From owner-freebsd-ipfw@FreeBSD.ORG  Mon Jun 16 11:45:21 2003
Return-Path: <owner-freebsd-ipfw@FreeBSD.ORG>
Delivered-To: freebsd-ipfw@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 29F3737B404
	for <freebsd-ipfw@freebsd.org>; Mon, 16 Jun 2003 11:45:21 -0700 (PDT)
Received: from mout0.freenet.de (mout0.freenet.de [194.97.50.131])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 1EB4343FAF
	for <freebsd-ipfw@freebsd.org>; Mon, 16 Jun 2003 11:45:19 -0700 (PDT)
	(envelope-from ino-qc@spotteswoode.de.eu.org)
Received: from [194.97.50.138] (helo=mx0.freenet.de)
	by mout0.freenet.de with asmtp (Exim 4.20)
	id 19Ryyk-00070i-3y
	for freebsd-ipfw@freebsd.org; Mon, 16 Jun 2003 20:45:18 +0200
Received: from p3e9baa8a.dip.t-dialin.net ([62.155.170.138]
	helo=spotteswoode.dnsalias.org)
	by mx0.freenet.de with asmtp (ID inode@freenet.de) (Exim 4.20 #1)
	id 19Ryyj-00075f-OW
	for freebsd-ipfw@freebsd.org; Mon, 16 Jun 2003 20:45:17 +0200
Received: (qmail 6118 invoked by uid 0); 16 Jun 2003 18:45:17 -0000
Date: 16 Jun 2003 20:45:17 +0200
Message-ID: <ptldn9oi.fsf@ID-23066.news.dfncis.de>
From: "clemens fischer" <ino-qc@spotteswoode.de.eu.org>
To: "Ben Pfountz" <netprince@vt.edu>
In-Reply-To: <003501c3342c$31658cd0$0100a8c0@GELLMAN> (Ben Pfountz's message
 of "Mon, 16 Jun 2003 13:24:35 -0400")
References: <3EEDE099.9080603@edgefocus.com>
	<001101c33420$37493bd0$6511a8c0@benspiece>
	<3EEDEF1D.9080107@edgefocus.com>
	<002401c33428$72b2c300$0100a8c0@GELLMAN>
	<3EEDFB2D.8070104@edgefocus.com>
	<003501c3342c$31658cd0$0100a8c0@GELLMAN>
User-Agent: Gnus/5.1003 (Gnus v5.10.3) Emacs/21.3 (berkeley-unix)
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
cc: freebsd-ipfw@freebsd.org
cc: sahafeez@edgefocus.com
Subject: Re: ipfw, dummynet and a large subnet to shape
X-BeenThere: freebsd-ipfw@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: IPFW Technical Discussions <freebsd-ipfw.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ipfw>
List-Post: <mailto:freebsd-ipfw@freebsd.org>
List-Help: <mailto:freebsd-ipfw-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ipfw>,
	<mailto:freebsd-ipfw-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 16 Jun 2003 18:45:21 -0000

* Ben Pfountz:

> It looks like it should work, but you should always try it.  I have almost
> never written a firewall ruleset that worked the way I expected it to work
> on the first try.  You should take a laptop and become a wireless client,
> then try to download something with a reliably high download rate.  Then you
> should go to one of your client machines on the LAN and try to download
> something as well.  You could even reduce the bandwidth rate just for
> testing, for example 56Kbit/s.  This would help to prove whether or not the
> pipes are working.

... and post the ruleset that works, please ...

  clemens