Traffic shaper with Diffserv marks utilization



  • Hi!

    I want to shape the traffic using DiffServ(or ToS, whatever) in my pfSense 2.0 box in a way that I can send the packets with a particular DiffServ(or ToS) field to a particular queue.

    I see in the "Firewall->Rules->Add Rule->Advanced Options" Submenu that a "Diffserv Code Point" options has been set, with the parameters "1-64, 0x04-0xfc, etc".

    How I can match packets that have the 0x10 hex number in the DiffServ field, for example?

    Can I use the "You can match packet on a mark placed before on another rule." option in the same submenu to accomplish that I want?

    Thanks in advance.



  • We can add those options.

    Do you know of any others?

    Is there a list of all known options somewhere?



  • Great!!!  :D You people are awesome!

    This kind of traffic classification is very useful. For example, the squid can mark this field in outbound connections with a custom value given, then we can use that mark to shape the traffic of a squid specific user.

    In this RFCs the IETF shows the possible values for the ToS/DiffServ fields:

    ToS:
        http://www.ietf.org/rfc/rfc1349.txt

    DiffServ:
        http://tools.ietf.org/html/rfc2474



  • @diosney:

    This kind of traffic classification is very useful. For example, the squid can mark this field in outbound connections with a custom value given, then we can use that mark to shape the traffic of a squid specific user.

    Very nice. Mind sharing your squid config, publicly or privately?

    I opened a ticket to make sure these all get added.
    http://redmine.pfsense.org/issues/582



  • Sure!

    When I configure the squid to use the marks I will post here the configuration file.

    I'll be waiting for you, guys!  ;D


Locked