Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Dynamic traffic shaping

    Scheduled Pinned Locked Moved Traffic Shaping
    4 Posts 3 Posters 1.2k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • K
      kabrutus
      last edited by

      Hi all,

      I am coming from a fortinet world.  Is this possible?

      2 physical ports
      WAN 10x10 upload & download
      LAN
      2 LAN VLANS
      VLAN100
      VLAN200
      I would like to setup traffic shaping based on VLAN and usage.

      I would like to have a guaranteed 5mbps for both VLANS, but have the ability to use a max of 9mbps if the bandwidth is available.  Once other VLAN needs bandwidth, it will take if from the VLAN that is using it and regulate it back to 5mbps max.
      Is this possible with pfsense?

      thanks

      1 Reply Last reply Reply Quote 0
      • H
        Harvy66
        last edited by

        Short answer, no. Interfaces cannot share bandwidth. Longer answer, maybe with some strange configurations to make your two interfaces share a single upstream interface and shaping the upstream.

        1 Reply Last reply Reply Quote 0
        • DerelictD
          Derelict LAYER 8 Netgate
          last edited by

          It essentially requires two pfSense nodes. One to shape out one transit interface and probably perform NAT/WAN rule duties and one on the inside to firewall the various segments. If you don't need to firewall the inside segments an inside layer 3 switch would work too.

          Along these lines does HFSC shaping work on a lagg? I've never tried it.

          Chattanooga, Tennessee, USA
          A comprehensive network diagram is worth 10,000 words and 15 conference calls.
          DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
          Do Not Chat For Help! NO_WAN_EGRESS(TM)

          1 Reply Last reply Reply Quote 0
          • H
            Harvy66
            last edited by

            If it does technically work on LAGG, it definitely would not be able to have strict guarantees about packet timings without knowing which interface a packet will get scheduled.

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.