Date: Thu, 9 Sep 2004 14:40:12 -0400 From: "Michael W. Oliver" <michael@gargantuan.com> To: Forrest Aldrich <forrie@forrie.com> Cc: freebsd-net@freebsd.org Subject: Re: VoIP and IPFW Message-ID: <20040909184012.GA11503@gargantuan.com> In-Reply-To: <413F6BBE.1050202@forrie.com> References: <413F6BBE.1050202@forrie.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--y0ulUmNC+osPPQO6
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
On 2004-09-08T16:29:50-0400, Forrest Aldrich wrote:
> Hi there,
>=20
> I'm considering testing the Vonage service, with my FreeBSD-4.10 system=
=20
> (maybe 5 or 6). =20
>=20
> I wonder if anyone here has a configuration they can share, or if there=
=20
> are any pages out there that detail the proper (and secure) setup.
Sure! I am using IPFW2+NATD and the following (partial) configuration
works well for me...
--8<---------------
vonage_ata=3D"10.0.0.192"
ipfw pipe 2 config bw "200Kbit/s"
ipfw pipe 4 config bw "200Kbit/s"
ipfw pipe 6 config bw "99800Kbit/s"
ipfw pipe 8 config bw "384Kbit/s"
ipfw queue 20 config weight 100 pipe 2
ipfw queue 40 config weight 100 pipe 4
ipfw queue 60 config weight 5 pipe 6
ipfw queue 80 config weight 5 pipe 8
${fwcmd} add pass udp from ${vonage_ata} to any in recv ${lan_if}
${fwcmd} add queue 40 udp from ${wan_ip} to any src-port 5060-5061 out xmit=
${wan_if}
${fwcmd} add queue 40 udp from ${wan_ip} to any src-port 10000-20000 out xm=
it ${wan_if}
${fwcmd} add pass udp from any to ${vonage_ata} in recv ${wan_if}
${fwcmd} add queue 20 udp from any to ${vonage_ata} out xmit ${lan_if}
#
${fwcmd} add pass udp from ${vonage_ata} to any dst-port 53 in recv ${lan_i=
f}
${fwcmd} add queue 80 udp from ${wan_ip} to any dst-port 53 out xmit ${wan_=
if}
${fwcmd} add pass udp from any to ${vonage_ata} src-port 53 in recv ${wan_i=
f}
${fwcmd} add queue 60 udp from any to ${vonage_ata} src-port 53 out xmit ${=
lan_if}
#
${fwcmd} add pass udp from ${vonage_ata} to any dst-port 69 in recv ${lan_i=
f}
${fwcmd} add queue 80 udp from ${wan_ip} to any dst-port 69 out xmit ${wan_=
if}
${fwcmd} add pass udp from any to ${vonage_ata} src-port 69 in recv ${wan_i=
f}
${fwcmd} add queue 60 udp from any to ${vonage_ata} src-port 69 out xmit ${=
lan_if}
--8<---------------
I am using this with RoadRunner, which gives me 2Mb/s down and 384kb/s
up, which is why the pipes are configured the way that they are.
Naturally, you would want to change those values to match your up/down
speed. In addition, you need to make sure that you are queueing your
other traffic as well, using queues 60 and 80 for non-VoIP traffic.
I hope that this helps.
--=20
Mike
perl -e 'print unpack("u","88V]N=3D&%C=3D\"!I;F9O(&EN(&AE861E<G,*");'
--y0ulUmNC+osPPQO6
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (FreeBSD)
iD8DBQFBQKOMsWv7q8X6o8kRApW4AKCWqgzmijzWFVa8uUM0XCsfbwL9hwCgnZkU
zXm/6rdm0z0iytFiEPZQYNY=
=/GOy
-----END PGP SIGNATURE-----
--y0ulUmNC+osPPQO6--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040909184012.GA11503>