From owner-freebsd-questions Wed Feb 27 3: 5:38 2002 Delivered-To: freebsd-questions@freebsd.org Received: from relay3-gui.server.ntli.net (relay3-gui.server.ntli.net [194.168.4.200]) by hub.freebsd.org (Postfix) with ESMTP id 2A52C37B402 for ; Wed, 27 Feb 2002 03:05:34 -0800 (PST) Received: from pc4-card4-0-cust162.cdf.cable.ntl.com ([80.4.14.162] helo=rhadamanth.private.submonkey.net ident=mailnull) by relay3-gui.server.ntli.net with esmtp (Exim 3.03 #2) id 16g1ts-0003p5-00 for freebsd-questions@freebsd.org; Wed, 27 Feb 2002 11:05:32 +0000 Received: from setantae by rhadamanth.private.submonkey.net with local (Exim 3.35 #1) id 16g1tZ-00015A-00; Wed, 27 Feb 2002 11:05:13 +0000 Date: Wed, 27 Feb 2002 11:05:13 +0000 From: Ceri To: Odhiambo Washington Cc: FBSD-Q Subject: Re: IPFW/Dummynet - Internet Access Message-ID: <20020227110513.GA4011@rhadamanth> Mail-Followup-To: Ceri , Odhiambo Washington , FBSD-Q References: <20020227104755.GC23054@ns2.wananchi.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20020227104755.GC23054@ns2.wananchi.com> User-Agent: Mutt/1.3.27i Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Wed, Feb 27, 2002 at 01:47:55PM +0300, Odhiambo Washington wrote: Hey Wash, > I'd like to give Internet access to some residents of a building BUT I want > to have every user on their own private network (diff IP, no broadcast > traffic to the other) and also do bandwidth limiting. > > QUESTION 1: Is it possible that I can configure each port on switch as a unique vlan, > have the port that your FreeBSD box connects to pass all vlans, and then > setup 3 VLAN interfaces on the FreeBSD box, one for each VLAN/client? Yes, it's called a trunk port in Cisco. > My problem is that I don't want the clients/vlans to see one another. No problem - just don't route them to each other. > I am being told that this is not the way vlans work, that vlans will require > multiple switches, yes??? I don't believe that to be correct. You can use VLANs with just one switch. > QUESTION 2: I've already run IPFW on a FreeBSD box and while I am new to ipfw, I > see it's already running fine, bar for the tuning that it will require to achieve > the goal. If I want to do bandwidth limiting using dummynet, using the instructions > at www.mostgraveconcern.com/freebsd/ , at what point in rc.ipfw do I introduce the > dummynet rules, at the end??? Can't answer that one. Can't you just use pipes (or does that require dummynet) ? > QUESTION 3: I also want to control bandwidth for every client. Client 1 needs on 32K bandwidth > while Client 2 needs 64K. The total bandwidth available on the ooif of the FreeBSD > box is 256K (DSL). ipfw/dummynet will allow me to do this??? Definitely. Ceri -- keep a mild groove on To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message