Date: Sun, 11 Nov 2001 12:35:19 +1030 From: Wincent Colaiuta <wincentcolaiuta@mac.com> To: freebsd-net@freebsd.org Subject: Limiting bandwidth abuse to/from internet Message-ID: <8E809F08-D648-11D5-B151-003065C60B4C@mac.com>
next in thread | raw e-mail | index | archive | help
Hi all We have a local-subnet here 192.168.0.0/24 sharing a small PPPoE connection (512KBit/s) to the net. I'm trying to use dummynet to prevent one user in particular from saturating the connection and destroying the net connection for all others. I've successfully used a set of ipfw/dummynet rules such as these on the gateway machine that is connected to the internet: pipe 1 ip from any to 192.168.0.2 pipe 2 ip from 192.168.0.2 to any pipe 1 config bw 10KBytes/s pipe 2 config bw 5KBytes/s The problem with these rules is that they cap that user's abuse of the net connection, but they ALSO slow down the speed with which that user can access files shared locally to the LAN from the gateway machine. I want to restrict it so that only connections to/from the internet are limited, but I don't want connections merely with the LAN to be slow. So the following lines don't work (trying to limit only PPP traffic (which goes via the tun0 interface on the gateway)... pipe 1 ip from any to 192.168.0.2 via tun0 pipe 2 ip from 192.168.0.2 to any via tun0 Any tips? I suspect I should be using masks but I am not really sure how... Thanks for any advice that you can give. Cheers Wincent To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?8E809F08-D648-11D5-B151-003065C60B4C>