From owner-freebsd-questions@FreeBSD.ORG  Wed Sep 20 11:23:04 2006
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 9730F16A403
	for <freebsd-questions@freebsd.org>;
	Wed, 20 Sep 2006 11:23:04 +0000 (UTC)
	(envelope-from nvass@teledomenet.gr)
Received: from matrix.teledomenet.gr (dns1.teledomenet.gr [213.142.128.1])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 1500243D6D
	for <freebsd-questions@freebsd.org>;
	Wed, 20 Sep 2006 11:23:02 +0000 (GMT)
	(envelope-from nvass@teledomenet.gr)
Received: from iris ([192.168.1.71])
	by matrix.teledomenet.gr (8.12.10/8.12.10) with ESMTP id k8KBMxEY010087;
	Wed, 20 Sep 2006 14:22:59 +0300
From: Nikos Vassiliadis <nvass@teledomenet.gr>
To: freebsd-questions@freebsd.org
Date: Wed, 20 Sep 2006 14:20:19 +0300
User-Agent: KMail/1.9.1
References: <20060920012401.3cfbb715@localhost>
In-Reply-To: <20060920012401.3cfbb715@localhost>
MIME-Version: 1.0
Content-Disposition: inline
Content-Type: text/plain;
  charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
Message-Id: <200609201420.19407.nvass@teledomenet.gr>
Cc: Norberto Meijome <freebsd@meijome.net>
Subject: Re: Packet loss simulation with ALTQ
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 20 Sep 2006 11:23:04 -0000

On Tuesday 19 September 2006 18:24, Norberto Meijome wrote:
> hi there :)
> I was planning to migrate a 4.11 firewall using a combo of ipf/ipnat and
> ipfw pipe/dummynets to pf + ALTQ.

pf/ipf/ipfw & dummynet/ALTQ are available since 5.3-R if I recall correctly.

> One thing I haven't figured out how to do with pf is the plr option to the
> dummynet configuration - we use it to simulate modem connections or just
> simply bad links.

pf.conf manual(6.1-STABLE)

     probability <number>
           A probability attribute can be attached to a rule, with a value set
           between 0 and 1, bounds not included.  In that case, the rule will
           be honoured using the given probability value only.  For example,
           the following rule will drop 20% of incoming ICMP packets:

                 block in proto icmp probability 20%


> Also, is it definitely possibly to simulate the 'delay' option of dummynet
> with pf+ALTQ ?

No, ALTQ cannot delay packets, you have to use dummynet for this.

HTH, Nikos