Can’t get the shaper on OPNsense to work.

Started by robert.haugen@gmail.com, November 15, 2025, 06:25:32 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
November 15, 2025, 06:25:32 PM Last Edit: November 15, 2025, 06:28:27 PM by robert.haugen@gmail.com
I want the LAN network to have priority for download traffic.
When the network is not congested, the GUEST network should still have full speed.
However, when both LAN and GUEST are heavily used, LAN should receive significantly higher priority.

I've tried all combinations of Pipes, Queues, and Rules without success.

Reference:
https://docs.opnsense.org/manual/how-tos/shaper_prioritize_using_queues.html

For testing, I'm using two Debian Linux clients — one on LAN and one on GUEST — running the "Speedtest by Ookla" CLI tool.
November 15, 2025, 06:51:45 PM #1 Last Edit: November 15, 2025, 06:55:52 PM by meyergru
You need the pipe first as in the howto, with the total available WAN bandwidth.

Then you need two queues for LAN and GUEST referencing that same pipe and weights to define the relative priorities as in the howto.

Last, you define the LAN and GUEST rules referencing the resprective queue. They both use the WAN interface, apart from that they have for the LAN rule:

interface = WAN
proto = ip
source = any
src-port = any
destination = 192.168.x.0/24 (whatever your LAN network has)
dst-port = any
target = LAN-Queue

and for the GUEST rule:

interface = WAN
proto = ip
source = any
src-port = any
destination = 192.168.y.0/24 (whatever your GUEST network uses)
dst-port = any
target = GUEST-Queue

You probably used the LAN and GUEST interfaces in the rules, that will not work.
Intel N100, 4* I226-V, 2* 82559, 16 GByte, 500 GByte NVME, ZTE F6005

1100 down / 800 up, Bufferbloat A+
November 15, 2025, 11:08:06 PM #2
Thanks.

Using IPv6, I think the client is communicating with the default gateway using its link-local address. The link-local subnet is the same on both GUEST and LAN:

fe80::/64

Could that be the culprit?
Today at 01:01:33 AM #3
Quote from: robert.haugen@gmail.com on November 15, 2025, 06:25:32 PMwant the LAN network to have priority for download traffic.
When the network is not congested, the GUEST network should still have full speed.
However, when both LAN and GUEST are heavily used, LAN should receive significantly higher priority.

Priority in QoS is feature, where a packet of a certain application will leave the router sooner than the packet from any other application.

This by nature is not possible.

IPFW which is the underlying feature used for Shaping, doesn't have a scheduler that allows to set traffic priority or a priority queue. What you can do, is to set weights using a weight based scheduler to allocate a ratio of a BW to a specific application.

 
Regards,
S.
Networking is love. You may hate it, but in the end, you always come back to it.

OPNSense HW
APU2D2 - deceased
N5105 - i226-V | Patriot 2x8G 3200 DDR4 | L 790 512G - VM HA(SOON)
N100   - i226-V | Crucial 16G  4800 DDR5 | S 980 500G - PROD
Print
Go Up Pages1
User actions