From owner-freebsd-questions@FreeBSD.ORG Sun Mar 22 06:58:06 2009 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 0C6CC106566C for ; Sun, 22 Mar 2009 06:58:06 +0000 (UTC) (envelope-from awd@awdcomp.net) Received: from home.awdcomp.net (ppp234-119.static.internode.on.net [203.122.234.119]) by mx1.freebsd.org (Postfix) with ESMTP id 15FF98FC0C for ; Sun, 22 Mar 2009 06:58:05 +0000 (UTC) (envelope-from awd@awdcomp.net) Received: from getafix.abdulla ([192.168.202.99] helo=[127.0.0.1]) by home.awdcomp.net with esmtp (Exim 4.69 (FreeBSD)) (envelope-from ) id 1LlHd5-000Lq2-Ii; Sun, 22 Mar 2009 17:28:02 +1030 Message-ID: <49C5E15D.4090406@awdcomp.net> Date: Sun, 22 Mar 2009 17:27:33 +1030 From: Andrew User-Agent: Thunderbird 2.0.0.19 (Windows/20081209) MIME-Version: 1.0 To: jubal-freebsd-20090321@cheeze.org References: <49C598E3.80107@cheeze.org> In-Reply-To: <49C598E3.80107@cheeze.org> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Spam-Report: Spam detection software, running on the system "gateway.abdulla", has identified this incoming email as possible spam. The original message has been attached to this so you can view it (if it isn't spam) or label similar future email. If you have any questions, see The administrator of that system for details. Content preview: Hi Jubal, Jubal Kessler wrote: > Greetings, > > Is there a general how-to, or a set of coherent instructions, for > shaping outbound traffic such that when I upload something over my > asymmetric cable-modem pipe, doing so doesn't completely kill my Web > browsing or any other attempts to use my Internet connection? > > (To put it another way: When I max out my upstream, and my upstream is > capped lower than my downstream, my downstream becomes useless and I am > forced to wait until the upload finishes before I can resume using the > downstream. This is a problem, and I'd like to solve it.) > > I have looked at various ALTQ + pf setups on the Web, but I have one > caveat. I use FreeBSD 6.4 on my home gateway, and it is also using the > default natd server, which relies on an ipfw divert rule. I don't know > if this matters, or if I need to switch from natd to a pf-based NAT setup. [...] Content analysis details: (-0.1 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- -1.4 ALL_TRUSTED Passed through trusted hosts only via SMTP 1.3 PLING_QUERY Subject has exclamation mark and question mark X-Spam-Score: 0 (/) Cc: freebsd-questions@freebsd.org Subject: Re: ipfw, pf and ALTQ on outbound traffic? (or: "The net is slow when I upload!") X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 22 Mar 2009 06:58:06 -0000 Hi Jubal, Jubal Kessler wrote: > Greetings, > > Is there a general how-to, or a set of coherent instructions, for > shaping outbound traffic such that when I upload something over my > asymmetric cable-modem pipe, doing so doesn't completely kill my Web > browsing or any other attempts to use my Internet connection? > > (To put it another way: When I max out my upstream, and my upstream is > capped lower than my downstream, my downstream becomes useless and I am > forced to wait until the upload finishes before I can resume using the > downstream. This is a problem, and I'd like to solve it.) > > I have looked at various ALTQ + pf setups on the Web, but I have one > caveat. I use FreeBSD 6.4 on my home gateway, and it is also using the > default natd server, which relies on an ipfw divert rule. I don't know > if this matters, or if I need to switch from natd to a pf-based NAT setup. Technically you could run both, for a while years back I was using pppd's nat, ipfw for the firewall and dummynet (for kids downloads and stuff or when they reached their monthly quota), and pf for altq on outbound. All working perfectly. > > Should I use *just* ipfw, or should I switch everything to pf (including > NAT services) and go from there? > > Thanks much, > > Jubal > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org" -- Awdcomp computing services. Mobile: 0433 263 470 Web: www.awdcomp.net Email: awd@awdcomp.net