Re: can pf block a string ? or better, to limit it ?

@Peter Maxwell: kernel coding is too much for me @Michael proto: nstreams ... reading about it @Vlad Galu: STATEFUL TRACKING OPTIONS has nothing to do with "string matching". I want to bock a particular string (ex: "test") and not filter by S/SA or other tcp flags @john: I was thinking about som

Unknown Behavior of PF+ALTQ on a Bridge

Hi. I'm working on a Brige between a router Cisco 7200, and a 3Com 7900 switch. I have several subnetworks, and I need to balance the bandwidth between then. The Brigde is running: "FreeBSD dell05 8.1-PRERELEASE FreeBSD 8.1-PRERELEASE #0: Tue Jun 22 13:59:17 BRT 2010 rafaelhfa...@dell05:/usr/obj/

Re: Unknown Behavior of PF+ALTQ on a Bridge

On Thu, Jun 24, 2010 at 3:12 PM, Rafael Henrique Faria wrote: > Hi. > > I'm working on a Brige between a router Cisco 7200, and a 3Com 7900 switch. > I have several subnetworks, and I need to balance the bandwidth between then. > > The Brigde is running: "FreeBSD dell05 8.1-PRERELEASE FreeBSD > 8.

Re: Unknown Behavior of PF+ALTQ on a Bridge

On Thu, Jun 24, 2010 at 14:04, Ermal Luçi wrote: > On Thu, Jun 24, 2010 at 3:12 PM, Rafael Henrique Faria > wrote: >> Hi. >> >> I'm working on a Brige between a router Cisco 7200, and a 3Com 7900 switch. >> I have several subnetworks, and I need to balance the bandwidth between then. >> >> The Br

Re: Unknown Behavior of PF+ALTQ on a Bridge

Just to be more clean: My pf.conf: wan_if="bce0" set limit { states 10, frags 2 } set loginterface $wan_if set optimization normal set block-policy drop set fingerprints "/etc/pf.os" set skip on lo altq on $wan_if cbq bandwidth 100% queue { out_bal, out_std } queue out_bal bandwi

Re: Unknown Behavior of PF+ALTQ on a Bridge

Hi, On 2010/06/24 21:42, Rafael Henrique Faria wrote: So, my question is: why the default queue is being used, If I have a rule to use the out_bal queue to all outgoing traffic on that interface? I need to redirect all the traffic from a subnet (/24) to one queue (incoming and outgoing traffic)

Re: Unknown Behavior of PF+ALTQ on a Bridge

2010/6/24 Rafael Henrique Faria : > Just to be more clean: > > My pf.conf: > > wan_if="bce0" > > set limit { states 10, frags 2 } > set loginterface $wan_if > set optimization normal > set block-policy drop > set fingerprints "/etc/pf.os" > set skip on lo > > altq on $wan_if cbq bandwi

Re: Unknown Behavior of PF+ALTQ on a Bridge

On Thu, Jun 24, 2010 at 18:56, Ermal Luçi wrote: > 2010/6/24 Rafael Henrique Faria : >> Just to be more clean: >> >> My pf.conf: >> >> wan_if="bce0" >> >> set limit { states 10, frags 2 } >> set loginterface $wan_if >> set optimization normal >> set block-policy drop >> set fingerprin