[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Question



Hello,
I have "setup'd" the box with PRI ACK from:
http://www.benzedrine.cx/ackpri.html
and it work great for transfert in both direction ! (up/dl). Very
interessing.  But I have some question:
1.- How theses "rules" will priorize outcoming tcp ack ?  We see 2
priority, the default and the highest priority.
pass out on $ext_if proto tcp from $ext_if to any flags S/SA \
        keep state queue (q_def, q_pri)
pass in  on $ext_if proto tcp from any to $ext_if flags S/SA \
        keep state queue (q_def, q_pri)
How the kernel/pf work ? I want to understand "under the hood"...
2.- While I have a upload/download, my SSH session on other server is
very slooooooow... this is the only thing seem to not to be working very
well :-/ Can anyone help me or explain me in more detail ?
THanks...
--
Here my configuration file:
ext_if="ne3"    # replace with actual external interface name i.e., dc0
int_if_1="rl0"  # replace with actual internal interface name i.e., dc1
int_if_2="ne2"  # replace with actual internal interface name i.e., dc1
internal_1="192.168.1.0/24"
internal_2="192.168.0.0/24"
rick="192.168.1.2"
set loginterface ne3
scrub in all
altq on $ext_if priq bandwidth 160Kb queue { q_pri, q_def }
queue q_pri priority 7
queue q_def priority 1 priq(default)
nat on $ext_if from $internal_1 to any -> ($ext_if)
nat on $ext_if from $internal_2 to any -> ($ext_if)
rdr on $ext_if proto tcp from any to ($ext_if) port 2000:2020 -> $rick
port 2000:*
# rdr outgoing FTP requests to the ftp-proxy
rdr on $int_if_1 proto tcp from any to any port ftp -> 127.0.0.1 port
8021
rdr on $int_if_2 proto tcp from any to any port ftp -> 127.0.0.1 port
8021
pass out on $ext_if proto tcp from $ext_if to any flags S/SA keep state
queue (q_def, q_pri)
pass in on $ext_if proto tcp from any to $ext_if flags S/SA keep state
queue (q_def, q_pri)