All Topics
All Topics
Technology
Technology
Design
Design
Programming
Programming
Science
Science
News
News
Gaming
Gaming
Entertainment
Entertainment
Business
Business
Finance
Finance
Sports
Sports
Health
Health
Food
Food
Travel
Travel
Art
Art
Music
Music
Books
Books
Education
Education
Politics
Politics
Personal
Personal
No algorithm. No AI slop. No ads. Just RSS. Pro-human. Indie writers. Real journalism. Open web. Chronological. Hand toasted.

OpenBSD PF Packet Filter Overcomes 4.29 Gbps Bandwidth Limitation for HFSC Traffic Shaping

By

defrost

2mo ago· 2 min readenNews
Bagel score 80 of 100
80/100
Golden Brown
Bagelometer

If you only eat one bagel today, this is the bagel.

Score80TypenewsSentimentpositive

Summary

OpenBSD's PF packet filter has overcome a significant technical limitation where HFSC traffic shaping queues were previously capped at approximately 4.29 Gbps due to a 32-bit limitation in the service curve structure. This limitation became problematic as 10G, 25G, and 100G network interfaces became commonplace. The article discusses how OpenBSD developers have made progress in unlocking the kernel for SMP and adding drivers for high-speed network cards, making this bandwidth limitation a critical issue to address for modern networking needs.

Key quotes

· 3 pulled
OpenBSD's PF packet filter has long supported HFSC traffic shaping with the queue rules in pf.conf(5).
However, an internal 32-bit limitation in the HFSC service curve structure (struct hfsc_sc) meant that bandwidth values were silently capped at approximately 4.29 Gbps.
With 10G, 25G, and 100G network interfaces now commonplace, OpenBSD devs making huge progress unlocking the kernel for SMP, and adding drivers for cards supporting some of these speeds, this limitation st...
Snippet from the RSS feed
Contributed by Peter N. M. Hansteen on 2026-03-19 from the queueing for Terabitia dept.

You might also wanna read

IPv8: An Alternative IPv4 Successor with Backward Compatibility and Integrated Network Management

This article introduces IPv8, an alternative successor to IPv4 that differs from IPv6 by focusing on integrated network management and singl

openipv8.org·17d ago

Cloudflare fixes CUBIC congestion control bug in QUIC implementation that permanently pinned performance at minimum

Cloudflare engineers discovered and fixed a bug in the CUBIC congestion control algorithm (RFC 9438) used in their QUIC implementation (quic

blog.cloudflare.com·19d ago

Aether: Open-Source ISP Orchestration Lab for Network Testing

Aether is an open-source ISP orchestration lab that provides a demo environment for testing broadband network infrastructure. The lab includ

aether.saphal.me·2mo ago

Distributed BNG Architecture Using eBPF/XDP for ISP Edge Infrastructure

The article presents an innovative approach to ISP infrastructure by developing an open-source, eBPF-accelerated Broadband Network Gateway (

markgascoyne.co.uk·4mo ago

OpenBSD pf Firewall Patch Proposes Making af-to IPv4/IPv6 Translation Less Magical

The article discusses a proposed patch for OpenBSD's pf firewall to make the af-to option less 'magical' and more explicit. The af-to option

undeadly.org·4mo ago

Netflix engineer's open-source tool cuts AI token usage by up to 90%

Netflix senior engineer Tejas Chopra created software called "Project Headroom" that prunes redundant tokens from AI agent instructions befo

theregister.com·1h ago