Chris, It looks like you have quite a few questions. The obsd list will not write your firewall for you, but this should get you started in the right direction.
Hierarchical Fair Service Curve (HFSC) of OpenBSD http://calomel.org/pf_hfsc.html -- Calomel @ http://calomel.org Open Source Research and Reference On Tue, Nov 13, 2007 at 01:34:06PM +0100, Chris Cohen wrote: >Hi all, > >sadly I can't get more than ADSL3000 (3072kbit dl/384kbit ul) at home >therefore I want to use queues on my 4.2 gateway. >I seperated my lan into clients (10.1.0.0/24), wlan (10.1.16.0/24), servers >(10.1.3.0/24) and some other, but they don't need internet access... > >I read http://www.openbsd.org/faq/pf/queueing.html and want to seperate >traffic by: > >client_in (downloads originated by my own clients) >client_out (uploads originated by my own clients) >wlan_in (downloads originated by my and some others laptops) >wlan_out (uploads originated by my and some others laptops) >server_in (downloads originated by my servers) >server_out (upload originated by my servers) >icmp_out (don't disturb my pings...) >mail_out (large mails sent by my mailrelay in the servers subnet shouldn't >disturb eg. the one hit my website recieves a day ;) ) >ssh_out (...) >tcp_ack_out (...) > >I think the protocol specific queues should have a higher priority than the >subnet specific ones. (?) > >What would be the "best" way to archive this? I am not sure which scheduler I >should use in which combinations of priority and bandwidth. > >Any tips are really appreciated. > >-- >Greetings >Chris
