As Sebastian pointed out, you will need to do some state manipulation to
apply your traffic flows to an up and down queue. You can also do this by
setting your state-policy to be if-bound.
On 10/19/07, Richard Wilson <[EMAIL PROTECTED]> wrote:
>
> n0g0013 wrote:
> > On 19.10-15:15, Richard Wilson
I'm thinking about replacing my Sangoma t1 card with a card that has current
native driver support. Anyone using an Accoom or SBE? If so how do you
like it?
--
Joe
Can you also send your routing table on both the firewall and the client on
your internal network?
netstat -r -f inet
specifically, is the client's default route 10.0.0.0?
If you can, it would be best to experiment with statically defined IPs at
first.
On 10/5/07, a.padilla <[EMAIL PROTECTED]> w
> rl0 is connected to the internet.
> On Oct 5, 2007, at 12:52 PM, ropers wrote:
>
> > On 05/10/2007, a.padilla <[EMAIL PROTECTED]> wrote:
> >> I commented everything out except the nat rule and
> >> "pass out keep state"
> >>
> >> still nothing.
> >
>
delete "pass out keep state" This will not wo
> I commented out "block in" for testing purposes. still, no success.
> If you know what's wrong, please don' t just answer. I want to
> understand the solution.
Start with nat routing, and then move to filtering.
Keep your nat rule, get rid of the filter fules you have now, and put in a
defaul
I'm seeing some sendto: No buffer space available errors along with some ssh
session hangs. The symptoms are intermitent and look a lot like this
thread.
http://monkey.org/openbsd/archive/misc/0309/msg00827.html
The system is 4.1 stable generic with the sangoma wanpipe driver. Most
traffic is mov
I'm re-working my firewall (3.9 release for now) to use the hfsc scheduler
to give each of my users an inbound and outbound traffic queue. Has anyone
tried running > 64 queues/interface on i386? Have you found any practical
scale limits or unintended consequences of increasing hfsc_max_classes?
H
I'm guessing its because the default state policy is floating. Just
looking at the rules provided, the traffic should be able to pass
through. Try either pulling the "keep state" option, or setting the
state policy to if-bound, and see what happens.
So if it should be working now, why isn't it?
Have you considered using priq instead of cbq? If your connection is
slow overall, prioritizing ACKs may help.
On 10/6/06, S t i n g r a y <[EMAIL PROTECTED]> wrote:
it is asymmetric
*:$., 88,.$:*(((*$ Stingray *:$., 88,.$:*((*$
- Original Message
From: Joe Gibbens &
What is your Internet connection? Is it symmetric or asymmetric?
Joe
On 10/6/06, Andreas Bihlmaier <[EMAIL PROTECTED]> wrote:
>
> On Fri, Oct 06, 2006 at 09:57:16AM -0700, S t i n g r a y wrote:
> > my internet bandwith is getting slower & slower i have doubts about my
> traffic shaping .
> > h
Hi,
Can anyone tell me it its possible to establish a group/table of queues and
assign each queue to 1 ip with an outbound rule without needing a rule for
each ip and respective queue? All I'm really looking for is a way to
guarantee a minimum bandwidth to each client on our network instead of us
go with a custom
kernel.
On 7/18/06, Janne Johansson <[EMAIL PROTECTED]> wrote:
>
> Joe Gibbens wrote:
> > I'm running squid-transparent on 3.9, and the process dies every time
> > it reaches 1GB.
> > FATAL: xcalloc: Unable to allocate 1 blocks of 410
adma0 at isa0
pckbc0 at isa0 port 0x60/5
pckbd0 at pckbc0 (kbd slot)
pckbc0: using irq 1 for kbd slot
wskbd0 at pckbd0: console keyboard, using wsdisplay0
pcppi0 at isa0 port 0x61
midi0 at pcppi0:
spkr0 at pcppi0
npx0 at isa0 port 0xf0/16: using exception 16
pccom0 at isa0 port 0x3f8/8 irq 4: ns16550a, 16 byte fifo
fdc0 at isa0 port 0x3f0/6 irq 6 drq 2
biomask ffe5 netmask ffed ttymask ffef
pctr: user-level cycle counter enabled
uhidev0 at uhub1 port 2 configuration 1 interface 0
--
Joe Gibbens
13 matches
Mail list logo
