Question about limiters

casinmirad

Hi all,

I've a question regarding the inner working of the limiter function in pfSense 2.0:

1. In my current setup I've 2 limiters (one for upload/source-mask traffic, another for download/destination-mask traffic)
These limiters are applied in my default LAN pass rule as in:upload/source-mask limiter. out:download/destination-mask limiter

With this setup I've an equal hard upload/download limit with all LAN hosts.

2 Also I've outgoing connections to port 25 blocked for anyone in LAN with another LAN rule

Assume mi limiter is: in/upload/source-mask: 256Kbps - out/download/destination-mask: 1Mbps

And the question is:
3. If I set a special rule for one LAN host (Assume 192.168.0.40) for access port 25, and set the same In/Out limiter as described above will I:
a) Have a hard upload/download of 256Kbps for upload and 1Mbps for download for all connections (including port 25) made from 192.168.0.40; or
b) Have one 256K up/1M down limit for all connections made from 192.168.0.40 except port 25, AND ANOTHER limit 256K up / 1M down with connections to port 25. Effectively a total limit of 512K up / 2M down for 192.168.0.40.

jimp

The rules only direct traffic into the limiter pipe. It could be one rule or 50 rules but the limiter only sees the IP, not the connections (that's what the mask does)