Date: Mon, 26 Nov 2001 16:48:41 -0800 From: "Crist J. Clark" <cristjc@earthlink.net> To: =?iso-8859-1?Q?Radek_V=E1clav=EDk?= <radekvaclavik@yahoo.com> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: IPFW rules Message-ID: <20011126164841.B418@gohan.cjclark.org> In-Reply-To: <013301c176cd$bd523860$fd6c2093@arvi>; from radekvaclavik@yahoo.com on Mon, Nov 26, 2001 at 11:57:34PM %2B0100 References: <013301c176cd$bd523860$fd6c2093@arvi>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, Nov 26, 2001 at 11:57:34PM +0100, Radek Václavík wrote: [snip] > My problem is this one: I have a network, which has a relatively slow > connection out to the world. And due to a lots of ftp traffic, other > services (like ssh, telnet, vnc..etc) are getting very slow because of high > ping and packet loss. Therefore, I would like to set priority to packets at > different ports (for the firewall to handle these packets prior to the other > ones - like ftp). And this is it. How to create rule for this? > I don't want to strictly restrict the bandwitch for ftp (to have full use of > the line for ftp when not using the other services). And even if I'd decide > to do so (rules for this work fine), I don't know, what ports to restrict > ( 2o only doesn't work, cause a lot of users download from different ftp > ports). Look at dummynet(4) and 'pipe' rules in ipfw(8). But catching the ftp data connections with the rules is non-trivial. I do not believe that there is any simple functionality for this built into any tools. -- Crist J. Clark cjclark@alum.mit.edu To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20011126164841.B418>