On Wed 2000-06-07 (19:18), Poul-Henning Kamp wrote:
> It should be possible to say say
>
> ipfw deny all ip from any to any exquota any
>
> as well as:
>
> ipfw deny all ip from any to any exquota guest
How about:
ipfw quota 1 config quota 10MB (and similar conversions as pipe for MB,
Mb, kB, kb, &c.)
ipfw quota 2 config quota 20MB (and similar conversions as pipe for MB,
Mb, kB, kb, &c.)
ipfw add quota 1 ip from any to any (add to quota 1's count)
ipfw add quota 2 ip from any to any (add to quota 2's count)
ipfw add allow ip from any to any uquota 1 (allow unhindered ip when
under quota)
ipfw add deny ip from any to any oquota 2 (deny ip when over high quota)
ipfw add pipe 1 ip from any to any oquota 1 (dummynet ip when over low quota)
Possibly also rules like:
ipfw add pipe 1 ip from any to any oquota 1 uquota 2 (dummynet middle quota)
ipfw add pipe 2 ip from any to any oquota 2 uquota 3 (get even slower)
ipfw add deny ip from any to any oquota 3 (total stop)
(allowing for slower and slower service instead of just two levels)
Neil
--
Neil Blakey-Milner
Sunesi Clinical Systems
[EMAIL PROTECTED]
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-hackers" in the body of the message
