pf не работает приоретизация трафика
Добавлено: 2012-06-04 17:36:04
Почему не работает разделение трафика. По идее трафик в сетке 192.168.11.0 должен быть приорететней - а получается что народ из сети 10.10.0.0 заваливает канал целиком.
Код: Выделить всё
int_if="rl1"
ext_if="rl0"
wifi_if="fxp0"
int_host="192.168.11.254"
ext_host="x.x.x.x"
wifi_host="10.10.0.254"
set loginterface $ext_if
scrub in all
altq on $ext_if cbq bandwidth 960Kb queue {office_net, wifi_net }
queue office_net bandwidth 80% cbq (default red borrow)
queue wifi_net bandwidth 20% cbq (red)
#NAT
nat pass on $ext_if proto {tcp, icmp, udp} from 192.168.11.0/24 to any ->$ext_if
nat pass on $ext_if proto {tcp, icmp, udp} from 10.10.0.0/24 to any ->$ext_if
#Firewall rules
block all
pass in on tun from any to any
pass out on tun from any to any
pass in on $int_if from any to any queue office_net
pass in on $wifi_if from any to any queue wifi_net
pass out on $ext_if from any to any
pass out on $int_if from any to any
pass in on $ext_if proto tcp from any to any port ssh flags S/SA keep state
pass out on tun from $int_if
pass in on tun from $int_if