[ previous ] [ next ] [ threads ]
 From:  promatow <promatow at gmail dot com>
 To:  m0n0wall dash dev at lists dot m0n0 dot ch
 Subject:  Traffic shaper to wide exclusion for LAN IF
 Date:  Wed, 5 Apr 2006 21:43:02 +0200
Hello all,
I would like to ask for verification & inclusion patch for traffic shaper.

While I've managed to set up some small squid on m0n0 I've discovered that
all traffic to/from LAN IF is passed by without queuing by traffic shaper.
This is done by adding two rules allowing all traffic (at any ports) to pass
to/from LAN IF without further shaping. In comments in shaper.inc file, I've
read that this is 'antiblock' rule for WebGUI. So my proposition is to
replace in /etc/inc/shaper.inc:

line 135: $shaperrules = "add $rulei set 4 pass all from $lanip to any\n";
line 136: $shaperrules .= "add $rulei set 4 pass all from any to $lanip\n";

With following:

$shaperrules = "add $rulei set 4 pass all from $lanip" .
isset($config['webgui']['port']) ? $config['webgui']['port'] : 80 . " to
any\n"; $rulei++;
$shaperrules .= "add $rulei set 4 pass all from any to $lanip dst-port " .
isset($config['webgui']['port']) ? $config['webgui']['port'] : 80 . "\n";

This way users still wont be able to block out themselves, and other traffic
will be shaped if required.

Best regards
Patryk Romatowski.