[EMAIL PROTECTED] (Henning Brauer) wrote in message news:[EMAIL PROTECTED]...
On Sun, Jun 01, 2003 at 06:20:23AM -0700, Dennis wrote:
If you get serious about bandwidth management, take a look at
something a bit more advanced at a very affordable price. Our software
blah blah blah. what a
I am having a odd problem and I am hoping someone one the list can point out
my error,
Here is my pf.conf, the keepstate on the icmp doesn't seem to be working, it
won't pass the packets out. Ie
I am on host 10.0.0.51, I ping 10.0.4.1(routing table entry is present for
this net) and it won't ping
On Monday, Jun 2, 2003, at 09:48 US/Pacific, Amir Seyavash Mesry wrote:
Here is my pf.conf, the keepstate on the icmp doesn't seem to be
working, it
won't pass the packets out. Ie
I am on host 10.0.0.51, I ping 10.0.4.1(routing table entry is present
for
this net) and it won't ping it, but if I
Hi,
After as bit of experimenting around with fastroute, I found that setting it
on an outbound rule was bad. It locks up the machine. Using it on inbound
rules seems to work as expected.
It would be great if the parser would pick this up, not allowing the ruleset to be
loaded. Some doco to
Amir Seyavash Mesry wrote:
I am having a odd problem and I am hoping someone one the list can point out
my error,
Here is my pf.conf, the keepstate on the icmp doesn't seem to be working, it
won't pass the packets out. Ie
I am on host 10.0.0.51, I ping 10.0.4.1(routing table entry is present for
On Tue, 3 Jun 2003, Marco Grigull wrote:
A feature that might be useful to others would be to set the ttl to a defined
value, or adjust it for hiding not so capable routers.
'ttl -2' decremnt it by 2, probably useless
'ttl 64' re/set it to 64, hiding a variety of OSes on the
Hello.
I have two upstream ADSL links, and PF with route-to/round-robin works
very well to balance outgoing connections over both links.
However, round-robin brings a little issue.
There are web sites that can't understand that a single session can use
two different IP addresses.
Sorry, I thought I gave enough info, they come in on eth1 and leave on eth1.
IE machine that pf.conf was given for is doing nat and some small routing.
Machine1(pf.conf given for this one)
Eth0=internetip
Eth1=10.0.0.1 network 10.0.0.0/24
Eth1=10.0.0.2 network 10.0.0.0/24
Machine2
Eth0=internetip
Amir Seyavash Mesry wrote:
Sorry, I thought I gave enough info, they come in on eth1 and leave on eth1.
IE machine that pf.conf was given for is doing nat and some small routing.
Machine1(pf.conf given for this one)
Eth0=internetip
Eth1=10.0.0.1 network 10.0.0.0/24
Eth1=10.0.0.2 network
OMG TYPO! Packet is going from 10.0.0.51 to 10.0.0.1 to 10.0.0.2 to 10.0.4.1
Maybe this clarifys it now, lol.
Machine1
Eth0=77.77.77.77
Eth1=10.0.0.1 network 10.0.0.0/24
Eth2=10.0.0.2 network 10.0.0.0/24
Machine2
Eth0=11.11.11.11
Eth1=10.0.0.2 network 10.0.0.0/24
Eth2=10.0.4.1 network
Amir Seyavash Mesry wrote:
OMG TYPO! Packet is going from 10.0.0.51 to 10.0.0.1 to 10.0.0.2 to 10.0.4.1
Maybe this clarifys it now, lol.
I'm sorry, it really doesn't.
Machine1
Eth0=77.77.77.77
Eth1=10.0.0.1 network 10.0.0.0/24
Eth2=10.0.0.2 network 10.0.0.0/24
Machine2
Eth0=11.11.11.11
Hi,
I'm trying to use pfstat for my first time, but it seems every time I
run it to generate images, it core dumps. It appears to be gathering data
fine (I'm logging stats on my external interface) Now I'm trying to figure
out if I'm just doing something really stupid, or if there's an issue
Re-attaching pf2.conf, I forgot to add the ip changes.
Amir Seyavash Mesry
[EMAIL PROTECTED]
LSI Logic Corporation
http://www.lsilogic.com/
Raid Support Test Technician
6145-D Northbelt Parkway
Norcross, GA 30071
678-728-1211
NOTICE: This communication may contain privileged or other
Yea I added some now it works, this got it all working now, attaching 2
pf.conf's and the diagram is below, lemme know If I still got something
amiss, I think I got it all.
Eth0(---Internet)
|
Machine1---Eth1(10.0.0.1,10.0.0.0/24)-|
| |
Here's a simple question:
Does pfctl -vvsq display bandwidth in bits/second or bytes/second?
Here's a snippit (just basic ACK prioritizing):
queue q_pri priority 7
[ pkts: 1475 bytes: 92446 dropped pkts: 0 bytes:
0 ]
[ qlength: 0/ 50 ]
[ measured: 5.4 packets/s,
On Monday, June 2, 2003, at 11:30 PM, Trevor Talbot wrote:
You get to push 1.2Mbit/s outbound? Nice. At any rate, this is only
outbound traffic being counted, not inbound. The only impact downloads
have on this is response traffic.
I realized my error after posting. For some reason I thought
On Monday, Jun 2, 2003, at 21:05 US/Pacific, Dave St.Germain wrote:
Another question: what is the difference between saying flags S/SA and
S/SAFR
when it comes to queueing? Or just in general?
If you're using scrub, no difference to filtering; the scrub code
already
deals with illegal TCP
got the same problem!
gate:/root uname -rp
3.3 Digital AlphaPC 164LX 533 MHz
gate:/root cat /etc/pfstat.conf
image /var/www/htdocs/pfstat/pfstat.jpg {
from 1 weeks to now
width 960 height 300
left
graph bytes_v4_in label incoming color 0 192 0
filled,
Hi. Justhave a simple question.
I have a openbsd 3.3 nat router and want to limit bandwith for each host
on the lan (on both incoming and outgoing directions).
The way i understand it i need to create a queue for each host on the lan
(about 200) on the int_if (for incomming traffic)and on the
On Tuesday, Jun 3, 2003, at 00:41 US/Pacific, Volker Kindermann wrote:
binat on fxp0 from $web_serv_int to any - $web_serv_ext
How are the packets seen by the filter? Is it:
- for incoming packets:
src: internet address of client
dst: web_serv_int (that is after binat)
- for outgoing
20 matches
Mail list logo
