Firewall: Traffic Shaper: Limiter



  • The interface don't save description of the new Limiter.

    When apply changes, get this error on Filter reload status: There were error(s) loading the rules: /tmp/rules.debug:15: syntax errorpfctl: Syntax error in config file: pf rules not loaded - The line in question reads [15]: dnpipe 1 bandwidth 1000Kb…

    Can you help please?



  • 1.3 does not have the kernel/userland part of it.
    After 1.2.1 is out it will get activated in the builds or you can build a kernel and pfctl with the extensions yourself.

    It allows you to limit hosts bandwidth per ip and much more as a traffic shaper in total but for now it is not linked into the builds that's why you get the errors.



  • How is that I can set a limit per user in this version?

    Thanks



  • You can't yet, the kernel portion hasn't been added just yet.



  • ;) Ok, thanks for your replay.



  • Anybody inerested in this, please test.

    To limit users to fix bandwidth on a network just create to limiters with the bandwidth each user will get and select source-address as mask for one limiter and destination for the other.
    Open the default lan rule and select for in the limiter with the source address mask and out the one with destination address.
    This is the simplest of setups but will give each user on the lan the configured bandwidth.

    Report back if it works as advertised.



  • Hi ermal
    I've created the limiters. But i don't know how to do this [Open the default lan rule and select for in the limiter with the source address mask and out the one with destination address.]

    One question, the shapper will do fairly bandwidth per user making downloads? Ex i have a link of 500kbits, if the link is free user1 will have all the bandwidth , but if user2 start other download the bandwidth will be automatically divided. This is/will be possible?



  • I've created the limiters. But i don't know how to do this [Open the default lan rule and select for in the limiter with the source address mask and out the one with destination address.]

    When editing a rule there is a section at the end labeled "In/Out" match those values with what i said.

    For the second part it can be done but not with the setup i have described above, you need some limiter childs for that.


Log in to reply