This was my experiance with the wondershaper as well. Are you using the
HTB or the older qdisc? Also I did end up using 200Kbps as my rate cap,
subjested is %80 of your bandwidth.

Well I *was* using htb and then I tried qdisc in conjunction with
shorewall (perfect piece of software for iptable allergics) which
paradoxally *seems* to work somewhat better.

Pings are still at 2000ms when downloading, but it's a lot more
tolerable than 6000+ms, so the effect is visible.

the more reason why ECN needs to be avalible every where, currently linux
qdiscs don't support being an ECN provider. ECN is also vary unusable as
sites like Wellsfargo and about half a million other sites will ignore

I have _no_ idea what ECN is. Never heard of it :-)

BTW, can you have a tip for my asterisk traffic? You know, a magic line
I could insert that would give IAX priority above everything else? I have
very little idea of what's in the script means :-(

IAX is easy, it's UDP and it runs on 4569.

Ideally I need the QOS to be able to guarantee 16kbps (12 for ILBC codec
and 4 for bits and bobs) at least for IAX - both upstream and downstream -
and if possible leaving bandwith available when it isn't used.

How would you do that?



# clear everything before we start shaping
tc qdisc del dev $DEV root    2> /dev/null > /dev/null
tc qdisc del dev $DEV ingress 2> /dev/null > /dev/null

# please read the README before filling out these values 
# Set the following values to somewhat less than your actual download
# and uplink speed. In kilobits. Also set the device that is to be shaped.

# low priority OUTGOING traffic - you can leave this blank if you want
# low priority source netmasks

# low priority destination netmasks

# low priority source ports

# low priority destination ports

# Now remove the following two lines :-)

#echo Please read the documentation in 'README' first :-\)


#if [ "$1" = "status" ]
#       tc -s qdisc ls dev $DEV
#       tc -s class ls dev $DEV
#       exit

# clean existing down- and uplink qdiscs, hide errors
tc qdisc del dev $DEV root    2> /dev/null > /dev/null
tc qdisc del dev $DEV ingress 2> /dev/null > /dev/null

#if [ "$1" = "stop" ] 
#       exit

###### uplink

# install root CBQ

tc qdisc add dev $DEV root handle 1: cbq avpkt 1000 bandwidth 10mbit 

# shape everything at $UPLINK speed - this prevents huge queues in your
# DSL modem which destroy latency:
# main class

tc class add dev $DEV parent 1: classid 1:1 cbq rate ${UPLINK}kbit \
allot 1500 prio 5 bounded isolated 

# high prio class 1:10:

tc class add dev $DEV parent 1:1 classid 1:10 cbq rate ${UPLINK}kbit \
   allot 1600 prio 1 avpkt 1000

# bulk and default class 1:20 - gets slightly less traffic, 
#  and a lower priority:

tc class add dev $DEV parent 1:1 classid 1:20 cbq rate $((9*$UPLINK/10))kbit \
   allot 1600 prio 2 avpkt 1000

# 'traffic we hate'

tc class add dev $DEV parent 1:1 classid 1:30 cbq rate $((8*$UPLINK/10))kbit \
   allot 1600 prio 2 avpkt 1000

# all get Stochastic Fairness:
tc qdisc add dev $DEV parent 1:10 handle 10: sfq perturb 10
tc qdisc add dev $DEV parent 1:20 handle 20: sfq perturb 10
tc qdisc add dev $DEV parent 1:30 handle 30: sfq perturb 10

# start filters
# TOS Minimum Delay (ssh, NOT scp) in 1:10:
tc filter add dev $DEV parent 1:0 protocol ip prio 10 u32 \
      match ip tos 0x10 0xff  flowid 1:10

# ICMP (ip protocol 1) in the interactive class 1:10 so we 
# can do measurements & impress our friends:
tc filter add dev $DEV parent 1:0 protocol ip prio 11 u32 \
        match ip protocol 1 0xff flowid 1:10

# [EMAIL PROTECTED] provided a patch for the MLDonkey system
# The MLDonkey uses small UDP packets for source propogation
# which floods the wondershaper out.
tc filter add dev $DEV parent 1:0 protocol ip prio 10 u32 \
   match ip protocol 17 0xff \
   match ip sport 4666 0xffff \
   flowid 1:30 

# prioritize small packets (<64 bytes)

tc filter add dev $DEV parent 1: protocol ip prio 12 u32 \
   match ip protocol 6 0xff \
   match u8 0x05 0x0f at 0 \
   match u16 0x0000 0xffc0 at 2 \
   flowid 1:10

# some traffic however suffers a worse fate
        tc filter add dev $DEV parent 1: protocol ip prio 14 u32 \
           match ip dport $a 0xffff flowid 1:30

        tc filter add dev $DEV parent 1: protocol ip prio 15 u32 \
           match ip sport $a 0xffff flowid 1:30

        tc filter add dev $DEV parent 1: protocol ip prio 16 u32 \
           match ip src $a flowid 1:30

        tc filter add dev $DEV parent 1: protocol ip prio 17 u32 \
           match ip dst $a flowid 1:30

# rest is 'non-interactive' ie 'bulk' and ends up in 1:20

tc filter add dev $DEV parent 1: protocol ip prio 18 u32 \
   match ip dst flowid 1:20

########## downlink #############
# slow downloads down to somewhat less than the real speed  to prevent 
# queuing at our ISP. Tune to see how high you can set it.
# ISPs tend to have *huge* queues to make sure big downloads are fast
# attach ingress policer:

tc qdisc add dev $DEV handle ffff: ingress

# filter *everything* to it (, drop everything that's
# coming in too fast:

tc filter add dev $DEV parent ffff: protocol ip prio 50 u32 match ip src \ police rate ${DOWNLINK}kbit burst 10k drop flowid :1

