Limiting guest vlan to specific mbits up/down
-
We have a specific vlan we allow wireless guests to log in with. It goes directly to the internet and cannot reach anything internal. How do we limit that vlan to take no more than 10% of the upstream or downstream traffic? All other vlans will share the other 90% equally.
So if I have a 100mbit up/down I want the wireless guests to consume no more than 10% (10mbits) and leave the other 90mbits to the other vlans.
I've been playing with shaping and limiting but not have had any good results. I am at the point of not seeing the forest for the trees.
-
Try using limiters.
I’ll do a few screenshots when i’m back home.
-
Create an in & an out limiter
Apply it to the firewall rule that passes the traffic on the guest LAN.
-
@vanapagan said in Limiting guest vlan to specific mbits up/down:
We have a specific vlan we allow wireless guests to log in with. It goes directly to the internet and cannot reach anything internal. How do we limit that vlan to take no more than 10% of the upstream or downstream traffic? All other vlans will share the other 90% equally.
So if I have a 100mbit up/down I want the wireless guests to consume no more than 10% (10mbits) and leave the other 90mbits to the other vlans.
I've been playing with shaping and limiting but not have had any good results. I am at the point of not seeing the forest for the trees.I have a setup with multiple VLANs and a "guest" one and I've now setup limiters with weights, which allows guests to use all bandwidth if it's available... effectively implementing borrowing. So far Quick Fair Queueing works with Codel queues but if I use PRIO scheduler I get kernel panics :)
I do have to add the In/Out pipe manually to each VLAN rule that allows VLAN traffic out to the world (to be NAT'ed)