i'm quite new to altq.

i did such config for fxp0 - local LAN interface:
interface fxp0 bandwidth 100M cbq
class cbq fxp0 root_class NULL priority 0 pbandwidth 100
class cbq fxp0 def_class root_class priority 0 borrow pbandwidth 90 default
 filter fxp0 def_class 0 0 10.0.0.0 netmask 0xff000000 0 0

class cbq fxp0 user1 def_class exactbandwidth 200k red ecn
 filter fxp0 user1 10.255.238.2 0 0 0 0
class cbq fxp0 user2 def_class exactbandwidth 100k red ecn
 filter fxp0 user2 10.255.238.3 0 0 0 0
... same with user3
... etc..


what i want to do is to limit outbound traffic to given speed (like 100 or
200kbps), BUT permit unlimited outbound traffic if source address is
in 10.0.0.0/8 which means traffic from other LAN or from server.

unfortunately second doesn't work. every traffic gets classified to
classes user*, as altqstat shows.

def_class gets no bandwidth.

i know that user-defining filters matches for local traffic too, but i
have no idea to force first filter to do "quick" match - similar to quick
keyword in ipfilter.

any way to do that? or maybe completely different way...

thanks for help