Skip site navigation (1)Skip section navigation (2) 
Date:      Sat, 29 Nov 2008 06:00:52 -0800 (PST)
From:      David Roseman <david_5073@yahoo.com>
To:        freebsd-pf@freebsd.org, freebsd-isp@freebsd.org, Marcello Barreto <marcello@linconet.com.br>
Subject:   Re: PF + ALTQ - Bandwidth per customer
Message-ID:  <705757.42117.qm@web38504.mail.mud.yahoo.com>
In-Reply-To: <20081124180411.0b065be5@wolwerine>
next in thread | previous in thread | raw e-mail | index | archive | help 



--- On Mon, 11/24/08, Marcello Barreto <marcello@linconet.com.br> wrote:

> From: Marcello Barreto <marcello@linconet.com.br>
> Subject: PF + ALTQ - Bandwidth per customer
> To: freebsd-pf@freebsd.org, freebsd-isp@freebsd.org
> Date: Monday, November 24, 2008, 4:04 PM
> Hello Folks,
> 	I believe you have heard this several times, but I'm
> new to FreeBSD and i'm trying to change my bandwidth
> control from Linux (iptables + TC + iproute) to Freebsd (PF
> + ALTQ).
> 	I read about PF and I was very interested on it, but I
> want to limit the bandwidth (Download and Upload) from each
> customer behind a router (Obviously, FreeBSD with PF.)..
> There are several networks and a lot of customers, and with
> my rules, only what I got was each customer sharing the same
> queue...
> 
> 	There are my rules:
> altq on $external cbq queue {def_up, def_up300, def_up450,
> def_up600, def_up1000}
> altq on $internal cbq queue {def_down, def_down300,
> def_down450, def_down600, def_down1000}
> 
> queue def_up bandwidth 10% cbq(default)
> queue def_down bandwidth 10% cbq(default)
> 
> queue def_up300 bandwidth 128Kb cbq(red)
> queue def_up450 bandwidth 200Kb cbq(red)
> queue def_up600 bandwidth 300Kb cbq(red)
> queue def_up1000 bandwidth 500Kb cbq(red)
> 
> queue def_down300 bandwidth 300Kb cbq(red)
> queue def_down450 bandwidth 450Kb cbq(red)
> queue def_down600 bandwidth 600Kb cbq(red)
> queue def_down1000 bandwidth 1024Kb cbq(red)
> 
> 
> pass in quick inet proto {tcp, udp} from <mylocalnet>
> to any queue def_down300
> pass out quick inet proto {tcp, udp} from
> <mylocalnet> to any queue def_up300
> 

You should consider a commercial product rather than relying on
old and somewhat unreliable technology. We've been able to squeeze a 
lot more customers onto our network for a $3500. investment. It paid for
itself in 2 months. We have a dual-core 2.33Ghz system passing 95Mb/s
with 12000 rules in place and it runs at about 10%. The latest version is
truly amazing.

http://www.etinc.com


Regards,

David

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?705757.42117.qm>