[LARTC] Question

2003-12-15 Thread Edgar Estrada Lopez 
Hello:

I need some help on split access and load balancing:

I have 2 xDSL (eth1 @ wireless broadband modem;  and ppp0, actually 
connected to eth0 on a phone DSL).

Both links have dynamic addresses.
I was reading the examples in the HOWTO:
--- copied from the howto ---
  ip route add $P1_NET dev $IF1 src $IP1 table T1
  ip route add default via $P1 table T1
  ip route add $P2_NET dev $IF2 src $IP2 table T2
  ip route add default via $P2 table T2
--- end copy --
this is awesome... is there any script that could convert these vars 
($P1_NET, etc) into the REAL values of my 2 dsl connections?

I'm still not too good at coding in Linux... can anyone help me?

Thanks in advance

Edgar

_
MSN Fotos: la forma más fácil de compartir e imprimir fotos.  
http://photos.msn.es/support/worldwide.aspx

___
LARTC mailing list / [EMAIL PROTECTED]
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

Re: [LARTC] graphics? we don't need no stinkin graphics!

2003-12-15 Thread Stef Coene 
On Monday 15 December 2003 10:45, raptor wrote:
> |> still tempted to extend using rrdtool, u know what they say "a picture
> |> is like a thousand words"
> |
> |Like http://home.docum.org/rrd-test.html ?
> |
> |Stef
>
> ]- could u share this tcc-rrd script :")
Check http://docum.org/stef.coene/qos/tc-snmp/ in a couple of days.
I'm rewriting the extension and my scripts to include parent - child relation 
information.

Stef

-- 
[EMAIL PROTECTED]
 "Using Linux as bandwidth manager"
 http://www.docum.org/
 #lartc @ irc.openprojects.net

___
LARTC mailing list / [EMAIL PROTECTED]
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

RE: [LARTC] Controlling only delay using HTB without stealing excess bandwidth

2003-12-15 Thread Mike 
I disagree here.  You can easily use IPTables to mark packets based on
just about anything (source/dest IP, MAC, source/dest port, etc). You
can then use those marks to assign traffic to the HTB classes you wish.

Mike Fetherston

> -Original Message-
> From: Roy [mailto:[EMAIL PROTECTED]
> Sent: Monday, December 15, 2003 1:14 PM
> To: [EMAIL PROTECTED]
> Subject: Re: [LARTC] Controlling only delay using HTB without stealing
> excess bandwidth
> 
> htb is very primitive trafic managing system (if compare it with
ipatbles)
> because it was designed for high speed, and not quality
> 
> Anyway it is not easy to make what you want because delay is the same
as
> priority
> so the first function is just side effect of second.
> 
> There is no easy way to make what you want.
> 
> 
> 
> 
> Hi Gurus,
> 
> The documentation isn't terribly clear, but it seems that the HTB
'prio'
> field has two separate functions:
> 1. Classes with lower prio get all the excess bandwidth first.
> 2. Classes with lower prio get lower delay.
> 
> I want just #2 - and not #1
> In other words, for example lets say that I have a 100kbps link,
divided
> to classes A and B as following.
> 
> A - rate=20kbps limit=100kbps
> B - rate=20kbps limit=100kbps
> 
> How can I get class B to have a lower delay than A, while still
sharing
> the excess bandwidth fairly with A?
> 
> Thanks,
> Aron Brand
> ___
> LARTC mailing list / [EMAIL PROTECTED]
> http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
> 
> ___
> LARTC mailing list / [EMAIL PROTECTED]
> http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
___
LARTC mailing list / [EMAIL PROTECTED]
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

Re: [LARTC] Controlling only delay using HTB without stealing excess bandwidth

2003-12-15 Thread Roy 
htb is very primitive trafic managing system (if compare it with ipatbles)
because it was designed for high speed, and not quality

Anyway it is not easy to make what you want because delay is the same as
priority
so the first function is just side effect of second.

There is no easy way to make what you want.




Hi Gurus,

The documentation isn't terribly clear, but it seems that the HTB 'prio'
field has two separate functions:
1. Classes with lower prio get all the excess bandwidth first.
2. Classes with lower prio get lower delay.

I want just #2 - and not #1
In other words, for example lets say that I have a 100kbps link, divided
to classes A and B as following.

A - rate=20kbps limit=100kbps
B - rate=20kbps limit=100kbps

How can I get class B to have a lower delay than A, while still sharing
the excess bandwidth fairly with A?

Thanks,
Aron Brand
___
LARTC mailing list / [EMAIL PROTECTED]
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

___
LARTC mailing list / [EMAIL PROTECTED]
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

RE: [LARTC] traffic generator ?

2003-12-15 Thread Diogo Nuno P. Gomes 
For me it is the best tool out there :)

http://dast.nlanr.net/Projects/Iperf/

=Diogo Gomes

> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of raptor
> Sent: segunda-feira, 15 de Dezembro de 2003 15:28
> To: [EMAIL PROTECTED]
> Subject: [LARTC] traffic generator ?
>
>
> could u give me a link of a traffic generator !?
> to measure a link troughput  ..
>
> tia
>
> ___
> LARTC mailing list / [EMAIL PROTECTED]
> http://mailman.ds9a.nl/mailman/listinfo/lartc > HOWTO: http://lartc.org/
>


___
LARTC mailing list / [EMAIL PROTECTED]
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

[LARTC] Controlling only delay using HTB without stealing excess bandwidth

2003-12-15 Thread Aron Brand 
Hi Gurus,

The documentation isn't terribly clear, but it seems that the HTB 'prio'
field has two separate functions:
1. Classes with lower prio get all the excess bandwidth first.
2. Classes with lower prio get lower delay.

I want just #2 - and not #1
In other words, for example lets say that I have a 100kbps link, divided
to classes A and B as following.

A - rate=20kbps limit=100kbps 
B - rate=20kbps limit=100kbps 

How can I get class B to have a lower delay than A, while still sharing
the excess bandwidth fairly with A? 

Thanks,
Aron Brand
___
LARTC mailing list / [EMAIL PROTECTED]
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

Re: [LARTC] traffic generator ?

2003-12-15 Thread Heikki Lampén 
In 2.4.23 kernel source tree: .../Documentation/networking/pktgen.txt

Google could find something too.

-heze

raptor wrote:
could u give me a link of a traffic generator !?
to measure a link troughput  ..
tia

___
LARTC mailing list / [EMAIL PROTECTED]
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
___
LARTC mailing list / [EMAIL PROTECTED]
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

[LARTC] traffic generator ?

2003-12-15 Thread raptor 
could u give me a link of a traffic generator !?
to measure a link troughput  ..

tia

___
LARTC mailing list / [EMAIL PROTECTED]
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

Re: [LARTC] Problems with ICQ etc. on nano-setup

2003-12-15 Thread Steen Suder, privat 
c0g wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
| Can one "bind" traffic from one LAN-user to the same DSL, effective in
| lets say 10 minutes from the initial connection?
| Can some magic with conntrack be put to use?
You should do Equal Cost Multipath (iproute) + MARK target instead of
state-based loadbalancing for problematic protocols/sites.
Create table with default route thru multiple gateways with equalize
option. Then direct problematic traffic to this table (using routing
rules and mark matching)
Could I not just apply this method to all traffic?

Equal Cost Multipath chooses route based on source and destination IP,
so it bounds client to route, no matter how many connections that client
made.
Sounds better, actually.

Can you point in the direction of some practical examples?
Perhaps some specific documentation?
It works for me.

PS: I assume you have separate network interface in your Linux router
for each DSL, so you can do SNAT on each interface. If you have them
connected to one NIC then it not that simple, but may be resolved with
route realms (but not sure for 100%).
This assumption is correct. The box has a separate, physical interface 
for each DSL and I do simple SNAT for each outgoing (DSL) interface as 
it is now.

--
Mvh. / Best regards,
Steen Suder 
ICQ UIN 4133803
___
LARTC mailing list / [EMAIL PROTECTED]
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

Re: [LARTC] Problems with ICQ etc. on nano-setup

2003-12-15 Thread c0g 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
| Can one "bind" traffic from one LAN-user to the same DSL, effective in
| lets say 10 minutes from the initial connection?
| Can some magic with conntrack be put to use?
You should do Equal Cost Multipath (iproute) + MARK target instead of
state-based loadbalancing for problematic protocols/sites.
Create table with default route thru multiple gateways with equalize
option. Then direct problematic traffic to this table (using routing
rules and mark matching)
Equal Cost Multipath chooses route based on source and destination IP,
so it bounds client to route, no matter how many connections that client
made.
It works for me.

PS: I assume you have separate network interface in your Linux router
for each DSL, so you can do SNAT on each interface. If you have them
connected to one NIC then it not that simple, but may be resolved with
route realms (but not sure for 100%).
- --
[EMAIL PROTECTED]
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.2.1 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQE/3atPPqmVt5WhbA8RAo/HAJ9XJ1Fb+/LLDkEQs5aUh9nS7aN8DgCfbuVu
yfQXVOluF+uY7DC5+JZxM4g=
=A4og
-END PGP SIGNATURE-
___
LARTC mailing list / [EMAIL PROTECTED]
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

Re: [LARTC] graphics? we don't need no stinkin graphics!

2003-12-15 Thread raptor 
I'm getting this error when I try to start it :

Can't find a valid termcap file at /arh/bin/classmon line 37

how to solve this ?

|I know that graphs are all the rage as the format de jour for HTB output,
|but I've had some good times with this script.  It's not art, but it does
|what I need it to.  I'm also not sure how long that link will work before
|they notice I'm not in school.
|
|www.ocf.berkeley.edu/~toby/classmon.pl
|
___
LARTC mailing list / [EMAIL PROTECTED]
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

[LARTC] Nano and "stateful" protocols?

2003-12-15 Thread Steen Suder, privat 
On some of nano-setups that I run, the users complain (dont they always? 
;-) about being unable to use https and sometimes http, tyically in 
cases where there is a login (and a corresponding cookie), ICQ and other 
systems that not always keeps the initial connection.

They complain about being "thrown off" and the like.

To me it seems to me that the nano-setup and, thus, the routing is to 
blame in some way.

To resolve the issue in a quick way I can just tie, say, https to a 
given Internetconnection, but I'd rather avoid this because the systems 
are made with a bunch of el-cheapo DSLs and they break down every once 
in a while and I'd like all DSLs to be used equally.

Can these protocols be "helped" in some way while still keeping the 
nano-setup in some form?

--
Mvh. / Best regards,
Steen Suder 
ICQ UIN 4133803
___
LARTC mailing list / [EMAIL PROTECTED]
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

Re: [LARTC] Problems with ICQ etc. on nano-setup

2003-12-15 Thread Steen Suder, privat 
Ben Efros wrote:
Since you are doing SNAT on all the dsl lines, I'd suggest using the -j SAME
target available for netfilter.
http://netfilter.org/documentation/pomlist/pom-base.html#SAME
As I understand it, SAME cannot be used here since the "loadbalancing" 
in a nano-setup is done by the routing (multiple default gateways) and, 
thus, the traffic is already going out a particular interface when it 
reaches the POSTROUTING chain (where SAME lives).

Also, we have only one public IP on every WAN-if.

If I just could manipulate the routing in the kernel to tie new 
connections from a given LANuser to a specific WANif, at least for a 
brief period of time, I'd think the issue would be solved.



--
Mvh. / Best regards,
Steen Suder 
ICQ UIN 4133803
___
LARTC mailing list / [EMAIL PROTECTED]
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

Re: [LARTC] graphics? we don't need no stinkin graphics!

2003-12-15 Thread raptor 

|> still tempted to extend using rrdtool, u know what they say "a picture is
|> like a thousand words"
|Like http://home.docum.org/rrd-test.html ?
|
|Stef


]- could u share this tcc-rrd script :")
___
LARTC mailing list / [EMAIL PROTECTED]
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

Re: [LARTC] Problems with ICQ etc. on nano-setup

2003-12-15 Thread Ben Efros 
Since you are doing SNAT on all the dsl lines, I'd suggest using the -j SAME
target available for netfilter.

http://netfilter.org/documentation/pomlist/pom-base.html#SAME




- Original Message - 
From: "Steen Suder, privat" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Sunday, December 14, 2003 6:57 PM
Subject: [LARTC] Problems with ICQ etc. on nano-setup


> I administer a nano-setup on a dorm-network with a couple of hundred 
> active users.
> 
> The setup uses 2 x 2 2Mb/s DSLs, meaning two DSLs from each of two 
> different ISPs.
> 
> It works fine except for some minor glitches:
> 
> https-sites often kicks users. This was solved by tying outbound https 
> to a single DSL. Not the best solution but it works so far that users 
> dont kicked from the sites anymore. Now they can put credits on the 
> SIM-cards again ;-)
> 
> ICQ-logins is a pain as it often takes several attempts (4-8 usually) to 
> get connected to ICQ.
> I've tested with the latest micq from a host on the LAN and it says 
> "Connection refused (111)". The same behaviour goes for all other 
> (reported) clients of all kinds on the LAN. On the same time ICQ works 
> fine from othe locations.
> 
> Now I'm wondering and it is somewhat ICQspecific: when one connects to 
> ICQ one gets redirected to another server. Perhaps this redirect causes 
> the connection to take another DSL on its way onto the Internet... and 
> maybe the new sourceaddress causes the ICQ-server to drop the connection 
> attempt due to difference between the initial sourceaddress and the 
> "second" sourceaddress.
> 
> Now, the simple way to solve this issue is to bind anything even 
> remotely related to ICQtraffic to one single DSL, but I'd really like to 
> solve this "The Proper Way".
> 
> Suggestion:
> Can one "bind" traffic from one LAN-user to the same DSL, effective in 
> lets say 10 minutes from the initial connection?
> Can some magic with conntrack be put to use?
> 
> 
> 1. How can I find out what is causing this "glitch"?
> 
> This would be rather important since it could be the cause of other 
> "irregularities" in the operation.
> 
> 
> 2. How is this solved?
> 
> 
> 
> A snippet from the /etc/sysctl.conf:
> 
> net.ipv4.route.max_size=32768
> net.ipv4.route.gc_min_interval=5
> net.ipv4.route.gc_interval=300
> 
> It's a 2.4.23-box and it does SNAT on all four DSLs.
> It's pretty open from the inside towards the Internet.
> 
> -- 
> Mvh. / Best regards,
> Steen Suder 
> ICQ UIN 4133803
> 
> ___
> LARTC mailing list / [EMAIL PROTECTED]
> http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
> 
___
LARTC mailing list / [EMAIL PROTECTED]
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

[LARTC] How can I unsubscribe mailing list?

2003-12-15 Thread Sittichai Amornrojvorawut 
Please let me know how can I unsubscribe mailing list.I really would like to 
unsubscribe mailing list as soon as possible.
Thank you

_
Add photos to your e-mail with MSN 8. Get 2 months FREE*. 
http://join.msn.com/?page=features/featuredemail

___
LARTC mailing list / [EMAIL PROTECTED]
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

[LARTC] routing realms

2003-12-15 Thread Andrei Boros 

 Hi,

 I am trying to add the realm option to a multipath route, but it won't
work :

ip route add _dest_ realm x \
nexthop via a dev d1 \
nexthop via b dev d2

This issues an RTNETLINK Invalid Argument. I think this should be the
syntax, since realm is defined per route.

If I want to add "realm x" to each "nexthop via ...", I get an error
from ip that it expects a nexthop argument.

Kernel is 2.2.25. iproute2 package is the latest i could get my hands
on.

Any ideas on how to set the realm on this one?

-- 
ing. Andrei Boros
mailto:[EMAIL PROTECTED] / +40-21-303-1870
Centrul pt. Tehnologia Informatiei
Societatea Romana de Radiodifuziune
___
LARTC mailing list / [EMAIL PROTECTED]
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/