Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Two Lans - ones an invisible LAG!?

    Traffic Shaping
    4
    5
    153
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      Thondwe last edited by

      So trying out the shaping wizards, I have two LAN switches connected to by Pfsense box, one is a LACP LAG (test device servers) one not (Inc WiFi AP - so family clients) both have VLans on top.

      So two Qs...

      1. The wizard recognises the VLans and the single port switch. NOT the LAG. My limited understanding suggests I should be worrying about the physical ports rather than VLANs for shaping?

      2. When I use the simple wizard, the LAN (WiFi clients) interface speed gets set to the WAN speed I put in, but loads of other threads seem to suggest this should close to 1Gbs wire speed - what's right? Is LAN to LAN traffic going to get limited too if it's set to WAN speed (75Mbs)

      Thx

      T 1 Reply Last reply Reply Quote 0
      • T
        teamits @Thondwe last edited by

        Traffic shaping doesn't work on a LAGG.
        https://docs.netgate.com/pfsense/en/latest/interfaces/lagg.html#lagg-and-traffic-shaping

        The shaper handles traffic as it exits an interface. Hence the LAN getting the Internet download speed. Not sure what to tell you about other ports at gigabit going to LAN, haven't run into that scenario personally. Would limiters be more useful in your scenario?

        T 1 Reply Last reply Reply Quote 0
        • T
          Thondwe @teamits last edited by

          @teamits Thx - so LAGG not supported by queues - fair enough. But seems that VLANs are. Am reading around the subject a bit more. Seems that the queue parameters are set based on the interface speed unless otherwise tinkered with. So in a simple WAN/LAN setup putting the download speed on the LAN interface makes sense. With multiple LANs/VLANs - less so since the queues won't be good enough to handle local traffic.

          I'll take a look at the limiters, as an alternative approach, and will read around a few more threads where people have dealt with similar setups.

          DaddyGo 1 Reply Last reply Reply Quote 0
          • stephenw10
            stephenw10 Netgate Administrator last edited by

            What are you actually trying to achieve here?

            Since any LAGG interface is almost certainly going to be connected to a switch that supports VLANs a common workaround here is to move untagged traffic onto a VLAN to apply AltQ shaping.

            Steve

            1 Reply Last reply Reply Quote 0
            • DaddyGo
              DaddyGo @Thondwe last edited by

              @thondwe said in Two Lans - ones an invisible LAG!?:

              so LAGG not supported by queues - fair enough.

              Hello,

              https://docs.netgate.com/pfsense/en/latest/interfaces/lagg.html

              4b0b98a3-f992-4d74-902e-8b455f068515-image.png

              1 Reply Last reply Reply Quote 1
              • First post
                Last post

              Products

              • Platform Overview
              • TNSR
              • pfSense Plus
              • Appliances

              Services

              • Training
              • Professional Services

              Support

              • Subscription Plans
              • Contact Support
              • Product Lifecycle
              • Documentation

              News

              • Media Coverage
              • Press
              • Events

              Resources

              • Blog
              • FAQ
              • Find a Partner
              • Resource Library
              • Security Information

              Company

              • About Us
              • Careers
              • Partners
              • Contact Us
              • Legal
              Our Mission

              We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

              Subscribe to our Newsletter

              Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

              © 2021 Rubicon Communications, LLC | Privacy Policy