<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en"><head>
<title></title>
<meta http-equiv="content-type" content="text/html;charset=utf-8"/>
<meta http-equiv="Content-Style-Type" content="text/css"/>
</head>
<body>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
At the risk of the list beating me with a stick, I cannot otherwise find an
answer to what I am doing and whether my config will work.</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
<br />
</span>
</font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
I have an aggregated 20mb (2 x 10mb) which is feeding to a SmoothWall
firewall.  It is working nicely, but I need to kill off some leaching, and the best
option is delay_pools.</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
<br />
</span>
</font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
I've tried a number of different combinations and think I've hit on the proper
configuration, but would like confirmation or a kick in the butt and an answer
to what I'm doing wrong.</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
<br />
</span>
</font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
I have 1 subnet (same netmask) which I've split into three IP pools with
DHCPd static assignments.  The set x.x.3.1 through x.x.3.79 are the "fast"
pool, set x.x.3.80 through x.x.3.120 are the "medium" pool and the x.x.3.200
through x.x.3.250 is for leachers and hackers (dynamic assigned).</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
<br />
</span>
</font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
The config which I hope will work follows.  It seems no one is using the
bandwidth right now (Friday, I guess) and have late results which are
positive from someone in the "fast" pool.  So, does the following acl and
delay pool definitions look OK??  (Thanks in advance; Kevin):</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
<br />
</span>
</font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
<br />
</span>
</font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
acl fast src 192.168.3.1-192.168.3.79/255.255.255.0</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
acl medium src 192.168.3.80-192.168.3.120/255.255.255.0</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
acl slow src 192.168.3.200-192.168.3.250/255.255.255.0</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
acl localhost src 127.0.0.1/255.255.255.255</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
acl all src 0.0.0.0/0.0.0.0</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
<br />
</span>
</font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
acl SSL_ports port 445 443 441 563</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
acl Safe_ports port 80                # http</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
acl Safe_ports port 81                # smoothwall http</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
acl Safe_ports port 21                # ftp </span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
acl Safe_ports port 445 443 441 563      # https, snews</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
acl Safe_ports port 70                            # gopher</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
acl Safe_ports port 210                          # wais  </span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
acl Safe_ports port 1025-65535              # unregistered ports</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
acl Safe_ports port 280                          # http-mgmt</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
acl Safe_ports port 488                          # gss-http </span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
acl Safe_ports port 591                          # filemaker</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
acl Safe_ports port 777                          # multiling http</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
acl CONNECT method CONNECT</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
<br />
</span>
</font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
http_access allow localhost</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
http_access deny !Safe_ports</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
http_access deny CONNECT !SSL_ports</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
http_access allow localnet</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
http_access deny all</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
<br />
</span>
</font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
################################################################################</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
# delay_pools config</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
################################################################################</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
<br />
</span>
</font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
<br />
</span>
</font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
# define 3 class 2 pools</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
delay_pools 3</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
<br />
</span>
</font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
# fast follows the rules of pool 1</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
delay_class 1 2</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
delay_access 1 allow fast</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
delay_access 1 deny all</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
delay_parameters 1 -1/-1 250000/60000000</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
<br />
</span>
</font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
# medium follows the rules of pool 2</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
delay_class 2 2</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
delay_access 2 allow medium</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
delay_access 2 deny all</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
delay_parameters 2 -1/-1 125000/30000000</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
<br />
</span>
</font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
# slow follows the rules of pool 3</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
delay_class 3 2</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
delay_access 3 allow slow</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
delay_access 3 deny all</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
delay_parameters 3 -1/-1 8000/8000</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
<br />
</span>
</font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
# everyone's bucket starts out full</span></font>
</div>
<div align="left">
<font face="Arial" size="2">
<span style=" font-size:10pt">
delay_initial_bucket_level 100</span></font>
</div>
</body>
</html>
Received on Fri Sep 21 2007 - 17:19:16 MDT
This archive was generated by hypermail pre-2.1.9 : Mon Oct 01 2007 - 12:00:02 MDT