Need help on bandwidth limiting



  • hi,

    I have setup multi-wan successfully using pfsense. Now I would like to implement bandwidth limit for all my users. By default all users are allow 2m speed. I am able to test this successfully using floating rules and limiter. However, I also block all my users by default. Only allowed ports are open such as port 80 or 443 or 22 and so on.

    So what's the way to limit everyone to 2m speed only? If I add a rules for all using LAN subnet, that rules would apply and take precedence of all the other blocking.

    Eg below:

    1. allow me to LAN with limit 2m
      1a) allow LAN to anywhere with limit 2m <–---
    2. allow LAN to port 80
    3. allow LAN to port 22
    4. allow LAN to port 443
      4a) allow LAN to anywhere with limit 2m <-----
    5. block LAN to any

    If I add the rules in 1a, everyone will be able to access all ports with limit of 2mbit.
    If I add the rules in 4a, everyone will be able to access port 80,22,443 without any limit.
    If I add the rules in each rules in 2,3,4, port 80,22,443 will be limit to 2mbit and 100s of users will share port 80 2mbit...imagine the congestion....

    Any idea how to solve this?

    Thanks.


Locked