Traffic Shaping bug?



  • current setup:
      2.3.2-RELEASE(amd64)
      OpenVPN to a remote branch
      multi-wan with flexible limiters on some ports to limit ftp, Git pulls and CVS checkouts

    problem:

    I successfuly setup limiters on the LAN using the default GW, but if I set the GW to a certain GW, limiter will not work
      Also tried setting the WAN2 as the default GW, limiter still doesn't work

    I need some help because our WAN1 connection is currently down and when people use the protocols above, VPN to remote branch is badly affected


  • Rebel Alliance Developer Netgate

    You can't use limiters with policy routing. You'd have to use floating rules to set limiters to match outbound traffic on the WANs in order to limit with policy routing/failover/LB

    The problem with doing that on 2.3.x and 2.2.x is that limiters have some problems there where you can't use limiters on rules that perform NAT, which would cause the traffic to be dropped.

    We've fixed that on pfSense 2.4, which is currently in beta