Re: [m0n0wall] Traffic Shaper

From:	"Garrett" <glc at c dash email dot com>
To:	"Chris Buechler" <cbuechler at gmail dot com>
Cc:	<m0n0wall at lists dot m0n0 dot ch>
Subject:	Re: [m0n0wall] Traffic Shaper
Date:	Sun, 16 Jan 2005 13:56:54 -0800

Anyway to verify that (maybe with a quick test)?
  ----- Original Message ----- 
  From: Chris Buechler 
  To: Garrett 
  Cc: m0n0wall at lists dot m0n0 dot ch 
  Sent: Saturday, January 15, 2005 8:01 PM
  Subject: Re: [m0n0wall] Traffic Shaper

  On Fri, 14 Jan 2005 17:25:42 -0800, Garrett <glc at c dash email dot com> wrote:
  > Does m0n0 apply the traffic shaper rules before or after any network address translation occurs?
  > 

  From looking at Manuel's PR's to FreeBSD with the m0n0wall patches
  that change ordering, I believe it's ipfw -> ipnat -> ipfilter on
  outgoing, and reverse that on incoming.  (ipfw == traffic shaping,
  ipnat == NAT, ipfilter == fw rules)

  So if you're talking LAN hosts going out to the internet, traffic
  shaper applies before NAT.  If you're talking traffic coming into the
  internet, it also applies before NAT (i.e. will still have whatever
  public IP as source)

  -Chris

  ---------------------------------------------------------------------
  To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
  For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch