4. Traffic Shaping 90%

Traffic Shaping 90%

  • A

    I'm looking of how to traffic shape so total bandwidth used is 90% of the bandwidth.  I'm getting bufferbloat issues otherwise with the latency is spiking to 3K at times.

    Internet connection is 60Mbps down / 5Mbps up

    0
  • H

    The simplest way is to go to your WAN interface and set it to ~5.5Mb or 5500kb and select Codel. Similar for the LAN interface. There are better ways, but you'll probably get your 80/20 with this 1 minute change.

    0

  • Sorry to hijack, but in a simple WAN/LAN configuration, do you even need a rule on LAN?  I thought LAN shaping rules were to shape LAN-LAN traffic if you have multiple LAN interfaces.

    0
  • A

    @KOM:

    Sorry to hijack, but in a simple WAN/LAN configuration, do you even need a rule on LAN?  I thought LAN shaping rules were to shape LAN-LAN traffic if you have multiple LAN interfaces.

    I thought it was:

    WAN - Upload traffic
    LAN - Download traffic

    0

  • All shaping is essentially done at WAN since you control the download by managing the ACK replies.

    0
  • A

    @KOM:

    All shaping is essentially done at WAN since you control the download by managing the ACK replies.

    If you could explain a bit there as I was trying to make sure I understand how the normal shaping it setup in pfSense.

    If you configure the WAN for download and LAN for upload, I've always setup up floating rules which have no interface set. When I check my system logs, I can see things are matching properly on the LAN/WAN side.

    If I upload, I can see the queue on my lan interface moving up and down (igb1) and if I download, I can see my wan (igb0) queue moving up and down.

    In that setup, I have some inbound rules for incoming traffic and some outgoing rules for outbound traffic.

    0
  • H

    Assuming an infinitely long running TCP connection, the only way managing ACKs affects the sender's rate is to delay the ACK to artificially create a larger RTT, which is a horrible idea, mark the ACK via ECN, or drop an incoming packet causing the sender to re-send and backoff.

    In practice and especially with more modern TCP stacks, dropping ACKs does not affect peak bandwidth, only the rate at which the bandwidth grows.

    Dropping or ECN marking data packets is the official way to signal the sender to back-off.

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2019 Rubicon Communications, LLC | Privacy Policy