Re: ipfw, pf and ALTQ on outbound traffic? (or: The net is slow when I upload!)
Morgan Wesström wrote: Jubal Kessler wrote: (To put it another way: When I max out my upstream, and my upstream is capped lower than my downstream, my downstream becomes useless and I am forced to wait until the upload finishes before I can resume using the downstream. This is a problem, and I'd like to solve it.) This is exactly the reason why I built my own router several years ago. I have done the same with PF and AltQ for the past few years. It is so effective on my 1536/384 ADSL that I now have the opposite problem: a large download will lag both downloads and uploads. Sadly, this is a more difficult issue to tackle without full access to hardware at both ends of the slow link. -- Fuzzy love, -CyberLeo Technical Administrator CyberLeo.Net Webhosting http://www.CyberLeo.Net cyber...@cyberleo.net Furry Peace! - http://.fur.com/peace/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ipfw, pf and ALTQ on outbound traffic? (or: The net is slow when I upload!)
CyberLeo Kitsana wrote: Morgan Wesström wrote: Jubal Kessler wrote: (To put it another way: When I max out my upstream, and my upstream is capped lower than my downstream, my downstream becomes useless and I am forced to wait until the upload finishes before I can resume using the downstream. This is a problem, and I'd like to solve it.) This is exactly the reason why I built my own router several years ago. I have done the same with PF and AltQ for the past few years. It is so effective on my 1536/384 ADSL that I now have the opposite problem: a large download will lag both downloads and uploads. Sadly, this is a more difficult issue to tackle without full access to hardware at both ends of the slow link. Yes, I have noticed that too. Some discussions I've seen suggest that you add a queue on your internal interface too and limit the bandwidth entering your LAN. This will drop packets and TCP is supposed to renegotiate transmission windows then and make the upstream server send data slower and not saturate your download. I'm no expert in the gritty technical details and I haven't tried this myself but it might be worth experimenting with. /Morgan ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ipfw, pf and ALTQ on outbound traffic? (or: The net is slow when I upload!)
http://homerouters.info/wiki/Main_Page Be aware that I'm not a very good teacher... ;-) On the contrary, you're an excellent teacher, and I now have a working pf configuration handling my NAT duties as well as outbound traffic shaping (and handy graphs, too). Thank you very much for the well-written guide! Jubal That's very kind of you, I'm already blushing :-) I'm happy it helped solve your problem. If you find any errors or other weirdness, all feedback is appreciated. Regards Morgan ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ipfw, pf and ALTQ on outbound traffic? (or: The net is slow when I upload!)
Hi Jubal, Jubal Kessler wrote: Greetings, Is there a general how-to, or a set of coherent instructions, for shaping outbound traffic such that when I upload something over my asymmetric cable-modem pipe, doing so doesn't completely kill my Web browsing or any other attempts to use my Internet connection? (To put it another way: When I max out my upstream, and my upstream is capped lower than my downstream, my downstream becomes useless and I am forced to wait until the upload finishes before I can resume using the downstream. This is a problem, and I'd like to solve it.) I have looked at various ALTQ + pf setups on the Web, but I have one caveat. I use FreeBSD 6.4 on my home gateway, and it is also using the default natd server, which relies on an ipfw divert rule. I don't know if this matters, or if I need to switch from natd to a pf-based NAT setup. Technically you could run both, for a while years back I was using pppd's nat, ipfw for the firewall and dummynet (for kids downloads and stuff or when they reached their monthly quota), and pf for altq on outbound. All working perfectly. Should I use *just* ipfw, or should I switch everything to pf (including NAT services) and go from there? Thanks much, Jubal ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org -- Awdcomp computing services. Mobile: 0433 263 470 Web:www.awdcomp.net Email: a...@awdcomp.net ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ipfw, pf and ALTQ on outbound traffic? (or: The net is slow when I upload!)
Jubal Kessler wrote: Greetings, Is there a general how-to, or a set of coherent instructions, for shaping outbound traffic such that when I upload something over my asymmetric cable-modem pipe, doing so doesn't completely kill my Web browsing or any other attempts to use my Internet connection? Daniel Hartmeier's tutorial is the base on which I build my own knowledge: http://www.benzedrine.cx/ackpri.html I have helped my friends build FreeBSD based routers for a few years now. I've put together a documentation, mainly to help myself being consistent, but your free to look at my examples there and the reasoning behind it. It's in the Firewall setup guide but it's rather long since I explain in detail every part of the firewall rule set: http://homerouters.info/wiki/Main_Page Be aware that I'm not a very good teacher... ;-) (To put it another way: When I max out my upstream, and my upstream is capped lower than my downstream, my downstream becomes useless and I am forced to wait until the upload finishes before I can resume using the downstream. This is a problem, and I'd like to solve it.) This is exactly the reason why I built my own router several years ago. I have looked at various ALTQ + pf setups on the Web, but I have one caveat. I use FreeBSD 6.4 on my home gateway, and it is also using the default natd server, which relies on an ipfw divert rule. I don't know if this matters, or if I need to switch from natd to a pf-based NAT setup. Should I use *just* ipfw, or should I switch everything to pf (including NAT services) and go from there? I have no experience running pf and ipfw at the same time. NAT is handled perfectly by pf and keeping everything in the same config makes everything much easier. Naturally I recommend you have a look at the example in my tutorial and the pf man page of course. It's extremely flexible. Thanks much, Jubal /Morgan ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: ipfw, pf and ALTQ on outbound traffic? (or: The net is slow when I upload!)
Morgan Wesström wrote: I've put together a documentation, mainly to help myself being consistent, but your free to look at my examples there and the reasoning behind it. It's in the Firewall setup guide but it's rather long since I explain in detail every part of the firewall rule set: http://homerouters.info/wiki/Main_Page Be aware that I'm not a very good teacher... ;-) On the contrary, you're an excellent teacher, and I now have a working pf configuration handling my NAT duties as well as outbound traffic shaping (and handy graphs, too). Thank you very much for the well-written guide! Jubal ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
ipfw, pf and ALTQ on outbound traffic? (or: The net is slow when I upload!)
Greetings, Is there a general how-to, or a set of coherent instructions, for shaping outbound traffic such that when I upload something over my asymmetric cable-modem pipe, doing so doesn't completely kill my Web browsing or any other attempts to use my Internet connection? (To put it another way: When I max out my upstream, and my upstream is capped lower than my downstream, my downstream becomes useless and I am forced to wait until the upload finishes before I can resume using the downstream. This is a problem, and I'd like to solve it.) I have looked at various ALTQ + pf setups on the Web, but I have one caveat. I use FreeBSD 6.4 on my home gateway, and it is also using the default natd server, which relies on an ipfw divert rule. I don't know if this matters, or if I need to switch from natd to a pf-based NAT setup. Should I use *just* ipfw, or should I switch everything to pf (including NAT services) and go from there? Thanks much, Jubal ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
