[LARTC] Wondershaper modifications
Hep Dear Listmembers and Stef! Setup Internet eth0 | | - |||| eth1 eth2 eth3 eth4 <--- Lan .10/24 .11/24 etc All Lans are natted to eth0 Now i use wondershaper (1.1a) on eth0 to shap interactive traffic (work allready thanks!) But i have a special requirments for priorities samba traffic from eth1 to internet. Ive done this with the following lines in iptables and wondershaper : iptables : $IPTABLES -A PREROUTING -t mangle -p tcp --dport 137:139 -i eth1 -j MARK --set-mark 2 $IPTABLES -A PREROUTING -t mangle -p udp --dport 137:139 -i eth1 -j MARK --set-mark 2 wondershaper : tc filter add dev $DEV parent 1:0 protocol ip prio 1 handle 2 fw classid 1:10 This setup seems to work partly. When i browser network on anohter host over internet i get no lag and fast response (low latency). But when i try to edit file (3kb) it takes around 10 seconds to save the file? Since my connection is 2048/512 and ive set my UPLINK=450 it should take no more than 1-2 secs to update a file over internet? What am i overlooking here? -- Venlig hilsen/Kind regards Thomas Kirk ARKENA tlf/phone +4570233456 thomas(at)arkena(dot)com Http://www.arkena.com "It's naive to think you can change a person--except maybe that boy who works in the library." -- Lisa Simpson ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] Announcing Layer-7 Filter!
Hep On Mon, May 12, 2003 at 12:21:50PM -0500, Ethan Sommer wrote: > It currently works with the linux 2.5 kernel (we've done most of our > testing on 2.5.58) but it should be easy to backport. Does this means that the layer 7 capabilities you've produced will get included in the upcomming 2.6 kernel? -- Venlig hilsen/Kind regards Thomas Kirk ARKENA tlf/phone +4570233456 thomas(at)arkena(dot)com Http://www.arkena.com "It's naive to think you can change a person--except maybe that boy who works in the library." -- Lisa Simpson ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: SV: [LARTC] 2.4.20 htb3 oops
Hep On Tue, Mar 04, 2003 at 12:49:18PM +0100, Göran Runfeldt wrote: > I have arranged a serial console with logging to a terminal client, so next > time it happens I will have the output from the panic. > > For the record: > One of the machines crashed again this night at 11.30 p.m. (local time). > I noticed that the MRTG graph looks a bit odd: > http://hem.wasadata.net/goran/mrtg.png > > The total limit is set to12Mbit, as you probably can see if you check the > ruleset in my first post. Even about 2-4 hours before the crash the graph > shows two network traffic "spikes". The first one tops at about 22Mbps > of outgoing traffic on the interface and the second one tops 28Mbps of > incoming traffic. > Could this have anything to do with the crash? Any solution to the problems describe above? Im currently looking into building a new kernel 2.4.20 with HTB compiled as module in a production enviroment (2,5mbits average, 6-10mbits/peak). I wont use it if its broken though? -- Venlig hilsen/Kind regards Thomas Kirk ARKENA tlf/phone +04570233456 thomas(at)arkena(dot)com Http://www.arkena.com Oh, give me a home, Where the buffalo roam, And I'll show you a house with a really messy kitchen. ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] htb + iproute2/tc
Hey There Alberto! On Fri, Sep 27, 2002 at 10:52:34AM +0200, [EMAIL PROTECTED] wrote: > note that the htb patch comes with a modified "tc" binary as well. > So make sure you are using the tc executable that comes with the htp3 bundle: > http://luxik.cdi.cz/~devik/qos/htb/ yes i noticed that and tried it but that gives me the same errors as described in previous mail. I found another tc binary though that works. One can get it here : http://mdew.dyndns.org/tc.tar.gz I dont know whats the diffrence between the one you pointed me towards and this one? -- Venlig hilsen/Kind regards Thomas Kirk ARKENA thomas(at)arkena(dot)com Http://www.arkena.com BOFH excuse #160: non-redundant fan failure ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] htb + iproute2/tc
Having trouble with htb. Using example from documents so there should not be any problems with the configuration : http://lartc.org/howto/lartc.cookbook.ultimate-tc.html 15.8.3. The actual script (HTB) Im trying to get this to work on Debian woody which run a patched linux kernel 2.4.18. Ive patched it with the following files : http://luxik.cdi.cz/~devik/qos/htb/v2/htb2_2.4.17.diff applied cleanly http://www.netfilter.org/files/patch-o-matic-20020825.tar.bz2 applied cleanly Whenever i try to use tc to configure tc i get the following errors on commandline : RTNETLINK answers: Invalid argument RTNETLINK answers: No such file or directory And from syslog i get : Sep 27 10:15:03 staalanden kernel: HTB init, kernel part version 3.6 Sep 27 10:15:03 staalanden kernel: HTB: need tc/htb version 3 (minor is 6), you have 1 I dont really know whats going one here? Maybe my version of HTB is to new for the version of tc on this debian woody system? According to the packagesmaintainer of iproute2 for debian system this is not the case : http://www.geocrawler.com/mail/msg.php3?msg_id=8273731&list=216 As you can see ive done alot of googling but havnt really found any real answers. Hope the listmembers here can help me :) Thanks in advance -- Venlig hilsen/Kind regards Thomas Kirk ARKENA thomas(at)arkena(dot)com Http://www.arkena.com BOFH excuse #86: Runt packets ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] pfifo_fast dosnt work?
On Wed, Sep 25, 2002 at 06:18:44PM +0200, Tobias Geiger wrote: > hi, > > just like Steve said in the previous mail, prioband is ok but it doesn't > make sure that your bandwith is consumed by one service (even if it's in a > lower class than interactive stuff) because it doesn't reserve bandwidth > for its priomaps. If it dosnt use the TOS fileds to take prioity for delivering packets in a certain way what exactly is pfifo good for? > > to achieve what u want i suggest using htb (see previous mail). ok i will look into that then. -- Venlig hilsen/Kind regards Thomas Kirk ARKENA thomas(at)arkena(dot)com Http://www.arkena.com BOFH excuse #398: Data for intranet got routed through the extranet and landed on the internet. ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] pfifo_fast dosnt work?
Hep Trying to get pfifo to work. Setup : |--|<--->eth1 (192.168.10.0/24) eth0---| GW |<--->eth2 (192.168.11.0/24) |--|<--->eth3 (192.168.12.0/24) read all documentation : http://lartc.org/howto/lartc.cookbook.interactive-prio.html here is my TOS mangling rulse in iptables : $IPTABLES -A PREROUTING -i eth1 -t mangle -s 192.168.10.0/24 -p tcp --dport ftp-data -m state --state NEW,ESTABLISHED -j TOS --set-tos Maximize-Throughput $IPTABLES -A PREROUTING -i eth1 -t mangle -s 192.168.10.0/24 -p tcp --sport 44100:44200 -m state --state NEW,ESTABLISHED -j TOS --set-tos Maximize-Throughput $IPTABLES -A PREROUTING -i eth1 -t mangle -s 192.168.10.0/24 -p tcp --dport ftp -m state --state NEW,ESTABLISHED -j TOS --set-tos Minimize-Delay Im trying to limited the ftp-data throughoutput by putting all ftp-data in band 2. Ive checked with tcpdump -v -v |grep tos and yes ftp-data get [tos 0x8] which destination is band 2 if i read the documentation right? Allthough everything is set ok all my interactiv traffic ssh/telnet etc is very slow and sloppy when someone uploads to our ftpserver. Im running kernel 2.4.19 with latest patch-o-matic Please write to me for further information! You will find that im more than willing to get this problem solved :) -- Venlig hilsen/Kind regards Thomas Kirk ARKENA thomas(at)arkena(dot)com Http://www.arkena.com BOFH excuse #212: Of course it doesn't work. We've performed a software upgrade. ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
