Need advice regarding traffic shaping solution
Submitted by mgai7755 on Sat, 07/04/2009 - 2:42am.
Hi,
My trixbox is finally 100% up and running and ready to be put in production environment.
However, there is a very annoying glitch : since I have a shared ADSL connection for internet and voip traffic, I need to handle the traffic priorities so that voip has always priority over any other traffic. Currently, simply sending a big mail makes any communication impossible.
I don't own any traffic shaping-able router and buying one is not an option. So I decided to route all my internet traffic through the asterisk box. This is quite easy using a mix op iptables2 and a DHCP server.
Now, regarding the traffic shaping option, I'm looking desperately for an easy to configure solution. I know there are ready to use embedded traffic shaping commands into linux, but they are a real pain to configure.
I'd like to find some ready to use script or even a GUI which would run on the asterisk machine.
Can anybody help with that ? I already tried some old and not maintained solutions (htb-gen, tcss, scripts, wondershaper) without much success. Moreover, all those projects looks dead.
I had a look at m0n0wall, but it doesn't work on Centos and seems to run only on a livecd, not on an existing machine.
Any idea or success story ?
Thanks
Matthieu
 
Have you looked at
Sat, 07/04/2009 - 12:19pm
firewall/qos on production trixbox
Mon, 07/06/2009 - 6:34am
You want to put a 3rd party firewall on trixbox? If this is for a real business I wouldn't. If the FW gets hacked so does your trixbox, and vice-versa.
M0n0wall is not just a LIVECD. It does install on it's own computer-Just not the computer running trixbox. It needs its own box.
PFSense does QOS and does it well, and like M0n0wall it can run on liveCD or ITS OWN computer.
 
I'd like to suggest PFsense
Mon, 07/06/2009 - 8:40am
I'd like to suggest PFsense (same as mrbostn). It's a free firewall operating system which can be installed on most hardware. Simply purchase a new (or old system), pop pfsense on, and configure your QoS, etc. It works really well, is very stable, and is cheap. I'd highly recommend it :)
 
How about just using DD-WRT
Tue, 07/07/2009 - 1:52am
How about just using DD-WRT or Tomato with an ASUS WL-520gu? You can find that router on sale on Newegg for around $40 bucks and is cheaper and more reliable to operate. It's what I do for basic shaping in most cases.
It's nowhere as full featured as pfSense, but it'll do your egress traffic shaping. Keep in mind that ADSL providers don't respect your QoS and shaping efforts, so it's all just in the mix once it hits the outside world.
Josh
 
Member Since:
2009-04-17