Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Limiter bandwidth: Only for some site (alias - mail.server.com etc)

    Scheduled Pinned Locked Moved Firewalling
    9 Posts 4 Posters 1.2k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C
      cybermod
      last edited by

      Hi guy, i am some problem to understand firewall rule.

      I need to limiter bandwidth for clients in my lan, and this is not a problem (trafic shaper, limiter and rule with link in/out).

      But: i want that this limit is not applied if my clients call the remote mail server (name: mail.serverexample.com).

      I think that the right way is to create an ALIAS.

      what is the better method? how i can test if the limit is not applied?

      1 Reply Last reply Reply Quote 0
      • pttP
        ptt Rebel Alliance
        last edited by

        Is it just 1 mail server (1 IP address) ?

        Create a "Pass" rule, above the rule with the "In/Out Limiter" rule, with the Mail Server IP address as Destination, and without the "In/Out Limiter"…. that should do the trick ;)

        1 Reply Last reply Reply Quote 0
        • C
          cybermod
          last edited by

          hi ppt, tnx for your reply

          i need limit but not for my mail server.  but, if i have round robin (ex mail.server.it with first server one ip and second server one ip) how i can do?)

          1 Reply Last reply Reply Quote 0
          • pttP
            ptt Rebel Alliance
            last edited by

            Create a Alias with the 2 IP's, and use the Alias as Destination in the FW Rule ;)

            1 Reply Last reply Reply Quote 0
            • C
              cybermod
              last edited by

              :o it's true!!!! …. i am a stupid boy tnx so much, i try it!

              1 Reply Last reply Reply Quote 0
              • P
                phil.davis
                last edited by

                and you can make an Alias using the FQDN of the mail server. Use that Alias as the destination in the pass rule. pfSense will learn all the IP addresses associated with the name. That saves you problems if the IP addresses change.

                As the Greek philosopher Isosceles used to say, "There are 3 sides to every triangle."
                If I helped you, then help someone else - buy someone a gift from the INF catalog http://secure.inf.org/gifts/usd/

                1 Reply Last reply Reply Quote 0
                • C
                  cybermod
                  last edited by

                  Hi phil, because i don't want to make mistakes

                  FQDN= mail.myhostnameserver.com

                  Right?

                  1 Reply Last reply Reply Quote 0
                  • M
                    maverick_slo
                    last edited by

                    I`m not Phil but can answer you: right :)

                    1 Reply Last reply Reply Quote 0
                    • C
                      cybermod
                      last edited by

                      ahahhha, tnx maverick!

                      Regards

                      Alex

                      1 Reply Last reply Reply Quote 0
                      • First post
                        Last post
                      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.