[pf4freebsd] Some changes in ALTQ implementation
Baroo
baroo at poczta.onet.pl
Wed Sep 15 21:05:29 PDT 2004
Hi
I have some idea for implementation of pf in freebsd. I know that in the
native implementation of pf queues filters are making with pass rules. (eg.
pass out on fxp0 from any to any port 22 queue ssh ). I think that more
resonable is to make an independent filters but in pf.conf file. This can be
useful in many configurations, because sometimes administrators want to make
an QoS configuration independent from packet filtering. Let say we have an
internet gateway with two interfaces. For filtering we could use only one
rule
pass out on $EXT_IF from $NAT_ALLOW to any keep state
an for qos something like this:
traffic out on $EXT_IF proto tcp from $NAT_ALLOW to any port 22 queue prio
traffic out on $EXT_IF proto udp from $NAT_ALLOW to any port 53 queue prio
traffic out on $EXT_IF proto icmp from $NAT_ALLOW to any queue prio
traffic out on $EXT_IF from 10.0.1.10 to any queue (user1, prio)
traffic out on $EXT_IF from 10.0.1.11 to any queue (user2, prio)
traffic out on $EXT_IF from 10.0.1.12 to any queue (user3, prio)
traffic out on $EXT_IF from 10.0.1.13 to any queue (user4, prio)
...
What are you think about it?
And the second thing. Are there any plans to make an ingress shaping (to
make a viritual pipe for queueing). It could be use to queueing a router
traffic (eg. if we have a ftp server on the same machine as router) or
shaping bandwidth between multiplie interfaces.
Thanks for your job around this project.
More information about the freebsd-pf
mailing list