you put "Traffic Shaper Bounty" somewhere in the description so we can remember who donated to this cause.
Thanks everyone that has donated so far.
Great. I'll get the IT Director to send you guys some money.