Traffic shaping without the wizard?

steff

Hi -

I'm currently running an RC2 install for a small office, attached to a BTNET 10Mb leased line (we do lots of print-quality artwork) using a Dell GX260 with a D-Link DFE-580TX quad 100Mb card. We also provide a wireless network for other firms in our building, using the captive portal feature of pfsense.

I'd like to be able both to shape traffic from within the office (less urgent) and to de-prioritise traffic from the open WLAN. We may shortly be introducing other public WLANs, so it'd be nice to get this process fully understood now. The current shaper wizard seems to be quite specific in what it will allow one to set up, but I'd ideally like to be able to access the settings manually. Is there any straightforward way to do this? I've had a poke around various bits of documentation and failed to find much. I'm quite happy to upgrade to a development version if necessary.

Also, I'd like to say thanks for a wonderful bit of software. Having seen my former workplace suffering from the Cisco affliction and being a long time satisfied user of m0n0 at home, it has been delightful to be able to move to something intelligible at the new workplace.

Cheers,

Steff

hoba

Actually trafficshaping is quite hard to setup and to understand. This even becomes harder when making multi-interface-shapings. Atm we only support what the wizard creates and shaping between 2 interfaces. There are some limitations in the gui when creating custom rules (like you can't attach a queue to another queue that is attached to the parent queue) though in general setting a multi interface scenario up might be possible if done correctly. You really have to play around with it. I suggest starting with a wizard created ruleset and modifying this first. Then try to add more queues and rules but be prepared to get rule-errors if you set it up incorrectly.

steff

@hoba:

Actually trafficshaping is quite hard to setup and to understand.

So I've noticed ;-)

Given that this sounds a bit "unofficial" I'll have a play on the production firewall's twin and report back.

Cheers,

Steff

TealC

Hi

I have a similiar situation as "Steff". Currently i'm using m0n0wall with 3 interfaces and the pptp Server. On WAN interface i do shape traffic, but the config is pretty simple, as i have just a few protocols which i actually configure specially, the rest is per host. On the Wireless Interface i only distinguish between pptp and the rest.
Now i'm considering to get a second WAN connection as failover because my primary one isn't very reliable. But m0n0wall doesn't support multiple WAN connections. This brings me to pfsense. But if i can't achieve my traffic shaper scenario, pfsense is no option for me.
Is it not possible to deactivate the wizard?
(I know it has to be possible, but why don't you tell people how? You don't need to provide support for "self-made" configurations)

Greetings
TealC

hoba

altq trafficshaping is not that easy like dummynet. If you make a single mistake it won't load at all. Actually you can make custom rules but you need to run the wizard once to setup some basics. After that if you visit the trafficshaper you will have rules and queues. You can modify them, add or delete them but now you are on unsupported territory. You'll see what I mean once you try to create your custom ruleset. Good luck.

Justinw

@TealC:

Hi

I have a similiar situation as "Steff". Currently i'm using m0n0wall with 3 interfaces and the pptp Server. On WAN interface i do shape traffic, but the config is pretty simple, as i have just a few protocols which i actually configure specially, the rest is per host. On the Wireless Interface i only distinguish between pptp and the rest.
Now i'm considering to get a second WAN connection as failover because my primary one isn't very reliable. But m0n0wall doesn't support multiple WAN connections. This brings me to pfsense. But if i can't achieve my traffic shaper scenario, pfsense is no option for me.
Is it not possible to deactivate the wizard?
(I know it has to be possible, but why don't you tell people how? You don't need to provide support for "self-made" configurations)

Greetings
TealC

Mult-wan traffic shaping is possible although unsupported, being done right now with two 5 meg dsl's

sullrich

@Justinw:

Mult-wan traffic shaping is possible although unsupported, we are doing it right now with two 5 meg dsl's

As Borat would say, NNICE!

Do you mind sharing this config?  You can export it under Diagnostics -> Backup

Select the traffic shaping option and only download that portion of the configuration.

Then simply search and replace any external IP addresses that you may have and change descriptions if they are sensitive ;)

sindum

Justinw. I would really like see who you did this. I tried a lot of combination but have failed to get it working. Pleas !!

Justinw

Sorry, finals week, I'll post the conf when I have a chance to get ahold of it…

Justinw

Well I'm out…bad news is that traffic shaper is running but the traffic isn't being classified as correctly but its not crashing.  I'm going to keep working with it and I will post when I get it.  Don't I feel like a jerk...

jeroen234

do not crosspost that is not helping !!