Hi,
I am trying to set up queueing on our firewall's internal interface to control
the bandwidth downloads consume (e.g. ftp, http):
altq on $lan_if cbq queue {lan_nolimit, lan_limit}
queue lan_nolimit bandwidth 98Mb cbq (borrow)
queue lan_limit bandwidth 1.9Mb cbq {lan_hi, lan_lo}
queue lan_hi bandwidth 70% priority 5 cbq (default borrow)
queue lan_lo bandwidth 30% priority 2 cbq (borrow)
The nolimit queue is used for internal traffic. Now I assign http and
ftp-traffic to lan_lo (ftp-proxy -T tag and then using a match rule). As I
used the borrow option, a ftp-transfer should be able to use the full 1.9Mb of
it's parent queue. But it only uses 30% of it, even if lan_hi is empty.
I monitored with pflog and pftop that the traffic is assigned to the right
queue. If I instead assign the ftp-traffic to lan_limit (the parent queue) it
uses the whole link.
I suppose I either did dome stupid mistake in my configuration or I
misunderstood the way borrow works for child-queues. Could someone please give
me a hint?
Best regards,
Till
