Lee Sanders wrote:
Ok I thought you were trying to match src addresses, and that would be a
problem because of masquerading ;)
yep.
So you need to use addresses before nat - just mark them in iptables
postrouting like.
iptables -t mangle -A POSTROUTING --src 192.168.0.2 -j MARK --set-mark 32
th
On Jeu 12 mai 2005 12:42, Lee Sanders a écrit :
> Interesting because in the L7 FAQ it says they take advantage of
> netfilters
> connection tracking capabilities to classify connections based on their
> first
> few packets and then classify packets based on what connection they are
> in.
>
> To my
> Ok I thought you were trying to match src addresses, and that would be a
> problem because of masquerading ;)
>
yep.
> > Along my travels I ran into this: http://l7-filter.sourceforge.net/
> > Have you played with L7 and can you rate it good/bad ?
>
> I've installed it and used it for 2 month,
On Jeu 12 mai 2005 10:52, Lee Sanders a écrit :
> Hi Sylvain,
>
> Thanks for that, exactly what I'm doing :)
>
Ok I thought you were trying to match src addresses, and that would be a
problem because of masquerading ;)
> Along my travels I ran into this: http://l7-filter.sourceforge.net/
> Have y
Hi Sylvain,
Thanks for that, exactly what I'm doing :)
Along my travels I ran into this: http://l7-filter.sourceforge.net/
Have you played with L7 and can you rate it good/bad ?
The script you sent didn't answer one question, how to match on IP so I can
add a further level of htb to equally sha
On Jeu 12 mai 2005 10:31, Alexander Samad a écrit :
> Sylvain
>
> Q) why use do your matching in tc filter and not netfilter ? Is one way
> better than the other.
>
> I started out doing it via filter and then moved to netfilter instead
> using mark.
>
> Curious to hear what other people have/do d
On Thu, May 12, 2005 at 09:40:56AM +0200, Sylvain BERTRAND wrote:
> On Jeu 12 mai 2005 8:14, Lee Sanders a ?crit :
> > Hi All,
> >
> > I've been playing with QOS for a short while now and have worked out how
> > to do
> > what I want using HTB. Great queuing discipline btw.
> >
> > My problem is th
On Jeu 12 mai 2005 8:14, Lee Sanders a écrit :
> Hi All,
>
> I've been playing with QOS for a short while now and have worked out how
> to do
> what I want using HTB. Great queuing discipline btw.
>
> My problem is the tc filters I want to setup aren't working because
> iptables is getting to the p
