[pfSense] 2 LANs and time based limits
eri at pfsense.org
Fri May 11 08:22:58 EDT 2012
On Fri, May 11, 2012 at 7:18 AM, jerome alet <jerome.alet at univ-nc.nc> wrote:
> Hi again,
>> From: Ermal Luçi <eri at pfsense.org>
>> Sent: Fri May 11 21:29:17 NCT 2012
>> To: jerome alet <jerome.alet at univ-nc.nc>, pfSense support and discussion <list at lists.pfsense.org>
>> Subject: Re: [pfSense] 2 LANs and time based limits
>> On Fri, May 11, 2012 at 4:11 AM, jerome alet <jerome.alet at univ-nc.nc> wrote:
>> > Our classrooms computers must have dedicated bandwidth from 7 a.m. to 6 p.m., for example they could have the bandwidth equivalent of 5 (of our 6) ADSL modems, guaranteed, during this period of time, each day from Monday to Friday. The remaining bandwidth should be dedicated to the appartments' computers.
>> > Outside of these periods of time, the total available bandwidth should be available for both sets of computers, with an equal share of it, i.e. just as if we don't do anything special.
>> > Is this possible with pfSense and if yes please could someone tell me how to proceed ?
>> It is possible through time based rules and limiters.
>> You just set up limiters with the limits you want guaranteed during
>> weekdays and use those limiters in time based rules.
> So am I correct with this scenario :
> 1 - Create the 7a.m. to 6p.m. schedule
> 2 - Create a single limiter, say 20 Mbits/s, with no other option, to dedicate 20 Mbits/s to classrooms (so appartments will use the remaining bandwidth that is still available when this limiter applies)
> 3 - When creating a rule, I add this rule only to the "classrooms" interface, and use the single limiter's name in both the IN and OUT drop down lists in the "Advanced features" of rule creation. Then I put this rule with "PASS" mode at the top for it to be evaluated first (or is it important at all where I put it wrt other rules) ?
> Am I correct ?
Just another thing.
You need to limit the !classroom case with a limiter, or partition the
limiter with queues and weights, so you bandwidth is guaranteed!
Otherwise the limiter will always just apply limits to the classroom
and not the other traffic.
If you are not confortable with limters just use the shaper with HFSC
on wan and put traffic in schedule in realtime guarantee of 20Mb.
> Thanks for your feedback, I've never used limiters before and since I'll do this on the production system I'd like to not make too much mistakes.
> Thanks in advance for your help
> Jerome Alet
More information about the List