HFSC Shape Between Interfaces
-
I use HFSC I have 4 interfaces, 1 WAN and 3 differents LAN SUBNETS…
When I transfer stuff between the lan subnets I want to place the transfer into an interface queue so I get full wire speed...
My queues are setup like this on each interfaces
Root Queue (1 Gbps)
..qInterface (850 Mbps)
....qInternet (10 Mbps)
......qVOIP
......qACK
......qDefault
......qLow
......qHigh
......qP2P
..qACKInterface (100 Mbps)So in theory I should be able to match traffic from one interface to the other and assign the queues qACKInterface/qInterface that would give me a bandwidth of 850 Mbps.
I seem to be unable to match that traffic...
Whatever I do the traffic is being sent to the default queue of the respective interface. The best I could do was to shape the ACK into the right queue but the data was going through the default queue.
I reset the states after each changes in the rules.
pfSense is up to date at the time of posting 2.1.4
What I think should work is
Floating rules
Action : Match
Quick : Yes
Protocol : any
Source : CAMERAS net
Destination : LAN net
Ackqueue/Queue : qACKInterface / qInterfaceThen a other one where the Source and Destination are reversed.
This does not work, please help!
-
Nobody? I really need help, I'm sure I'm missing something really obvious…
-
You have the queue's setup wrong.
LAN - (1 Gbps)
qInterface -(850 Mbps) - Default Queue for the LAN interface
qInternet - (10 Mbps)
qVOIP - put percentages here
qLow - put percentages here
qHigh - put percentages here
qP2P - put percentages here
qACK - put percentages hereUnder your floating rules then you would want to choose :
Action - Match
Interface - LAN
Direction - Any
Protocol - TCP / UDP
Source - Cameras NET - assuming this is an alias
Destination - LAN NET
Any port for both source and destination unless you want to narrow it down even further.
Queue - qACK / qInterfaceTry that out and see if that works for you. Are you using VLAN's or how are you designating subnets?
-
I'll try that,
I use disignated subnet to dedicated nic and one VLAN, my Soekris net6501-70 have 4 nics,
WAN = nic0
LAN = nic1
GUESTS = VLAN nic1
VOIP = nic2
CAMERAS = nic3 -
Also I don't want to default all traffic to the Interface in case I missed something that goes to the Internet… I want to catch the traffic, it should be simple enough.
Traffic from LAN to CAMERAS and from CAMERAS to LAN any protocol, any ports... Somehow it doesn't work...
I'll try to make some screenies...
Regards,
-
I finally was able to make this works…
Apparently, you can't send traffic to a Parent queue...
So I moved the qInterface at the same level as my parent queue qInternet...
There it goes, I tough I tried that...
Root (1 Gbps)
..qInternet (10 Mbps)
....qSubqueues (the default queue in one of the child)
..qInterface (850 Mbps)
..qACKInterface (100 Mbps) -
Yea that was how I had it set in my example. qInterface and qInternet on the same level with the sub queues under qInternet.
Glad you go it to work. I think however you are going to want to have the default queue NOT be under qInternet and be another queue under the LAN.
-
I think however you are going to want to have the default queue NOT be under qInternet and be another queue under the LAN.
I have a floating rule that catch all traffic between interfaces, I don't want/need to shape traffic between interfaces.
Thanks for your insight!
Regards