i got a server (rh 7.3) doing nat that works great. im also doing traffic shaping with cbq (for now) for both downloads and uploads. the download filters (which are based just in the dest ip) do their work but the uploads only works when i use ip's in the filters (destiny ip in the external eth0 or source ip when marking packets on the internal). i want to control uploads by port but it doesn't seem to mach it. i tried marking packets on my internal interface with no results, and using the port number on the filter in the external interface with the same negative result. External=eth0 Internal=eth1 This works tc class add dev eth0 parent 1: classid 1:1021 cbq bandwidth 100Mbit rate 128kbit weight 7kbit prio 5 allot 1514 cell 8 maxburst 20 avpkt 1000 bounded tc qdisc add dev eth0 parent 1:1021 tbf rate 64kBit buffer 3000 limit 3000 tc filter add dev eth0 parent 1:0 protocol ip u32 match ip dst (EXTERNAL FTP SERVER IP) flowid 1:1021 This doesn't work iptables -A PREROUTING -i eth1 -t mangle -p tcp --dport ftp -j MARK --set-mark 1021 tc filter add dev eth0 parent 1:1021 protocol ip prio 3 handle 1021 fw classid 1:1021 or tc filter add dev eth0 parent 1:0 protocol ip u32 match ip dport 21 0xFFFF flowid 1:1021 Is not a syntax problem since i tried several ways with the same result Thanx a lot
-- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://www.redhat.com/mailman/listinfo/redhat-list
