[ previous ] [ next ] [ threads ]
 
 From:  "Quark AV - Hilton Travis" <Hilton at QuarkAV dot com>
 To:  <m0n0wall at lists dot m0n0 dot ch>
 Subject:  RE: [m0n0wall] Wondershaper
 Date:  Thu, 10 Jun 2004 07:59:39 +1000 
Hi Adam,

> -----Original Message-----
> From: Adam Nellemann [mailto:adam at nellemann dot nu] 
> Sent: Thursday, 10 June 2004 02:41
> To: Eric Shorkey; m0n0wall at lists dot m0n0 dot ch
> Subject: Re: [m0n0wall] Wondershaper
> 
> Eric Shorkey wrote:
> > This one time, at band camp, I answered an email 
> > for Joey. ;)
> > 
> > You have to bind your shaper rules to an interface. 
> > It really doesn't matter which so long as the 
> > traffic you wish to shape passes through that 
> > interface at some point. Looks like Joey picked the 
> > lan interface. That's really all there is to it.
> 
> Isn't there at least some difference?
> 
> I should think the LAN interface might see a lot of LAN 
> traffic (how's that for stating the obvious!) which one would 
> usually not want to shape (and thus one would need special 
> shaper rules ommiting such local traffic, or for sending it 
> through pipes/queues made for LAN traffic).

Actually, if you are using a switch, then the LAN interface on the m0n0wall
will ONLY ever see traffic that is directed to it - specifically directed by
IP, and also broadcast.  So it will never see general network traffic.
Also, even were someone still using a hub, it would see this traffic, then
it would be dropped well before the firewall rules/shaping rules get to see
the traffic.

> Conversly the WAN interface should only see traffic to and 
> from the WAN (duh, ain't I the brilliant one once again!) And 
> thus one would not need to take special care of the LAN 
> traffic with the shaper rules on this interface.
> 
> But perhaps I'm missing something?

See above.

> One reason I CAN see for using the LAN interface when shaping 
> WAN traffic, would be to implement two-pass shaping (seeing 
> as multi-pass shaping isn't currently supported), but that is 
> another matter entirely.

Yes, this is something I'm seriously considering here.

--
 
Regards,
 
Hilton Travis                        Phone: +61-(0)7-3343-3889
Manager,                             Mobile: +61 (0)419 792 394
Quark IT                             http://www.QuarkIT.com.au/
Quark AudioVisual                    http://www.QuarkAV.net/
(Brisbane, Australia)
 
 Network Administration, SmoothWall Firewalls, NOD32 AntiVirus
Non Linear Video Editing Solutions & Digital Audio Workstations
  Conference and Seminar AudioVisual Production and Recording
 
War doesn't determine who is right. War determines who is left.