Replying to myself :(
Two ways of doing this occur to me:
1. tail the dhcp logs and dynamically add rules for IPs as they are
allocated -- reload an anchor each time a user joins or leaves the
wireless network. This is inherently fragile :(
2. define queues for all possible IPs (currently a /22) using a
script -- is this sane?
R
Russell Fulton wrote:
> Hi Folks
>
> We have a requirement where we want to limit each IP address to a set
> bandwidth. To be explicit we have a wireless network which is connected
> to our main network and the Internet through a firewall. We have things
> set up so that each user on the wireless network can send no more than
> 128Kb to the Internet while having unthrottled access to the campus network.
>
> Currently we are doing this with ipfw under freebsd and I would like to
> move this over to pf but I can't see any way of setting up "dynamic"
> queues.
>
> Am I missing something?
>
> Russell.
>
>
>
