Re: [LARTC] squid + tc
> Martin Devera wrote: > >>On Wednesday 22 May 2002 10:43, you wrote: > >> > >>>I've seen patch to squid somewhere. The trick is to encode original > >>>requester information into new request packets. It can go into > >>>"priority" field - it is 32bit and is userspace-settable. > > In Squid 2.5 you have the possibility to set TOS field with acls. > This also works by calling setsockopt on the socket, changing it to > SO_PRIORITY should take very little time the only problem is that you will have to keep acls in sync with your tc setup. But it could be done. Also you can could read fw_mark (probably it can't be done from userspace => patch needed) on incoming connection packets and set it on outgoing. If you then set nf_mark in ipchains/tables and use cls_fw then all should work transparently .. > > If someone is willing to spend $1000 I'll write it ;-) > > I'll do it for a couple sixpacks of Ganther Bier (which releases > enormous coding powers) ;) > If no one volunteers, maybe i'll also do it for free ... some day someone will write it. I need it too so that probably I'll spend some evening on it .. devik ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] Dev traffic info
How I can read bytes counter from network devices (eth ppp) RX TX and then reset this counter Thank you for advance ! (Sorry for my English) --- mailto:[EMAIL PROTECTED] BR Alexey Talikov FORTEK --- ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] squid + tc
Martin Devera wrote: >>On Wednesday 22 May 2002 10:43, you wrote: >> >>>I've seen patch to squid somewhere. The trick is to encode original >>>requester information into new request packets. It can go into >>>"priority" field - it is 32bit and is userspace-settable. In Squid 2.5 you have the possibility to set TOS field with acls. This also works by calling setsockopt on the socket, changing it to SO_PRIORITY should take very little time .. >> >>That sounds exactly like the solution I've been looking for for about 3 >>months! >> >>Devik, could you possibly find out or give me a hint, where you've seen this >>patch? I am really interested in such a thing and I would be very grateful >>for everything someone knows about it. > > > I think you should start search at squid page .. but I really > can't remember :( > >>>I'm currently thinking about doing something like it but have no >>>time ... >> >>Unfortunataly I currently do not have the time to build it for myself as >>well. (I'm also sure that Devik would be way faster ;) > > If someone is willing to spend $1000 I'll write it ;-) I'll do it for a couple sixpacks of Ganther Bier (which releases enormous coding powers) ;) If no one volunteers, maybe i'll also do it for free ... Bye Patrick ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] ACK matching
Hi * [EMAIL PROTECTED] wrote: > Thomas Graf wrote: > >now, cause almost all packets have the ACK bit set this rule > >matches all small packets with no ip options. it could be > >done better with nexthdr to match packets with ip options > >set too. > > Wouldn't it also be necessary to match the packets with ACK set + Data > or aren't they as much important as the packets we are already matching? Read about biggy packing, most ACKs are sent within a data packet to avoid too much overhead, further all data packets in a transaction have the ACK bit set. You might want to look for a more practical explanation about TCP than most books provide. To quote myself: now, cause almost all packets have the ACK bit set this rule matches all small packets with no ip options. I never tested if this rule actually improves anything, if you do please let me know. I think it really depens on what kind of protocols you use and the average use of your line. The match for 5 WORDS ip header len is not really needed because you could match the ACK bit with help of the nexthdr feature w/o taking care of possible ip options. Hope that helps. -- Thomas Graf ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] switch to hb3 in production enviroment
> the linux box uses redhat 7.2 with 2.4.18 kernel patched with htb 2 + bridge >firewalling, i have 60 htb classes (from 64 to 512 kbit)each with sqf leaf and I am >using U32 filter to select source, destination or port.I also have some firewalling >iptables rules. I tested the setup for 15 days and then put it in production >enviroment since it was very urgent for me. I am very happy with the erformance and >it seems to be rock solid. I read something about htb3 and the new aproachso I was >thinking to swithch to htb3. > Daes somebody have some results about htb3 stability in production? > In what shall I expect improvement? Somebody out there did the same thing? You can stay with versio 2 if you are ok. The main difference in htb3 is speed and ability to handle large number of classes. Qualitative parameters should be the same. devik ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] need a help:EDP discipline implementation
look at one simple qdisc (tbf, red) copy and extend to your algorithm ... On Wed, 22 May 2002, [iso-8859-1] alouini khalif wrote: > I 'm working in project that consists in > > implementation of a multimedia extension over IP. > > I set up informations about MPEG Video on the IP > > option fields. > > I want to use this information , in the router side, > > to implemente a EPD (early packet discart) approche. > > The EPD approche consists in the following : > > > > -it is based on the data unit information, a data > > unit > > may be fragmentated into many IP packet (number of > > packet per data unit is varaible) > > - when we reatch a limit in the queue,we will reject > > a > > packet that belongs to a new unit and we accept only > > a > > packet that belong to an old unit (with is already > > enqueued) > > > > this approche, is taked from ATM world, : ip packet > > is > > fragmentated into many cell, then if we have to > > reject > > one cell we must do this for all cells that belong > > to > > the same packet (a unit here is a packet) > > > > my question is how can i used the traffic control > > implemented on linux to do that, i'm working with > > red > > hat 7.2 . > > if you have any idea, or you dindn't understand me > > please send me a mail > > > > thanks in advance > > > ___ > Do You Yahoo!? -- Une adresse @yahoo.fr gratuite et en français ! > Yahoo! Mail : http://fr.mail.yahoo.com > ___ > LARTC mailing list / [EMAIL PROTECTED] > http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/ > > ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] [OT] Ports bandwidth manager
iptraf On Wed, 22 May 2002, Gregory wrote: > Hi, > I search a tool to view bandwidth usage switch tcp ports, like bandwidth usage for >port 80, for FTP port, etc > > I know "bwm" which is a good tool to see bandwidth usage for a device. > > Is it possible to saw it with /proc ?? > > Thx in advance. > -- > Grégory > ___ > LARTC mailing list / [EMAIL PROTECTED] > http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/ > > ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] squid + tc
> On Wednesday 22 May 2002 10:43, you wrote: > > I've seen patch to squid somewhere. The trick is to encode original > > requester information into new request packets. It can go into > > "priority" field - it is 32bit and is userspace-settable. > > That sounds exactly like the solution I've been looking for for about 3 > months! > > Devik, could you possibly find out or give me a hint, where you've seen this > patch? I am really interested in such a thing and I would be very grateful > for everything someone knows about it. I think you should start search at squid page .. but I really can't remember :( > > I'm currently thinking about doing something like it but have no > > time ... > > Unfortunataly I currently do not have the time to build it for myself as > well. (I'm also sure that Devik would be way faster ;) If someone is willing to spend $1000 I'll write it ;-) devik ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] squid + tc
Andreas Lehrbaum wrote: > On Wednesday 22 May 2002 10:43, you wrote: > >>I've seen patch to squid somewhere. The trick is to encode original >>requester information into new request packets. It can go into >>"priority" field - it is 32bit and is userspace-settable. > > > That sounds exactly like the solution I've been looking for for about 3 > months! > > Devik, could you possibly find out or give me a hint, where you've seen this > patch? I am really interested in such a thing and I would be very grateful > for everything someone knows about it. i would be interested too, i thought about writing the same thing for myself as kind of acls, but if it already exists, even better ... bye, patrick ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] not realy a lart question but...
> Just a thought, but tracepath suggests significant asymmetry at that > point in routing. looking at the map, i am going allmost allround the world, though, 70ms across america 70ms across 'the pond' hmmm ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] not realy a lart question but...
Just a thought, but tracepath suggests significant asymmetry at that point in routing. gerry ewan wrote: > > has anyone noticed that traffic though > > so-1-0-0.mp1.Washington1.Level3.net [212.187.128.138] > > seems to have a 70ms latency in and out? I cant find any answers or way to > contact level3 on the web and thought someone here might have a clue? > > ___ > LARTC mailing list / [EMAIL PROTECTED] > http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/ ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] squid + tc
On Wednesday 22 May 2002 10:43, you wrote: > I've seen patch to squid somewhere. The trick is to encode original > requester information into new request packets. It can go into > "priority" field - it is 32bit and is userspace-settable. That sounds exactly like the solution I've been looking for for about 3 months! Devik, could you possibly find out or give me a hint, where you've seen this patch? I am really interested in such a thing and I would be very grateful for everything someone knows about it. > I'm currently thinking about doing something like it but have no > time ... Unfortunataly I currently do not have the time to build it for myself as well. (I'm also sure that Devik would be way faster ;) Thanks, Andreas Lehrbaum ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] not realy a lart question but...
has anyone noticed that traffic though so-1-0-0.mp1.Washington1.Level3.net [212.187.128.138] seems to have a 70ms latency in and out? I cant find any answers or way to contact level3 on the web and thought someone here might have a clue? ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] HTB: suspicious_delay quick patch and explanation
Hi,
seems like if I understand suspicious_delay... and
assertion (delay > 0 && delay < 500) failed messages
reason:
It is not really error. It is ok but my assertions in code
are rather too restrictive. Inner class can delay up to
mdelay (1minute) but I tested it to 5sec.
Attached patch against htb 3.5 should fix it so that you should
no longer see any warnings. It it will be succesfull (no other
bug reports) it will go into 3.6 and we could advance from beta
to release status.
Use patch -p0 to apply it from linux kernel subdirectory.
regards,
devik
--- net/sched/sch_htb.c Tue May 21 21:34:51 2002
+++ net/sched/sch_htb_.cWed May 22 15:28:26 2002
@@ -411,7 +411,7 @@ static void htb_add_to_wait_tree (struct
#ifdef HTB_DEBUG
if (cl->pq_node.rb_color != -1) { BUG_TRAP(0); return; }
HTB_CHCL(cl);
- if ((delay <= 0 || delay >= 500) && net_ratelimit())
+ if ((delay <= 0 || delay > cl->mbuffer) && net_ratelimit())
printk(KERN_ERR "HTB: suspicious delay in wait_tree d=%ld cl=%X
h=%d\n",delay,cl->classid,debug_hint);
#endif
DEVIK_MSTART(9);
[LARTC] need a help:EDP discipline implementation
I 'm working in project that consists in > implementation of a multimedia extension over IP. > I set up informations about MPEG Video on the IP > option fields. > I want to use this information , in the router side, > to implemente a EPD (early packet discart) approche. > The EPD approche consists in the following : > > -it is based on the data unit information, a data > unit > may be fragmentated into many IP packet (number of > packet per data unit is varaible) > - when we reatch a limit in the queue,we will reject > a > packet that belongs to a new unit and we accept only > a > packet that belong to an old unit (with is already > enqueued) > > this approche, is taked from ATM world, : ip packet > is > fragmentated into many cell, then if we have to > reject > one cell we must do this for all cells that belong > to > the same packet (a unit here is a packet) > > my question is how can i used the traffic control > implemented on linux to do that, i'm working with > red > hat 7.2 . > if you have any idea, or you dindn't understand me > please send me a mail > > thanks in advance ___ Do You Yahoo!? -- Une adresse @yahoo.fr gratuite et en français ! Yahoo! Mail : http://fr.mail.yahoo.com ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] [OT] Ports bandwidth manager
Hi, I search a tool to view bandwidth usage switch tcp ports, like bandwidth usage for port 80, for FTP port, etc I know "bwm" which is a good tool to see bandwidth usage for a device. Is it possible to saw it with /proc ?? Thx in advance. -- Grégory ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] Routing from a box behind two NAT'ing routers
Hi, iproute2 has a command that perhaps could help you. ip route add default scope global equalize nexthop dev ppp0 \ nexthop dev ppp1 (actually if you know peer addresses of ppp* use it instead). I've never tried with it but it´s a possibility. You have to have two NIC in your web server; replace ppp0 and ppp1 with eth0 and eth1. Also have a look to Alexey iproute2 because he says that this command equalize load through the 2 NIC. Connect each NIC to each incoming line using 2 different address space. Give a feedback telling us your experiences. Best regards, Leonardo Balliache ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] Devik's accelerometer project ;)
On Wed, May 22, 2002 at 11:43:37AM +0200, Martin Devera wrote: > Hi, > > I sent this during LARTC outage so that I'm resending it. > > It is off-topic but I feel here like at home so that > I'd like to share my experiences with my latest interesting > project. > I created nice HW toy with interesting results so that if > you want break from networking feel free to look at > http://luxik.cdi.cz/~devik/accel/ > > :) > devik Very original. Regards. -- ... ___ ... | /| |\ | | /-| Pedro Larroy Tovar. PiotR | http://omega.resa.es/piotr |-\ | | /--|No MS-Office attachments please. |--\ | o-|--| e-mail: [EMAIL PROTECTED]|--|-o | \-|finger [EMAIL PROTECTED] for public key and info |-/ | |...\|_|/...| ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] Devik's accelerometer project ;)
Hi, I sent this during LARTC outage so that I'm resending it. It is off-topic but I feel here like at home so that I'd like to share my experiences with my latest interesting project. I created nice HW toy with interesting results so that if you want break from networking feel free to look at http://luxik.cdi.cz/~devik/accel/ :) devik ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] need a help
I 'm working in project that consists in implementation of a multimedia extension over IP. I set up informations about MPEG Video on the IP option fields. I want to use this information , in the router side, to implemente a EPD (early packet discart) approche. The EPD approche consists in the following : -it is based on the data unit information, a data unit may be fragmentated into many IP packet (number of packet per data unit is varaible) - when we reatch a limit in the queue,we will reject a packet that belongs to a new unit and we accept only a packet that belong to an old unit (with is already enqueued) this approche, is taked from ATM world, : ip packet is fragmentated into many cell, then if we have to reject one cell we must do this for all cells that belong to the same packet (a unit here is a packet) my question is how can i used the traffic control implemented on linux to do that, i'm working with red hat 7.2 . if you have any idea, or you dindn't understand me please send me a mail thanks in advance ___ Do You Yahoo!? -- Une adresse @yahoo.fr gratuite et en français ! Yahoo! Mail : http://fr.mail.yahoo.com ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] squid + tc
I've seen patch to squid somewhere. The trick is to encode original requester information into new request packets. It can go into "priority" field - it is 32bit and is userspace-settable. I'm currently thinking about doing something like it but have no time ... On Wed, 22 May 2002, Gavin White wrote: > oh well, just wondered if there was a way to get squid to keep the original > IP. > > I'm currently working on a fully automated mac address authentication, > bandwidth control thing for WISPS - it takes a csv from rodopi and modifies > it's iptables and htb rules according to the latest client data. In fact, > we're starting to migrate today. If anyone wants to take a look at the > script, mail me and I'd be glad to send it. > > Gavin > > > - Original Message - > From: "Stef Coene" <[EMAIL PROTECTED]> > To: "Gavin White" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]> > Sent: Wednesday, May 22, 2002 10:27 AM > Subject: Re: [LARTC] squid + tc > > > On Wednesday 22 May 2002 09:00, Gavin White wrote: > > Hello, > > > > I have some htb rules set up to govern download speeds through a linux > box, > > depending on the IP address of the destination machine. > > > > My problem is that when the end users choose to use my squid cache, which > > sits before the htb machine (and has to be there), the htb machine thinks > > the traffic is going to/from the squid box, so nullifying all my > bandwidth > > rules. > All squid traffic will have as source address the squid box, so you can't > know who is doing what. But squid can also do bandwidth management. Take a > look at delay pools, > > Stef > > -- > > [EMAIL PROTECTED] > "Using Linux as bandwidth manager" > http://www.docum.org/ > #lartc @ irc.openprojects.net > > ** > Scanned by MailScan Content-Security and Anti-Virus Software. > Visit http://www.mwti.net for more info on eScan and MailScan. > ** > > > > ** > Scanned by MailScan Content-Security and Anti-Virus Software. > Visit http://www.mwti.net for more info on eScan and MailScan. > ** > > ___ > LARTC mailing list / [EMAIL PROTECTED] > http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/ > > ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] it is just a test plz ignore it
___ Do You Yahoo!? -- Une adresse @yahoo.fr gratuite et en français ! Yahoo! Mail : http://fr.mail.yahoo.com ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] squid + tc
oh well, just wondered if there was a way to get squid to keep the original IP. I'm currently working on a fully automated mac address authentication, bandwidth control thing for WISPS - it takes a csv from rodopi and modifies it's iptables and htb rules according to the latest client data. In fact, we're starting to migrate today. If anyone wants to take a look at the script, mail me and I'd be glad to send it. Gavin - Original Message - From: "Stef Coene" <[EMAIL PROTECTED]> To: "Gavin White" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]> Sent: Wednesday, May 22, 2002 10:27 AM Subject: Re: [LARTC] squid + tc On Wednesday 22 May 2002 09:00, Gavin White wrote: > Hello, > > I have some htb rules set up to govern download speeds through a linux box, > depending on the IP address of the destination machine. > > My problem is that when the end users choose to use my squid cache, which > sits before the htb machine (and has to be there), the htb machine thinks > the traffic is going to/from the squid box, so nullifying all my bandwidth > rules. All squid traffic will have as source address the squid box, so you can't know who is doing what. But squid can also do bandwidth management. Take a look at delay pools, Stef -- [EMAIL PROTECTED] "Using Linux as bandwidth manager" http://www.docum.org/ #lartc @ irc.openprojects.net ** Scanned by MailScan Content-Security and Anti-Virus Software. Visit http://www.mwti.net for more info on eScan and MailScan. ** ** Scanned by MailScan Content-Security and Anti-Virus Software. Visit http://www.mwti.net for more info on eScan and MailScan. ** ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] squid + tc
On Wednesday 22 May 2002 09:00, Gavin White wrote: > Hello, > > I have some htb rules set up to govern download speeds through a linux box, > depending on the IP address of the destination machine. > > My problem is that when the end users choose to use my squid cache, which > sits before the htb machine (and has to be there), the htb machine thinks > the traffic is going to/from the squid box, so nullifying all my bandwidth > rules. All squid traffic will have as source address the squid box, so you can't know who is doing what. But squid can also do bandwidth management. Take a look at delay pools, Stef -- [EMAIL PROTECTED] "Using Linux as bandwidth manager" http://www.docum.org/ #lartc @ irc.openprojects.net ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
