Limit individual and global bandwidth both in same time



  • hi

    I have simple pfsense configuration WAN (4Mbps internet) LAN (connected to 20 users )
    I have successfully setup bandwidth limit by user to 512kbps by using limiter in traffic shapper (destination address) and making a rules in firewall with this limit
    I have also successfully  setup global bandwidth lan limit to 2Mbps using limiter in traffic shapper (source address) and making a rules in firewall with this limit

    My problem is that I can't using both limit in same time , only 1 in same time

    how to setup this two limit in same time
    1st - limit bandwidth at 512kb by user
    2nd - limit all bandwidth usage at 2 Mb

    thank you

    regards



  • I guess you will do it in two steps

    1. global, use normal trafic shaper wizard single wan. set dl to 2Mbitps and ul to 512kbitps or similar. use more features from wizard if you wish

    2. per ip limit is done using in/out limiters create two of these and add then by creating a firewall rule. seach guide on howto. exellent video on youtube as well.

    goog luck
    Anders



  • @Tillebeck:

    I guess you will do it in two steps

    1. global, use normal trafic shaper wizard single wan. set dl to 2Mbitps and ul to 512kbitps or similar. use more features from wizard if you wish

    2. per ip limit is done using in/out limiters create two of these and add then by creating a firewall rule. seach guide on howto. exellent video on youtube as well.

    goog luck
    Anders

    The guide I've seen before does the dummypipe for 1 user per rule. I've read that by using a directive such as 192.168.0.128/25 will create dummypipes for each of the IP. Is this true? Or do I have to create one limiter rule for each IP = 128 rules.



  • @kyu:

    The guide I've seen before does the dummypipe for 1 user per rule. I've read that by using a directive such as 192.168.0.128/25 will create dummypipes for each of the IP. Is this true? Or do I have to create one limiter rule for each IP = 128 rules.

    You need only one rule per Interface/subnet… you can select per dropdown selectbox if the limit should match each single IP or the whole network (or some other options).

    Bests

    Reiner



  • @kyu:

    @Tillebeck:

    I guess you will do it in two steps

    1. global, use normal trafic shaper wizard single wan. set dl to 2Mbitps and ul to 512kbitps or similar. use more features from wizard if you wish

    2. per ip limit is done using in/out limiters create two of these and add then by creating a firewall rule. seach guide on howto. exellent video on youtube as well.

    goog luck
    Anders

    The guide I've seen before does the dummypipe for 1 user per rule. I've read that by using a directive such as 192.168.0.128/25 will create dummypipes for each of the IP. Is this true? Or do I have to create one limiter rule for each IP = 128 rules.

    Add the limiter to the default LAN pass all rule. This will create a pipe for each IP. I am currently using this and I can confirm that it works. I have limiters 10Mbit/3Mbit, and total LAN traffic gets up to 20Mbit easy.



  • I just need some clarification here:

    On topic:
    Should it be like this?

    IN/OUT Limiters:
    IN = Use "Source Address" if you're going to limit bandwidth per user.
    OUT = Use "Destination Address" if you're going to limit bandwidth for the whole users.
    Current I am using "Destination Address" Mask only for limiting bandwidth.

    Question:
    Do this method will work if I combined the two Mask? TIA!


Log in to reply