[LARTC] any alternative to netem drop? slow

[George Nychis]

Hi,

I was wondering if there is any alternative to netem drop probability... 
the reason I ask is that whenever I turn it on I get about 500KB/sec 
less throughput with 0% packet loss


The caveat is that it must work with 2.4.32 :)

Thanks!
George


Jason Boxman wrote:


On Thursday 20 April 2006 22:19, Francisco wrote:
 


L7 filter works very well too:
http://l7-filter.sourceforge.net/

Although I didn't try it with sip, I use it to control my P2P and server
applications and have a very usable ADSL link at almost 100% utilization of
my upstream.
   



Does any of that include eMule traffic?  I stopped having success with eMule 
protocols and L7 a year or two ago and the pattern hasn't been updated in 
ages.


 


___
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc

Re: [LARTC] Sip Traffic

[Jason Boxman]

On Thursday 20 April 2006 22:19, Francisco wrote:
> L7 filter works very well too:
> http://l7-filter.sourceforge.net/
>
> Although I didn't try it with sip, I use it to control my P2P and server
> applications and have a very usable ADSL link at almost 100% utilization of
> my upstream.

Does any of that include eMule traffic?  I stopped having success with eMule 
protocols and L7 a year or two ago and the pattern hasn't been updated in 
ages.

-- 

Jason Boxman
http://edseek.com/ - Linux and FOSS stuff

___
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc

Re: [LARTC] Sip Traffic

[Francisco]

L7 filter works very well too:
http://l7-filter.sourceforge.net/

Although I didn't try it with sip, I use it to control my P2P and server 
applications and have a very usable ADSL link at almost 100% utilization of 
my upstream.


El Martes, 18 de Abril de 2006 07:45, LinuXKiD escribió:
> mmm... intresting
>
> http://sipx-wiki.calivia.com/index.php/HowTo_configure_iptables
>
> ip_conntrack_sip
>
> Someone has tried it ?
>
> works on 2.4 kernel series ?
>
> thanks
>
>
>
>
> ->
> ->
> -> Hi I am pretty much a newbie, I found with sip if I match ports 5060 and
> -> 1 - 2 it works I noticed on some phones the use 13000 - 14000
> and -> others use 18000 - 19000.  there is a new sip-contrack out although
> I -> haven't tried it yet.
> ->
> -> william
> ->
> -> -Original Message-
> -> From: [EMAIL PROTECTED]
> -> [mailto:[EMAIL PROTECTED]
> -> On Behalf Of LinuXKiD
> -> Sent: 17 April 2006 15:59
> -> To: lartc
> -> Subject: [LARTC] Sip Traffic
> ->
> ->
> -> Hi.
> ->
> -> there is a way to MARK udp VOIP (SIP) traffic,
> -> in order to put in a highest prio class ?
> ->
> -> Traffic flow seems start on udp 5060 port, but
> -> next both server and client seems jump to a
> -> random(?) port.
> ->
> -> I can't use CONNMARK because is udp traffic.
> ->
> -> I only see a pattern for L7 patch in order to
> -> SIP traffic identification , but I run 2.4
> -> kernel series .
> ->
> -> When you patch 2.4 kernel with L7 patch,
> -> later, Connmark (patch o matic ) can't apply.
> -> (conflicts)
> ->
> -> thank you.
> -> --
> -> Andres
> -> ___
> -> LARTC mailing list
> -> LARTC@mailman.ds9a.nl
> -> http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
> ->
>
> ___
> LARTC mailing list
> LARTC@mailman.ds9a.nl
> http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
___
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc

Re: [LARTC] Problems in Dead Gateway Detection / Failover - Multiple ISP Links

[Manish Kathuria]

Eduardo Fernández wrote:

Hi!

Did you finally write a script for dead gateway detection beyond first
hop? Did you find any other solution to this problem? I'm quite
interested and I bet other multipath users here are interested too.

My linux router has 10 dsl links (adding 15 more in short), when one
of the dsl routers goes down the kernel does not always notice. Don't
know why. Also, if a dsl route is up but the internet link is down
dead gateway detection doesn't work either.

Thanks!

Edu


If you follow the nano.txt procedure and apply the patches, it works 
perfectly as long as the first hop is dead. But to ensure failover, when 
 connectivity goes down at any of the hops, you can use the nano.txt 
for configuring the interfaces and multipath routes (call it default 
configuration) and also run a script in the background to modify the 
routes as described below.


1. Periodically keep on checking if a remote host is reachable from each 
of the gateways by pinging it after every n seconds.


2. If the remote host is not reachable after a number of tries (which 
you can decide according to your own specific situation) from a 
particular gateway, remove that route. If you have just two internet 
links, there would be only one gateway left. But if you have more than 
two links alive you can again define multipath routes with appropriate 
weights for the active gateways. The possible combinations will increase 
exponentially with the increase in number of internet links so you will 
have to factor is all the cases in the script.


3. Restore the default configuration when the remote host is reachable 
from all the gateways.


I am not too sure how its going to behave with 10 links because if the 
links are not so stable it will result in very frequent changes.


--
Manish Kathuria
http://www.tuxspace.com /

___
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc

[LARTC] EBTables, iproute, etc.

[Braley, Ron]

Good 
morning,
 
I'm writing to ask 
for collaboration in finding an improvement to a particular 
process.
 
Today:  To get 
traffic for our IDS sensors and a billing system, we collect 
everything at our core switches (2) by connecting a SPAN port from each 
switch to a server (so, 2 interfaces collecting traffic).  That server 
changes the destination MAC address on all traffic to that of another server 
running iproute and sends it out a third interface.  The server running 
iproute collects the traffic on one interface, and sends traffic to different 
sub interfaces depending on the network; a switch connected to the outgoing 
traffic allows connection of the IDS sensors, billing system, etc.  

 
The challenge:  
I'd like to be able to do one of the following:
 
1.  Just run 
iproute, having it take the traffic from the SPAN ports and policy route without 
having to have the first server change destination MAC 
addresses.
    
a.  Can iproute do policy routing on traffic not destined for it in the 
first place (i.e. by having the interfaces in promiscuous 
mode)?
    
b.  If not, then does iproute contain functionality that would allow it to 
sense all traffic and change the destination MAC address or IP 
address?
 
2.  Have 
EBTables and iproute running on the same box if #1 above isn't 
possible.
    
a.  Can we do this without having to have more interfaces in the box, 
connected to each other with crossover cables?
 
Thanks in advance 
for offering feedback or suggestions regarding what we hope to 
do.
 
Ron
___
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc

[LARTC] Re: pppoe question

[the sew]

ah thanks so much!!

Sew

On 4/20/06, Alessandro Ren <[EMAIL PROTECTED]> wrote:
>
> Yes, edit the script adsl-connect problably in in /sbin and remove
> the route del command, better, just comment it out.
> I had the same poblem and that solved it.
>
> []s.
>
> the sew wrote:
> > Hi THere,
> >
> > sorry if this is a stupid question or does not belong to this forum.
> >
> >  I've set my DEFROUTE=no in my ifcfg-ppp0 and when I bring the ppp0
> > up, it deletes my old default load balance routes which I do not want,
> > as I just want the interface to be up, but not touching my default
> > routes
> >
> > any advice
> >
> > Thanks
> >
> > SEW
> > ___
> > LARTC mailing list
> > LARTC@mailman.ds9a.nl
> > http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
> >
>
> --
> __
> *Alessandro Ren*
>   /*OpServices*/
> /*Luciana de Abreu, 471 - Sala 403*/
> /*Porto Alegre, RS - CEP 90570-060*/
>
> *(*   phone 55(51)3061-3588
> *4*fax 55(51)3061-3588
>   *Q*   mobile 55(51)8151-8212
> *:*   email [EMAIL PROTECTED]
> 
>
> __
>
>
___
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc

Re: [LARTC] pppoe question

[Alessandro Ren]

Title: OpSign





    Yes, edit the script adsl-connect problably in in /sbin and remove
the route del command, better, just comment it out.
    I had the same poblem and that solved it.

    []s.

the sew wrote:

  Hi THere,

sorry if this is a stupid question or does not belong to this forum.

 I've set my DEFROUTE=no in my ifcfg-ppp0 and when I bring the ppp0
up, it deletes my old default load balance routes which I do not want,
as I just want the interface to be up, but not touching my default
routes

any advice

Thanks

SEW
___
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
  


-- 

__

  

   Alessandro Ren
  
   OpServices
  Luciana de Abreu, 471 - Sala 403
  Porto Alegre, RS - CEP 90570-060
  

  


  

   (   phone 55(51)3061-3588
  4fax 55(51)3061-3588
  
   Q   mobile 55(51)8151-8212
  :   email [EMAIL PROTECTED]
  

  

__



___
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc

[LARTC] per connection shaping

[richard lucassen]

Is there a qdisc that allows a per connection maximization?

E.g.: bandwidth 1Mb, four sessions RDP and a per session limit of 250kb

R.

-- 
___
It is better to remain silent and be thought a fool, than to speak
aloud and remove all doubt.

+--+
| Richard Lucassen, Utrecht|
| Public key and email address:|
| http://www.lucassen.org/mail-pubkey.html |
+--+
___
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc

Re: [LARTC] Shaping per IP in PPPoE borrowing or sharing Uplink or Downlink

[Rani Ahmed]

thanks for your help. but i am not that much used to tc. i use tcng. so 
how should i write that in tcng?

Anton Glinkov wrote:


If they are all on the same ethernet device, you can match them with:
tc filter add dev ${DEVICE} parent 1: protocol all u32 \
match u16 0x8864 0x at -2 flowid 1:${ID}

8864 is the PPP session ethernet protocol

you can play around with u32 if you want to match tos or ports and stuff..

 


helo again. I think this question i am asking is worth:

we know that pppoe-server creates a pppX device on each connection done
to it.
So, when i have to shape, i have to shape each pppX connection device on
itself alone.
What i know is that the borrowing method on one device by itself,  e.g.
ppp0, alone using HTB or the like. this means that i have to create for
another device, e.g. ppp1, its own HTB or CBQ tree.

So, how can i in PPPoE technology setup sharing or borrowing between all
the pppX devices so it won't let network starvation problem float on
surface?

Thanks.

   



 



___
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc

[LARTC] pppoe question

[the sew]

Hi THere,

sorry if this is a stupid question or does not belong to this forum.

 I've set my DEFROUTE=no in my ifcfg-ppp0 and when I bring the ppp0
up, it deletes my old default load balance routes which I do not want,
as I just want the interface to be up, but not touching my default
routes

any advice

Thanks

SEW
___
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc