Re: Ipfw accept rule
From: Jon Simola (jon_at_abccom.bc.ca)
Date: 09/24/04
- Previous message: Bikrant Neupane: "Re: Ipfw accept rule"
- In reply to: Bikrant Neupane: "Re: Ipfw accept rule"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Fri, 24 Sep 2004 08:37:38 -0700 (PDT) To: Bikrant Neupane <bikrant_ml@wlink.com.np>
On Fri, 24 Sep 2004, Bikrant Neupane wrote:
> > > Well, I have no problem with the MAC filtering rules.
> > > Only problem that I am having is that the pkts hit the matching rule
> > > twice as a result I get only half of the b/w than that specified in ipfw
> > > pipe command.
Yes, the packets will hit the pipe twice. Once at layer2 and once at
layer3. You're not stopping the packets from passing through a pipe simply
by leaving out a "layer2" from the rule.
ether_input -> ipfw -> ip_input -> ipfw -> network stack
> > > Isn't there a way to construct rules such that matching pkts hit the rule
> > > only once?
Write your ruleset appropriately, or stick "not layer2" on your pipe
rules.
---
Jon Simola <jon@abccom.bc.ca> | "In the near future - corporate networks
Systems Administrator | reach out to the stars, electrons and light
ABC Communications | flow throughout the universe." -- GITS
_______________________________________________
freebsd-isp@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-isp
To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org"
- Previous message: Bikrant Neupane: "Re: Ipfw accept rule"
- In reply to: Bikrant Neupane: "Re: Ipfw accept rule"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
- Re: Ipfw accept rule
... the packets will hit the pipe twice. ... layer3. ... by
leaving out a "layer2" from the rule. ... (freebsd-questions) - IPFW traffic shaping questions
... I have few questions for ipfw gurus.. ... I'm using "ipfw pipe show"
for example but there is always only one host so if I'm testing some rules I can't tell if they work
or not (maybe there is some ... I have tried to add rule for ACK packets - no effect. ...
(freebsd-questions) - Re[2]: dummynet throughput problem
... it was a problem at the upstream which was seeing the packets ... twice
and adding them into the pipe twice because of that. ... HG> where the packets
are going. ... (freebsd-net) - Re: Thoughts for the beech
... but supplying amps That Continue To Flow ... "TRAFFIC SHAPER CONFIGURATION
... The shaper operates by dividing packets into flows according to ... A pipe
emulates a link with given bandwidth, propagation delay, queue ... (alt.sysadmin.recovery) - Re: FreeBSD Traffic Shaping?
... 10.0.0.224/28" (or whatever the appropriate mask is). ... >> acknowledgment
packets that downloading apps need to send back to the ... reserve bandwidth for them
unless you tell it to. ... pipe, ack packets go to the other one. ... (freebsd-questions)
