[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

pf's anchors and queues

To: misc@OpenBSD.org
Subject: pf's anchors and queues
From: Dancho Penev <dpenev@mnet.bg>
Date: Wed, 3 Mar 2004 13:13:01 +0200
Content-Disposition: inline
User-Agent: Mutt/1.4.1i

Hi guys,

I had run OpenBSD 3.4 as firewall for a few months and I can say
that I was a happy man(I don't know what was the reason: OpenBSD or
something else... but who cares ;-). Recently I made some efforts
to setup altq, but unfortunately I have only partial success. The problem
is that the traffic that isn't defined in the main ruleset can't be
assigned to any queue. Is that by design or I've miss something?
For illustration:

pf.conf:
...
altq on $ext_if priq bandwidth 64Kb queue { std, dns }
queue std      priority 0 priq(default)
queue dns      priority 1
...
anchor external on $ext_if all
load anchor external:out_traffic from "/etc/pf-ext-out.conf"
...


pf-ext-out.conf:
...
pass out quick inet proto udp from <ext_addr> to <dns_servers> \
        port domain keep state label "domain" queue dns
...


# pfctl -a external:out_traffic -sq
#


--
Dancho Penev

GnuGP public key:
http://www.mnet.bg/~dpenev/gnupg.key

[demime 0.98d removed an attachment of type application/pgp-signature]

Prev by Date: Re-2: Soekris net4501 & syslogd
Next by Date: Re: wi(4) fixes
Prev by thread: DHL eTrack Meldung
Next by thread: virus encontrado en el mensaje enviado "information"
Index(es):
- Date
- Thread