From owner-freebsd-questions Mon Oct 7 3:20:24 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5C9A937B401 for ; Mon, 7 Oct 2002 03:20:22 -0700 (PDT) Received: from mail1.ing.nl (mail1.ing.nl [145.221.93.2]) by mx1.FreeBSD.org (Postfix) with ESMTP id 2264D43E65 for ; Mon, 7 Oct 2002 03:20:21 -0700 (PDT) (envelope-from Danny.Carroll@mail.ing.nl) X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4910.0300 Content-Class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Subject: RE: Dummynet & ports Date: Mon, 7 Oct 2002 11:23:34 +0200 Message-ID: X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: Dummynet & ports Importance: normal thread-index: AcJr4P+jGTmFc09kQme84v/vKmJaiACAf6tg From: To: , Cc: X-OriginalArrivalTime: 07 Oct 2002 09:23:35.0450 (UTC) FILETIME=[3638EFA0:01C26DE3] Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Ummm Instead of having a new machine, you *can* setup a jail = environment specifically for ftp, divert(with nat) everything ftp'ish to = the jail's ip address and just bandwidth limit the jail. -D -----Original Message----- From: Fernando Gleiser [mailto:fgleiser@cactus.fi.uba.ar] Sent: 04 October 2002 21:46 To: greg Cc: questions@freebsd.org Subject: Re: Dummynet & ports On Fri, 4 Oct 2002, greg wrote: > So if i did something like use wu-ftpd and use the "passive ports" > directive in > /etc/ftpaccess then i would be able to control the passive ports used > and then pipe them with dummynet? Yes. And no :). By doing that you can limit the bandwidth used by people who access *your* ftp, but you can't control which ephemeral port will bew chosen by a *remote* ftpd (ie, ftp.freebsd.org) because that is daemon/OS dependant. The best solution I've found is to install a dedicated proxy server for FTP/HTTP and then limit the traffic for that proxy server. But you need an extra machine for that. Fer > > Does this sound right? > > Thanks in advance > > greg > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message -----------------------------------------------------------------=0A= ATTENTION:=0A= The information in this electronic mail message is private and=0A= confidential, and only intended for the addressee. Should you=0A= receive this message by mistake, you are hereby notified that=0A= any disclosure, reproduction, distribution or use of this=0A= message is strictly prohibited. Please inform the sender by=0A= reply transmission and delete the message without copying or=0A= opening it.=0A= =0A= Messages and attachments are scanned for all viruses known.=0A= If this message contains password-protected attachments, the=0A= files have NOT been scanned for viruses by the ING mail domain.=0A= Always scan attachments before opening them.=0A= ----------------------------------------------------------------- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message