OPNsense Forum
English Forums => General Discussion => Topic started by: nicola.piazzi on November 22, 2017, 06:08:34 pm
-
Hallo,
I have a lot of remote sites connected to my headquarter with some slow lines
I installed a small lan in headquarter behind the opnsense that i configured without firewall services
I want to use it to limit band from servers that are in small lan (4 example wsus or antivirus central) to remote sites.
small lan that have wsus server have ip 192.168.3.0/24 so i can create a lot of servers that have as a gateway the opnsense 192.168.3.85
opnsense have also a 'wan' adapter that have ip 10.1.1.85 that can give access to all 10.0.0.0/8 wan network
Consider that all remote sites have a B class, for example 10.110.0.0/16 is site 1 , 10.111.0.0/16 is site 2, etc
In my tests i do this :
i created pipe110 that have 300kbits band
i created rule 110dw with destination 10.110.0.0/16 that use pipe110
i created rule 110up with source 10.110.0.0/16 that use pipe110
It works well, also without using 2 pipes (upload and download)
Now the problem is to have 255 pipes and 255 * 2 rules !!!
Is possible to create a single pipe / rule that dinamically create subpipes for each subnet with 300kb each ?
Or at last resort a way to create via text file or command the long list of pipes / rules for all sunbets
Thx
Nicola
-
Traffic Shaper has API enabled. Turn debug on in browser and add pipes and rules to see what commands are needed. Then you could bash around the world to add the pipes
-
ok thanks, but is there a way to create a dynamic pipe for each subclass ?
Nicola