Downloads limiting with PF
Hi Sorry for my english first :-( I try to explain my problem as clean as I can. I have internet connection with very low bandwidth and many users. Bandwidth is enough if users don't download large files, but if only one of them start to download, others must wait long time for any webpage (and it's understandable :-)). I tried to limit size of downloadable object with Sqiud, but users start to complain. Ideal solution for me in such situation seems follow: when user start download it got full bandwidth untill some (fixed) limit in bytes reached, after that without breaking download connection got restricted bandwitdh. The question is - can I achive this with PF+ALTQ on my OpenBSD 3.7-stable router? Maxim.
Re: Downloads limiting with PF
On Sunday 22 January 2006 15:29, you wrote: > http://www.openbsd.org/faq/pf/queueing.html > http://www.openbsd.org/cgi-bin/man.cgi?query=pf.conf&apropos=0&sektion=0&ma >npath=OpenBSD+Current&arch=i386&format=html > > That should get you started. Greate thanks for your answer, Marco! I had read it, but didn't find solution for my problem yet. As I think, the solution must be aware of connection. But present stateful tracking options in pf.conf allow only to limit numer of concurrent connections. Or, limit badwidth for whole connection insted of part of it. In pf source I find, that struct pf_state have array member bytes[2]. I guess it is in/out bytes counter for connection. But I can't use it to solve problem right now :-( So, I think I need to code a little bit. Maxim. > > On Sat, Jan 21, 2006 at 11:27:50PM +0200, Maxim Vetsalo wrote: > > Hi > > > > Sorry for my english first :-( I try to explain my problem as clean as I > > can. I have internet connection with very low bandwidth and many users. > > Bandwidth is enough if users don't download large files, but if only one > > of them start to download, others must wait long time for any webpage > > (and it's understandable :-)). I tried to limit size of downloadable > > object with Sqiud, but users start to complain. Ideal solution for me in > > such situation seems follow: when user start download it got full > > bandwidth untill some (fixed) limit in bytes reached, after that without > > breaking download connection got restricted bandwitdh. > > The question is - can I achive this with PF+ALTQ on my OpenBSD 3.7-stable > > router? > > > > Maxim.
Re: Downloads limiting with PF
On Monday 23 January 2006 00:36, you wrote: > On 2006/01/23 00:23, Maxim Vetsalo wrote: > > Greate thanks for your answer, Marco! I had read it, but didn't find > > solution for my problem yet. > > You missed the pf.conf(5) section on service curves, then. Yes, you are right. I missed it. Shame on me. A read about queueing in PF FAQ mostly and only look by one eye in man :-( It's not exactly what I need. But is close to it. I think some experiments will help to determine proper delay insted of transfer size. Maxim.
Re: Downloads limiting with PF
On Monday 23 January 2006 21:18, you wrote: > A non-technical suggestion: > > Keep in mind your *real* goals instead of focusing too closely on one > particular solution. Thanks! This is extremly usefull advice! Now I understand that I need rethink my problem. And misc@ was *very* helpfull. Thanks everybody, who answered me. Maxim.
