[LARTC] iam not getting the list mails
Hi all past week iam not getting mails what is the problem hare ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] Ip layer 7
Hi yes i have same problem but layer-7 patch for netfilter now yet ready they only have available for 2.6 kernel i feel they going to release soon lets wait, or upgrade the kernel to 2.6, iam trying to do i will post if iam success hare - Original Message - From: ThE LinuX_KiD [EMAIL PROTECTED] To: lartc [EMAIL PROTECTED] Sent: Wednesday, February 04, 2004 1:28 AM Subject: [LARTC] Ip layer 7 Hi, I'm trying to install under 2.4.24 layer 7 patch I've patched kernel with http://sf.net/projects/l7-filter Kernel 2.4 QoS patch and next iptables 1.2.9 with patch taken from same url. when I make menuconfig, I can set new layer 7 options under QoS (network options) but no new options under netfilter secion Of course, iptables 1.2.9 doesn't compile layer7 module A patch is missing for this combination? (iptables 1.2.9 and kernel 2.4.24) regards andres ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/ ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] layer7-filter with iptables problem
Hi iam running FEDORA, i have installed Source of iptable 1.2.9 with the patch layer7-iptables patch done with out any errors and i applied patch in kernel to the layer 7 patch and i have select the required option by doing make menyconfig done make dep make bzImage make modules make modules_install make install and rebooted with customer kernel when i type iptables -t mangle -A POSTROUTING -m layer7 --l7proto http -j MARK --set-mark 1 iptables v1.2.9: Couldn't load match `layer7':/usr/local/lib/iptables/libipt_layer7.so: cannot open shared object file: No such file or directory when i try to do manual compile, iam getting this error cc -O2 -Wall -Wunused -I/usr/src/linux-2.4.22-1.2115.nptl/include -Iinclude/ -DIPTABLES_VERSION=\1.2.9\ -fPIC -o extensions/libipt_layer7_sh.o -c extensions/libipt_layer7.c extensions/libipt_layer7.c:21:45: linux/netfilter_ipv4/ipt_layer7.h: No such file or directory extensions/libipt_layer7.c:52: warning: `struct ipt_layer7_info' declared inside parameter list extensions/libipt_layer7.c:52: warning: its scope is only this definition or declaration, which is probably not what you want extensions/libipt_layer7.c: In function `parse_protocol_file': extensions/libipt_layer7.c:84: error: `MAX_PROTOCOL_LEN' undeclared (first use in this function) extensions/libipt_layer7.c:84: error: (Each undeclared identifier is reported only once extensions/libipt_layer7.c:84: error: for each function it appears in.) extensions/libipt_layer7.c:87: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:87: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:87: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:93: error: `MAX_PATTERN_LEN' undeclared (first use in this function) extensions/libipt_layer7.c:95: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:95: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:95: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c: At top level: extensions/libipt_layer7.c:219: warning: `struct ipt_layer7_info' declared inside parameter list extensions/libipt_layer7.c: In function `parse_layer7_protocol': extensions/libipt_layer7.c:246: warning: passing arg 3 of `parse_protocol_file' from incompatible pointer type extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:264: error: `MAX_PATTERN_LEN' undeclared (first use in this function) extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c: In function `parse': extensions/libipt_layer7.c:278: warning: passing arg 2 of `parse_layer7_protocol' from incompatible pointer type extensions/libipt_layer7.c:280: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c: In function `print': extensions/libipt_layer7.c:325: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:326: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c: In function `save': extensions/libipt_layer7.c:334: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:334: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c: At top level: extensions/libipt_layer7.c:340: error: invalid application of `sizeof' to an incomplete type extensions/libipt_layer7.c:341: error: invalid application of `sizeof' to an incomplete type any help will be apprciate hare ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] layer7-filter with iptables problem
Hello sorry continuation to the last mail when make menuconfig iam not able to see this options tooo Layer 7 match support and Child Level match support. but i followed the proceedures mentioned in the docs but i could not find this option where did i went wrong.. iam not sure some one guide me hare - Original Message - From: hare ram [EMAIL PROTECTED] To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Monday, February 02, 2004 12:35 PM Subject: [LARTC] layer7-filter with iptables problem Hi iam running FEDORA, i have installed Source of iptable 1.2.9 with the patch layer7-iptables patch done with out any errors and i applied patch in kernel to the layer 7 patch and i have select the required option by doing make menyconfig done make dep make bzImage make modules make modules_install make install and rebooted with customer kernel when i type iptables -t mangle -A POSTROUTING -m layer7 --l7proto http -j MARK --set-mark 1 iptables v1.2.9: Couldn't load match `layer7':/usr/local/lib/iptables/libipt_layer7.so: cannot open shared object file: No such file or directory when i try to do manual compile, iam getting this error cc -O2 -Wall -Wunused -I/usr/src/linux-2.4.22-1.2115.nptl/include -Iinclude/ -DIPTABLES_VERSION=\1.2.9\ -fPIC -o extensions/libipt_layer7_sh.o -c extensions/libipt_layer7.c extensions/libipt_layer7.c:21:45: linux/netfilter_ipv4/ipt_layer7.h: No such file or directory extensions/libipt_layer7.c:52: warning: `struct ipt_layer7_info' declared inside parameter list extensions/libipt_layer7.c:52: warning: its scope is only this definition or declaration, which is probably not what you want extensions/libipt_layer7.c: In function `parse_protocol_file': extensions/libipt_layer7.c:84: error: `MAX_PROTOCOL_LEN' undeclared (first use in this function) extensions/libipt_layer7.c:84: error: (Each undeclared identifier is reported only once extensions/libipt_layer7.c:84: error: for each function it appears in.) extensions/libipt_layer7.c:87: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:87: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:87: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:93: error: `MAX_PATTERN_LEN' undeclared (first use in this function) extensions/libipt_layer7.c:95: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:95: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:95: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c: At top level: extensions/libipt_layer7.c:219: warning: `struct ipt_layer7_info' declared inside parameter list extensions/libipt_layer7.c: In function `parse_layer7_protocol': extensions/libipt_layer7.c:246: warning: passing arg 3 of `parse_protocol_file' from incompatible pointer type extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:264: error: `MAX_PATTERN_LEN' undeclared (first use in this function) extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c: In function `parse': extensions/libipt_layer7.c:278: warning: passing arg 2 of `parse_layer7_protocol' from incompatible pointer type extensions/libipt_layer7.c:280: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c: In function `print': extensions/libipt_layer7.c:325: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:326: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c: In function `save': extensions/libipt_layer7.c:334: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:334: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c: At top level: extensions/libipt_layer7.c:340: error: invalid application of `sizeof' to an incomplete type extensions/libipt_layer7.c:341: error: invalid application of `sizeof' to an incomplete type any help will be apprciate hare ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/ ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] layer7-filter with iptables problem
Hi thanks for the quick reply iam using the following things iptables-1.2.9-layer7-0.4.1.patch layer7-kernel2.4patch-qos-0.4.1b i did the proceedure [EMAIL PROTECTED] linux-2.4.22-1.2115.nptl]# patch -p1 /root/update/layer7-kernel2.4patch-qos-0.4.1b patching file Documentation/Configure.help Hunk #1 succeeded at 10626 (offset 283 lines). patching file include/linux/netfilter_ipv4/ip_conntrack.h Hunk #1 succeeded at 190 (offset 1 line). patching file include/linux/pkt_cls.h patching file net/ipv4/netfilter/Config.in patching file net/sched/Config.in patching file net/sched/Makefile patching file net/sched/cls_api.c patching file net/sched/cls_layer7.c patching file net/sched/regexp/regerror.c patching file net/sched/regexp/regexp.c patching file net/sched/regexp/regexp.h patching file net/sched/regexp/regmagic.h patching file net/sched/regexp/regsub.c [EMAIL PROTECTED] linux-2.4.22-1.2115.nptl]# [EMAIL PROTECTED] linux-2.4.22-1.2115.nptl]# iptables patching [EMAIL PROTECTED] iptables-1.2.9]# patch -p1 ../iptables-1.2.9-layer7-0.4.1.patch.1 patching file extensions/.childlevel-test patching file extensions/.layer7-test patching file extensions/libipt_childlevel.c patching file extensions/libipt_layer7.c patching file iptables.8 chmod +x extensions/.layer7-test extensions/.childlevel-test make KERNEL_DIR=/usr/src/linux-2.4.22-1.2115.nptl make install KERNEL_DIR=/usr/src/linux-2.4.22-1.2115.nptl iam not able to find the ipt_layer.h file and iam not able to see the menus in when i make .. make menuconfig hare - Original Message - From: Nabil SEFRIOUI [EMAIL PROTECTED] To: hare ram [EMAIL PROTECTED]; [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Tuesday, February 03, 2004 8:38 AM Subject: Re: [LARTC] layer7-filter with iptables problem try patching and installing kernel before iptables Le Lundi 02 Février 2004 07:05, hare ram a écrit : Hi iam running FEDORA, i have installed Source of iptable 1.2.9 with the patch layer7-iptables patch done with out any errors and i applied patch in kernel to the layer 7 patch and i have select the required option by doing make menyconfig done make dep make bzImage make modules make modules_install make install and rebooted with customer kernel when i type iptables -t mangle -A POSTROUTING -m layer7 --l7proto http -j MARK --set-mark 1 iptables v1.2.9: Couldn't load match `layer7':/usr/local/lib/iptables/libipt_layer7.so: cannot open shared object file: No such file or directory when i try to do manual compile, iam getting this error cc -O2 -Wall -Wunused -I/usr/src/linux-2.4.22-1.2115.nptl/include -Iinclude/ -DIPTABLES_VERSION=\1.2.9\ -fPIC -o extensions/libipt_layer7_sh.o -c extensions/libipt_layer7.c extensions/libipt_layer7.c:21:45: linux/netfilter_ipv4/ipt_layer7.h: No such file or directory extensions/libipt_layer7.c:52: warning: `struct ipt_layer7_info' declared inside parameter list extensions/libipt_layer7.c:52: warning: its scope is only this definition or declaration, which is probably not what you want extensions/libipt_layer7.c: In function `parse_protocol_file': extensions/libipt_layer7.c:84: error: `MAX_PROTOCOL_LEN' undeclared (first use in this function) extensions/libipt_layer7.c:84: error: (Each undeclared identifier is reported only once extensions/libipt_layer7.c:84: error: for each function it appears in.) extensions/libipt_layer7.c:87: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:87: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:87: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:93: error: `MAX_PATTERN_LEN' undeclared (first use in this function) extensions/libipt_layer7.c:95: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:95: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:95: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c: At top level: extensions/libipt_layer7.c:219: warning: `struct ipt_layer7_info' declared inside parameter list extensions/libipt_layer7.c: In function `parse_layer7_protocol': extensions/libipt_layer7.c:246: warning: passing arg 3 of `parse_protocol_file' from incompatible pointer type extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:264: error: `MAX_PATTERN_LEN' undeclared (first use in this function) extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete type extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete type extensions
[LARTC] Re: where is ipt_layer.h
Hi Mathew I was not understand is that what you saying I need to use any one of the Patch iptables-1.2.9-layer7-0.4.1.patch This above patch for Marking the Packets with Iptables right ? layer7-kernel2.4patch-qos-0.4.1b this Patch is for TC to work with layer 7 aplication so what did iam doing wrong ok take example, i re did my setup like below extract new kernel extract iptables source extract pom i have just patched only iptables with layer7 patch (iptables-1.2.9-layer7-0.4.1.patch) then i patched kernel with POM make mrproper make menuconfig -- here iam not able to see that optiond what mentioned in the docs (Layer 7 match support and Child Level match support. ) make dep make bzImage make modules make modules_install make install rebooted with new kernel iam not able to mark pacjets using iptables iam getting the following error iptables -t mangle -A POSTROUTING -m layer7 --l7proto http -j MARK --set-mark 1 iptables v1.2.9: Couldn't load match layer7':/usr/local/lib/iptables/libipt_layer7.so: cannot open shared object file: No such file or directory when i try to compile manually, iam geeting the ipt_layer7.h not found. cc -O2 -Wall -Wunused -I/usr/src/linux-2.4.22-1.2115.nptl/include -Iinclude/ -DIPTABLES_VERSION=\1.2.9\ -fPIC -o extensions/libipt_layer7_sh.o -c extensions/libipt_layer7.c extensions/libipt_layer7.c:21:45: linux/netfilter_ipv4/ipt_layer7.h: No such file or directory extensions/libipt_layer7.c:52: warning: `struct ipt_layer7_info' declared inside parameter list extensions/libipt_layer7.c:52: warning: its scope is only this definition or declaration, which is probably not what you want extensions/libipt_layer7.c: In function `parse_protocol_file': extensions/libipt_layer7.c:84: error: `MAX_PROTOCOL_LEN' undeclared (first use in this function) any suggestion or any proceedure iam doing correct me give me the right proceedure hare - Original Message - From: Matthew Strait [EMAIL PROTECTED] To: hare ram [EMAIL PROTECTED] Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Monday, February 02, 2004 8:17 PM Subject: Re: where is ipt_layer.h i am using the following things iptables-1.2.9-layer7-0.4.1.patch layer7-kernel2.4patch-qos-0.4.1b You are using the QoS version of the kernel patch and the Netfilter (iptables) version of the userspace patch. You need to either use QoS with iproute2 or Netfilter with iptables. -matthew ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] Bandwidth Control
Hi yes its very much possible please visit http://lartc.og or docum.org for examples hare - Original Message - From: andybr [EMAIL PROTECTED] To: Lartc List [EMAIL PROTECTED] Sent: Thursday, January 29, 2004 6:27 PM Subject: [LARTC] Bandwidth Control Hello All, I have a link of 1 mbit from my ISP and some clients with link 128kbit when possible to get 100% but at least 64kbit they must have but until now I couldn't do it with tc and or htb. I was wondering if is possible to make a control like that? Thanks in advance, Anderson __ Acabe com aquelas janelinhas que pulam na sua tela. AntiPop-up UOL - É grátis! http://antipopup.uol.com.br/ ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/ ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] Server Report
Hi all i have seen some one sending behalf me virus to list iam also checking , this is for ur information you can block this IP's Received: (qmail 20262 invoked from network); 27 Jan 2004 19:34:55 - Received: from unknown (HELO outpost.ds9a.nl) (213.244.168.210) by 202.63.96.248 with SMTP; 27 Jan 2004 19:34:55 - Received: from outpost.ds9a.nl (outpost [127.0.0.1]) by outpost.ds9a.nl (Postfix) with ESMTP id 6A5B344B7; Tue, 27 Jan 2004 15:11:19 +0100 (CET) but this not belong to my IP sorry for inconvenience caused hare - Original Message - From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Tuesday, January 27, 2004 7:40 PM Subject: [LARTC] Server Report ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] tool to monitor HTB class utilisation
i think you can find the very good tools in docum.org hare - Original Message - From: jayesh rathod [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Monday, January 19, 2004 1:11 PM Subject: [LARTC] tool to monitor HTB class utilisation Hi, can any body suggest any tool which can show the utilisation for individual classes for HTB. preferable written in C/or shell script. Regards Jayesh - Still single? Click here to find the perfect match. http://www.bharatmatrimony.com/cgi-bin/bmclicks1.cgi?141 ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/ ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] HTB Question
Hi all i have installed the FEDORA and i saw the fedora ships with latest IP and TC and HTB too when i add the with TC Script with HTB iam getting that HTB version. HTB init, kernel part version 3.12 and iam comparing with my old version which is installed and patched with TC 3.6 patch that is on RH 9.0 with TC and HTB patch shows HTB init, kernel part version 3.7 so which one is latest , iam concused could some one recomend me.. hare ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] Multihome- routes patch problem
See the the error, its not patched perfectly its giving some problems, while iam patching patching file net/ipv4/fib_rules.c patching file net/ipv4/fib_semantics.c Hunk #4 succeeded at 366 with fuzz 2. Hunk #5 FAILED at 384. --- Hunk #6 succeeded at 436 with fuzz 1. 1 out of 12 hunks FAILED -- saving rejects to file net/ipv4/fib_semantics.c.rej - patching file net/ipv4/ip_nat_dumb.c patching file net/ipv4/netfilter/ip_fw_compat_masq.c patching file net/ipv4/netfilter/ip_nat_core.c Hunk #1 succeeded at 962 (offset 9 lines). patching file net/ipv4/netfilter/ip_nat_standalone.c Hunk #1 succeeded at 221 (offset -5 lines). Hunk #2 succeeded at 300 with fuzz 2 (offset 1 line). Hunk #3 succeeded at 330 with fuzz 2 (offset -5 lines). patching file net/ipv4/netfilter/ipt_MASQUERADE.c Hunk #1 FAILED at 88. 1 out of 1 hunk FAILED -- saving rejects to file net/ipv4/netfilter/ipt_MASQUERADE.c.rej hare - Original Message - From: Julian Anastasov [EMAIL PROTECTED] To: hare ram [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Thursday, January 08, 2004 4:27 PM Subject: Re: [LARTC] Multihome- routes patch problem Hello, On Thu, 8 Jan 2004, hare ram wrote: [EMAIL PROTECTED] patch -p1 /root/update/update/routes-2.4.20-9.diff What happens with routes-2.4.22-9.diff ? Regards -- Julian Anastasov [EMAIL PROTECTED] ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] HTB filters - pls help me
Hi Stef what happend if already existing people on the class so in the short gap time when we delete and add the rule, is the session will be disconects ? they will get maximum available throughput, when we remove and add, since the IP no more belong to any class but when i re-run the script, they going to same marked and kept in the same class, is this right what happend if so many class like 1000 rules... thanks hare - Original Message - From: Stef Coene [EMAIL PROTECTED] To: jayesh rathod [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Monday, January 05, 2004 12:11 AM Subject: Re: [LARTC] HTB filters - pls help me On Sunday 04 January 2004 07:27, jayesh rathod wrote: Hi, we r using HTB algorithm,for traffic shaping, we are facing a problem. we are able to create multiple classes,filters. But when we delete 1 filter all filter gets deleted. how do we avoid that. waiting for you reply What I do, is creating a script that delets the root qdisc and re-add everything. Deleting the root qdisc delets all classes and filters. So I never delete a filter. Anyway, can you post your commands ? Stef -- [EMAIL PROTECTED] Using Linux as bandwidth manager http://www.docum.org/ #lartc @ irc.openprojects.net ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/ ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] Multi Routes problem
Hi all i have 2 offices with the distance of 2KM i have fiber connected to other office total 3 links otehr side office connection - so i have installed in linux box 4 ethernet cards 3 fiber links are connected to 3 ports of linux box one is connected to other side of the LAN main office connection --- all 3 fiber links are connected to Switch now i made the the linux box in bridge mode when i try to access from lan, iam able to see the traffic is going only one interface how do i make the traffic to go other interface and load balance to or make one of the interface is main, and rest to back up links once the main link go down, it should automatically shift to other standby links any suugestions hare ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] Load balancing and failover
Hi all i was going through the documents i need to achive the following setup, but iam confused to deploy but some one recomed me what will be good offic other office - Switch lan users ___ --- fiber link ___ wireless link now i want fiber both the links to be load balance from other office to this office when one fiber down, it shoould shift to other fiber with full load if other fiber down, it should shift to wireless other side i have PC with 4 ethernet cards 1 connected to 1st fiber 2nd connected to 2nd fiber 3 is connected to wireless 4th is connect to local LAN of other side of office OFFICE side all connected to to my 3548XL Cisco Switch i dont want to give any IP's to 1 2 3, they should work in bridge mode 4th will have one of the IP range of OFFICE . iam using RH 9.0 with all patches any one recomend me how can i achive this setup thanks in advance for the advice hare ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] Multiple gatways+Bridge+dead gatway detection
Hi all Iam running now, Cisco Route-map using Multiple gateways so iam manually forwarding the source ip address to different gateways using routemap of cisco Due to Limitation of the Router and process is High, i can not afford to go for high end router. So i have decided to Go for Linux Router with Multiple gateways I have router 1 co-located at provider 1 I have router 2 co-located at provider 2 I have router 3 co-located at my NOC From Provider 1 to My NOC and provider 2 to NOC are connected via Fiber and its terminated to My Switch Router 3 is also terminated to same Switch All my other Aggrigate router and Dialup and other Servers gateway is My router 3 ( x.x.x.2) My router 3 will decide which link the packets should go out using Route-map Router3 ip address x.x.x.2 Router 2 ip address x.x.x.3 Router 1 ip address x.x.x.4 Now I have Introduced My linux Box with all patches mention in nano.txt I have Linux box with 4 interface Eth1 connected to router 3 ( x.x.x.2) Eth2 connected to router 2 ( x.x.x.3) Eth3 connected to router 1 ( x.x.x.4) Eth0 is connected to My LAN and allocated IP x.x.x.5 , So all my local network should keep gateway of Eth0 ( x.x.x.5) Now my linux box should decide the routes depend on the source IP address Now my Queations are 1. can i make eth1, eth2, eth3 in bridge mode, so i no need to mention any ip address to those interface 2. so eth0 and router1,2,3, are in same subnet 3. iam running in BGP in cisco router, need to shift to this Linux box, is this zebra is stable, any expert coment. 4. if except eth0 have ip, rest all bridgemode, how does the iptables take care of routings 5, or i should use etables 6. is this possible that this linux box act as a bridge mode with out any IP on all interfaces and act as a router and decide the routes ( if yes, how ?) 7. how does the Link failure detects take place, since the router Ethernet Link will be up, becoz its connected to fiber, but if the wan link go down at the co-located router, how does the routes will take place and detect the link is down. and send them to other active Links. thanks some one will comment on this setup before i deploy, i want to take some suggestions and go for live thanks hare ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] dead gateway
Hi Please check the Julian Anastasov site http://www.ssi.bg/~ja/ he has this patch regards hare - Original Message - From: vadiraj c s [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Wednesday, October 01, 2003 11:04 AM Subject: [LARTC] dead gateway Hi all, Has any one used dead gateway detection patch. Any one worked on it. What do you feel about it regards vadiraj ___ Television meets Accounts; Jyoti Weds Rajaram. Rediff Matchmaker strikes another interesting match !! Visit http://matchmaker.rediff.com?1 ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/ ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] Multiple Links
Hi all Iam planning to deploy Multiple Links using RH 9.0/ PIII 500Mhz/512MB RAM With all Patches related to Route and rest Mentioned in nano.txt Iam Running BGP 4 with all the ISP, but iam not doing Load balancing the Links Each Link have specific application and specific users. Eth0 is connected to Local Net eth1- ISP1 eth2- ISP2 eth3- ISP3 Now i want to make Specific Routes x.x.x.x should go to ISP 1 y.y.y.y should go to ISP 2 z.z.z.z should go to ISP 3 x, y, z, and other block of IP's are my IP range of IP's If the x.x.x.1 trying to reach y.y.y.1, it should identify this route internally only, and it should connect directly from eth0 to PC of y.y.y.1 rather going to ISP 1 and come back, How can make it this ? same situation if y.y.y.1 want to contact x.x.x.1 it should take decision on Eth0 only, rather going out come back from ISP. any help will be appreciated hare ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] Performanace fo the Iptables Server
Hi Stef regarding the same topic if i use iptables -A INPUT -s 192.168.2.1 iam able to capture packets going fro 192.168.2.1 to any address how about any address coming to 192.168.2.1 this will be added in to same rule or i need to add another Rule iptables -A INPUT -d 192.168.2.1 hare - Original Message - From: Stef Coene [EMAIL PROTECTED] To: hare ram [EMAIL PROTECTED]; [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Wednesday, August 27, 2003 10:47 PM Subject: Re: [LARTC] Performanace fo the Iptables Server On Wednesday 27 August 2003 19:03, hare ram wrote: Hi Stef thanks for the reply yes i would like to do accounting the source IP so i need to log them all the traffic, so i will know each IP how much transfering DATA with my configuration, is there any performance issue i may have more than thousands of passing through this firewall or qos server so my PC will have any performance issue or, this configuration need any modification You don't have to log each packet to do accounting. If you create 1 iptables rule for each src address, you know how many packets and bytes that that src address transmitted. iptables -A INPUT -s 192.168.1.0 iptables -A INPUT -s 192.168.1.1 iptables -A INPUT -s 192.168.1.2 iptables -L -v -n Chain INPUT (policy DROP 47 packets, 5842 bytes) pkts bytes target prot opt in out source destination 0 0all -- * * 192.168.1.0 0.0.0.0/0 0 0all -- * * 192.168.1.1 0.0.0.0/0 0 0all -- * * 192.168.1.2 0.0.0.0/0 Stef -- [EMAIL PROTECTED] Using Linux as bandwidth manager http://www.docum.org/ #lartc @ irc.oftc.net ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] Performanace fo the Iptables Server
Hi all I have RH 9.0 PIII with 550Mhz 512MB RAM working fine with Iptables+TC+HTB Now i want o make accounting system using ULOG so i introduced to send all logs to Mysql So i can make my own Graphs iptables -A INPUT -j ULOG iptables -A FORWARD -j ULOG iptables -A OUTPUT -j ULOG the Server is connected to Several Clients does this server will have any Impact of performance or this PC can handle Easily how can caluculate the PC configuration, any help hare With ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] Performanace fo the Iptables Server
Hi Stef thanks for the reply yes i would like to do accounting the source IP so i need to log them all the traffic, so i will know each IP how much transfering DATA with my configuration, is there any performance issue i may have more than thousands of passing through this firewall or qos server so my PC will have any performance issue or, this configuration need any modification thanks hare - Original Message - From: Stef Coene [EMAIL PROTECTED] To: hare ram [EMAIL PROTECTED]; [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Wednesday, August 27, 2003 9:00 PM Subject: Re: [LARTC] Performanace fo the Iptables Server On Wednesday 27 August 2003 07:46, hare ram wrote: Hi all I have RH 9.0 PIII with 550Mhz 512MB RAM working fine with Iptables+TC+HTB Now i want o make accounting system using ULOG so i introduced to send all logs to Mysql So i can make my own Graphs iptables -A INPUT -j ULOG iptables -A FORWARD -j ULOG iptables -A OUTPUT -j ULOG the Server is connected to Several Clients does this server will have any Impact of performance or this PC can handle Easily how can caluculate the PC configuration, The needed configutation also depends on how many logs you will have and how you are going to proces them. And do you really want to log everything? If you are interested in what's going thru your firewall, you can also log the connections. Or you can install ntop on the firewall. Stef -- [EMAIL PROTECTED] Using Linux as bandwidth manager http://www.docum.org/ #lartc @ irc.oftc.net ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] Performanace fo the Iptables Server
Hi Stef How about Source and Desitination port, and protocol wise bytes transfer ( like http, ftp, icmp, udp), if i want to track. next limitation, if the Server goes down, the traffic will be zero, that will be another Limitation If i send the all the traffic to Mysql, so i can get the old data to. may be you can correct me if, i may be wrong thinking correct me with the best methods to do hare - Original Message - From: Stef Coene [EMAIL PROTECTED] To: hare ram [EMAIL PROTECTED]; [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Wednesday, August 27, 2003 10:47 PM Subject: Re: [LARTC] Performanace fo the Iptables Server On Wednesday 27 August 2003 19:03, hare ram wrote: Hi Stef thanks for the reply yes i would like to do accounting the source IP so i need to log them all the traffic, so i will know each IP how much transfering DATA with my configuration, is there any performance issue i may have more than thousands of passing through this firewall or qos server so my PC will have any performance issue or, this configuration need any modification You don't have to log each packet to do accounting. If you create 1 iptables rule for each src address, you know how many packets and bytes that that src address transmitted. iptables -A INPUT -s 192.168.1.0 iptables -A INPUT -s 192.168.1.1 iptables -A INPUT -s 192.168.1.2 iptables -L -v -n Chain INPUT (policy DROP 47 packets, 5842 bytes) pkts bytes target prot opt in out source destination 0 0all -- * * 192.168.1.0 0.0.0.0/0 0 0all -- * * 192.168.1.1 0.0.0.0/0 0 0all -- * * 192.168.1.2 0.0.0.0/0 Stef -- [EMAIL PROTECTED] Using Linux as bandwidth manager http://www.docum.org/ #lartc @ irc.oftc.net ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] Performanace fo the Iptables Server
Hi Stef Thats right, if i make cron job run every 5min, so i will loose only 5min of data. i was not understand You can record the difference between the 2 reads and discard negative values. you mean to say first 5min and next 5min bytes increasing ok if not i will discard and take new values you mean. If i make the log to mysql, so it will be 24hours right is there anything i can make every 5min dump the data to Mysql using ULOG hare - Original Message - From: Stef Coene [EMAIL PROTECTED] To: hare ram [EMAIL PROTECTED]; [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Wednesday, August 27, 2003 11:11 PM Subject: Re: [LARTC] Performanace fo the Iptables Server On Wednesday 27 August 2003 19:31, hare ram wrote: Hi Stef How about Source and Desitination port, and protocol wise bytes transfer ( like http, ftp, icmp, udp), if i want to track. next limitation, if the Server goes down, the traffic will be zero, that will be another Limitation Not true. If you record the counters each 5 minutes, you loose max 5 minutes of counters. You can record the difference between the 2 reads and discard negative values. If i send the all the traffic to Mysql, so i can get the old data to. may be you can correct me if, i may be wrong thinking correct me with the best methods to do If you really want it very detailed (src/dst - address/port), you indeed have to log it to mysql or so. You can calulcate the number of updates you have to do mysql and simulate this on a test box. Stef -- [EMAIL PROTECTED] Using Linux as bandwidth manager http://www.docum.org/ #lartc @ irc.oftc.net ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] help on Layer 7 with TC
Hi i have seen your post in news group that layer 7 filtering can be used with TC iam trying to deploy layer 7 in RH 9.0 which got a kernel of 2.4.20 i have upgraded to 2.4.20-19 now but the Layer 7 available for only 2.5 and above how can i use this patch for 2.4.20-19 does any one have clue for the same or any other Patch i can get to deploy with 2.4.20 help will be appreciate hare ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] bandwidth shaping over multiple WAN links
Hi Madhuri yes its possible, you can make all link one big pipe and share the load equally to do this you need to add some patches to you kernel you did not mention what distro are you using iam using redhat 9.0, with multiple links working fine best of luck hare - Original Message - From: madhuri [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Saturday, July 26, 2003 3:09 PM Subject: [LARTC] bandwidth shaping over multiple WAN links Hi, We have three WAN links each of capacity 2 Mbps. There is a one linux box per link which is used for NAT and firewall. So I have three linux boxes and three WAN links to talk to the internet. We want to do bandwidth shaping over these three links. I know individually we can do bandwidth shaping for a particular WAN link using linux tc tool. I can repeat the same bandwidth shaping commands for other two links also. However it would be better if I can treat three links as one big WAN pipe and do the bandwidth shaping for all of them at one place. Is it possible? I am just thinking aloud and not sure if that is possible or not. Thanks, Madhuri ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/ ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] bandwidth shaping over multiple WAN links
Hi Yes, you can achive the same with RH 8.0 also. yes iam using multiple ethernet for internet side ( backbone side) and one ethernet for LAN side and loadbalancing all the links.. iam refereing http://www.ssi.bg/~ja/nano.txt with the help of julian, i have achived this for load balancing for shaping the b/w best places are www.lartc.org www.docum.org ( stef) will help you lot best of luck hare - Original Message - From: Madhuri Patwardhan [EMAIL PROTECTED] To: hare ram [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Saturday, July 26, 2003 4:12 PM Subject: Re: [LARTC] bandwidth shaping over multiple WAN links We are using redhat 8.0, however we can switch to redhat 9.0 if required. So you have one linux box with multiple ethernet cards each connected to a seperate WAN link and you are doing traffic shaping over these links? I have read about load balancing with 'teq' or something like that with linux. Are you refering to that? Madhuri On Sat, 26 Jul 2003, hare ram wrote: Hi Madhuri yes its possible, you can make all link one big pipe and share the load equally to do this you need to add some patches to you kernel you did not mention what distro are you using iam using redhat 9.0, with multiple links working fine best of luck hare - Original Message - From: madhuri [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Saturday, July 26, 2003 3:09 PM Subject: [LARTC] bandwidth shaping over multiple WAN links Hi, We have three WAN links each of capacity 2 Mbps. There is a one linux box per link which is used for NAT and firewall. So I have three linux boxes and three WAN links to talk to the internet. We want to do bandwidth shaping over these three links. I know individually we can do bandwidth shaping for a particular WAN link using linux tc tool. I can repeat the same bandwidth shaping commands for other two links also. However it would be better if I can treat three links as one big WAN pipe and do the bandwidth shaping for all of them at one place. Is it possible? I am just thinking aloud and not sure if that is possible or not. Thanks, Madhuri ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/ ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/ ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/ ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] marking packets problem: iptables
Hi Pawan yes you can check the packets are marked or not by giving iptables -xvnL and see any packets marked hare - Original Message - From: pawan gupta [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, July 24, 2003 10:57 AM Subject: [LARTC] marking packets problem: iptables Hi all, I've set up iptables to mark all the packets coming from a particular host on my network. But I'm not sure whether my packets are getting marked or not. Does iptables provides any way to the packets which are getting marked (or any other way which makes sure that the packets are getting marked)? Please help thanks, Pawan ___ Download the hottest happening ringtones here! OR SMS: Top tone to 7333 Click here now: http://sms.rediff.com/cgi-bin/ringtone/ringhome.pl ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/ ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] BGP with LARTC
Hi all iam trying to Deploy BGP with Linux BOX i have 3 provider, i want to take the Full-Routing from them what is best PC configuration, required for this setup Some expert put coment on this will be Good or any resource URLs will be thanks regards hare ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] Commited b/w question
Hi i been working tc and htb, its good and iam able to achieve some of the things what i required for me in my office i have question here like this i have total bandwidth 256kbps we have a department finace and admin i want to give a b/w of 64 both, either up or down to finance and admin 128kbps up or down.. when i setup a config of my own, they able to get 128up and 128down also same. so fiannce dept is consuming all the b/w, so i will be problem with my admin how do i control aggregate b/w of 128kbps either up or down any sample config provided will be great advance thanks for helping hare ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] wrr and htb help
Hi thanks all for the before help i found wrr is good one, iam able to setup all and made them the available b/w equal to users for the available bandwidth and setup a web pages for the same to monitor now i have different Idea and need to setup, here iam not sure either its possible or not Please suggest i want to alocate bandwidth example 60% for http 20% ftp 10% all 5% ssh 5% voice and in 60% if the bandwidth for http, if the user are 6 each user should get 60/6=10% each user like other protocols tooo how can i achive this with wrr and htb thanks hare ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] Need some help on HTB and IMQ
Hi tthanks, if the IMQ used, then if its keep queing the packets and send and receive. how about the performance, if like 2000 users or more connection. and latency of the box hare - Original Message - From: Martin A. Brown [EMAIL PROTECTED] To: hare ram [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Tuesday, March 04, 2003 2:03 PM Subject: Re: [LARTC] Need some help on HTB and IMQ Hare, : i was going through this thread you mentioned if iam using this Linux : box as a gateway, i dont required IMQ to control ingress and egress how : can do with out IMQ, can you point me : : i have 2 interface eth0 and eth1 like to control bandwidth for my users : both up and down Since the router can only shape traffic it sends, you can shape your outbound (upload) traffic on your Internet connected interface, and you can shape your inbound (download) traffic on the internal interface as you transmit to your internal network. Another way to shape the download bandwidth is to use policing or ingress filters with IMQ. http://linux-ip.net/htb-script As Mohan explained, traffic control can delay packets already received from the Internet before sending them to the internal network application, thus simulating a user-specified download bandwidth. Similarly, upload bandwidth can be controlled/shaped by delaying packets bound for the Internet before sending them up to the gateway. By the way, Stef is on vacation this week. I believe he said he'd be skiing. Good luck, -Martin P.S. I'm thinking of changing my name to A-router-can-only-shape-the- traffic-it-sends. I forgot this *again* when I was writing this script. Maybe then I'd remember! -- Martin A. Brown --- SecurePipe, Inc. --- [EMAIL PROTECTED] ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] Need some help on HTB and IMQ
Hi Stef i was going through this thread you mentioned if iam using this Linux box as a gateway, i dont required IMQ to control ingress and egress how can do with out IMQ, can you point me i have 2 interface eth0 and eth1 like to control bandwidth for my users both up and down thanks hare - Original Message - From: Stef Coene [EMAIL PROTECTED] To: hanumantha kavuluru [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Tuesday, February 25, 2003 1:12 AM Subject: Re: [LARTC] Need some help on HTB and IMQ On Monday 24 February 2003 20:24, hanumantha kavuluru wrote: Hi All, I am fairly new to Linux and TC. I am currently implementing Bandwidth Management/Traffic Control for a gateway product which is based on Linux 2.4.18 kernel. I am required to implement some kind of a user based traffic control where each user(source IP) is allocated a fixed amount of bandwidth. I also need to do traffic shaping both for the eggress and ingress traffic. Going through LARTC documentation , I found that IMQ with HTB will suit my requirement. Is anybody using IMQ with HTB? Can HTB and IMQ work with 2.4.18 kernel? If so, where can i download all the patches? It is difficult for us to migrate to 2.4.20 kernel as most of the software has already been developed using 2.4.18 kernel. http://luxik.cdi.cz/~patrick/imq/ http://luxik.cdi.cz/~devik/qos/htb/ And you don't need imq. If you have a gateway, you can shape on both interface so you can control up- and download traffic. Just wondering, what kind of software do you developped so you can not use kernel 2.4.20 ?? Stef -- [EMAIL PROTECTED] Using Linux as bandwidth manager http://www.docum.org/ #lartc @ irc.oftc.net ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/ ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] Problem With Load Balancing the Links
Hi thanks, for the suggestion let me look and install this latest one as you have mentioned in the documents, the last time should be default, but why iam getting 253 here 0: from all lookup local 50: from all lookup main 201:from 202.63.96.0/24 lookup 201 202:from 202.63.111.150/24 lookup 202 222:from all lookup 222 32766: from all lookup main 32767: from all lookup 253 and iam not able to Ping or go out from My gateway IP i can only Ping my Gateway IP's thanks hare - Original Message - From: Julian Anastasov [EMAIL PROTECTED] To: hare ram [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Monday, December 23, 2002 3:57 PM Subject: Re: [LARTC] Problem With Load Balancing the Links Hello, On Mon, 23 Dec 2002, hare ram wrote: iam using redhat 8.0 with Latest Kernel 2.4.18-18.0 with iproute [root@pdn root]# rpm -q iproute iproute-2.4.7-5 I'm not sure if 2.4.7-5 covers the desired version but here it is: ftp://ftp.inr.ac.ru/ip-routing/iproute2-2.4.7-now-ss020116-try.tar.gz is this Corect or i need to still upgrade if so, i did not find latest than this You can always list the above directory for latest tarballs thanks hare Regards -- Julian Anastasov [EMAIL PROTECTED] ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/ ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] Problem With Load Balancing the Links
Hi iam following the Julian Nano.txt, iam able to setup all but when i check the following command [root@pdn root]# ip route list table 222 default proto static nexthop via 202.x.x.254 dev eth0 weight 256 dead onlink pervasive nexthop via 203.x.x.17 dev eth1 weight 1 why iam getting this dead onlink pervasive, the document says i should get weight 1 what ism doing wrong with this setup some one suggest me thanks hare ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Re: [LARTC] Problem With Load Balancing the Links
Hi iam using redhat 8.0 with Latest Kernel 2.4.18-18.0 with iproute [root@pdn root]# rpm -q iproute iproute-2.4.7-5 is this Corect or i need to still upgrade if so, i did not find latest than this thanks hare - Original Message - From: Julian Anastasov [EMAIL PROTECTED] To: hare ram [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Sunday, December 22, 2002 10:12 PM Subject: Re: [LARTC] Problem With Load Balancing the Links Hello, On Sun, 22 Dec 2002, hare ram wrote: iam following the Julian Nano.txt, iam able to setup all but when i check the following command [root@pdn root]# ip route list table 222 default proto static nexthop via 202.x.x.254 dev eth0 weight 256 dead onlink pervasive nexthop via 203.x.x.17 dev eth1 weight 1 This smells like one iproute utility bug, just upgrade to iproute2 from Year 2002 which fixes similar problem. Regards -- Julian Anastasov [EMAIL PROTECTED] ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/ ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] nano.txt
Hi does any one have this File seems to be this site is down http://www.linuxvirtualserver.org/~julian/#routes-2.4 thanks hare
Re: [LARTC] NEWBIE to LARTC
any answer for this thanks hare - Original Message - From: hare ram To: [EMAIL PROTECTED] Sent: Wednesday, November 27, 2002 2:06 PM Subject: [LARTC] NEWBIE to LARTC Hi all iam new to LARTC, i have some sample setup to be setup to my home based network i have setup like this i have internet bandwidth of 128kbps ( may later 256kbps) and i have 100 users running in the network, average will be 20-30 connection will be online iam using redhat 7.3 and trying to upgrade to 8.0 ( later) and iam running iptables with transparent cache with Squid. with 2 NIC cards now iam looking solution is like this 128kbps to be shared by all the online users equally if any users increase, the bandwidth will automatically share with all users if the user decrease also bandwidth should automatically loadbalance done. and i want to priority traffic is http, yahoo, msn, chat, ping, traceroute, ssh lease priority is any downloads. and uploads. any one give me sample scripts iam confused what to use, i seen document, it say CBQ, HTB SFQ iam really confused, can some one clarify me what to use to achieve the above setup thanks hare
Re: [LARTC] NEWBIE to LARTC
Hi thanks for the help i have just installed Redhat 8.0 when i see make manuconfig its show HTB already as a module still i need to add any patches where can i find Stef Coene's scripts thanks hare - Original Message - From: Martin A. Brown [EMAIL PROTECTED] To: hare ram [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Wednesday, November 27, 2002 9:33 PM Subject: Re: [LARTC] NEWBIE to LARTC Hare, : iam new to LARTC, i have some sample setup to be setup to my home Start reading! Seriously, there's a great deal to understand about traffic control...some links below will serve as starting points. There are some drop-in scripts you can use : and iam running iptables with transparent cache with Squid. : with 2 NIC cards Read in the archives about Squid and TC: http://www.google.com/search?q=site%3Amailman.ds9a.nl+squid : now iam looking solution is like this : 128kbps to be shared by all the online users equally : if any users increase, the bandwidth will automatically share with all users : if the user decrease also bandwidth should automatically loadbalance done. You'll need to read up on general LARTC topics and roll your own solution, although you should be able to use Stef Coene's scripts. http://lartc.org/ : and i want to priority traffic is http, yahoo, msn, chat, ping, : traceroute, ssh lease priority is any downloads. and uploads. : any one give me sample scripts See http://www.docum.org/ for scripts and other help. You will also find the wondershaper script at the http://lartc.org/ website. : iam using redhat 7.3 and trying to upgrade to 8.0 ( later) : iam confused what to use, i seen document, it say CBQ, HTB SFQ Compile kernel 2.4.20 with support for HTB. It's very well supported on this list, and can do everything you need to do. -Martin -- Martin A. Brown --- SecurePipe, Inc. --- [EMAIL PROTECTED] ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/ ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[LARTC] How do i check HTB enabled or not
Hi i have Redhat Linux 8.0 when iam trying to configure htb iam getting following error any clue [root@pdn root]# tc qdisc add dev eth0 root handle 1: htb default 12 Unknown qdisc htb, hence option default is unparsable hare ___ LARTC mailing list / [EMAIL PROTECTED] http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/