Date: Mon, 27 Nov 2006 22:07:25 +0000 From: Tom Judge <tom@tomjudge.com> To: Gilberto Villani Brito <linux@giboia.org> Cc: "FreeBSD \(PF\)" <freebsd-pf@freebsd.org> Subject: Re: PF and ALTQ queue option. Message-ID: <456B619D.5000703@tomjudge.com> In-Reply-To: <6e6841490611271100t8f21e29ic4d4810f389c6fef@mail.gmail.com> References: <456B27C7.4030704@tomjudge.com> <6e6841490611271100t8f21e29ic4d4810f389c6fef@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Gilberto Villani Brito wrote:
> Correct, you need use your second example.
>
> Gilberto
>
Thanks, I have another query, if the last rule does not include a queue
directive will the the traffic pass through altq or will it just pass
thought the system bypassing the queue (see example rules below)?
Thanks
Tom
pass in on em0 from any to any queue normal
pass out on em0 from any to any queue normal
pass in on em0 from 172.17.0.123 to 10.0.0.123 queue vidconf
pass out on em0 from 10.0.0.123 to 172.17.0.123 queue vidconf
pass in quick on em0 from 172.17.0.0/16 to 10.0.0.0/16
pass out quick on em0 from 10.0.0.0/16 to 172.17.0.0/16
> 2006/11/27, Tom Judge <tom@tomjudge.com>:
>> Hi,
>>
>> I am looking at using cbq to prioritise video conference traffic over
>> all of the rest of the traffic crossing our VPN. I was just wondering
>> if the following configuration would to this (The vpn link is 2Mbit, in
>> I will be running pf+altq at both ends of the link).
>>
>>
>>
>> altq on em0 cbq qbandwidth 2Mb queue { normal, vidconf }
>> queue normal bandwidth 1Mb priority 0 cbq(ecn)
>> queue vidconf bandwidth 1Mb priority 1 cbq(ecn)
>>
>> pass in on em0 from 172.17.0.123 to 10.0.0.123 queue vidconf
>> pass out on em0 from 10.0.0.123 to 172.17.0.123 queue vidconf
>>
>> pass in on em0 from any to any queue normal
>> pass out on em0 from any to any queue normal
>>
>> pass in quick on em0 from 172.17.0.0/16 to 10.0.0.0/16
>> pass out quick on em0 from 10.0.0.0/16 to 172.17.0.0/16
>>
>>
>> The main question I have is which queue will the traffic between
>> 10.0.0.123 and 172.17.0.123. In the pf world it would seem it gets
>> queued in normal, is this correct? if it is i guess i have to invert the
>> rules like so:
>>
>> pass in on em0 from any to any queue normal
>> pass out on em0 from any to any queue normal
>>
>> pass in on em0 from 172.17.0.123 to 10.0.0.123 queue vidconf
>> pass out on em0 from 10.0.0.123 to 172.17.0.123 queue vidconf
>>
>>
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?456B619D.5000703>