Help: pf queuing and multiple interfaces
From: Joe Naude (joe.news_at_dolphincoast.com)
Date: 08/24/04
- Previous message: clvrmnky: "Re: Still can't use ADSL, PF problem"
- Next in thread: Reid Nichol: "Re: Help: pf queuing and multiple interfaces"
- Reply: Reid Nichol: "Re: Help: pf queuing and multiple interfaces"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Tue, 24 Aug 2004 22:24:15 +0200
* The scenario:
OpenBSD 3.5 box with:
1. ADSL 512kbps interface (tun0)
2. LAN i/face - Customer1 [192.168.100.0] (fxp0)
3. LAN i/face - Customer2 [192.168.200.0] (fxp1)
* The requirements:
1. Queuing so that Customer1 has guaranteed minimum of 75% of
available
bandwidth, Customer2, 25%.
It would be nice if the configuration could allow either to use more
than their allocation, if the link is underutilised.
I would like to extend the queuing rules to prioritise smtp/pop3
traffic for each customer - although not immediately required.
2. Customer1 must not "see" Customer2 and vice versa. Packets must be
NATted from both customers to the outside world but must be dropped if
someone attempts to visit their neighbour's subnet.
* The Group's help
I would appreciate some tips/examples of how to implement the above in
a pf.conf ruleset. I am rather new to OpenBSD and pf, so explanations
of rules given would assist in my understanding.
Thanks.
-- Joe Naude CQ IT Solutions
- Previous message: clvrmnky: "Re: Still can't use ADSL, PF problem"
- Next in thread: Reid Nichol: "Re: Help: pf queuing and multiple interfaces"
- Reply: Reid Nichol: "Re: Help: pf queuing and multiple interfaces"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
