From owner-freebsd-isp@FreeBSD.ORG  Mon Oct 15 15:30:32 2007
Return-Path: <owner-freebsd-isp@FreeBSD.ORG>
Delivered-To: freebsd-isp@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 5FEF416A468
	for <freebsd-isp@freebsd.org>; Mon, 15 Oct 2007 15:30:32 +0000 (UTC)
	(envelope-from ovi@unixservers.us)
Received: from webserver.easyhosting.ro (unixware.iasi.rdsnet.ro
	[86.124.41.195])
	by mx1.freebsd.org (Postfix) with ESMTP id 207B713C45D
	for <freebsd-isp@freebsd.org>; Mon, 15 Oct 2007 15:30:31 +0000 (UTC)
	(envelope-from ovi@unixservers.us)
Received: from [10.0.0.14] (unknown [10.0.0.14])
	(Authenticated sender: ovi@unixservers.us)
	by webserver.easyhosting.ro (Postfix) with ESMTP id 4B3A1FD018
	for <freebsd-isp@freebsd.org>; Mon, 15 Oct 2007 18:09:03 +0300 (EEST)
Message-ID: <4713916E.8060005@unixservers.us>
Date: Mon, 15 Oct 2007 18:12:30 +0200
From: Ovi <ovi@unixservers.us>
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US;
	rv:1.7.2) Gecko/20040804 Netscape/7.2 (ax)
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: freebsd-isp@freebsd.org
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
Subject: Choosing traffic shaping discipline for a small ISP
X-BeenThere: freebsd-isp@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Internet Services Providers <freebsd-isp.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-isp>,
	<mailto:freebsd-isp-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-isp>
List-Post: <mailto:freebsd-isp@freebsd.org>
List-Help: <mailto:freebsd-isp-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-isp>,
	<mailto:freebsd-isp-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 15 Oct 2007 15:30:32 -0000

Hello

What is the best choice for traffic shaping when you have like 2500 
users, on a single router with 50 Mbits/s internet fiber connection?
I've tried IPFW+dummynet, but browsing and download is not stable 
(variations are high), and second problem, with 98% cpu idle (Xeon CPU) 
with firewall activated, not all bandwidth is used, even on the evening 
when most of users are online.

I've tried pf + altq HFSC which works well for up to 500 users, for more 
users CPU is high, and browsing is very slow.
It is possible with CBQ to share internet for like 2500 users and limit 
their bandwidth? Both IPFW and PF when altq discipline needs sum of 
bandwidth for all users not to exceed total bandwidth (50 Mbps in my 
case) or well 100%, but having like 2500 and not 100 users, I cannot use 
values like 0.2%.

I did not posed rules, I've used standard shaping rules that can be 
found in any howto/man page, my question is only, how discipline should 
I use to get similar performances to HTB (or TC ) on Linux, for like 
2000-2500 users.

Best Regards,
ovi