Messages

[did]

i dont see anything in relation to adding the second interface in the rules section

You did configure OPT3 in your shaper.

but bit a weird behavior now i run a buffer bloat test i get 20mbits/s while my steam download is getting 20mbytes/s
i have the pipe set for 20mbits and yes i have steam set to display bytes instead of bits

As I said: the shaper handles one stream only. If applications choose to use several of them, you are out of luck. When I limit my downstream to, say, 100 Mbit/s and try testing with Speedtest and multiple connections, I still get >300 MBit/s downstream. That is at least my experience.

What my shaper settings are good for, is handling bufferbloat. IDK about "fairness". The docs give multiple different configurations for specific purposes, but since you did not succeed with that (now we know that was probably for a different reason), I showed you my config aimed at reducing bufferbloat.

in other words im at square one, what im trying to do is fairness and deprioritize high speed downloads then i discover after reading this
( https://www.reddit.com/r/PFSENSE/comments/y833jl/i_want_to_limit_steam_to_50_mbps/ )
apparently steam just blows past whatever you set since it treats the term "megabit" as "megabyte"

Again: Your LAN is LAN - you should not apply any rules, configurations a.s.o. on bridge member ports.

Think of them as ports on a switch. If you want to differentiate between things that are on your LAN, use their IPs or MACs on rules, not the bridge ports.

To not get confused, it would probably be best to not list those low-level member interfaces at all by removing their uppercase names (like OPT3) from the assignments. The bridge itself is defined on the physical devices names.

This is point 2 here, for a reason.

i dont see anything in relation to adding the second interface in the rules section

but bit a weird behavior now i run a buffer bloat test i get 20mbits/s while my steam download is getting 20mbytes/s
i have the pipe set for 20mbits and yes i have steam set to display bytes instead of bits

That correlates only slightly with your topology image. If all the LAN ports share the same subnet and are bridged, you should use the bridge ports for all firewall rules and set up the mandatory bridging tuneables.

There should be no rules set for the bridge member interfaces.

thanks for the help! when i started out on this everything i found didnt directly touched on this.. i was quite confused on how that was used

now its working, i take it now all i gotta do to isolate which port its happening on would be to change "any" to the specific ip address... than duplicate for each port or is that unnecessary for what im tryin to do

thanks guys for time realy appreciate it
heres how i have the ports configured

Are you trying to limit speed between devices that are connected to the same switch?

im not trying to limit speed between devices on the switch... essentailly trying to load balance and prioritize gaming and video traffic for example  if opt4 is playing a game while also has a youtube video going then opt3 starts downloading a steam game i dont want his download to hog all bandwidth resulting in ping issues & packet loss or kicked from server and video buffering but if the network is rather quiet sure let him hit the limit

Those two rules 3 and 4 attached on OPT3, what direction you have them set?

Regards,
S.

heres an image of the current config

( https://imgur.com/ndvIAxd )

Those two rules 3 and 4 attached on OPT3, what direction you have them set?

Regards,
S.

would i have to invert que i cloned them for my global limit to save time

ya folowed that gues what still blowing right past the set limit

Just follow the instructions from the documentation.

Use the "WAN" interface and your LAN subnet as parameters. Keep the limits a little below your actual limits. Make sure you use the correct values for the up/down pipe/queues and rules like depicted in the instructions.

ok from the looks of it i cant just set the rule for the interface but have ot use the ip of my device???

essentially what im trying to do is when someone starts an uncapped steam download i want to see it get dynammically throttle when others on the network are watching youtube and or playing multi player games making sure theres no packet loss do to resends or clogging

is this even possible with bridged lan port am i gonna have to seperate all ports into there own dhcp pool???

You are not really trying to shape traffic on the SAME interface, are you? Sure looks like it since you only have OPT3 enabled.

In case I am right, read this, point 1.

doing it this way so i dont mess with the rest of the house confirming before deploying

out of all my search's this step was not among them
        "Select the tunable net.link.bridge.pfil_bridge and set the value to 1 & restart"

is it possible to live change the speed during a download or do i need to reset something or restart to apply

ya i still cant figure this out what am i doing wrong

You are not really trying to shape traffic on the SAME interface, are you? Sure looks like it since you only have OPT3 enabled.

In case I am right, read this, point 1.

doing it this way so i dont mess with the rest of the house confirming before deploying

out of all my search's this step was not among them
        "Select the tunable net.link.bridge.pfil_bridge and set the value to 1 & restart"

is it possible to live change the speed during a download or do i need to reset something or restart to apply

ok now on the latest version but repeated what i did before i gave up and still not doing a thing
image provided

been about 10 minutes

It most likely didn't work due to possible wrong configuration of the rules for the Shaper.

In the Rule configuration of the Shaper you can assign 2 interfaces, if you do that, the matching will be based to/from Interface 1  <>  to /from Interface 2. But dont use that mostly you just need to specify single interface which will match the traffic hitting on this specific Interface.

Also dont forget there is a relationship between Pipe(scheduler), Queue and Rule:

Rule > Queue > Pipe

You need to have proper rules assigned to proper Queues and proper Queues to proper Pipes. And Rules specified for the Queues needs to be set in proper Direction IN or OUT.

Regards,
S.

thanks for the info buut this is me atm lol

***GOT REQUEST TO UPGRADE***
Currently running OPNsense 24.1.10_8 at Tue Oct 29 14:37:48 UTC 2024
Fetching packages-24.7-amd64.tar: ...