|
||||||||||
Dan, When writing your rules in a shaping bridge configuration, write your rules for the direction of inbound only. Rules outbound when shaping on a bridge never match. Someone more versed in the intricasies of m0n0wall can explain why, but it's been brought up on the list a few times. So, your WAN outbound rule can be re-written to be inbound on the OPT1 (or whatever your bridged interface is named). Try that and see if that fixes your issues. Justin On Tue, 2005-08-09 at 10:47 -0400, Dan Morin wrote: > All- > > I apologize in advance if this has already been answered, but I could not find anything about it in the archives. > > I have m0n0 wall setup with a 3rd NIC in a bridge configuration. The goal was to put it in front of my current firewall so that it can provide Traffic-Shaping/QoS without having to modify my current network infrastructure. > > I have everything setup and traffic is flowing through the system. However, It does not appear to be shaping the traffic at all. I have tried modifying the Pipe bandwidth so that it is very low and saving/applying the settings, and yet it does not effect the rate at which data is transferred to the Internet. I have also tried enabling the Filtered Bridge setting as I though it may need to pass traffic through the packet filter in order for Shaping to occur however that did not cause any change. > > Is it possible to Shape traffic through the bridge? If so, what am I missing? The following is my config (I have a 1280 Kbps symentrical fractional T1 connection): > > <shaper> > <enable/> > <pipe> > <bandwidth>1216</bandwidth> > <descr>m_Total Upload</descr> > </pipe> > <pipe> > <bandwidth>1216</bandwidth> > <descr>m_Total Download</descr> > </pipe> > <queue> > <targetpipe>0</targetpipe> > <weight>50</weight> > <descr>m_High Priority Upload</descr> > </queue> > <queue> > <targetpipe>0</targetpipe> > <weight>15</weight> > <descr>m_Medium Priority Upload</descr> > </queue> > <queue> > <targetpipe>0</targetpipe> > <weight>2</weight> > <descr>m_Low Priority Upload</descr> > </queue> > <queue> > <targetpipe>1</targetpipe> > <weight>15</weight> > <descr>m_Medium Priority Download</descr> > </queue> > <queue> > <targetpipe>1</targetpipe> > <weight>2</weight> > <descr>m_Low Priority Download</descr> > </queue> > <queue> > <targetpipe>1</targetpipe> > <weight>50</weight> > <descr>m_High Priority Download</descr> > </queue> > <rule> > <interface>wan</interface> > <source> > <address>216.169.###.###</address> > </source> > <destination> > <any/> > </destination> > <direction>out</direction> > <iplen/> > <iptos/> > <tcpflags/> > <descr>Server Upload</descr> > <targetqueue>0</targetqueue> > </rule> > <rule> > <interface>wan</interface> > <source> > <any/> > </source> > <destination> > <address>216.169.###.###</address> > </destination> > <direction>in</direction> > <iplen/> > <iptos/> > <tcpflags/> > <descr>Server Download</descr> > <targetqueue>5</targetqueue> > </rule> > <rule> > <interface>wan</interface> > <source> > <any/> > </source> > <destination> > <any/> > </destination> > <direction>out</direction> > <iplen/> > <iptos/> > <tcpflags/> > <descr>m_Catch-All Upload</descr> > <targetqueue>1</targetqueue> > </rule> > <rule> > <interface>wan</interface> > <source> > <any/> > </source> > <destination> > <any/> > </destination> > <direction>in</direction> > <iplen/> > <iptos/> > <tcpflags/> > <descr>m_Catch-All Download</descr> > <targetqueue>3</targetqueue> > </rule> > <magic> > <maxup>1200</maxup> > <maxdown>1200</maxdown> > </magic> > </shaper> > > Any help would be greatly appreciated. Thanks in advance. > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch > For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch > -- |