Per-User rate limit/shaping on PPPoE server



  • Hi all,

    I having some trouble getting the PPPoE server works with Per-user shaping/rate limit. I have a working captive portal authenticate against external Radius server (Freeradius + mysql) in a production environment. I am trying to switch over to PPPoE because the end user is getting sick of manually login via the browser periodically.

    Here is some background of my setup:

    I've setup a PFsense 2.1 (2.1-RELEASE (amd64) built on Wed Sep 11 18:17:37 EDT 2013) as a VM in ESXi5.0 and a windows XP VM for testing.

    PFsense has 2 NIC, pretty straight forward 1WAN and 1LAN. Captive portal enabled on LAN authenticate against local DB, PPPoE server enabled on LAN authenticate against external Radius server.

    CP is working as excepted (nothing special), I just enabled it to replicate my production environment.

    PPPoE server is working, my windows XP VM able to connect as a PPPoE client and getting valid respond from my external radius server, windows XP able to browse youtube and other internet activity.

    The radius interim accounting update on PPPoE server doesn't work and I manage to get it working by inserting the acct-interim-interval on my radgroupreply table.

    On Captive portal I am able to do per-user shaping using the WISP attribute on radius. I searched around and cannot see any information on how to get this done on PPPoE server. I've tried using mpd-limit := "out#1=all shape 64000" mpd-limit := "in#1=all shape 64000" on radius as suggested on this post but it doesn't work for me. http://forum.pfsense.org/index.php?topic=23008.0

    Does anyone have any idea?


Log in to reply