|
Post by cmutwiwa on May 1, 2015 6:18:06 GMT
Hi guys, So I have a 50mb / 12mb link, I'm planning to use 25mb / 6mb in my home network (192.168.10.1) and I need to send the other 25mb / 6mb to my office network (192.168.168.1) using a point to point (PTP) connection. How do I go about this separation in Smallwall? Pipes I guess? subnets? kindly guide. See the attached plan. Regards Cosmas. Attachments:
|
|
|
Post by Lee Sharp on May 1, 2015 22:18:23 GMT
This will take a little bit of work. You will have to build traffic shaper rules by hand as it is a bit beyond the wizard. But you can use some wizard rules as a guide... Start by setting up your rules based on subnets source / destination. You will want to pipes at 25/6 on each side, and assign the queues. And you want to have the "share bandwidth evenly" type setup. And are you sure you need to go through all this? Is "Share Bandwidth Evenly on the LAN" not working for you?
|
|
|
Post by cmutwiwa on May 2, 2015 6:10:12 GMT
Infact I'm already using the "Share Bandwidth Evenly on LAN" on another network and its working perfectly, the reason why I can't apply it on this network is a bit technical...I intend to share this new network with a friend so we decided we're going to upgrade it from 10mb / 2mb to 50mb / 12mb which is way much cheaper here than getting a new connection. So my friend has his own WISP network with a couple clients and I also have my own WISP network with a couple clients and therefore we don't intend to be on the same network because this might bring conflicts in usage as each one's client base increase, I will still use another Smallwall setup at my end to "Share Bandwidth Evenly on LAN", my friend is obsessed with commercial routers so he does it his own way but atleast I've convinced him that we can use Smallwall to separated the networks. As you can see, I think I will have to build traffic shaper rules by hand as you pointed out, I was thinking to use the VoIP example as a guide without using the magic shaper, my assumption is if the shaper can used to reserve bandwidth for VoIP then it can also be used to achieve this also, I must say that I'm a bit confused about the subnets source / destination thing though, do you have any clear guide on how to achieve this?
|
|
|
Post by cmutwiwa on May 2, 2015 7:21:29 GMT
Ok, may be in other words...I need to share the bandwidth evenly between two IPs since from the firewall the connection will go through two different routers on for my network another one for my friend, each with a static IP.
|
|
|
Post by Lee Sharp on May 2, 2015 17:11:56 GMT
Well, you could throttle at each router to 25 each... Or, since you have the routers behind them, just throttle each user (the two routers) to 25 each.
|
|
|
Post by Lee Sharp on May 2, 2015 17:13:30 GMT
But, no, I do not have an easy tutorial. Sorry. This is as good as it gets, and it is a bit old. doc.m0n0.ch/handbook/trafficshaper.htmlYes, working on documentation is one of the projects I am on now.
|
|
|
Post by cmutwiwa on May 2, 2015 18:40:01 GMT
Well, had thought of that but then it seemed so easy I had doubts I was afraid that it might render 25mb unusable. I will give it a try.
|
|
|
Post by cmutwiwa on May 2, 2015 18:41:42 GMT
And yes, a documentation will go a long way
|
|
|
Post by Lee Sharp on May 3, 2015 0:39:48 GMT
And yes, a documentation will go a long way You mean the source code is not the documentation? After looking, it has not been updated sice the 1.2 versions... Ouch!
|
|
|
Post by cmutwiwa on May 8, 2015 17:07:36 GMT
Ok, so I decided to do a test with smallwall to see if it can achieve what I want following your earlier advice. I'm testing this on a much slower link, a 1.7mb / 0.55mb. I wanted to do a static bandwidth allocation to two hosts (192.168.168.100 & 192.168.168.105) so that each gets 512k / 256k. I created four pipes as shown in the image below I then created the rules as shown in the images below. It seems to cap the bandwidth as desired. I did not create any queues and I did not enable the magic shaper, just created the pipes and the rules, nothing else. Kindly let me know if there is anything I'm missing or I'm I good to go with this configuration? Regards Cosmas.
|
|
|
Post by cmutwiwa on May 8, 2015 17:08:23 GMT
one more image Attachments:
|
|
|
Post by Lee Sharp on May 9, 2015 21:36:29 GMT
This will work fine to limit your traffic. However it will not manage your traffic. The queues are used to give priority, and to manage the traffic. This is the "share bandwidth evenly on the lan" part. It also priorities small packets that are noticed when there is delay, like DNS queries.
In other words, yes you can call it done, but some additional tuning will make the user perception better.
|
|
|
Post by cmutwiwa on May 9, 2015 21:57:21 GMT
Thanks Lee, yes I only needed to do a static share of the bandwidth to create two links first, from there I will manage one side of the link whereby I intend to place another SmallWall firewall and use the "Share Bandwidth Evenly on LAN" feature,my friend will manage the other half however he likes. I hope my setup is making sense. I could have used the routers to do the bandwidth limiting like you had mentioned earlier but then I'm beginning to dislike this commercial router and I need to experiment more with SmallWall
|
|
|
Post by Lee Sharp on May 10, 2015 2:07:37 GMT
You can do all your traffic management in the primary firewall if you just add another nic to it. Then set up your pipe to one network, not one IP address, and put in all the management.
|
|
|
Post by cmutwiwa on May 10, 2015 7:27:40 GMT
How come I never thought of that?! Thanks alot, will definitely set it up like that!
|
|