access-lists and QoS implementation
Joao Barros
joao.barros at gmail.com
Thu Nov 9 20:39:03 UTC 2006
On 11/9/06, Bill Moran <wmoran at collaborativefusion.com> wrote:
> In response to Mark <cvrider at yahoo.com>:
>
> > I would like to use my FreeBSD box as an ip router,
> > yet it lacks some functionality seen in Cisco boxes. I
> > am looking for a way to create access lists and also
> > do QoS such as LLQ, priority queing, etc. How can this
> > be accomplished in FreeBSD? Also, is there a FreeBSD
> > implementation of NBAR to classify traffic based on
> > higher layer packet information? For example, I would
> > like to allocate 20% bandwidth on an egress interface
> > to traffic matching an ACL or a certain protocol.
>
> Have a look at pf. I believe it will do everything you need.
pf doesn't support layer 7 protocol inspection. For that take a look
at ng_tag which lives in CURRENT.
--
Joao Barros
More information about the freebsd-questions
mailing list