View Single Post
  #5   (View Single Post)  
Old 11th November 2009
MarcRiv MarcRiv is offline
New User
 
Join Date: Oct 2009
Posts: 6
Default

I think it finally clicked.

In the case with SMTP I can only work with the destination port because like you said the source port is random.

I really do understand that you can only work with the outbound on the interface. Like if you are downloading something it is coming in the external interface and exits on the internal interface while the return traffic would be sent into the internal interface and out the external interface but it would be riding on the state the was created by the first connection.

Which in my case I want to control the rate at which someone downloads I would create a rule that looks at the return traffic on either the external interface and add it to the correct queue?

So for my example to add smtp to the queue I would do.
Code:
match in on $extif proto tcp from any to any port 25 queue (i_mail, i_ack)
match out on $extif proto tcp from any to any port 25 queue (e_mail, e_ack)
Am I any closer than I was? lol

Last edited by MarcRiv; 11th November 2009 at 10:02 PM. Reason: Horrible spelling errors
Reply With Quote