4. Pfsense 1.0 rc2h pf rules + ipfw dummynet traficshaping

Pfsense 1.0 rc2h pf rules + ipfw dummynet traficshaping

  • J

    hi,

    will this break the pf rules ?
    i have a 8000/1024 cable connection
    i want to shape that with dummynet for my lan network (192.168.1.0/24)
    i used these commands

    #kldload dummynet.ko
    #pfctl -d
    #ipfw add pipe 1 ip from 192.168.1.0/24 to any out
    #ipfw add pipe 2 ip from any to 192.168.1.0/24 in
    #ipfw pipe 1 config mask src-ip 0x000000ff bw 1024Kbit/s queue 20
    #ipfw pipe 2 config mask dst-ip 0x000000ff bw 8000Kbit/s queue 20
    #pfctl -e

    i can see with
    #ipfw pipe show | head -n 20
    that dummynet is working how can i test if pf is still working ?

    0
  • S

    Dummnet + PF rdr's will break.  It's a kernel issue, I have brought it up on the lists in addition to others but there has been little reaction.

    I have a patch that no longer applies so we'll have something hopefully for the next version.

    Scott

    0
  • J

    so if i don't use rdr in pfsense or use it with ipfw  ill be fine ?

    0
  • S

    That is my understanding, yes.

    0
Log in to reply
 

Products

Applications

Support

Services

News

Resources

Company

Our Mission

As host of the pfSense open source firewall project, Netgate believes in enhancing network connectivity that maintains both security and privacy. We also believe everyone should be able to afford it.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2019 Rubicon Communications, LLC | Privacy Policy