Hello Diego, On Monday 12 May 2008 07:41:30 Diego Salvador wrote: > Hi! Is it possible to use ALTQ in FreeBSD without PF? Because what I > want to achieve is to build a QoS system/machine in a Diffserv or > Intserv network without firewall. It seems like ALTQ is tightly coupled > with PF. I have read this http://pf4freebsd.love2party.net/altq.html > that ALTQ integration in FreeBSD is in PF-Mode not in COMPAT Mode? Can > someone elaborate the difference between these types of modes? The info > describes FreeBSD-5, Is it still affecting FreeBSD-6.2/6.3 and > FreeBSD-7.0 releases? In NetBSD, ALTQ can be used without PF or other > means of firewall.
basically there are two parts to traffic shaping: 1) Classification of traffic 2) The actual queuing ALTQ used to do both, i.e. you could specify classifications based on src/dst/dscp/... in altqd and it would dig into the packets itself. This classification, however, turned out to be absolutely incompatible with the SMPng goals and when I imported ALTQ it was decided to disable it (because nobody had interest in locking it down for SMPng compliance). The classification in "PF-mode" is rather simple: any firewall (or other policy tool plugged into the pfil(9) API) can classify packets for ALTQ by adding a mbuf_tag to the packet. ALTQ only takes care of the actual queuing. Today, IPFW and PF are able to classify packets this way. IIRC, there are patches floating around to teach IPFW about DSCP (they might even be in the tree already). If neither tool meets your requirements, it should be easy enough to plug an application specific filter into pfil(9) that would do the classification. -- /"\ Best regards, | [EMAIL PROTECTED] \ / Max Laier | ICQ #67774661 X http://pf4freebsd.love2party.net/ | [EMAIL PROTECTED] / \ ASCII Ribbon Campaign | Against HTML Mail and News _______________________________________________ freebsd-pf@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-pf To unsubscribe, send any mail to "[EMAIL PROTECTED]"
