From owner-freebsd-ipfw Wed Jan 29 11:51:46 2003 Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5A8BF37B405 for ; Wed, 29 Jan 2003 11:51:45 -0800 (PST) Received: from mailout08.sul.t-online.com (mailout08.sul.t-online.com [194.25.134.20]) by mx1.FreeBSD.org (Postfix) with ESMTP id CF7CC43F9B for ; Wed, 29 Jan 2003 11:51:44 -0800 (PST) (envelope-from markus-weissmann@gmx.de) Received: from fwd00.sul.t-online.de by mailout08.sul.t-online.com with smtp id 18dyFJ-0004zn-01; Wed, 29 Jan 2003 20:51:41 +0100 Received: from gmx.de (320075531089-0001@[80.140.78.133]) by fmrl00.sul.t-online.com with esmtp id 18dyF8-1TiuS8C; Wed, 29 Jan 2003 20:51:30 +0100 Date: Wed, 29 Jan 2003 20:51:51 +0100 Mime-Version: 1.0 (Apple Message framework v551) Content-Type: text/plain; charset=US-ASCII; format=flowed Subject: traffic shaping with ipfw? From: Markus Weissmann To: freebsd-ipfw@FreeBSD.ORG Content-Transfer-Encoding: 7bit Message-Id: <1C6134BC-33C3-11D7-9067-000393B7748C@gmx.de> X-Mailer: Apple Mail (2.551) X-Sender: 320075531089-0001@t-dialin.net Sender: owner-freebsd-ipfw@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Hi Folks! We've got a dsl-connection here with 768/128 KBit up/down. The Probem is, when for example uploading lots of stuff, the download goes down badly... and more problematic: The responsiveness of ssh-connections or the like go down to point of unuseability. Solution as far: create dummy_net pipe with 90% of the upload bandwith and stuff all traffic going out there; but before, take out out the packets with small size (those are most propably the syn/ack and ssh packets?) and let them pass. tun0 is the external device --- allow udp from any to any out xmit tun0 allow icmp from any to any out xmit tun0 allow tcp from any to any { iplen 32 or iplen 33 or iplen 34 or iplen 35 or iplen 36 or iplen 37 or iplen 38 or iplen 39 or ... iplen 62 or iplen 63 or iplen 64 } out xmit tun0 queue 1 ip from any to any out xmit tun0 --- any suggestions on this? (the 3rd line doesnt pleasure me too much...) the responsiveness of ssh-sessions is only slightly improved (hehe, a "allow tcp from any to any 22 out xmit tun0" wont do the trick, cause if someone does a 'scp' I'm doomed) thanx in advance, Markus To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ipfw" in the body of the message