Re: 請問IPFW流量管控疑問?

看板FreeBSD作者tzongyeu.時間21年前 (2005/01/28 17:01)推噓0(0推 0噓 0→)

留言0則, 0人參與討論串2/2 (看更多)

※ 引述《rain@bbs.ee.ntu.edu.tw (rain)》之銘言： > 原本ADSL採用PPPoE dial，dial成功就會產生tun*的管道，針對 > tun*的管道作限速，規則運作一切正常，In & Out 都可以掌控。 > ipfw add 10 pipe 2 tcp from 192.168.3.22 to any out via tun* > ipfw add 10 pipe 2 tcp from any to 192.168.3.22 in via tun* > 可是當我改用固接式的變成只能管In卻不能管Out，這是我哪邊設錯了呢? > 固接網卡為rl1，規則如下 > ipfw add 10 pipe 2 tcp from 192.168.3.22 to any out via rl1 > ipfw add 10 pipe 2 tcp from any to 192.168.3.22 in via rl1 > 當區網的網卡代號為rl0，也試過 > ipfw add 10 pipe 2 tcp from 192.168.3.22 to any out via rl0 > ipfw add 10 pipe 2 tcp from any to 192.168.3.22 in via rl0 > 設為以下方式，也一樣Out都管不到 > ipfw add 10 pipe 2 tcp from 192.168.3.22 to any out > ipfw add 10 pipe 2 tcp from any to 192.168.3.22 in > 半年前也提過相關問題，可是到現在還是搞不懂..麻煩各位幫我解惑囉.. > 謝謝... pipe pipe_nr Pass packet to a dummynet(4) ``pipe'' (for bandwidth limitation, delay, etc.). See the TRAFFIC SHAPER (DUMMYNET) CONFIGURATION Section for further information. The search terminates; however, on exit from the pipe and if the sysctl(8) variable net.inet.ip.fw.one_pass is not set, the packet is passed again to the firewall code starting from the next rule. #sysctl net.inet.ip.fw.one_pass=0 試試看吧 :) -- ※ Origin: SayYA 資訊站 <bbs.sayya.org> ◆ From: 61-218-205-188.hinet-ip.hinet.net