From owner-freebsd-pf@FreeBSD.ORG Sun Dec 11 14:31:16 2005 Return-Path: X-Original-To: freebsd-pf@freebsd.org Delivered-To: freebsd-pf@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1699916A422 for ; Sun, 11 Dec 2005 14:31:16 +0000 (GMT) (envelope-from yamamoto436@oki.com) Received: from iscan1.intra.oki.co.jp (okigate.oki.co.jp [202.226.91.194]) by mx1.FreeBSD.org (Postfix) with ESMTP id 218A343D7C for ; Sun, 11 Dec 2005 14:31:05 +0000 (GMT) (envelope-from yamamoto436@oki.com) Received: from aoi.bmc.oki.co.jp (localhost.localdomain [127.0.0.1]) by iscan1.intra.oki.co.jp (8.9.3/8.9.3) with SMTP id XAA22893 for ; Sun, 11 Dec 2005 23:31:02 +0900 Received: (qmail 11732 invoked from network); 11 Dec 2005 23:31:02 +0900 Received: from tulip.bmc.oki.co.jp (172.19.236.119) by aoi.bmc.oki.co.jp with SMTP; 11 Dec 2005 23:31:02 +0900 Received: from localhost (tulip.bmc.oki.co.jp [172.19.236.119]) by tulip.bmc.oki.co.jp (8.13.4/8.13.3) with ESMTP id jBBEV1gp014248; Sun, 11 Dec 2005 23:31:01 +0900 (JST) (envelope-from yamamoto436@oki.com) Date: Sun, 11 Dec 2005 23:31:01 +0900 (JST) Message-Id: <20051211.233101.98871433.yamamoto436@oki.com> To: david@wombatsweb.com From: Hideki Yamamoto In-Reply-To: <439C293E.8050500@wombatsweb.com> References: <20051211.073952.74741466.yamamoto436@oki.com> <439C293E.8050500@wombatsweb.com> X-Mailer: Mew version 3.3 on Emacs 21.3 / Mule 5.0 (SAKAKI) Mime-Version: 1.0 Content-Type: Text/Plain; charset=us-ascii Content-Transfer-Encoding: 7bit Cc: freebsd-pf@freebsd.org Subject: Re: if_bridge + altq (CBQ) X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 11 Dec 2005 14:31:16 -0000 Dear David, Thank you for your reply. After sending my question to ML, I have found that I did not write "pass .... queue ... " on /etc/pf.conf. I had written the port definitions for queue in /etc/services instead of /etc/pf.conf. As it is Sunday today, I will try your suggestion tomorrow. Regards, Hideki Yamamoto From: David Pierron Subject: Re: if_bridge + altq (CBQ) Date: Sun, 11 Dec 2005 08:27:26 -0500 Message-ID: <439C293E.8050500@wombatsweb.com> > Hideki Yamamoto on 12/10/2005 5:39 PM wrote: > > >I am trying the packect shaping by CBQ of altq on FBSD6 box. The box is configured as bridge by if_bridge kernel configuration. The target packet is UDP on IPv6. Though I wrote output port number of the udp packet on /etc/services and wrote CBQ shaping rule on /etc/pf.conf, the shaping rule about each port number are not applied to the packet, so only default rule are applied. > > > >My question is: can pf especially altq work with bridge function? If so, which bridge function, BRIDGE, if_bridge, ng_brige, is OK? > > > I am running if_bridge on FBSD 6.0 and have successfully run CBQ and > HFSC on the bridge ... > > Do you have: > > net.link.bridge.pfil_member=1 # enables packet filtering on in and out interfaces > > specified in /etc/sysctl.conf? It's quite possible this is necessary for ALTQ to access the "out" on the $xx_if of the bridge ... > > Keep in mind that if you use the queue on a "pass" rule, ALTQ will apply to the "out" of that rule ... > > HTH > > > _______________________________________________ > freebsd-pf@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-pf > To unsubscribe, send any mail to "freebsd-pf-unsubscribe@freebsd.org"