$100 - Specification of mask as dotted quad in Traffic Limiter in pfSense 2.1

  • Currently Traffic Shaper: Limiter uses hardcoded mask of 0xffffffff. This allows only per host shaping when dest or source address shaping is selected. Create field allowing specification of an actual mask as dotted quad value such that limiter queues can be used for group of hosts.

    ie. I have four kids, each with multiple devices. I want to allow 5mbps per kid. Each can use up to that limit across his/her devices.

    kid1 ip addresses:,
    kid2 ip addresses:,
    kid3 ip addresses:

    If this was implemented, specifying a mask of would do the trick.

    Presently I achieve this by modifying /etc/inc/sharper.inc as follows:

    $mask = $this->GetMask();
                    if (!empty($mask)) {
                            /* XXX TODO extend this to support more complicated masks */
                            switch ($mask) {
                            case 'srcaddress':
                                    $pfq_rule .= " mask src-ip 0xfffffff0 ";
                            case 'dstaddress':
                                    $pfq_rule .= " mask dst-ip 0xfffffff0 ";

    It would be far more elegant and flexible if this were implemented in the GUI.

  • This offer is withdrawn

Log in to reply