4. Traffic shaping without the wizard?

Traffic shaping without the wizard?

  • S

    Hi -

    I'm currently running an RC2 install for a small office, attached to a BTNET 10Mb leased line (we do lots of print-quality artwork) using a Dell GX260 with a D-Link DFE-580TX quad 100Mb card. We also provide a wireless network for other firms in our building, using the captive portal feature of pfsense.

    I'd like to be able both to shape traffic from within the office (less urgent) and to de-prioritise traffic from the open WLAN. We may shortly be introducing other public WLANs, so it'd be nice to get this process fully understood now. The current shaper wizard seems to be quite specific in what it will allow one to set up, but I'd ideally like to be able to access the settings manually. Is there any straightforward way to do this? I've had a poke around various bits of documentation and failed to find much. I'm quite happy to upgrade to a development version if necessary.

    Also, I'd like to say thanks for a wonderful bit of software. Having seen my former workplace suffering from the Cisco affliction and being a long time satisfied user of m0n0 at home, it has been delightful to be able to move to something intelligible at the new workplace.

    Cheers,

    Steff

    0
  • H

    Actually trafficshaping is quite hard to setup and to understand. This even becomes harder when making multi-interface-shapings. Atm we only support what the wizard creates and shaping between 2 interfaces. There are some limitations in the gui when creating custom rules (like you can't attach a queue to another queue that is attached to the parent queue) though in general setting a multi interface scenario up might be possible if done correctly. You really have to play around with it. I suggest starting with a wizard created ruleset and modifying this first. Then try to add more queues and rules but be prepared to get rule-errors if you set it up incorrectly.

    0
  • S

    @hoba:

    Actually trafficshaping is quite hard to setup and to understand.

    So I've noticed ;-)

    Given that this sounds a bit "unofficial" I'll have a play on the production firewall's twin and report back.

    Cheers,

    Steff

    0
  • T

    Hi

    I have a similiar situation as "Steff". Currently i'm using m0n0wall with 3 interfaces and the pptp Server. On WAN interface i do shape traffic, but the config is pretty simple, as i have just a few protocols which i actually configure specially, the rest is per host. On the Wireless Interface i only distinguish between pptp and the rest.
    Now i'm considering to get a second WAN connection as failover because my primary one isn't very reliable. But m0n0wall doesn't support multiple WAN connections. This brings me to pfsense. But if i can't achieve my traffic shaper scenario, pfsense is no option for me.
    Is it not possible to deactivate the wizard?
    (I know it has to be possible, but why don't you tell people how? You don't need to provide support for "self-made" configurations)

    Greetings
    TealC

    0
  • H

    altq trafficshaping is not that easy like dummynet. If you make a single mistake it won't load at all. Actually you can make custom rules but you need to run the wizard once to setup some basics. After that if you visit the trafficshaper you will have rules and queues. You can modify them, add or delete them but now you are on unsupported territory. You'll see what I mean once you try to create your custom ruleset. Good luck.

    0
  • J

    @TealC:

    Hi

    I have a similiar situation as "Steff". Currently i'm using m0n0wall with 3 interfaces and the pptp Server. On WAN interface i do shape traffic, but the config is pretty simple, as i have just a few protocols which i actually configure specially, the rest is per host. On the Wireless Interface i only distinguish between pptp and the rest.
    Now i'm considering to get a second WAN connection as failover because my primary one isn't very reliable. But m0n0wall doesn't support multiple WAN connections. This brings me to pfsense. But if i can't achieve my traffic shaper scenario, pfsense is no option for me.
    Is it not possible to deactivate the wizard?
    (I know it has to be possible, but why don't you tell people how? You don't need to provide support for "self-made" configurations)

    Greetings
    TealC

    Mult-wan traffic shaping is possible although unsupported, being done right now with two 5 meg dsl's

    0
  • S

    @Justinw:

    Mult-wan traffic shaping is possible although unsupported, we are doing it right now with two 5 meg dsl's

    As Borat would say, NNICE!

    Do you mind sharing this config?  You can export it under Diagnostics -> Backup

    Select the traffic shaping option and only download that portion of the configuration.

    Then simply search and replace any external IP addresses that you may have and change descriptions if they are sensitive ;)

    0
  • S

    Justinw. I would really like see who you did this. I tried a lot of combination but have failed to get it working. Pleas !!

    0
  • J

    Sorry, finals week, I'll post the conf when I have a chance to get ahold of it…

    0
  • J

    Well I'm out…bad news is that traffic shaper is running but the traffic isn't being classified as correctly but its not crashing.  I'm going to keep working with it and I will post when I get it.  Don't I feel like a jerk...

    0
  • J

    do not crosspost that is not helping !!

    0
Locked
 

Products

Applications

Support

Services

News

Resources

Company

Our Mission

As host of the pfSense open source firewall project, Netgate believes in enhancing network connectivity that maintains both security and privacy. We also believe everyone should be able to afford it.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2018 Rubicon Communications, LLC | Privacy Policy