[pfSense Support] NAT/ROUTE - Internet access from remote location
Hi all, we are currently running pfsense 1.2.3-RC1 on 2 sites: 1 Head Office (HQ) and a remote site. Headquarter has an Internet connection on the WAN Interface and a radio link on the OPT1 interface. The 2 sites are connected using IPsec over the radio link. The only internet access is at the HQ. I`d like to give Internet access to the remote site via the HQ. So far, the 2 sites are connected properly i.e the routes are ok. Using tcpdump on the HQ OPT1 interface, I can see DNS/HTTP requests coming from the remote site but nothing comes back or is forwarded to the WAN interface HQ LAN - Lan subnet WAN - Internet connexion OPT1 - Radio link to remote location Remote site LAN - Lan subnet WAN - Radio link to HQ Is there, on the HQ router, any NAT (outbound ?) settings or specific routes to be added for the packets to be forwarded from the OPT1 interface to the WAN and then to the Internet ? Thanks, Bastien - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
[pfSense Support] Traffic Shapping
Hello, I'd like to set some very specific rules for the traffic shaping and like to know if there is any file I should manually modify to write a QoS script to be run at boot up. The graphical pfsense interace, though very powerful, doesn't allow me to do what I wish with my very low bandwidth (I'm currently working for an NGO in Africa): Bandwidth = 128 kbs: 64 kbs should be reserved for our database application, the remaining bandwidth for internet, mail etc... Thanks for your suggestion, Bastien
RE: [pfSense Support] Traffic Shapping : High priority on particular port
Thanks Chris, The architecture is as follow: One pfsense main router at our Head Office, and some pfsense routers at our remote branches. A VPN is connecting our branches to our Head Office, and many applications are running through it: Among all the traffic, we'd only like to prioritize the traffic on port 5000 on the VPN. I've done it already on Linux using iptables and tc class and was wondering if I could do the same with pfsense using the WebInterface. Regards, Bastien -Message d'origine- De : Chris Buechler [mailto:cbuech...@gmail.com] Envoyé : Monday, June 29, 2009 8:16 PM À : support@pfsense.com Objet : Re: [pfSense Support] Traffic Shapping : High priority on particular port On Mon, Jun 29, 2009 at 1:58 PM, Bastien DARMON wrote: > > > Hello, > > Is there a way, in pfsense, to give the highest priority over the rest of > the traffic to an application running on a particular port? > You can shape this just like anything else, with the caveat that it falls into the group of all traffic between LAN and WAN. Sounds like that's fine for this purpose. Just setup the queues as desired and add a rule to put that traffic into the appropriate queue. - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org --- Orange vous informe que cet e-mail a ete controle par l'anti-virus mail. Aucun virus connu a ce jour par nos services n'a ete detecte. - To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
[pfSense Support] Traffic Shapping : High priority on particular port
Hello, Is there a way, in pfsense, to give the highest priority over the rest of the traffic to an application running on a particular port? A VPN is connecting some branches where an application is running on port 1. This application should have the highest priority over the rest of the traffic running over the VPN. Any suggestion on how to do this? Bastien
