hello, i'm trying to divide my connection between two computers with
altq but looking at the output of 'pfctl -s queue -v -v' and pftop i
see that all the incoming traffic is using the default queue and
nothing of the queues it should use and it doesn't matter what queue i
choose to be the default one. here my pf.conf:
<----start---->
#
ext_if = "rl0" #interface externa (modem)
int_if = "rl1" #interface interna (hub)
loo_if = "lo0" #loopback
#
rede_int = "10.0.0.0/24"
nat_pc = "10.0.0.1/32"
torrent_pc = "10.0.0.2/32"
game_pc = "10.0.0.3/32"
ps2 = "10.0.0.4/32"
#
torrent_port = "7000"
soulseek_port = "1234"
mirc_port = "59"
game_ports = "{ 123, 456 }"
#
set optimization aggressive
set loginterface $ext_if
set block-policy drop
#
scrub on $ext_if all fragment reassemble random-id
#
altq on $ext_if priq bandwidth 280Kb queue { std_out, ssh_out, \
dns_out, tcp_ack_out }
queue std_out priq(default)
queue ssh_out priority 4 priq(red)
queue dns_out priority 5
queue tcp_ack_out priority 10
altq on $int_if cbq bandwidth 100Mb queue { ext_net, int_net }
queue ext_net bandwidth 525Kb cbq(default) { std_in, game_bw }
queue std_in bandwidth 445Kb cbq(borrow)
queue game_bw bandwidth 80Kb cbq(borrow)
queue int_net bandwidth 99Mb cbq(red)
#
nat on $ext_if from $rede_int to any -> ($ext_if)
# rdr
rdr on $ext_if proto { tcp udp } from any to ($ext_if) \
port $torrent_port -> $torrent_pc port $torrent_port
rdr on $ext_if proto tcp from any to ($ext_if) port $soulseek_port \
-> $torrent_pc port $soulseek_port
rdr on $ext_if proto tcp from any to ($ext_if) port $mirc_port \
-> $torrent_pc port $mirc_port
rdr on $ext_if proto tcp from any to ($ext_if) port ssh \
-> $nat_pc port ssh
rdr on $ext_if proto tcp from any to any port 21 -> 127.0.0.1 \
port 8021
#
antispoof for $ext_if
antispoof for $int_if
#
block in log all
block out log all
#
pass quick on $loo_if all
#
pass in quick on $int_if from $rede_int to $nat_pc queue int_net
pass out quick on $int_if from $nat_pc to $rede_int queue int_net
#
pass in on $int_if from $rede_int to any keep state
#
pass in on $ext_if all keep state # Only until I fix this ALTQ problem
#
pass out on $ext_if inet proto tcp from ($ext_if) to any flags S/SA \
keep state queue(std_out, tcp_ack_out)
pass out on $ext_if inet proto tcp from ($ext_if) to any port ssh \
flags S/SA keep state queue(std_out, ssh_out)
pass out on $ext_if inet proto { tcp, udp } from ($ext_if) to any \
port domain keep state queue(dns_out)
pass out on $ext_if inet proto { udp, icmp } from ($ext_if) to any \
keep state queue(std_out)
#
pass out on $int_if from any to $torrent_pc queue(std_in)
pass out on $int_if from any to $game_pc queue(game_bw)
<----end---->
does anyone know what am i doing wrong?
TIA,
John
