Re: [LARTC] Incoming traffic?

2005-10-04 Thread Edward Smith 
Dominik, if you are running a router, the way to do it is to
shape outgoing traffic on your LAN interface. A copy of my script
to do this is at http://www.stardotstar.org/?page_id=63 

EdwardDate: Tue, 04 Oct 2005 11:33:15 +0200From: Dominik Werder 
[EMAIL PROTECTED]Subject: [LARTC] Incoming traffic?To: lartc@mailman.ds9a.nlMessage-ID: 
[EMAIL PROTECTED]Content-Type: text/plain; format=flowed; delsp=yes; charset=utf-8Hi there,a program is downloading large files on a regular basis and has no switchto limit bandwidth.
Is there a way to shape this incoming traffic? Any pointers?My outgoing traffic shaping works perfectly, but this incoming thing givesme a headache..many thanks in advance!Dominik

___
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc

[LARTC] Getting the IMQ target to work.

2005-07-03 Thread Edward Smith 
Sorry to bug the list with this, but I can't get past it.

littlebear ~ # /usr/local/sbin/iptables -A PREROUTING -t mangle -o
eth0 -j IMQ --todev 0
iptables v1.3.1-20050701: Unknown arg `--todev'
Try `iptables -h' or 'iptables --help' for more information.


I've tried every combination of patching and recompiling that I can
come up with, although this is my first time manually applying
patches.  I'm on gentoo (2.6.11-gentoo-r9) which claims to support IMQ
when using the +extensions USE keyword (which I am).  I also hand
patched and compiled iptables which didn't work either.  Can anyone
point me in the right direction or maybe to a step by step
patching/compiling guide?

Thanks,

Edward
___
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc

[LARTC] Current Script

2005-06-13 Thread Edward Smith 
I want to thank the list and Andy Furniss for helping me get started
with TC.  Here is my current script with some additional comments. 
Please note that I can't really endorse anything below, as I'm new at
this.  I can tell you that using the monitor_tc_top.pl script, I can
see traffic going into all these classes and that my users seem very
happy with the results (we are 57 people sharing a 2mbit/512k VSAT
link in Iraq).  Also, all of this code is ultimately stolen from some
online source, I would love to give credit, but I don't keep records
:)  I'll try to fill in some of where I found all of this as well as
compile a list of links on the page listed below.

Ok, pasting my code into this gmail window was getting ugly.  So I
posted my code at:

http://www.stardotstar.org/?page_id=63

In case the script isn't clear, here is my overall idea:

4 kinds of traffic
1.  'Overhead Traffic' of ACKs and SYNs.  Latency is a big problem, so
I gave this a class of its own.
2.  'Interactive Traffic' Telnet, SSH, and since our main goal is to
use this to communicate with family during our deployment, webchat. 
I've tried to get a good method for matching this traffic but nothing
great has happenned.  I have L7 filters installed and will probably
start using them soon.  However, I also need some way to match video
and audio chat which I haven't seen yet.
For now there is an ugly hack which you will see.
3.  Web Traffic.  This is our secondary priority for our network.
4.  All else.

Within each of the above classes (1:10, 1:20, 1:30, 1:100
respectively), I create a class for each IP on my network.  I am using
shorewall, and have all of my IPs listed in /etc/ethers.  There is no
checking of IPs, which would be a good addition to this script.

Feedback is welcome, use anything at your own risk, area not in sight
from tower :)

Edward
___
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc