Archive > 15.1 Legacy Series
Trafic shaper - different pipes for multiple VLANs.
Martinezio:
Hi.
Can someone help me to achieve this solution in OPNSense?
Facts:
- OPNSense as main router/firewall installed on VMWare server with two network interfaces: one interface connected to WAN, second to switch as trunk (all vlans allowed);
- one WAN connection (let assume 10Mb, syncro);
- many clients connected via different VLANs (for each vlan is created OPT interface, for example I will use OPT1).
- all devices are connected to switch
- client pays for specified speed of his uplink (ie. 1Mb, synchro).
Goal:
- cut the speed of uplink to this payed by client.
Currently I've done this on m0n0wall using pipes:
- 1 pipe for download, and 1 for upload, both without mask - just set the bandwidth,
- rules are applied by interface - one rule for incomming and one for outgoing - and it works good.
I tried the same solution on OPNSense, but without luck - speed is not limited to pipe, but is using full speed of WAN.
What I'm doing wrong and how can I achieve the same behaviour as in m0n0?
Please, find attached screens with my setup in OPNSense.
Thanks in advance!
remonboonstra:
Hi,
Do you have Captive Portal enabled? If so, try disabling it first. There seem to be issues with the combination of these two.
I would also try a single rule;
- IF1: WAN
- IF2: LAN
- Pipe: 1Mbit (target: src)
And try if it limits to 1Mbit.
Good luck - it also took me a while to figure out directions and things like that.
Remon
Martinezio:
Thx remonboonstra for Your hints...
I give it a try...
I admit, I tried to enable captive portal, but I had some issues with enabling it (and with deleting profiles - got some errors)... I try to remove all settings and start over (this is my testing environment, so I can destroy it ;)).
BTW: is it possible to install VMWare Tools on OPNSense? ;) Perl is already installed, but system is lack of "compat6x_amd64" package from FreeBSD ports.
EDIT:
- deleted all captive portal profiles,
- created single rule with direction set to "both"
- edited pipes to set mask for "destination" and "source"
But still not working... I think there is something broken in pipes implementation :(
franco:
From the console:
# pkg install open-vm-tools-nox11
Martinezio:
Franco: thx a lot! This is what I need ;)
Now I can focus on pipes...
Navigation
[0] Message Index
[#] Next page
Go to full version