Single terminal prioritization

Astraub · May 12, 2015, 7:36 PM

I'm new to pfsense, but have managed to figure out most everything except how traffic shaping is supposed to work. I have about a dozen computers on the network along with one computer which hosts an apache and django web server. Everything is great until someone starts an upload intensive application like an RTMP stream or webex meeting, then server response time starts dropping. Is there a way to give priority to a certain internal IP 192.168.1.11 without severely limiting the rest of the network?

I've seen other responses saying to use limiters, but I haven't been able to find a guide or documentation anywhere describing how to actually create one for what I'm trying to do.

Thanks!

KOM · May 12, 2015, 7:47 PM

Create a simple PRIQ shaper, then add a floating rule that directs the traffic from the specific IP address into the highest queue.

Derelict · May 12, 2015, 8:50 PM

Hosting a web server behind an upload-limited circuit might not be the best option, considering the number of VPS options in datacenters.

Astraub · May 12, 2015, 9:01 PM

@Derelict:

Hosting a web server behind an upload-limited circuit might not be the best option, considering the number of VPS options in datacenters.

It's a small internal tool that's also used by remote employees, so it doesn't need a ton of bandwidth but i need to at least guarantee it'll have at least some bandwidth instead of other clients hogging it all. All our public facing stuff is hosted on VPSes ;D

Astraub · May 12, 2015, 10:44 PM

@KOM:

Create a simple PRIQ shaper, then add a floating rule that directs the traffic from the specific IP address into the highest queue.

Would I do this on the LAN or WAN interface? I'm trying to prioritize outbound traffic.

jr.fenol · May 13, 2015, 10:40 AM

hi guys, i have a 30Mbps dedicated line, and 300 user, how can i share the bandwidth evenly to each user, and how can i limit their inbound and outbound? im new in pfsense.

Harvy66 · May 13, 2015, 12:09 PM

jr.fenol, you kind of hijacked someone else's thread. Why not create your own. 34.6Kb/s, that's slower than dial up.

Astraub · May 13, 2015, 12:47 PM

So here's what I ended up with. The network didn't explode and I haven't heard anybody complain about speed issues yet. Did I do it correctly?

![Screen Shot 2015-05-13 at 8.43.00 AM.png](/public/imported_attachments/1/Screen Shot 2015-05-13 at 8.43.00 AM.png)
![Screen Shot 2015-05-13 at 8.42.38 AM.png_thumb](/public/imported_attachments/1/Screen Shot 2015-05-13 at 8.42.38 AM.png_thumb)
![Screen Shot 2015-05-13 at 8.42.38 AM.png](/public/imported_attachments/1/Screen Shot 2015-05-13 at 8.42.38 AM.png)
![Screen Shot 2015-05-13 at 8.43.00 AM.png_thumb](/public/imported_attachments/1/Screen Shot 2015-05-13 at 8.43.00 AM.png_thumb)
![Screen Shot 2015-05-13 at 8.43.10 AM.png](/public/imported_attachments/1/Screen Shot 2015-05-13 at 8.43.10 AM.png)
![Screen Shot 2015-05-13 at 8.43.10 AM.png_thumb](/public/imported_attachments/1/Screen Shot 2015-05-13 at 8.43.10 AM.png_thumb)
![Screen Shot 2015-05-13 at 8.43.22 AM.png](/public/imported_attachments/1/Screen Shot 2015-05-13 at 8.43.22 AM.png)
![Screen Shot 2015-05-13 at 8.43.22 AM.png_thumb](/public/imported_attachments/1/Screen Shot 2015-05-13 at 8.43.22 AM.png_thumb)

KOM · May 13, 2015, 5:23 PM

Get rid of that first rule that does nothing.

You're missing an ACK queue.

Did you go through the wizard that you can find on the last tab in the Traffic Shaper section?

Harvy66 · May 13, 2015, 4:57 PM

Did you set the bandwidth on the interfaces?

jr.fenol · May 14, 2015, 3:25 AM

guys, these set up are made by the former administrator, so can you help me allocate how much bandwidth should each 300 user get, in 30mbps dedicated lines.

Harvy66 · May 14, 2015, 12:25 PM

jr.fenol, could you create your own thread instead of spamming someone else's?