From owner-freebsd-questions@FreeBSD.ORG Sun Mar 22 02:07:26 2009 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id CDF311065676 for ; Sun, 22 Mar 2009 02:07:26 +0000 (UTC) (envelope-from jubal-freebsd-20090321@cheeze.org) Received: from world.eastlink.com (world.eastlink.com [98.116.180.17]) by mx1.freebsd.org (Postfix) with ESMTP id 86E0C8FC1B for ; Sun, 22 Mar 2009 02:07:26 +0000 (UTC) (envelope-from jubal-freebsd-20090321@cheeze.org) Received: from [10.42.0.7] (home.cheeze.org [72.224.216.89]) (authenticated bits=0) by world.eastlink.com (8.14.1/8.13.3) with ESMTP id n2M1mIV1028774 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO) for ; Sat, 21 Mar 2009 21:48:20 -0400 (EDT) (envelope-from jubal-freebsd-20090321@cheeze.org) X-DKIM: Sendmail DKIM Filter v2.8.1 world.eastlink.com n2M1mIV1028774 DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=cheeze.org; s=world; t=1237686500; bh=wI/9uxIhGoZ86J4aJ18La3GUxuPmMecWUxlpD6EvpGY=; h=Message-ID:Date:From:Reply-To:MIME-Version:To:Subject: Content-Type:Content-Transfer-Encoding; b=gA3WoSxqaYc0fwf6isXvJKZBPOZpMsv6slLBhxSjJMoCWGSTkuto9Gh96U4IQkfZ2 HPTzj760D4Mf/uQG5dMcXQjle3G+d4qlWjudXOd9iIfnv2ah5QamcN7C0Bl9FBMfHn FWyifkHxS9CjnjE0ByD2z2gzO880TxA5TAXLX3E8= Message-ID: <49C598E3.80107@cheeze.org> Date: Sat, 21 Mar 2009 21:48:19 -0400 From: Jubal Kessler User-Agent: Thunderbird 2.0.0.21 (Windows/20090302) MIME-Version: 1.0 To: freebsd-questions@freebsd.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Subject: ipfw, pf and ALTQ on outbound traffic? (or: "The net is slow when I upload!") X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: jubal-freebsd-20090321@cheeze.org List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 22 Mar 2009 02:07:27 -0000 Greetings, Is there a general how-to, or a set of coherent instructions, for shaping outbound traffic such that when I upload something over my asymmetric cable-modem pipe, doing so doesn't completely kill my Web browsing or any other attempts to use my Internet connection? (To put it another way: When I max out my upstream, and my upstream is capped lower than my downstream, my downstream becomes useless and I am forced to wait until the upload finishes before I can resume using the downstream. This is a problem, and I'd like to solve it.) I have looked at various ALTQ + pf setups on the Web, but I have one caveat. I use FreeBSD 6.4 on my home gateway, and it is also using the default natd server, which relies on an ipfw divert rule. I don't know if this matters, or if I need to switch from natd to a pf-based NAT setup. Should I use *just* ipfw, or should I switch everything to pf (including NAT services) and go from there? Thanks much, Jubal