From owner-freebsd-isp@FreeBSD.ORG Tue Dec 2 18:08:49 2008 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id EAC751065673 for ; Tue, 2 Dec 2008 18:08:49 +0000 (UTC) (envelope-from sfourman@gmail.com) Received: from mail-qy0-f18.google.com (mail-qy0-f18.google.com [209.85.221.18]) by mx1.freebsd.org (Postfix) with ESMTP id 869E88FC18 for ; Tue, 2 Dec 2008 18:08:49 +0000 (UTC) (envelope-from sfourman@gmail.com) Received: by qyk11 with SMTP id 11so3650671qyk.19 for ; Tue, 02 Dec 2008 10:08:48 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to :subject:cc:in-reply-to:mime-version:content-type :content-transfer-encoding:content-disposition:references; bh=Mqj/z4FqI1UnQ5DhZlzrlHNYwI8MowSL+LJmhR7vTdE=; b=GpL79wiXWFKxjU0X793vP/U1kwEItl4dFmoHkEDmFO/Sj1D4dEJmeUSYgGsdb3ZYhu p0CVwpG8jZ3Azts17mKAQatmS1jZklCgt5Al82IfdyH6vdxihmoVJa+Ti1tj7jT6Z05W cbpJznJnsINQDxZOw52pJ42VvEoyuP7jIAe50= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:cc:in-reply-to:mime-version :content-type:content-transfer-encoding:content-disposition :references; b=JVR0T0QoQt2KlxGa080Vw4rMkrFJvGnbZH+imoGrxVHfgVUHljnrirxfxY45FsPfnS Lf4Y0pRSCkdQbo53rYgVmBWyXQp8z800wwG4rXzBs+PmkN2oM77OQvpehqsxuBsDpGbI BnpLjgJUcEbO2if/pfNnyRcBFcE7bWGRIsfL4= Received: by 10.64.232.9 with SMTP id e9mr13020698qbh.13.1228241328017; Tue, 02 Dec 2008 10:08:48 -0800 (PST) Received: by 10.64.184.9 with HTTP; Tue, 2 Dec 2008 10:08:47 -0800 (PST) Message-ID: <11167f520812021008r13cb927cy409af862f0bbaa9e@mail.gmail.com> Date: Tue, 2 Dec 2008 12:08:47 -0600 From: "Sam Fourman Jr." To: kstalledo@binarysalad.com In-Reply-To: <493575F7.7020904@binarysalad.com> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline References: <20081124180411.0b065be5@wolwerine> <705757.42117.qm@web38504.mail.mud.yahoo.com> <11167f520812011508u46b04e7dmb1d5d22675dc778d@mail.gmail.com> <20081202075634.GT51761@server.vk2pj.dyndns.org> <4934F4F3.1030808@bsd.ee> <20081202092204.GU51761@server.vk2pj.dyndns.org> <20081202070343.34221p9405nzs76s@econet.encontacto.net> <11167f520812020940w423bf0cco466a3423f762b291@mail.gmail.com> <493575F7.7020904@binarysalad.com> Cc: freebsd-isp@freebsd.org, freebsd-pf Subject: Re: PF + ALTQ - Bandwidth per customer X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 02 Dec 2008 18:08:50 -0000 On Tue, Dec 2, 2008 at 11:52 AM, Kahlil Erwin Talledo wrote: > Sam Fourman Jr. wrote: >>> I had forgotten that dummynet can be used with pf. Maybe i should start= this >>> with a new subject but it is directly related in that I need bandwidth >>> control again that I don=B4t have since changing to pf. >>> >>> o- What needs to be patched/done to make them work together >>> on Current and Releng? >>> o- Are you happier with the combination of dummynet with pf >>> than with IPFW? >>> >>> DummyNet was one of the reasons that I was slow to leave IPFW. >>> >>> Thanks and I am really not trying to hijack this thread, be glad to sta= rt a >>> new one. >> >> so you actually can use DummyNet w/ pf to limit bandwidth per ip? >> >> is there anyway to say.. ip address x must be used with MAC Address y >> then follow the per ip bandwidth limit >> if not then drop all traffic in and out? > > you have to remember that mac is layer two and it can be easily spoofed. > so doing it that way might not be the best thing to do it. that's just > my two cents though. you are absolutely right, after thinking about it a bit more, the right idea would be to somehow limit bandwidth per ip or group of ip's(several bound to the same interface) any ideas? Sam Fourman Jr. Fourman Networks