I'm reading over the shaper guide at https://doc.pfsense.org/index.php/Traffic_Shaping_Guide and I find I still have some confusion. The document seems to be in need of some updating.
There are no definitions of what the scheduler types FAIRQ and CODELQ are not defined. What would be their use cases? The document still refers to the Layer 7 shaping, but when you follow the link it says that feature does not exist since version 2.2. It doesn't seem like that even needs to be linked anymore. When I used the wizard to set up some simple queues (voip, smtp, IMAP, and IPSEC) to test it out, it created a handful of floating rules to map traffic into the queues. I do not see any rule for what to do with the rest of the traffic. Does not all traffic need to be sent through the queues in order for them to be effective? Should I update my catch-all LAN rule to use a queue? This part is very fuzzy in my mind right now. The wizard does not have an OpenVPN option for the VPN section. Is this because you can run it on any port or because there is something about OpenVPN that does not let it work. I'm thinking I would just need to add a rule that matches my port numbers and IPs and it should work. The wizard only seems to make outbound rules (based on the comment) for everything except IPSEC. Looking at the rules, for example on SMTP, they seem to match both directions. It says "direction = any" and the only filter is destination port 25, so it should work for incoming SMTP connections I would think. Do I need to define queues on all interfaces if I want to control outbound traffic? Can I just define them on the LAN interface and put the rules on the LAN tab? Or do I define them on the WAN? The document states that shaping is not capable of setting an upper limit on bandwidth. If this is the case, what for is the "Max bandwidth for queue." settings in the "Service Curve" settings panel for a queue? I need this capability, but I also use pfsync so I cannot use the limiters. What is the incantation for evenly distributing http/https among the users? That is, if one person is uploading a large file over the web to some remote service, how to let the others still get their fair share of traffic? Does this happen with the queues automatically? Thanks for any answers to these questions and any tips you may have to offer. _______________________________________________ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold