[altq 204] ALTQ and IPFILTER

["aLan @ FIL.NET" <filnet@fil.net>]

I am just now learning about ALTQ and IPFILTER (and
FreeBSD 3.3!).

I'm on an island in the Philippines, and I need a way to
simple firewall against outside attacks and for inside
redirection of port 80 to a transparent proxy - IPFILTER?

I also need a way to control the bandwidth.  I have a
128Kbps on a microwave station to another Island.  I want to
divide it into 2K chucks, but dummynet limits the max.
bandwidth.

Instead, I want to assign a minimum bandwidth to
each IP Address, and let them have the full bandwidth if no
one else is using it (like the netscreen that I cannot
afford!). - ALTQ?

The bandwidth I am trying to manage is mainly in the
incoming side, so do I want RIO?  Or just CBQ and RED?  Any
advice? 

Can I put both of these (IPFILTER AND ALTQ) in one box with
two nics between my router and the hub?

Can you give me a shove in the right direction on how to
configure ALTQ?  i.e. What (where) are the most basic docs I
need to read for what I want to do?

Has anyone written a FreeBSD port for this to make it a bit
easier for us who are new?

If I can't put IPFILTER and ALTQ in one box, can I put them
in two in series.  If yes, which should I put closer to the
router?  Or is there a better way to do what I want to do?

I hope someone can help me with this...

aLan

PS will the fact that all port 80 requests are redirected to
the proxy make a difference - I want them to have free
access to the proxy, but limit the proxy to 2K per chuck
(some IP Address will get 1,2,3,or4 chunks - 2, 4, 6, or 8
Kbps).  The 2K is the minimum to the out side.

HELP PLEASE?