Clarification on Rule order
Started by nicks
Clarification on Rule order 01 November 2013, 08:58 |
Registered: 11 years ago Posts: 13 |
Physical Computer Set-up:
Satellite Modem -> Netgear Firewall/DHCP -> BWM -> (3) physical computers and wifi
BWM set-up:
Transparent bridge configured (my BWM computer does not use ICS)
Ignore Local traffic
Rule set-up and order:
Rule for computer 1 for 50mb/hour usage combined
Rule for computer 2 for 50mb/hour usage combined
Rule for computer 3 for 50mb/hour usage combined
Rule for Tracking MAC addresses at Source for 50mb/day usage combined
The idea is to keep the 3 computers almost always working on an hourly usage and to keep wifi users (iphones, ipads, laptops, etc...) limited to 50mb per day.
I am afraid that my MAC tracking rule will reset my 3 desktop computers hourly. But with this set-up, this should not happen, correct?
Any other suggestions or concerns?
Thanks for any input
-Nick
ps. THANK YOU ANDREW AND SOFTPERFECT for getting the dynamic MAC rules added to the program. HUGE help.
Re: Clarification on Rule order 01 November 2013, 11:50 |
Admin Registered: 19 years ago Posts: 3 598 |
Re: Clarification on Rule order 03 November 2013, 06:54 |
Registered: 11 years ago Posts: 13 |
Thanks for the suggestions and help!
Re: Clarification on Rule order 03 November 2013, 21:13 |
Admin Registered: 19 years ago Posts: 3 598 |
As to the interface selection, when using the bridging you should not use Any interface. This would cause double traffic processing, first as coming in and then as going out via the bridge. This leads to incorrect usage figures and performance degradation.
I suppose we'll have to add warning about this in the BM software itself.
Re: Clarification on Rule order 04 November 2013, 07:17 |
Registered: 11 years ago Posts: 13 |
So which interface should I apply my rules to? My wifi and user computers are after the BWM on the LAN side so I would think I should apply the rules to the LAN interface, right? And my firewall is before the BWM on the WAN side. My firewall rule I just want to be completely open since all traffic passes through it and the Dynamic MAC rule I created killed the firewall after the 75mb threshold was reached.
I am also still having problem with the BWM blocking computers from talking to my firewall/DHCP. Even the BWM itself can not talk to the firewall using the web interface of the firewall. My firewall is 192.168.3.1, my BWM is 192.168.3.2 for the WAN side and 192.168.3.3 for the LAN side.
-n
Re: Clarification on Rule order 04 November 2013, 14:48 |
Admin Registered: 19 years ago Posts: 3 598 |
This will also automatically allow all traffic to the firewall as no bandwidth management will be on the WAN interface.
As to the inability to access the firewall, please check this page under Connectivity Issues.
Re: Clarification on Rule order 06 November 2013, 10:31 |
Registered: 11 years ago Posts: 13 |
Thanks so much for your continued help. I adjusted my rules to look like this, what do you think?
For the second item, not being able to access the firewall from the BWM, your suggestion to look at the Connectivity Issues web page worked perfectly. After I deleted the gateway ip from the LAN side, adjusted Metrics and added the run command, everything works great on the BWM.
I am still having problems with my third item. My wireless users on the LAN side of the BWM can not receive DHCP requests from the firewall which is on the WAN side of the BWM at 192.168.3.1. And users on the LAN side still can not access the local webpage for my firewall (192.168.3.1). So it seems that the metric trick worked for the BWM but not for the everyone else on the LAN side. I could care less about not being able to see the firewall webpage but I need to get DHCP to work desperately. My employees are about to revolt since they can't use their mobile devices.
I do know the router is working correctly and capable of serving DHCP since I tested by removing the BWM from the loop and having direct access from my wifi to the firewall and DHCP worked perfectly.
I am still going through the BWM user guide to find more insight but have had no luck so far.
-nick
Re: Clarification on Rule order 06 November 2013, 11:30 |
Admin Registered: 19 years ago Posts: 3 598 |
Re: Clarification on Rule order 07 November 2013, 05:01 |
Registered: 11 years ago Posts: 13 |
I am going to check the settings on my old version and keep banging my head against the wall.
-Nick
Re: Clarification on Rule order 07 November 2013, 05:47 |
Registered: 11 years ago Posts: 13 |
Re: Clarification on Rule order 07 November 2013, 10:13 |
Admin Registered: 19 years ago Posts: 3 598 |
Re: Clarification on Rule order 08 November 2013, 06:56 |
Registered: 11 years ago Posts: 13 |
It appears my firewall rule is capturing all traffic and my Dynamic MAC rule is not being used at all. Yesterday 1gig of traffic passed through my firewall rule and No traffic passed through my MAC rule.
So how do I adjust my firewall rule or my MAC rules? The reason I created the firewall rule was because the MAC rule was creating a stream for the firewall and only allowing 50mb to pass through it, then shutting down the firewall and blocking all internet traffic. I created the firewall rule to allow it unlimited access to the internet for all users to pass through but it looks like that overruled my MAC rule.
Argghhhh. Almost there. Thanks for all the help Andrew.
-Nick
Re: Clarification on Rule order 08 November 2013, 12:11 |
Admin Registered: 19 years ago Posts: 3 598 |
Re: Clarification on Rule order 09 November 2013, 07:34 |
Registered: 11 years ago Posts: 13 |
Re: Clarification on Rule order 09 November 2013, 12:17 |
Admin Registered: 19 years ago Posts: 3 598 |