Peter V. Saveliev wrote:
Simple packet drop works for ordinary tcp congestion algorithms as a channel
overload, and tcp decreases speed. So works RED policing filters and so on.
Well...red isn't exactly 'simple' packet drop :)
In fact, if I could combine packet-rate-limit with red or sfq I
В сообщении от Saturday 06 October 2007 05:16:38 David Boreham написал(а):
> David Boreham wrote:
> >> iptables: limit, hashlimit, dstlimit work on pps basis.
> >
> > ! yes, I'd thought about that stuff but somehow
> > discounted it as 'not worthy' for traffic shaping.
>
> Actually, I remember now
David Boreham wrote:
iptables: limit, hashlimit, dstlimit work on pps basis.
! yes, I'd thought about that stuff but somehow
discounted it as 'not worthy' for traffic shaping.
Actually, I remember now why iptables doesn't work :
All it does is drop the excess packets over the limit.
That'
Peter V. Saveliev wrote:
Has anyone done any work on packet-rate shaping ?
iptables: limit, hashlimit, dstlimit work on pps basis.
! yes, I'd thought about that stuff but somehow
discounted it as 'not worthy' for traffic shaping.
Thanks.
__
> Has anyone done any work on packet-rate shaping ?
>
iptables: limit, hashlimit, dstlimit work on pps basis.
--
Peter V. Saveliev
___
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
On 5 Okt 2007, [EMAIL PROTECTED] wrote:
> In wireless networks it can be handy to shape by packet rate
> rather than bytes/s (because capacity is packet-rate-limited).
>
> Has anyone done any work on packet-rate shaping ?
Don't know any wireless details. But I guess in the end it is very
similar
In wireless networks it can be handy to shape by packet rate
rather than bytes/s (because capacity is packet-rate-limited).
Has anyone done any work on packet-rate shaping ?
Thanks.
___
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl
On Thu, 14 Jun 2007 16:25:14 -0300
"Marco Aurelio" <[EMAIL PROTECTED]> wrote:
> I think it is better to use an IFB device and shape the upload traffic
> using source IP before the NAT
>
> http://linux-net.osdl.org/index.php/IFB
Before NAT?!?! Where does IFB hook netfilter tables??
Before mangle
PLEASE disregard this. My MUA gone crazy and resent a lot of my emails today.
Forgive me.
Ethy
On Wed, 13 Jun 2007 15:18:28 -0300
"Ethy H. Brito" <[EMAIL PROTECTED]> wrote:
> On Mon, 11 Jun 2007 22:02:31 +0300
> VladSun <[EMAIL PROTECTED]> wrote:
>
>
> > TC is performed after POSTROUTING, so
I think it is better to use an IFB device and shape the upload traffic
using source IP before the NAT
http://linux-net.osdl.org/index.php/IFB
On 6/13/07, VladSun <[EMAIL PROTECTED]> wrote:
Ethy H. Brito написа:
> On Mon, 11 Jun 2007 22:02:31 +0300
> VladSun <[EMAIL PROTECTED]> wrote:
>
>
>
>>
Ethy H. Brito написа:
On Mon, 11 Jun 2007 22:02:31 +0300
VladSun <[EMAIL PROTECTED]> wrote:
TC is performed after POSTROUTING, so you can not do any IP related TC
filtering. You can use CPU friendly patches for iptables like IPMARK or
IPCLASSIFY. Take a look at them.
Ok. Can someone
On Mon, 11 Jun 2007 22:02:31 +0300
VladSun <[EMAIL PROTECTED]> wrote:
> TC is performed after POSTROUTING, so you can not do any IP related TC
> filtering. You can use CPU friendly patches for iptables like IPMARK or
> IPCLASSIFY. Take a look at them.
Ok. Can someone point me the right directi
Use IFB which seems to be already on kernel 2.6
On 6/11/07, VladSun <[EMAIL PROTECTED]> wrote:
Ethy H. Brito написа:
> Hi all
>
> I am using a pass trhu router and I need to QoS some clients output by its
> IP address. The problem is that QoS is due after NATing.
>
> Is there some clever way of
Ethy H. Brito написа:
Hi all
I am using a pass trhu router and I need to QoS some clients output by its
IP address. The problem is that QoS is due after NATing.
Is there some clever way of doing this besides MARKing every packet with
some IP hashing in POSTROUTING NAT table?
Regards
Ethy
Hi all
I am using a pass trhu router and I need to QoS some clients output by its
IP address. The problem is that QoS is due after NATing.
Is there some clever way of doing this besides MARKing every packet with
some IP hashing in POSTROUTING NAT table?
Regards
Ethy
___
Hi all,
A new member and new post.
Is it possible to manage bandwidth marking the packets based on VLAN
tags using ebtables?
Samit
___
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
Am Donnerstag, 16. November 2006 17:37 schrieb Larry Brigman:
> On 11/15/06, Daniel Musketa <[EMAIL PROTECTED]> wrote:
> > I can watch traffic coming in on ppp0 with `iftop` and it never exeeds
> > 900kbit. Why could a 2000kbit headroom be not enough for clean receiving
> > of 80kbit VoIP data?
>
>
On 11/15/06, Daniel Musketa <[EMAIL PROTECTED]> wrote:
On Wednesday 15 November 2006 12:07, Daniel Musketa wrote:
> Could I setup HTB better than below? Should I reduce eth1's queue length
> (now 1000)? If yes, how?
The txqueuelen can be changed by
ip link set eth1 txqlen
I tried values o
On Wednesday 15 November 2006 12:07, Daniel Musketa wrote:
> Could I setup HTB better than below? Should I reduce eth1's queue length
> (now 1000)? If yes, how?
The txqueuelen can be changed by
ip link set eth1 txqlen
I tried values of 100 and 3 but can't hear an improvement.
I can watch t
Hello,
I'm trying to get lossless VoIP traffic over my 3000k/500k ADSL line. Shaping
outgoing traffic is no problem: I set total ceil for outgiong device (ppp0)
to 450kbit and put VoIP into highest prio class. Even during full upload the
voice is clean on the other end.
Now I tried to get the
Georgi Alexandrov wrote:
Kenneth Kalmer wrote:
The keyword here is "better", and that was my argument for using a
bridge in the first place. It would appear to be easier to shape &
filter away from the messy scripts of pppd & radius servers, but this
raises the next issue. For the bridge, is th
Kenneth Kalmer wrote:
> The keyword here is "better", and that was my argument for using a
> bridge in the first place. It would appear to be easier to shape &
> filter away from the messy scripts of pppd & radius servers, but this
> raises the next issue. For the bridge, is the pppoe sessions
> id
On 5/23/06, Georgi Alexandrov <[EMAIL PROTECTED]> wrote:
Kenneth Kalmer wrote:
> Guys
>
>
> 1. The clients will all be connected to each other using a normal
> ethernet network, the segments connected with managed switches. The
> capacity is roughly 500 nodes. Will these pppoe sessions interfere
Kenneth Kalmer wrote:
> Guys
>
> After reading through the archives I found some insightful ways to be
> able to shape traffic to pppoe clients from the server. I have two
> questions on the topic of setting up a pppoe server however...
>
> 1. The clients will all be connected to each other using a
Guys
After reading through the archives I found some insightful ways to be
able to shape traffic to pppoe clients from the server. I have two
questions on the topic of setting up a pppoe server however...
1. The clients will all be connected to each other using a normal
ethernet network, the seg
thanks for your help. but i am not that much used to tc. i use tcng. so
how should i write that in tcng?
Anton Glinkov wrote:
If they are all on the same ethernet device, you can match them with:
tc filter add dev ${DEVICE} parent 1: protocol all u32 \
match u16 0x8864 0x at -2 flowid 1:${I
If they are all on the same ethernet device, you can match them with:
tc filter add dev ${DEVICE} parent 1: protocol all u32 \
match u16 0x8864 0x at -2 flowid 1:${ID}
8864 is the PPP session ethernet protocol
you can play around with u32 if you want to match tos or ports and stuff..
> helo
Hello again Rani,
: helo again. I think this question i am asking is worth:
:
: we know that pppoe-server creates a pppX device on each
: connection done to it. So, when i have to shape, i have to shape
: each pppX connection device on itself alone. What i know is that
: the borrowing m
helo again. I think this question i am asking is worth:
we know that pppoe-server creates a pppX device on each connection done
to it.
So, when i have to shape, i have to shape each pppX connection device on
itself alone.
What i know is that the borrowing method on one device by itself, e.g.
hallo
I have the following schema
pptpd server, with clients connecting to it and getting access to
inside LAN resources; however, there are some roaming clients that have
huge files to download and so eating all the bandwidth
how can I have the whole x kbps be available on a single ppp
interfac
deleting the rules
(/etc/ppp/ip-down.d/0pppx_down):
#!/bin/sh
/sbin/tc qdisc del dev $1 root
/sbin/tc qdisc del dev $1 ingress
ppp executes this scripts each time an interface gets up or down.
hope it helps.
Roberto Scattini
From: Rani Ahmed <[EMAIL PROTECTED]>
To: lartc@mailman.ds
Hello Rani,
: i am currently now serving PPPoE in my area. i had a script
: generated from tcng that worked perfectly before i started
: serving PPPoE. the issue is not in the script it self BUT in that
: "tc" code is not shaping on the ethernet anymore BUT INSTEAD on
: the pppX devices.
hi all.
i am currently now serving PPPoE in my area.
i had a script generated from tcng that worked perfectly before i
started serving PPPoE.
the issue is not in the script it self BUT in that "tc" code is not
shaping on the ethernet anymore BUT INSTEAD
on the pppX devices. I tested it and t
Laimis wrote:
If in one time 3 IP adresses using internet. TC script:
DEV=eth0 # LAN
SERVER_IP=192.168.1.2 # eth0 ip address
tc qdisc add dev $DEV root handle 1: htb default 255
tc class add dev $DEV parent 1: classid 1:1 htb rate 384Kbit quantum
1500
tc class add dev $DEV parent 1:1 classid
If in one time 3 IP adresses using internet. TC script:
DEV=eth0 # LAN
SERVER_IP=192.168.1.2 # eth0 ip address
tc qdisc add dev $DEV root handle 1: htb default 255
tc class add dev $DEV parent 1: classid 1:1 htb rate 384Kbit quantum
1500
tc class add dev $DEV parent 1:1 classid 1:20 htb rate 128
> Yes (depending on exact setup/requirements) - it's just gone in the
> latest net tree it's called ifb.
>
> http://www.mail-archive.com/netdev%40vger.kernel.org/msg05208.html
Hmm, this sounds interesting, although it would mean upgrading the kernel
to 2.6 on a router that's hard to get to physica
Flemming Frandsen wrote:
I'm trying to set up a shaper that can shape the inbound traffic to around
40 subnets, that hang on 3 different interfaces of the router.
As Linux can't do ingress shaping I'm left with having to set up 3
seperate shapers, one for each internal interface.
This is not co
I'm trying to set up a shaper that can shape the inbound traffic to around
40 subnets, that hang on 3 different interfaces of the router.
As Linux can't do ingress shaping I'm left with having to set up 3
seperate shapers, one for each internal interface.
This is not completely optimal as I'll ha
What do you call few seconds delay?
What is your link speed, and rates?
Damian Jakubowski wrote:
What traffic shaper must I use to shape small rates (~1kBps) without
significant latency? I have experience with htb and i now that htb is
not very good solution in this case. With so low rates it g
What traffic shaper must I use to shape small rates (~1kBps) without
significant latency? I have experience with htb and i now that htb is
not very good solution in this case. With so low rates it generates a
few seconds delays beetwen sended packets. Such situation is described
on htb homepage
Dnia poniedziałek, 5 grudnia 2005 13:58, Dave Weis napisał(a):
> > That's because you are putting all /24 network into one single HTB. You
> > have to make one HTB (SFQ for every user helps a lot too) for each
> > computer in the network:
> >
> > tc qdisc del root dev eth1
> > tc qdisc add root d
On Sunday 04 December 2005 23:11, Dave Weis wrote:
> What should I be doing differently here?
>
> tc qdisc del dev eth0 root
>
> tc qdisc add dev eth0 root handle 1: htb default 10
>
> tc class add dev eth0 parent 1: classid 1:1 htb rate 100MBit ceil
> 100MBit
>
> tc qdisc add dev eth0 parent 1:10
Dnia niedziela, 4 grudnia 2005 23:11, Dave Weis napisał(a):
> I'm trying to shape each machine on an interface to 256k each, but I'm
> getting stuck and only able to shape an entire interface to 256k. What
> should I be doing differently here?
>
> tc qdisc del dev eth0 root
>
> tc qdisc add dev e
I'm trying to shape each machine on an interface to 256k each, but I'm
getting stuck and only able to shape an entire interface to 256k. What
should I be doing differently here?
tc qdisc del dev eth0 root
tc qdisc add dev eth0 root handle 1: htb default 10
tc class add dev eth0 parent 1: cl
> I thought sending email went out on port 25?
>
> When I look with ethereal, outbound email transfers were on port 58020.
The destination port is 25. The source port is chosen by the kernel.
--
Homepage : http://geocities.com/arhuaco
The first principle is that you must not fool yourself
and y
Hi,
I thought sending email went out on port 25?
When I look with ethereal, outbound email transfers were on port 58020.
I assume it's choosing a random port for transfer? If so how do I tag
it with iptables mark?
I was hoping it was as simple as tagging port 25.
Thanks,
Mark
_
Hi,
Something like this should work I guess..
tc qdisc add dev eth1 ingress
tc filter add dev eth1 parent : (some filter here to match all ip
addresses) flowid :1 police rate 4kbps mtu 4k burst 4k drop
On 6/10/05, Ankur Jain <[EMAIL PROTECTED]> wrote:
> Hello Everyone,
>
> i'm having p
Hello Everyone,
i'm having problem in limiting bandwith on my external interface in the server.
i'm having a network here which is online via a linux server with cbq compiled in kernel.
i'm having eth0 as internal network card,
eth 1 as external network card
my internet bandwith line is 8kb
Przemyslaw Borkowski wrote:
Hello.
My situation looks like:
localnet 10.2.1.0/24
|
10.2.1.1 eth0 (100Mbit)
gateway
ppp0 (DSL 1MBit/256kbit)
|
internet
On gateway I have some transparent proxy services.
I would like to shape traffic incoming from internet and guarantee some
bandwidth f
Hello.
My situation looks like:
localnet 10.2.1.0/24
|
10.2.1.1 eth0 (100Mbit)
gateway
ppp0 (DSL 1MBit/256kbit)
|
internet
On gateway I have some transparent proxy services.
I would like to shape traffic incoming from internet and guarantee some
bandwidth for non proxy services. When I
Hello,
I'm being confrunted with the following situation and I'm trying to
find the simplest solution possible as to also be easier to manage.
1)
I have:
ISP1 -- S1 (linux)
S1's got:
512kbits external bandwidth from ISP1
20Mbits MAN bandwidth not including ISP2
17Mbit tunnel connection wh
Kenneth Kalmer wrote:
Lartc readers
I have a peculiar problem with shaping and firewalling.
My tc rules work great, below is a smaller version:
#Root
tc qdisc del dev eth0 root
tc qdisc add dev eth0 root handle 1: htb default 100
#Root Class
tc class add dev eth0 parent 1: classid 1:1 htb rate 1024
Lartc readers
I have a peculiar problem with shaping and firewalling.
My tc rules work great, below is a smaller version:
#Root
tc qdisc del dev eth0 root
tc qdisc add dev eth0 root handle 1: htb default 100
#Root Class
tc class add dev eth0 parent 1: classid 1:1 htb rate 1024kbit quantum
2
Hi!
George Spiliotis wrote:
Dear all
My current setup is the following:
Normal Hosts + eth0 eth1
|+--+
+-<->| F/W box |--<-> Internet
|+--+
High priority hosts--+
Your questions are very typical.
Dear all
My current setup is the following:
Normal Hosts + eth0 eth1
|+--+
+-<->| F/W box |--<-> Internet
|+--+
High priority hosts--+
My eth0 is a normal 100MBps LAN and my Internet connectio
Hello,
Hello!
See also http://www.docum.org/docum.org/faq/cache/69.html
I cannot found one example on the new but maybe you have time to figure
out how it works.
---
Catalin(ux aka Dino) BOIE
catab at deuroconsult.ro
http://kernel.umbrella.ro/
___
LARTC
Jan Rovner wrote:
Hello,
does anyone have a working solution for the shaping both incoming and
outgoing traffic in such
way, that for a given client the *sum* of incoming and outgoing traffic
is somehow defined?
My ISP does the same thing, it gives me just a line of a defined rate,
no matter the tr
Hello,
does anyone have a working solution for the shaping both incoming and
outgoing traffic in such way, that for a given class the sum of incoming
and outgoing traffic is specified?
My ISP does the same thing, it gives me just a line of a defined rate,
no matter the traffic direction (i.e. her
Hello,
does anyone have a working solution for the shaping both incoming and
outgoing traffic in such
way, that for a given client the *sum* of incoming and outgoing traffic
is somehow defined?
My ISP does the same thing, it gives me just a line of a defined rate,
no matter the traffic
direction
Dimitris Kotsonis wrote:
Justin Schoeman wrote:
Hi all,
I am having some fun with traffic shaping, and have run into an
interesting situation. Here is South Africa, most internet links are
heavily oversubscribed, which means that in most cases the local link
is _not_ the bottleneck, and shaping
On Friday 31 December 2004 12:44, Paras pradhan wrote:
> how do we mark in single iptables line using for ex: --dport 21 and -d
> 192.168.3.88
> or have to do seperatly.
I'm not sure if you can do it in 1 command. Just try it out.
Stef
___
LARTC mailing
> On Wednesday 29 December 2004 13:50, Paras pradhan wrote:
>> hi all:
>>
>> the following scipt is wokring perfectly with limiting ...on limimitng
>> per ip basis..
>>
>>
>>
>> eth0=public static ip
>> eth2= private ip ( 192.168.2.1)
>> --
>> iptables -t mangle -A POSTROUTING -s ! 192.168.0.
On Wednesday 29 December 2004 13:50, Paras pradhan wrote:
> hi all:
>
> the following scipt is wokring perfectly with limiting ...on limimitng per
> ip basis..
>
>
>
> eth0=public static ip
> eth2= private ip ( 192.168.2.1)
> --
> iptables -t mangle -A POSTROUTING -s ! 192.168.0.0/32 -d 192.16
hi all:
the following scipt is wokring perfectly with limiting ...on limimitng per
ip basis..
eth0=public static ip
eth2= private ip ( 192.168.2.1)
--
iptables -t mangle -A POSTROUTING -s ! 192.168.0.0/32 -d 192.168.2.101/32
-j MARK --set-mark 21012
tc class add dev eth2 parent 1:1 classid
On Monday 20 December 2004 23:21, Miguel Sanz wrote:
> Hi,
>
> I've a router configuration with a dsl connection and two ethernet NICs.
> How can I control the traffic of the dsl connection when then destination
> of the traffic can go out of the router using two diferent interfaces?
>
> ppp -- rou
Hi,
I've a router configuration with a dsl connection and two ethernet NICs.
How can I control the traffic of the dsl connection when then destination
of the traffic can go out of the router using two diferent interfaces?
ppp -- router --- lan
|
DMZ
I've read that the s
Justin Schoeman wrote:
Hi all,
I am having some fun with traffic shaping, and have run into an
interesting situation. Here is South Africa, most internet links are
heavily oversubscribed, which means that in most cases the local link
is _not_ the bottleneck, and shaping on the local link does n
On Friday 26 November 2004 00:59, [EMAIL PROTECTED] wrote:
> Hello
>
> At first I must tell you that I´m a real newbie with Linux (and english as
> well...) I´m using 2 vlans and shaping works quite well without vlan
> Now I want to do load balancing at these vlans.
> Any vlan should get the same m
On Thursday 25 November 2004 13:01, Chris Bennett wrote:
> Quick answer is: you can't. You need to know the bandwidth so that you can
> control the queue.
Indeed. I suffer from the same problem with my PPPoATM link, where my shaping
configuration assumes I'm operating over an Ethernet link when
Thanks everybody for your advice... This is going to be an interesting
one to try and solve ;-).
-justin
Justin Schoeman wrote:
Hi all,
I am having some fun with traffic shaping, and have run into an
interesting situation. Here is South Africa, most internet links are
heavily oversubscribed, w
Hello
At first I must tell you that I´m a real newbie
with Linux (and english as well...)
I´m using 2 vlans and shaping works quite
well without vlan
Now I want to do load balancing at these
vlans.
Any vlan should get the same minimum/maximum
bandwidth of download and use the bandwidth tha
--- From: "Justin Schoeman"
<[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Thursday, November 25, 2004 3:17 AM
Subject: [LARTC] Shaping traffic on heavily oversubscribed links?
Hi all,
I am having some fun with traffic shaping, and have run into an
interesting situation.
Hi all,
I am having some fun with traffic shaping, and have run into an
interesting situation. Here is South Africa, most internet links are
heavily oversubscribed, which means that in most cases the local link is
_not_ the bottleneck, and shaping on the local link does not help that
much...
On Sunday 31 October 2004 18:51, you wrote:
> Where can I get some tricks to minimize the delay or latency? Actually, I
> have tried some configurations but I still get too big delay or latency.
The prio parameter of htb classes can help.
Remember, you can not remove the delay. You can only give s
Minimize having a good CPU...every thing that travels lost some
time...even in the wire or in the air :) or in the vacum the
comunications with the MARS have biig delays :)
Stef Coene wrote:
On Saturday 30 October 2004 23:13, Avidianto Widodo wrote:
Hi,
How can I configure shaping ban
On Saturday 30 October 2004 23:13, Avidianto Widodo wrote:
> Hi,
>
> How can I configure shaping bandwidth on htb/cbq without delay or latency?
> Please give some example.
You can not shape without delay or latency. You can only try to minimize the
delay or latency for certain connections.
Stef
how can I configure for shaping bandwith using
cbq/htb without delay or latency?
Hi,
How can I configure shaping bandwidth on htb/cbq without delay or latency?
Please give some example.
Thank's
___
LARTC mailing list / [EMAIL PROTECTED]
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Dave Scott wrote:
Another question, I was also thinking of limiting everyone's bandwidth
to like say 500K each, so no connection can get more then 500k, then
it would take about 6 people using full connections to max the line.
And then what? If the line is maxed, then it's maxed, wether that's don
Hi,
I have a 3Mbit (up,down) connection going through a Linux box (Debian
600mhz, 500mb ram) using NAT to approx 125 users.
Presently I am shaping by marking packets by their port numbers. I'm
prioritizing 22, 23, 25, 80, 81, 110, 443, 500, 3389, 1214,
6881:6889, etc, into their appropriate cla
On Fri, 2004-10-08 at 23:46, [EMAIL PROTECTED] wrote:
> Yes, inbound is affected even though outbound transfers are suspended.
> The inbound in shaped to 39K. This is what totally confuses me. I thought
> with my script that only traffic leaving source ports 5-51000 & 65437
> should be sh
On Fri, 2004-10-08 at 23:46, [EMAIL PROTECTED] wrote:
> Yes, inbound is affected even though outbound transfers are suspended.
> The inbound in shaped to 39K. This is what totally confuses me. I thought
> with my script that only traffic leaving source ports 5-51000 & 65437
> should be sh
Yes, inbound is affected even though outbound transfers are suspended. The inbound in
shaped to 39K. This is what totally confuses me. I thought with my script that only
traffic leaving source ports 5-51000 & 65437 should be shaped. But it is also
shaping traffic entering my machine on t
>In theory yes, but it is shaping inbound transfers to my server.
>YOu're not doing any other sort of Ingress filters are you??
No
>I dont care about destination port. That line was commented. BUT, incoming
>transfers are being shaped for some reason.
>Could this be shaping on the ISP side??
Is the inbound rate affected even if there are no outbound transfers? Is
the speed actually being "limited" to a certain speed, or are you just
noticing that the inbound/upload traffic is slower than it should be.
The reason I ask is because you're tagging all outbound ftp-data traffic
(ports 500
>Theory is.. You can only shape outbound traffic.
Inbound is via tcp windowshaping etc..
In theory yes, but it is shaping inbound transfers to my server.
>> iptables -t mangle -A MYSHAPER-OUT -p tcp --sport 65437 -j MARK --set-mark 20
>> iptables -t mangle -A MYSHAPER-OUT -p tcp --sport 5:510
Try this link, might help:
http://omg.wp.gg/wshaper-howto/
- Original Message -
From:
Stephan M. Ott
To: [EMAIL PROTECTED]
Sent: Tuesday, September 28, 2004 8:57
AM
Subject: [LARTC] Shaping not
working
Hi
folks,
Im
trying to shape two clients
On Tuesday 28 September 2004 08:57, Stephan M. Ott wrote:
> Hi folks,
>
> I'm trying to shape two clients in my LAN when accessing the internet.
> Actual situation is that EVERY traffic goes into 1:40, so the client
> which should fall into 1:30 does not get the lower uplink it should
> have, but t
Hi folks,
I’m trying to shape two
clients in my LAN when accessing the internet.
Actual situation is that EVERY
traffic goes into 1:40,
so the client which should fall into 1:30 does not get the lower uplink it should have, but the
uplink defined for the client defined as 1:30
When I
Hi,
D> Yoa are doing nat on the same machine, thus the filter above will not
D> get the clients IP address but the NAT-ed address. Thats because TC
D> stuff happens after all of the netfilter, routing and bridging stuff.
D> You could MARK packet when they enter eth1 (with iptables) and then
D> ma
> We're running a small ISP and all the users are shaped to 384/512/768k
> both ways (whichever package they choose).
> The router is a linux (debian sarge), the kernel is 2.4.25 right now.
> All users are getting 10.1.1.* ip addresses (eth1) and eth0 connects
> to the isp using ethernet (via a med
Hi there,
We're running a small ISP and all the users are shaped to 384/512/768k
both ways (whichever package they choose).
The router is a linux (debian sarge), the kernel is 2.4.25 right now.
All users are getting 10.1.1.* ip addresses (eth1) and eth0 connects
to the isp using ethernet (via a me
Hi,
I am using the following script to limit my outbound traffic. This
scipt runs on a box behind my firewall. It limits my outbound passive
ftp traffic to 39K perfectlyjust like i want. However, i just
noticed that it is also limiting uploads coming to my server.
Is there something I c
Hi,
I am using the following script to limit my outbound traffic. This
scipt runs on a box behind my firewall. It limits my outbound passive
ftp traffic to 39K perfectlyjust like i want. However, i just
noticed that it is also limiting uploads coming to my server.
Is there something I c
what's your MTU size?
Scrive micah milano <[EMAIL PROTECTED]>:
> I've been following the HOWTO, and reading mailing list discussions
> about throttling bandwidth, and have had some success, but I just want
> to tie off some loose ends. Essentially what I am wanting to do is to
> keep our bandwidt
I've been following the HOWTO, and reading mailing list discussions
about throttling bandwidth, and have had some success, but I just want
to tie off some loose ends. Essentially what I am wanting to do is to
keep our bandwidth usage below 1megabit, because if we go over we get
charged for that tra
I added a default class. It is no longer limiting the entire
connection, but it is also not limiting ftp traffic for some reason.
Any ideas?
#!/bin/bash
#shaping passive ftp traffic
# mark the outbound passive ftp packets on ports 5-51000
iptables -t mangle -D POSTROUTING -o eth0 -j MYSHAPER
I am trying to mark outbound passive ftp traffic with iptables and shape
it to 35KBytes. I am using the following script on the computer that
runs the ftp server.
It is not working correctly, it seems to limit ALL traffic. Cant file
share or anything.
Anyone might know what is wrong? It see
tc qdisc del dev ethx root
tc qdisc add dev ethx root handle 1: htb
tc class add dev ethx parent 1: classid 1:1 htb rate 30kbps
tc filter add dev ethx parent 1: prio 0 protocol ip handle 1 fw flowid 1:1
On Tue, 27 Jul 2004 20:07:37 -0400, nix4me <[EMAIL PROTECTED]> wrote:
> Hi,
>
> I am trying t
Hi,
I am trying to figure out how to shape the following marked packets and
limit them to a speed on 30KBytes. I have read the documentation but I
am unsue of what to do.
iptables -t mangle -A FTP-OUT -p tcp --dport 5:51000 -j MARK
--set-mark 1
Mark
___
1 - 100 of 186 matches
Mail list logo
