Re: [LARTC] routing query
Hello Payal, Ur method is having problem. What happens is that u have defined that all ur default traffic can pass thru any of the network cards hence it is not a case in which if a link goes down some users will get net or will not get net. Therefeore in ur case if either link is down then also ur whole office will have access to net. I had a same configuration mith my computer. I will like to further ask that in this kind of system how do i start balancing traffic since its not taking place. I am new to advanced routing and the manual at this site has confused me a bit. So please if someone could suggest how to start it will be a gr8 pleasure. I have a server with two ethernet cards and it throws dhcp. I want to create different categories of users like some with 128kb access some with 64 and some with 32 . regards manish On Thursday 04 September 2003 10:14, [EMAIL PROTECTED] wrote: Send LARTC mailing list submissions to [EMAIL PROTECTED] To subscribe or unsubscribe via the World Wide Web, visit http://mailman.ds9a.nl/mailman/listinfo/lartc or, via email, send a message with subject or body 'help' to [EMAIL PROTECTED] You can reach the person managing the list at [EMAIL PROTECTED] When replying, please edit your Subject line so it is more specific than Re: Contents of LARTC digest... Today's Topics: 1. Re: Problem while using HTB bandwidth limitation (Nimit Gupta) 2. IMQ and 2.6 kernel (Remus) 3. filtering on destination MAC address (r) 4. (no subject) (Randolph Carter) 5. routing query (Payal Rathod) --__--__-- Message: 1 Date: Wed, 03 Sep 2003 10:29:49 +0530 From: Nimit Gupta [EMAIL PROTECTED] Organization: Deeproot To: Stef Coene [EMAIL PROTECTED] Cc: Martin A. Brown [EMAIL PROTECTED], [EMAIL PROTECTED] Subject: Re: [LARTC] Problem while using HTB bandwidth limitation Stef Coene wrote: On Tuesday 02 September 2003 07:39, Nimit Gupta wrote: Hello, Thanks a lot Martin Stef for clarifying my doubts. Your detailed explaination was quiet helpful in making the things clear. I agree that if I give 24Kbit for each leaf class they will get it without confirming about the total bandwidth available with the parent but why does it allow him to reach upto 48Kbit even when ceiling is 24Kbit? Is this his for a short term, like a burst? Yeah its for a short period but it keeps happening, I mean it will reach to 48Kbit and then after few sec it will stablize at 24Kbit then again it will reach to 48 and this repeats. can you explain how to calculate burst rates for better control and accuracy? In order for you to control latency and bandwidth use, you must ensure that you are the slowest point. Annoyingly, the only successful way to identify exactly what speed to use as a bandwidth cap is experimentation. A good general suggestion is to lop off a couple of kbit and try capping your bandwidth exactly as Stef suggests. Try using 188kbit, and see if your apparent control increases. Is there a ratio between the total available bandwidth and the amount you restrict it to or you can just arbitarily reduce by 5-7 Kbit. It should be quite accurate. I tested it for different rates / ceils and each time the results where allmost perfect. So I want to know what ratio it is as you said for 192Kbit make 188Kbit thats equivalent to 2 percent, is this the way. One more thing, Is there something like isolated(as in cbq) in htb, that is irrespective of others demand the bandwidth allocated to someone as isolated does not get affected. Is there an irc channel for lartc discussions? with regards, Nimit --__--__-- Message: 2 From: Remus [EMAIL PROTECTED] To: [EMAIL PROTECTED] Date: Wed, 3 Sep 2003 09:09:27 +0100 Subject: [LARTC] IMQ and 2.6 kernel Hi folks, I would like to know if IMQ (http://trash.net/~kaber/imq/) is going to be ported to the 2.6 kernel or there is something else? Thanks Remus --__--__-- Message: 3 Date: Wed, 3 Sep 2003 10:14:04 -0400 From: r [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: [LARTC] filtering on destination MAC address hi- i've been trying to setup an outgoing queue that prioritizes traffic depending on whether it recognizes the MAC address the packet is destined to -- and i've not been having any luck. i think my ebtables rule is correct as the packet count when i do an --Lc is increasing in an expected way, but when i look at the tc statistics, i don't think the packets are going into the right queues. i'm trying to work with eth2 as the interface, so first i create a bridge interface, br2, and attach eth2 to it. as i understand it, this is necessary because otherwise ebtables is not going to function on that interface. brctl addbr br2 brctl stp br2 off brctl addif br2 eth2 ifconfig br2 192.168.1.1 netmask 255.255.255.0 broadcast 192.168.1.255 ifconfig eth2 0.0.0.0
Re: [LARTC] routing query
On Thursday 04 September 2003 10:14, [EMAIL PROTECTED] wrote: Send LARTC mailing list submissions to [EMAIL PROTECTED] To subscribe or unsubscribe via the World Wide Web, visit http://mailman.ds9a.nl/mailman/listinfo/lartc or, via email, send a message with subject or body 'help' to [EMAIL PROTECTED] You can reach the person managing the list at [EMAIL PROTECTED] When replying, please edit your Subject line so it is more specific than Re: Contents of LARTC digest... Today's Topics: 1. Re: Problem while using HTB bandwidth limitation (Nimit Gupta) 2. IMQ and 2.6 kernel (Remus) 3. filtering on destination MAC address (r) 4. (no subject) (Randolph Carter) 5. routing query (Payal Rathod) --__--__-- Message: 1 Date: Wed, 03 Sep 2003 10:29:49 +0530 From: Nimit Gupta [EMAIL PROTECTED] Organization: Deeproot To: Stef Coene [EMAIL PROTECTED] Cc: Martin A. Brown [EMAIL PROTECTED], [EMAIL PROTECTED] Subject: Re: [LARTC] Problem while using HTB bandwidth limitation Stef Coene wrote: On Tuesday 02 September 2003 07:39, Nimit Gupta wrote: Hello, Thanks a lot Martin Stef for clarifying my doubts. Your detailed explaination was quiet helpful in making the things clear. I agree that if I give 24Kbit for each leaf class they will get it without confirming about the total bandwidth available with the parent but why does it allow him to reach upto 48Kbit even when ceiling is 24Kbit? Is this his for a short term, like a burst? Yeah its for a short period but it keeps happening, I mean it will reach to 48Kbit and then after few sec it will stablize at 24Kbit then again it will reach to 48 and this repeats. can you explain how to calculate burst rates for better control and accuracy? In order for you to control latency and bandwidth use, you must ensure that you are the slowest point. Annoyingly, the only successful way to identify exactly what speed to use as a bandwidth cap is experimentation. A good general suggestion is to lop off a couple of kbit and try capping your bandwidth exactly as Stef suggests. Try using 188kbit, and see if your apparent control increases. Is there a ratio between the total available bandwidth and the amount you restrict it to or you can just arbitarily reduce by 5-7 Kbit. It should be quite accurate. I tested it for different rates / ceils and each time the results where allmost perfect. So I want to know what ratio it is as you said for 192Kbit make 188Kbit thats equivalent to 2 percent, is this the way. One more thing, Is there something like isolated(as in cbq) in htb, that is irrespective of others demand the bandwidth allocated to someone as isolated does not get affected. Is there an irc channel for lartc discussions? with regards, Nimit --__--__-- Message: 2 From: Remus [EMAIL PROTECTED] To: [EMAIL PROTECTED] Date: Wed, 3 Sep 2003 09:09:27 +0100 Subject: [LARTC] IMQ and 2.6 kernel Hi folks, I would like to know if IMQ (http://trash.net/~kaber/imq/) is going to be ported to the 2.6 kernel or there is something else? Thanks Remus --__--__-- Message: 3 Date: Wed, 3 Sep 2003 10:14:04 -0400 From: r [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: [LARTC] filtering on destination MAC address hi- i've been trying to setup an outgoing queue that prioritizes traffic depending on whether it recognizes the MAC address the packet is destined to -- and i've not been having any luck. i think my ebtables rule is correct as the packet count when i do an --Lc is increasing in an expected way, but when i look at the tc statistics, i don't think the packets are going into the right queues. i'm trying to work with eth2 as the interface, so first i create a bridge interface, br2, and attach eth2 to it. as i understand it, this is necessary because otherwise ebtables is not going to function on that interface. brctl addbr br2 brctl stp br2 off brctl addif br2 eth2 ifconfig br2 192.168.1.1 netmask 255.255.255.0 broadcast 192.168.1.255 ifconfig eth2 0.0.0.0 route add -net 192.168.1.0 netmask 255.255.255.0 br2 once i have that, i apply the following tc qdisc add dev br2 root handle 3: htb default 11 tc class add dev br2 parent 3: classid 3:1 htb rate 10mbit tc class add dev br2 parent 3:1 classid 3:10 htb rate 9990kbit ceil 10mbit tc class add dev br2 parent 3:1 classid 3:11 htb rate 10kbit ceil 25kbit tc qdisc add dev br2 parent 3:10 handle 30: sfq tc qdisc add dev br2 parent 3:11 handle 31: sfq tc filter add dev br2 protocol ip parent 3: handle 5 fw classid 3:10 ebtables -t nat -A POSTROUTING -o eth2 -p IPV4 -d 00:30:65:17:71:8f -j mark --set-mark 5 please note that the ebtables is being applied to eth2. when i set this up, all traffic destined for 00:30:65:17:71:8f, i think, is being marked as the --Lc count is increasing. however,
[LARTC] wondershaper 2.0, QoS gui, presentation
Hi Everybody, Tomorrow the 5th of September I'll be presenting my new QoS gui which will eventually include the wondershaper 2.0 as its configuration. Configuration will also be loadable using a non-X tool, and the gui will be able to configure remote machines as well using netlink-over-tcp. If you are interested and live near Switzerland, visit http://www.sucon.ch/sucon/03/register.html Other presentations: http://www.sucon.ch/sucon/03/sessions.html If you are there, I'll be happy to meet with you. I'll attempt to setup a LARTC BOF or WIP or whatever. Thanks! -- http://www.PowerDNS.com Open source, database driven DNS Software http://lartc.org Linux Advanced Routing Traffic Control HOWTO ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] CBQ Rate
Hi everyone, This is on a linux box, ingress (eth1) at 100Mb/s and egress (eth0) at 10Mb/s. The purpose is to test CBQ Here is my script --- # Root qdisc tc qdisc add dev eth0 root handle 1:0 cbq bandwidth 9Mbit \ avpkt 1000 cell 8 # Classes tc class add dev eth0 parent 1:0 classid 1:1 cbq bandwidth 9Mbit \ rate 5Mbit weight 0.3 allot 1514 avpkt 1000 bounded prio 1 tc class add dev eth0 parent 1:0 classid 1:2 cbq bandwidth 9Mbit \ rate 5Mbit weight 0.3 allot 1514 avpkt 1000 bounded prio 2 tc class add dev eth0 parent 1:0 classid 1:3 cbq bandwidth 9Mbit \ rate 5Mbit weight 0.3 allot 1514 avpkt 1000 bounded prio 3 # Leaf qdiscs tc qdisc add dev eth0 parent 1:1 handle 10:0 sfq perturb 10 tc qdisc add dev eth0 parent 1:2 handle 20:0 sfq perturb 10 tc qdisc add dev eth0 parent 1:3 handle 30:0 sfq perturb 10 # Filters tc filter add dev eth0 parent 1:0 proto ip prio 0 u32 \ match ip tos 0x10 0xff flowid 1:1 tc filter add dev eth0 parent 1:0 proto ip prio 1 u32 \ match ip tos 0x04 0xff flowid 1:2 tc filter add dev eth0 parent 1:0 proto ip prio 2 u32 \ match ip tos 0x08 0xff flowid 1:3 --- I send some traffic at different rate : 3Mb/s, 3.5Mb/s, 4Mb/s, 4.5Mb/s, 5Mb/s, 6Mb/s 1st in only one class at a time == the result is always 2.35Mb/s then in the 3 classes at the same time with the same rates. == the result rate is close from wanted rate Can someone explain to me why we I send data in only one class the rate is so low ? Thank you Emmanuel ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] port forwarding to different servers with nat
Hey guys, here's a basic problem I cannot seem to figure out. I've got a box doing NAT for some servers and masquarading for a bunch of other desktops. The way I have it working, I need to the give my NAT box one IP number for the masquarding, and then one additional IP number for each server it NATs for. That's a waste; I'd like to give the NAT box one IP for all servers, and then forward to the correct server based on port. (Yes, that implies none of the servers can run services on the same port, and I'm fine with that.) It seems like this should be a pretty common scenario, but I haven't been able to get it working and I haven't seen any examples online. I'm sure *somebody* has it working would that person please share the wealth? ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
RE: [LARTC] CBQ Rate
It is me again. is there nos a trouble in my script : ... rate 5Mbit weight 0.3 ... -- is it compatible ?? Thanks again -Message d'origine- De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] la part de Emmanuel SIMON Envoyé : jeudi 4 septembre 2003 17:40 À : 'LARTC' Objet : [LARTC] CBQ Rate Hi everyone, This is on a linux box, ingress (eth1) at 100Mb/s and egress (eth0) at 10Mb/s. The purpose is to test CBQ Here is my script --- # Root qdisc tc qdisc add dev eth0 root handle 1:0 cbq bandwidth 9Mbit \ avpkt 1000 cell 8 # Classes tc class add dev eth0 parent 1:0 classid 1:1 cbq bandwidth 9Mbit \ rate 5Mbit weight 0.3 allot 1514 avpkt 1000 bounded prio 1 tc class add dev eth0 parent 1:0 classid 1:2 cbq bandwidth 9Mbit \ rate 5Mbit weight 0.3 allot 1514 avpkt 1000 bounded prio 2 tc class add dev eth0 parent 1:0 classid 1:3 cbq bandwidth 9Mbit \ rate 5Mbit weight 0.3 allot 1514 avpkt 1000 bounded prio 3 # Leaf qdiscs tc qdisc add dev eth0 parent 1:1 handle 10:0 sfq perturb 10 tc qdisc add dev eth0 parent 1:2 handle 20:0 sfq perturb 10 tc qdisc add dev eth0 parent 1:3 handle 30:0 sfq perturb 10 # Filters tc filter add dev eth0 parent 1:0 proto ip prio 0 u32 \ match ip tos 0x10 0xff flowid 1:1 tc filter add dev eth0 parent 1:0 proto ip prio 1 u32 \ match ip tos 0x04 0xff flowid 1:2 tc filter add dev eth0 parent 1:0 proto ip prio 2 u32 \ match ip tos 0x08 0xff flowid 1:3 --- I send some traffic at different rate : 3Mb/s, 3.5Mb/s, 4Mb/s, 4.5Mb/s, 5Mb/s, 6Mb/s 1st in only one class at a time == the result is always 2.35Mb/s then in the 3 classes at the same time with the same rates. == the result rate is close from wanted rate Can someone explain to me why we I send data in only one class the rate is so low ? Thank you Emmanuel ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/ ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] Anyone with a similar setup want to share their setup?
Hi! We currently have T1 to provider A, T1 for peering only to provider B, and 10M Ethernet to provider C. A and B bill is a fixed rate, C bills us based on usage. We have 4 interfaces on our router, one facing each provider, and the last facing ourselves. I'd like to rate-limit provider C to a given amount - I can do that outbound easily enough, how about inbound - anyone got a sample? I could throw in a second machine doing bridging and rate limiting, but that doesn't seem like much fun. -- Michael 'Moose' Dinn, Twisted Pair Network Consulting Incorporated [EMAIL PROTECTED] // 902 423 4700 (voice) // 902 423 8407 (fax) Colocate your server in our underground bunker! ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] port forwarding to different servers with nat
Okay. So let's say it's fred and wilma, sharing the external dns name external. So I would forward to fred and wilma like so: iptables -t nat -A PREROUTING -d external -p tcp --dport 80 -j DNAT --to fred iptables -t nat -A PREROUTING -d external -p tcp --dport 8080 -j DNAT --to wilma That makes sense to me. But how do the return packets get rewritten? iptables -t nat -A POSTROUTING -s wilma -j SNAT --to external iptables -t nat -A POSTROUTING -s fred -j SNAT --to external ...seems wrong. Or does it work just fine? (I can't test it right now, unfortuantely) On Thu, 4 Sep 2003, Lawrence MacIntyre wrote: So for example, you want one machine (call it fred) to have a web server on port 80, and another (call it wilma) to have a web server on port 8080? Simply forward port 80 to fred:80 and port 8080 to wilma:80. Alternately, you can run wilma's webserver on port 8080 and forward port 8080 to wilma:8080. On Thu, 2003-09-04 at 13:05, Ben wrote: Hey guys, here's a basic problem I cannot seem to figure out. I've got a box doing NAT for some servers and masquarading for a bunch of other desktops. The way I have it working, I need to the give my NAT box one IP number for the masquarding, and then one additional IP number for each server it NATs for. That's a waste; I'd like to give the NAT box one IP for all servers, and then forward to the correct server based on port. (Yes, that implies none of the servers can run services on the same port, and I'm fine with that.) It seems like this should be a pretty common scenario, but I haven't been able to get it working and I haven't seen any examples online. I'm sure *somebody* has it working would that person please share the wealth? ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/ ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] routing query
Payal: What subnet are your users' machines on? Is there a third ethernet address on the linux machine where the user machines connect or are they connected to one of the two given ethernet interfaces (eth0 or eth1)? On Thu, 2003-09-04 at 22:33, Payal Rathod wrote: Hi, I have a simple question. I asked a friend about it but he was also not clear. So, I thought of mailing the list. I have a linux box (RH 7.2) which will have 2 net cards. I have 2 types of connections to that box. One RF at eth0 and 1 ISDN at eth1. Now I told 10 people from the company to give eth1 as their default gateway and the rest as eth0. Ok, so far? Now my understanding that with the routing table below, all traffic coming to eth0 will be routed thru' RF router and all traffic coming to eth1 will be routed through ISDN router. Am I right? S, if ISDN fails only 10 people will suffer but the rest can continue using RF line. Same case with RF line, if it fails the 10 people can use ISDN without any glitch. This is no load balancing network. Just a simple routing decision. I have, route add default gw ISDN router ip dev eth1 route add default gw RF router ip dev eth0 Destination Gateway Genmask Flags Metric RefUse Iface 127.0.0.0 * 255.0.0.0 U 0 00 lo 125.0.0.0 * 255.0.0.0 U 0 00 eth1 125.0.0.0 * 255.0.0.0 U 0 00 eth1 default 203.124.123.111 0.0.0.0 UG0 00 eth0 default 125.125.125.3 0.0.0.0 UG0 00 eth1 default * 0.0.0.0 U 0 00 eth0 Can anyone comment whether I am right in my analysis? My friend's comments are given below, | I still say that should be necessary. I believe you need to echo 0 | at some files found by /proc/sys/net/ipv4/conf/*/send_redirects. | Otherwise devices won't route through your box, they'll be | redirected straight to one of the routers (at random, as far as I | know). With warm regards, -Payal signature.asc Description: This is a digitally signed message part
Re: [LARTC] CBQ Rate
On Thursday 04 September 2003 19:07, Emmanuel SIMON wrote: It is me again. is there nos a trouble in my script : ... rate 5Mbit weight 0.3 ... -- is it compatible ?? Yes. But take weight = rate / 10 as a general rule. And your bandwidth parameter should be the real NIC bandwidth. So 10mbit. And it's also better to create a parent class attached to the root qdisc. And different prio's in the filter statement will not change much. It only determines the order the filters are checked. Thanks again -Message d'origine- De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] la part de Emmanuel SIMON Envoyé : jeudi 4 septembre 2003 17:40 À : 'LARTC' Objet : [LARTC] CBQ Rate Hi everyone, This is on a linux box, ingress (eth1) at 100Mb/s and egress (eth0) at 10Mb/s. The purpose is to test CBQ Here is my script --- # Root qdisc tc qdisc add dev eth0 root handle 1:0 cbq bandwidth 9Mbit \ avpkt 1000 cell 8 # Classes tc class add dev eth0 parent 1:0 classid 1:1 cbq bandwidth 9Mbit \ rate 5Mbit weight 0.3 allot 1514 avpkt 1000 bounded prio 1 tc class add dev eth0 parent 1:0 classid 1:2 cbq bandwidth 9Mbit \ rate 5Mbit weight 0.3 allot 1514 avpkt 1000 bounded prio 2 tc class add dev eth0 parent 1:0 classid 1:3 cbq bandwidth 9Mbit \ rate 5Mbit weight 0.3 allot 1514 avpkt 1000 bounded prio 3 # Leaf qdiscs tc qdisc add dev eth0 parent 1:1 handle 10:0 sfq perturb 10 tc qdisc add dev eth0 parent 1:2 handle 20:0 sfq perturb 10 tc qdisc add dev eth0 parent 1:3 handle 30:0 sfq perturb 10 # Filters tc filter add dev eth0 parent 1:0 proto ip prio 0 u32 \ match ip tos 0x10 0xff flowid 1:1 tc filter add dev eth0 parent 1:0 proto ip prio 1 u32 \ match ip tos 0x04 0xff flowid 1:2 tc filter add dev eth0 parent 1:0 proto ip prio 2 u32 \ match ip tos 0x08 0xff flowid 1:3 --- I send some traffic at different rate : 3Mb/s, 3.5Mb/s, 4Mb/s, 4.5Mb/s, 5Mb/s, 6Mb/s 1st in only one class at a time == the result is always 2.35Mb/s then in the 3 classes at the same time with the same rates. == the result rate is close from wanted rate Can someone explain to me why we I send data in only one class the rate is so low ? Thank you Emmanuel Stef -- [EMAIL PROTECTED] Using Linux as bandwidth manager http://www.docum.org/ #lartc @ irc.oftc.net ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] Only a test
Ignore it. ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] routing query
On Thu, Sep 04, 2003 at 01:33:29PM -0400, Lawrence MacIntyre wrote: Payal: What subnet are your users' machines on? Is there a third ethernet address on the linux machine where the user machines connect or are they connected to one of the two given ethernet interfaces (eth0 or eth1)? All machines are 125.125.125.0/24. They are either connected t eth0 r eth1. HTH, -Payal On Thu, 2003-09-04 at 22:33, Payal Rathod wrote: Hi, I have a simple question. I asked a friend about it but he was also not clear. So, I thought of mailing the list. I have a linux box (RH 7.2) which will have 2 net cards. I have 2 types of connections to that box. One RF at eth0 and 1 ISDN at eth1. Now I told 10 people from the company to give eth1 as their default gateway and the rest as eth0. Ok, so far? Now my understanding that with the routing table below, all traffic coming to eth0 will be routed thru' RF router and all traffic coming to eth1 will be routed through ISDN router. Am I right? S, if ISDN fails only 10 people will suffer but the rest can continue using RF line. Same case with RF line, if it fails the 10 people can use ISDN without any glitch. This is no load balancing network. Just a simple routing decision. I have, route add default gw ISDN router ip dev eth1 route add default gw RF router ip dev eth0 Destination Gateway Genmask Flags Metric RefUse Iface 127.0.0.0 * 255.0.0.0 U 0 00 lo 125.0.0.0 * 255.0.0.0 U 0 00 eth1 125.0.0.0 * 255.0.0.0 U 0 00 eth1 default 203.124.123.111 0.0.0.0 UG0 00 eth0 default 125.125.125.3 0.0.0.0 UG0 00 eth1 default * 0.0.0.0 U 0 00 eth0 Can anyone comment whether I am right in my analysis? My friend's comments are given below, | I still say that should be necessary. I believe you need to echo 0 | at some files found by /proc/sys/net/ipv4/conf/*/send_redirects. | Otherwise devices won't route through your box, they'll be | redirected straight to one of the routers (at random, as far as I | know). With warm regards, -Payal -- For GNU/Linux Success Stories and Articles visit: http://payal.staticky.com ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] Its impossible !?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi, I'm tried to do an interesting (I think) scenario with HTB+IMQ, but I didn't. What I'm trying to do ? ~ 128Kbit ~ - client --- | linuxbox | --- internet Linuxbox: HTB+IMQ, Transparent Proxy (3128/TCP) I'm trying to configure a diferent bandwidth ( Ex: 1Mb ) for client if he hits an object on cache and doens't need to go internet to get it. If this is possible, anyone has an idea to do that ? Thanks. -BEGIN PGP SIGNATURE- Version: GnuPG v1.0.7 (GNU/Linux) iD8DBQE/V4mTiLK8unYgEMQRAkZHAJ9dB0/LXykSCAhQNlpsRikT+26miACfZ8a1 57m24MROYppYN/fLnsNWcyk= =CKkr -END PGP SIGNATURE- ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] Its impossible !?
On Thursday 04 September 2003 20:50, Rodrigo P. Telles wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi, I'm tried to do an interesting (I think) scenario with HTB+IMQ, but I didn't. What I'm trying to do ? ~ 128Kbit ~ - client --- | linuxbox | --- internet Linuxbox: HTB+IMQ, Transparent Proxy (3128/TCP) I'm trying to configure a diferent bandwidth ( Ex: 1Mb ) for client if he hits an object on cache and doens't need to go internet to get it. If this is possible, anyone has an idea to do that ? This is not exactly what you want, but maybe it can help : http://www.docum.org/stef.coene/qos/faq/cache/65.html Stef -- [EMAIL PROTECTED] Using Linux as bandwidth manager http://www.docum.org/ #lartc @ irc.oftc.net ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] Its impossible !?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi Stef, I know this patch for squid, as yourself told me, this is not exactly that I want, but I consider this idea in another case. Thanks for your answer. Stef Coene wrote: | On Thursday 04 September 2003 20:50, Rodrigo P. Telles wrote: | |-BEGIN PGP SIGNED MESSAGE- |Hash: SHA1 | |Hi, | |I'm tried to do an interesting (I think) scenario with HTB+IMQ, but I |didn't. |What I'm trying to do ? | |~ 128Kbit |~ - |client --- | linuxbox | --- internet | |Linuxbox: HTB+IMQ, Transparent Proxy (3128/TCP) | |I'm trying to configure a diferent bandwidth ( Ex: 1Mb ) for client if |he hits an object on cache and doens't need to go internet to get it. | |If this is possible, anyone has an idea to do that ? | | This is not exactly what you want, but maybe it can help : | http://www.docum.org/stef.coene/qos/faq/cache/65.html | | Stef | - -- - - Rodrigo P. Telles [EMAIL PROTECTED] Gerente de Projetos Devel-IT - Uma empresa do Grupo TDKOM - - -BEGIN PGP SIGNATURE- Version: GnuPG v1.0.7 (GNU/Linux) iD8DBQE/V5m0iLK8unYgEMQRAtxNAJ9HXim6AT5bLZTiLJDL6u/qV3UaOACeNZu8 3lsSIfh+PbNF3OqaLd+mLLo= =SdO/ -END PGP SIGNATURE- ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] Statistics
Helle everybody, I am finishing a computer science degree and I would like to know how you use qos on Linux. Please take a few seconds to answer my questions I would like to know : - what type of qdisc you use - if it is only for tests or for a real use (what use) - how much qos box do you use - do you use anything else (Cisco, Unix ...) I don't know if it is better that you answer to me or to the list, so do as you want. Anyway i will send the result to the list. Thanks in advance Emmanuel ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] Statistics
Hello, Emmanuel, Straight to the question: 1. Personally I'm using mostly HTB. 2. Yes, it is in real use - that way I'm controlling traffic in the ISP I'm working in. 3. I didnt get this question. If you're asking about the HW parameters - PIII/1Ghz. If you're asking about the quantity of QOS boxen I'm using - 5 of them, 4 GNU/Linux and one FreeBSD. 4. Yes, I'm using Cisco policers, but not for smth serious. Besides I'm using FreeBSD altq with CBQ as a shaper (cause that's what it is). On Thu, 4 Sep 2003 22:56:02 +0200 Emmanuel SIMON [EMAIL PROTECTED] wrote: : Helle everybody, : : I am finishing a computer science degree and I would like to know how you : use qos on Linux. : : Please take a few seconds to answer my questions : : I would like to know : : - what type of qdisc you use : - if it is only for tests or for a real use (what use) : - how much qos box do you use : - do you use anything else (Cisco, Unix ...) : : I don't know if it is better that you answer to me or to the list, so do as : you want. Anyway i will send the result to the list. : : Thanks in advance : Emmanuel -- , _ Engineering does not require science. Science helps a lot but people built perfectly good brick walls long before they knew why cement works. -Alan Cox pgp0.pgp Description: PGP signature
RE: [LARTC] Statistics
allready 2 answers, thank you the 3rd question don't seem clear : - I am not asking about the HW parameters, but about the quantity of QOS boxen you are using thx for the 2 first and please go on -Message d'origine- De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] la part de Emmanuel SIMON Envoyé : jeudi 4 septembre 2003 22:56 À : 'LARTC' Objet : [LARTC] Statistics Helle everybody, I am finishing a computer science degree and I would like to know how you use qos on Linux. Please take a few seconds to answer my questions I would like to know : - what type of qdisc you use - if it is only for tests or for a real use (what use) - how much qos box do you use - do you use anything else (Cisco, Unix ...) I don't know if it is better that you answer to me or to the list, so do as you want. Anyway i will send the result to the list. Thanks in advance Emmanuel ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/ ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] port forwarding to different servers with nat
If you are in control of the clients accessing the servers, then
Lawrence MacIntyre [EMAIL PROTECTED] is right... otherwise not. The
clients --unless configured otherwise-- will always look for the requested
services on the standard ports (i.e. http on port 80), so if you have
multiple servers running the same service, you are out of luck. The router
doing DNAT has no way of telling which server it has to forward to, as all
requests come in with the same destination IP and the same port.
The case with different services is easier to solve: you set up your
iptables rulesets to forward the service ports to the appropriate machine.
iptables -t nat -A PREROUTING -p tcp --dport {service-port} -j DNAT --to
{server-ip:port}
You may replace 'tcp' with 'udp', depending on the protocol used (see the
iptables manpage).
But how do the return packets get rewritten?
iptables -t nat -A POSTROUTING -s wilma -j SNAT --to external
iptables -t nat -A POSTROUTING -s fred -j SNAT --to external
...seems wrong. Or does it work just fine? (I can't test it right now,
unfortuantely)
No, that's right. The return packets are sent to the requester's address,
which has never got rewritten along the way... (not at your box, at least
:) )
Please correct me if I'm wrong.
[EMAIL PROTECTED]
___
LARTC mailing list / [EMAIL PROTECTED]
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] Anyone with a similar setup want to share their setup?
Michael 'Moose' Dinn wrote: I'd like to rate-limit provider C to a given amount - I can do that outbound easily enough, how about inbound - anyone got a sample? Take a look at the IMQ + HTB doco. http://lartc.org/howto/lartc.imq.html or, throttle the incoming traffic the easier (and less efficient) way with the ingress policer. last lines in: http://lartc.org/howto/lartc.cookbook.ultimate-tc.html -- ~~~ Damion de Soto - Software Engineer email: [EMAIL PROTECTED] SnapGear --- ph: +61 7 3435 2809 | Custom Embedded Solutions fax: +61 7 3891 3630 | and Security Appliancesweb: http://www.snapgear.com ~~~ ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] Anybody using D-Link 520+ Wireless Adapter?
I compile it but can't make the acx100_pci.o but can't make it work. I think the problem is with the bin files. The acx how to say to get thoose files from windows but i don't have it. Thanks in advance. Sebastian A. Aresca ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] Anybody using D-Link 520+ Wireless Adapter?
I forgot ... i am using Bering 1.2 kernel 2.4.20 I compile it but can't make the acx100_pci.o but can't make it work. I think the problem is with the bin files. The acx how to say to get thoose files from windows but i don't have it. Thanks in advance. Sebastian A. Aresca ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
