[LARTC] overlimits value in statistics
Good Day! I was interested with a question what exactly is considered in overlimits parameter to count of statistics. I thought, that this parameter should specify number of the packages which have exceeded valid boundary. But, for example statistics on one of queues: class cbq 20:12 parent 20:10 leaf 8015: rate 128Kbit (bounded) prio 5 Sent 23171746615 bytes 43153460 pkts (dropped 81179, overlimits 641814686) backlog 1p Queue has passed 43153460 packets, but has exceeded a valid level of 641814686 packets. What it? Errors? -- Igor ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] imq0 not being detected
On Sunday, 08 September 2002, at 09:37:18 +1200, mdew wrote: > HTB init, kernel part version 3.6 > HTB: need tc/htb version 3 (minor is 6), you have 10 > As the messages say, it seems like a version mismatch between the kernel an userspace (tc) side of HTB. Get HTB3 from: http://luxik.cdi.cz/~devik/qos/htb/v3/htb3.6-020525.tgz The tarball includes two patches, one for the kernel and the other for tc (as well as a precompiled "tc" binary"): -rw-rw-r-- devik/devik 53438 2002-05-25 11:15:45 htb3.6_2.4.17.diff -rw-rw-r-- devik/devik9302 2002-05-25 11:11:58 htb3.6_tc.diff -rwxrwxr-x devik/devik 101992 2002-05-12 22:26:53 tc Kernel versions 2.4.20-pre1 and up include HTB3 by default. -- Jose Luis Domingo Lopez Linux Registered User #189436 Debian Linux Woody (Linux 2.4.19-pre6aa1) ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] imq0 not being detected
ip_conntrack (992 buckets, 7936 max) imq driver loaded. HTB init, kernel part version 3.6 HTB: need tc/htb version 3 (minor is 6), you have 1 HTB init, kernel part version 3.6 HTB: need tc/htb version 3 (minor is 6), you have 1 HTB init, kernel part version 3.6 HTB: need tc/htb version 3 (minor is 6), you have 1 HTB init, kernel part version 3.6 HTB: need tc/htb version 3 (minor is 6), you have 10 from dmesg.. what version of htb is needed? Im using 3.6 (well i think) On Sun, 2002-09-08 at 01:53, mdew wrote: > mdew:~# tc qdisc add dev imq0 handle 1: root htb default 12 r2q 1 > Cannot find device "imq0" > mdew:~# lsmod > Module Size Used byNot tainted > ipt_REDIRECT 728 0 (autoclean) > ipt_MARK 728 2 (autoclean) > iptable_mangle 2100 1 (autoclean) > ipt_REJECT 2712 4 (autoclean) > iptable_filter 1672 1 (autoclean) > ip_nat_ftp 3760 0 (unused) > ip_conntrack_ftp3616 0 [ip_nat_ftp] > ip_nat_irc 3024 0 (unused) > iptable_nat19608 3 [ipt_REDIRECT ip_nat_ftp ip_nat_irc] > ip_conntrack_irc2720 0 [ip_nat_irc] > ip_conntrack 21372 3 [ipt_REDIRECT ip_nat_ftp > ip_conntrack_ftp ip_nat rc iptable_nat ip_conntrack_irc] > keybdev 1632 0 (unused) > 8139too12904 2 > mdew:~# modprobe ipt_IMQ > mdew:~# tc qdisc add dev imq0 handle 1: root htb default 12 r2q 1 > Cannot find device "imq0" > mdew:~# lsmod > Module Size Used byNot tainted > ipt_IMQ 760 0 (unused) > ipt_REDIRECT 728 0 (autoclean) > ipt_MARK 728 2 (autoclean) > iptable_mangle 2100 1 (autoclean) > ipt_REJECT 2712 4 (autoclean) > iptable_filter 1672 1 (autoclean) > ip_nat_ftp 3760 0 (unused) > ip_conntrack_ftp3616 0 [ip_nat_ftp] > ip_nat_irc 3024 0 (unused) > iptable_nat19608 3 [ipt_REDIRECT ip_nat_ftp ip_nat_irc] > ip_conntrack_irc2720 0 [ip_nat_irc] > ip_conntrack 21372 3 [ipt_REDIRECT ip_nat_ftp > ip_conntrack_ftp ip_nat rc iptable_nat ip_conntrack_irc] > keybdev 1632 0 (unused) > 8139too12904 2 > mdew:~# modprobe imq > mdew:~# tc qdisc add dev imq0 handle 1: root htb default 12 r2q 1 > RTNETLINK answers: Invalid argument > > (imq/htb kernel and iptables patch applied) > > > > signature.asc Description: This is a digitally signed message part
[LARTC] imq0 not being detected
mdew:~# tc qdisc add dev imq0 handle 1: root htb default 12 r2q 1 Cannot find device "imq0" mdew:~# lsmod Module Size Used byNot tainted ipt_REDIRECT 728 0 (autoclean) ipt_MARK 728 2 (autoclean) iptable_mangle 2100 1 (autoclean) ipt_REJECT 2712 4 (autoclean) iptable_filter 1672 1 (autoclean) ip_nat_ftp 3760 0 (unused) ip_conntrack_ftp3616 0 [ip_nat_ftp] ip_nat_irc 3024 0 (unused) iptable_nat19608 3 [ipt_REDIRECT ip_nat_ftp ip_nat_irc] ip_conntrack_irc2720 0 [ip_nat_irc] ip_conntrack 21372 3 [ipt_REDIRECT ip_nat_ftp ip_conntrack_ftp ip_nat rc iptable_nat ip_conntrack_irc] keybdev 1632 0 (unused) 8139too12904 2 mdew:~# modprobe ipt_IMQ mdew:~# tc qdisc add dev imq0 handle 1: root htb default 12 r2q 1 Cannot find device "imq0" mdew:~# lsmod Module Size Used byNot tainted ipt_IMQ 760 0 (unused) ipt_REDIRECT 728 0 (autoclean) ipt_MARK 728 2 (autoclean) iptable_mangle 2100 1 (autoclean) ipt_REJECT 2712 4 (autoclean) iptable_filter 1672 1 (autoclean) ip_nat_ftp 3760 0 (unused) ip_conntrack_ftp3616 0 [ip_nat_ftp] ip_nat_irc 3024 0 (unused) iptable_nat19608 3 [ipt_REDIRECT ip_nat_ftp ip_nat_irc] ip_conntrack_irc2720 0 [ip_nat_irc] ip_conntrack 21372 3 [ipt_REDIRECT ip_nat_ftp ip_conntrack_ftp ip_nat rc iptable_nat ip_conntrack_irc] keybdev 1632 0 (unused) 8139too12904 2 mdew:~# modprobe imq mdew:~# tc qdisc add dev imq0 handle 1: root htb default 12 r2q 1 RTNETLINK answers: Invalid argument (imq/htb kernel and iptables patch applied) signature.asc Description: This is a digitally signed message part
iptables tutorial moved (was Re: [LARTC] Requset regarding packetmarking.)
Sorry to nitpick, but the tutorial actually moved some time ago. There was simply too much troubles with hosting, so I finally got a domain of my own (frozentux.net), and the tutorial is available at http://iptables-tutorial.frozentux.net, hosted by haringstad.com which looks really really good so far. Of course, if they would go down, i will always be able to move the DNS to somewhere else in the future instead... Anyways, just to let everyone know. I got some other things under development as well right now, hence the iptables stuff is pretty much at a "featurefreeze". Have a nice day! Oskar Andreasson http://iptables-tutorial.haringstad.com http://people.unix-fu.org/andreasson/ mailto:[EMAIL PROTECTED] On Fri, 6 Sep 2002, Jose Luis Domingo Lopez wrote: > On Thursday, 05 September 2002, at 16:57:53 -, > anish_46628 wrote: > > > 3. Traffic going out from PC2 and generated by PC2 itself should > > have different differnt mark so that the traffic can be filtered > > based on the mark. > > > With linux kernel 2.4.x, packets go through different sets of rules when > "traversing" the box. A packet in transit will enter PREROUTING, pass on > to FORWARD and finally to POSTROUTING just before being queued to be > sent out on the physical interface. On the other hand, locally generated > packets go first to OUTPUT and afterwards to POSTROUTING. Compare this > to kernels 2.2.x when an in-transit packet would be seen at input, forward > and output. > > There is an _excelent_ reference on iptables you should check to get the > details of what you can do and how: > http://people.unix-fu.org/andreasson/iptables-tutorial/iptables-tutorial.html > > ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] htb/iptables: incoming vs. outgoing shaping?
> But does this really work? I also notices somewhere that you just can shape > input traffic, and for output you need a special IMQ target for iptables, > why? And why doesn't it work in that way? it' the other way around. You can only shape outgoing traffic. You shape traffic by influencing the queue where the packets wait to be sended. For incoming packets, there is no queue, so you can't shape incoming traffic. But, there is a IMQ device. You can put all incoming packets in this virtual device and this device has a queue. So you can shape incoming traffic. But this can/will introduce extra delays. There is also a ingress qdisc. This qdisc contains no queue, but you can attach filter to it. And you can use policers on this filter. A policer is sort of shaper on a filter : it will only match the packets at a certain rate. So you can match packets at a certain rate and throttle incoming traffic. Howerver, this is a one-level setup so you can't create a hierarchical setup like you can with htb/cbq. You never provided a ceil parameter when you created the classes. So the class will never borrow unused bandwidth from each other. And to be able to shape the traffic, you have to shape at 250 kbit or so. So YOU are the bottleneck and not your router/modem. You will loose some bandwidth, but you will be able the shape it. So if shaping is not working, try to lower the total bandwidth you send/receive. I suggest reading some docs : lartc.org in general and I have some more info about shaping on docum.org. > Furthermore, is this right how I mark the outgoing traffic? should this be > done in POSTROUTING, or even somewhere else? It's that we've > PREROUTING,INPUT, FORWARD,OUTPUT and POSTROUTING have in table mangle. It depends if the traffic is generated locally or forwarded. Stef -- [EMAIL PROTECTED] "Using Linux as bandwidth manager" http://www.docum.org/ #lartc @ irc.oftc.net ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/