[LARTC] Connection tracking flush
Hi all, Is there a way i can flush the connection tracking on my box (after a restart in iptables)? If the connection tracking module is unloaded and reloaded, my job will be accomplished i think. The bad thing is i want this tracking module to exist in kernel code and not loaded as a module. Regards, DB ___ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] Virtual interfaces shaping
I am using hostap driver as an Access Point and want to shape on this wireless interface. The thing with hostap driver (and others i think) is that it creates new virtual interfaces (wlanxxx) for every node that associates with it. Lets say i want to limit all outgoing traffic on wlan0 at 512 Mbits. The problem is that i cannot apply an htb configuration on wlan0, beacause some traffic is handled by wlan0xxx. Is there any way i can gather traffic from all wlans interfaces, and shape overall traffic to a limit??? ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] is ipp2p working (kazaa)
i am using ipp2p module (v 0.6) from http://rnvs.informatik.uni-leipzig.de/ipp2p/index_en.html I have tried it on kazaa and e-donkey connections. Unfortunately, I am interesting in limiting kazaa traffic, which this modules seems not to work right with it. (Kazza traffic is not identified most of the cases). Has anyone tried this kazza bandwidth control??? ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] HTB classifying
I am trying to shape a client (somewhat advanced). This is my target: Client is 192.168.2.224. I would like to allow him to download with 50 bits/sec in general. But, for a specific port(say 22), i would like him to download with 30 bit/sec only. The problem is that my configuration (maybe wrong) allows him to download with 80 bit/sec. (50 generally + 30 on port 22) I thought that having classes 1:11 and 1:12 being children of a class with rate 50, 50 would be the maximum... Can htb to this? Can another queue do this? /sbin/tc class add dev eth0 parent 1: classid 1:10 htb rate 50 /sbin/tc class add dev eth0 parent 1:10 classid 1:11 htb rate 30 /sbin/tc filter add dev eth0 parent 1:0 protocol ip prio 100 u32 match ip src 192.168.2.224/32 \ match ip sport 80 0x classid 1:11 /sbin/tc class add dev eth0 parent 1:10 classid 1:12 htb rate 50 /sbin/tc filter add dev eth0 parent 1:0 protocol ip prio 100 u32 match ip src 192.168.2.224/32 classid 1:12 ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] HTB classifying
Ok then... BOX with 2 ifaces eth0 : 192.168.1.3/24 , NAT 192.168.2.0/24 wlan0:192.168.2.3/24 , gw 192.168.1.1(it is an adsl mode in fact) All i want to do is make sure that a)node 192.168.2.224 doesnt get more than 50 bits/sec b)its ssh,sftp (port 22) traffic is limited at 30 bits/sec and c)add more shaped nodes in my script. When i start downloading from node, its http taffic for examle is really shaped at 50. When i start downloading via sftp (port 22), its sftp traffic is really shaped at 30. But, if when there is an http as well as an sftp session at the same time, total bandwidth is at 80. Thanks in advance (and sorry for being so short, i will get used to explaining my problems briefly...) #My.notworking.script /sbin/tc qdisc add dev wlan0 root handle 1:0 htb r2q 100 /sbin/tc class add dev wlan0 parent 1: classid 1:10 htb rate 50 /sbin/tc class add dev wlan0 parent 1:10 classid 1:11 htb rate 30 /sbin/tc filter add dev wlan0 parent 1:0 protocol ip prio 100 u32 \ match ip src 192.168.2.224/32 \ match ip sport 80 0x classid 1:11 /sbin/tc class add dev wlan0 parent 1:10 classid 1:12 htb rate 50 /sbin/tc filter add dev wlan0 parent 1:0 protocol ip prio 100 u32 match \ ip src 192.168.2.224/32 classid 1:12 - Original Message - From: [EMAIL PROTECTED] To: lartc [EMAIL PROTECTED]; Mpourtounis Dimitris [EMAIL PROTECTED] Sent: Friday, January 24, 2003 2:13 AM Subject: Re: [LARTC] HTB classifying OK what's the address of eth0? Is the BOX with NAT ? I think you could send a bit of your true script and describe a bit of your network especially the part when this situation is happeniing . If you really afraid of smth like hack attack change IP adressess. Although i have done so ,you are right. I should have included this too in my (e-mail) configuration... BTW,Any idea of the situation - Original Message - From: [EMAIL PROTECTED] To: lartc [EMAIL PROTECTED]; Mpourtounis Dimitris [EMAIL PROTECTED] Sent: Friday, January 24, 2003 1:21 AM Subject: Re: [LARTC] HTB classifying Maybe it's my oversight but shoudn't you have tc qdisc add dev eth0 root handle 1:0 htb before rest of your instructions ?? I am trying to shape a client (somewhat advanced). This is my target: Client is 192.168.2.224. I would like to allow him to download with 50 bits/sec in general. But, for a specific port(say 22), i would like him to download with 30 bit/sec only. The problem is that my configuration (maybe wrong) allows him to download with 80 bit/sec. (50 generally + 30 on port 22) I thought that having classes 1:11 and 1:12 being children of a class with rate 50, 50 would be the maximum... Can htb to this? Can another queue do this? /sbin/tc class add dev eth0 parent 1: classid 1:10 htb rate 50 /sbin/tc class add dev eth0 parent 1:10 classid 1:11 htb rate 30 /sbin/tc filter add dev eth0 parent 1:0 protocol ip prio 100 u32 match ip src 192.168.2.224/32 \ match ip sport 80 0x classid 1:11 /sbin/tc class add dev eth0 parent 1:10 classid 1:12 htb rate 50 /sbin/tc filter add dev eth0 parent 1:0 protocol ip prio 100 u32 match ip src 192.168.2.224/32 classid 1:12 ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/ ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] burst according to time limit??? (plz dont blame me for previous html,Outlook)
I was wondering if there is a queue with which I could have a regular rate limit at some kbits (say 256kbits) for my ethernet stations, but allow burstable sessions with a multiple limit (512 kbits) for a specific time (say 3 minutes). Of course, this is the same with having bursts of some Megabit buckets (measuring bits and not time), but for such big bursts i think it isn't what i need... ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] burst according to time limit???
I was wondering if there is a queue with which I could have a regular rate limit at some kbits (say 256kbits)for my ethernet stations, but allow burstable sessions with a multiple limit (512 kbits) for a specific time (say 3 minutes). Of course, this is the same with having bursts of some Megabit buckets (measuring bits and not time), but for such big bursts i thinkitisn't what i need...