I am trying to mark outbound passive ftp traffic with iptables and shape it to 35KBytes. I am using the following script on the computer that runs the ftp server. It is not working correctly, it seems to limit ALL traffic. Cant file share or anything. Anyone might know what is wrong? #!/bin/bash #shaping passive ftp traffic # mark the outbound passive ftp packets on ports 50000-51000 iptables -t mangle -D POSTROUTING -o eth0 -j MYSHAPER-OUT 2> /dev/null > /dev/null iptables -t mangle -F MYSHAPER-OUT 2> /dev/null > /dev/null iptables -t mangle -X MYSHAPER-OUT 2> /dev/null > /dev/null iptables -t mangle -N MYSHAPER-OUT iptables -t mangle -I POSTROUTING -o eth0 -j MYSHAPER-OUT iptables -t mangle -A MYSHAPER-OUT -p tcp --dport 50000:51000 -j MARK --set-mark 1 # shape the traffic to 35Kbytes tc qdisc del dev eth0 root tc qdisc add dev eth0 root handle 1: htb tc class add dev eth0 parent 1: classid 1:1 htb rate 35kbps tc filter add dev eth0 parent 1: prio 0 protocol ip handle 1 fw flowid 1:1 _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
nix4me wrote:> It is not working correctly, it seems to limit ALL traffic. Cant file > share or anything. >I''m new to traffic control, so maybe I shouldn''t try to help, but you only have 1 qdisc DEFINED to service the device. You also don''t specify a default via that definition. According to http://luxik.cdi.cz/~devik/qos/htb/manual/userg.htm - Now we can optionally attach queuing disciplines to the leaf classes. If none is specified the default is pfifo. This seems to say that you get another qdisc for your one and only class, but where is your other traffic going? That same site shows examples that don''t rely on defaults. Maybe you should consider stating explicitely what you want as the defaults the system is giving you may be your problem. -- Bill Gradwohl bill@ycc.com http://www.ycc.com SPAMstomper Protected email _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/