QoS: Classify connections per total data transferred

    I was wondering, if it is possible to program the traffic shaper (QoS) in a way to classify the traffic based on the amount of data transferred over a certain connection. For example in Tomato firmware for WRT54GL it is possible to give high priority to all new connections to DNS servers with less than 2kb of bytes transferred. More than that, and the connection priority is dropped into bulk traffic. This is a good way for catching P2P traffic that uses standard ports (DNS, HTTP, HTTPS) to disguise itself and bypass some firewall rules.

    Does pfSense have this option?

    Example: http://cdn.nextgendigitalhome.com/wp-content/uploads/2012/06/08-QoS-2012-06-13_2106221.png

  • Actually there is a private development for this.
    It has not been included yet into pfSense as of now.

    It might moving forward.

  • Alright, thanks for the info. I take it there are long-term plans to add it? In the mean time I can probably just use the burst functionality to give new connections a brief speed boost.


