Issue with traffic shaping queues and limiters.
-
Hey!
I'm having an issue setting up traffic shaping queues along side a limiter using FQ_CoDel. Right now it seems like the firewall rules setup for the limiter and the traffic shaping queues are causing an issue since when I have the firewall rule active that applies FQ_CoDel it seems like it stops processing other rules and doesn't direct traffic in to corresponding traffic shaping queues that are directed by the traffic shaping firewall rules. When I have the FQ_CoDel rule disabled, traffic shaping works fine and I can see the queues being used under Status > Queues.
I would like to have both the limiter and traffic shaping queues working at the same time but I can't seem to figure out how to set that up. I'm new to networking and pfsense, so if anyone has any ideas on what could help that would be a big help!
I've setup the FQ_CoDel limiter using this tutorial https://youtu.be/o8nL81DzTlU?t=377 so the settings and the firewall rule are based on that. I've included a screenshot attachment of the order of my firewall rules not all are visible but the ones not visible at the bottom continue with the queue rules.
-
Why 4 rule?
If you use ICMP any rule on WAN as out roul, you need only 2 rule.That's how it looks with me:
-
I noticed that if I had this two rules
you could be able to ping my firewall from the internet which I don't want, so I set an inbound block rule for it, if that was what you were asking. -
My rule is wan out, so nobody from WAN side can ping my Firewall.
Look at your rule and my, you see there ist no fix Gateway set on your side.
-
Thanks! That worked for the ping issue.
I managed to get the traffic shaping queues to work by modifying the rules and setting the traffic to outbound and adding the codel queues to the in and out pipes and then I set the main CoDel Queue rule below the traffic shaping rules.