On Wed, Dec 26, 2001 at 01:04:32AM +0000, Sahil Gupta - NET4U wrote:> Hello everybody, > I own a small ISP in New Zealand and have recently purchased additional > bandwith for telehousing customers. Currently all of them connect through''telehousing'' = ''colocating''?> to the Cisco Router, what I wanted to do was to have a linux gateway on > the network which could basically run Traffic Shaping etc. and then > assign the Cisco Router''s Ethernet Interface a Local Network I.P. only > telnettable by the Gateway. > > Does anybody know what the best way to do this is?You just described it. First configure the Linux box with two network interfaces. Make a tiny subnet between your cisco and the Linux machine, and assign both the cisco and the linux machine an ip address in that subnet. May even be a point-to-point route. Then assign the ''inner'' interface of your linux machine the former address of your Cisco, so all customers talk to it automatically. Make sure you have routing enabled, and have compiled in all funky shaping things. Now hook it up and do nothing, just let it sit there to see if it works as it should. And then the fun begins! You can also run a ''proxy arp'' bridge without any configuration changes on either the Cisco or the telehousing customers. See the HOWTO for details. You can also run a real bridge (also see the HOWTO), but currently that means that you lose the ability to use iptables on your bridge. That will change soon, however. Regards, bert -- http://www.PowerDNS.com Versatile DNS Software & Services http://www.tk the dot in .tk Netherlabs BV / Rent-a-Nerd.nl - Nerd Available - Linux Advanced Routing & Traffic Control: http://ds9a.nl/lartc
On Wed, Dec 26, 2001 at 01:22:29AM +0000, Sahil Gupta - NET4U wrote:> What we want to do is to ensure the packets flow through the Linux > Gateway, so we have added 2 NIC''s. I can get it to the stage where the > Linux future Gateway is to access the Net. But when I assign 10.0.0.2 as > the Gateway it doesn''t work. I don''t know what sort of routing needs to > be done on the Linux Gateway.You may need to learn more about how routing works. The quick hint is ''tcpdump -e -n'' which will show you where packets are destined, and to which mac address. If the Cisco is within the same subnet as the Linux machine, and the Linux machine knows this, it will send out an ICMP Redirect telling your customers to go to the Cisco directly.> _______________________________________________ > LARTC mailing list / LARTC@mailman.ds9a.nl > http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://ds9a.nl/lartc/Regarding your other message, I meant this HOWTO ^^^^^^^^^^^^^^^^^^^^^^^^^^ Bert. -- http://www.PowerDNS.com Versatile DNS Software & Services http://www.tk the dot in .tk Netherlabs BV / Rent-a-Nerd.nl - Nerd Available - Linux Advanced Routing & Traffic Control: http://ds9a.nl/lartc
Hello everybody,
I own a small ISP in New Zealand and have recently purchased additional
bandwith for telehousing customers. Currently all of them connect through
to the Cisco Router, what I wanted to do was to have a linux gateway on
the network which could basically run Traffic Shaping etc. and then
assign the Cisco Router''s Ethernet Interface a Local Network I.P. only
telnettable by the Gateway.
Does anybody know what the best way to do this is?
Regards,
Sahil Gupta
NET4U Limited
------------------------------------
NET4U -- www.net4u.co.nz
Home of the new - $24.95 128k ADSL
Nationwide Internet Service Provider
------------------------------------
As below with ###.
Regards,
Sahil Gupta
NET4U Limited
------------------------------------
NET4U -- www.net4u.co.nz
Home of the new - $24.95 128k ADSL
Nationwide Internet Service Provider
------------------------------------
On Tue, 25 Dec 2001, bert hubert wrote:
> On Wed, Dec 26, 2001 at 01:04:32AM +0000, Sahil Gupta - NET4U wrote:
> > Hello everybody,
> > I own a small ISP in New Zealand and have recently purchased
additional
> > bandwith for telehousing customers. Currently all of them connect
through
>
> ''telehousing'' = ''colocating''?
###YES.>
> > to the Cisco Router, what I wanted to do was to have a linux gateway
on
> > the network which could basically run Traffic Shaping etc. and then
> > assign the Cisco Router''s Ethernet Interface a Local Network
I.P. only
> > telnettable by the Gateway.
> >
> > Does anybody know what the best way to do this is?
>
> You just described it. First configure the Linux box with two network
> interfaces. Make a tiny subnet between your cisco and the Linux machine,
and
> assign both the cisco and the linux machine an ip address in that subnet.
> May even be a point-to-point route.
###The Cisco currently has 10.0.0.1. The Linux Gateway has 2, one
external and 10.0.0.2 and it works beautifully.>
> Then assign the ''inner'' interface of your linux machine
the former address
> of your Cisco, so all customers talk to it automatically.
What we want to do is to ensure the packets flow through the Linux
Gateway, so we have added 2 NIC''s. I can get it to the stage where the
Linux future Gateway is to access the Net. But when I assign 10.0.0.2 as
the Gateway it doesn''t work. I don''t know what sort of
routing needs to
be done on the Linux Gateway.>
> Make sure you have routing enabled, and have compiled in all funky shaping
> things. Now hook it up and do nothing, just let it sit there to see if it
> works as it should.
>
> And then the fun begins!
>
> You can also run a ''proxy arp'' bridge without any
configuration changes on
> either the Cisco or the telehousing customers. See the HOWTO for details.
> You can also run a real bridge (also see the HOWTO), but currently that
> means that you lose the ability to use iptables on your bridge.
>
> That will change soon, however.
>
> Regards,
>
> bert
>
> --
> http://www.PowerDNS.com Versatile DNS Software & Services
> http://www.tk the dot in .tk
> Netherlabs BV / Rent-a-Nerd.nl - Nerd Available -
> Linux Advanced Routing & Traffic Control: http://ds9a.nl/lartc
>
BTW, which Howto are you referring to?
Regards,
Sahil Gupta
NET4U Limited
------------------------------------
NET4U -- www.net4u.co.nz
Home of the new - $24.95 128k ADSL
Nationwide Internet Service Provider
------------------------------------
On Tue, 25 Dec 2001, bert hubert wrote:
> On Wed, Dec 26, 2001 at 01:04:32AM +0000, Sahil Gupta - NET4U wrote:
> > Hello everybody,
> > I own a small ISP in New Zealand and have recently purchased
additional
> > bandwith for telehousing customers. Currently all of them connect
through
>
> ''telehousing'' = ''colocating''?
>
> > to the Cisco Router, what I wanted to do was to have a linux gateway
on
> > the network which could basically run Traffic Shaping etc. and then
> > assign the Cisco Router''s Ethernet Interface a Local Network
I.P. only
> > telnettable by the Gateway.
> >
> > Does anybody know what the best way to do this is?
>
> You just described it. First configure the Linux box with two network
> interfaces. Make a tiny subnet between your cisco and the Linux machine,
and
> assign both the cisco and the linux machine an ip address in that subnet.
> May even be a point-to-point route.
>
> Then assign the ''inner'' interface of your linux machine
the former address
> of your Cisco, so all customers talk to it automatically.
>
> Make sure you have routing enabled, and have compiled in all funky shaping
> things. Now hook it up and do nothing, just let it sit there to see if it
> works as it should.
>
> And then the fun begins!
>
> You can also run a ''proxy arp'' bridge without any
configuration changes on
> either the Cisco or the telehousing customers. See the HOWTO for details.
> You can also run a real bridge (also see the HOWTO), but currently that
> means that you lose the ability to use iptables on your bridge.
>
> That will change soon, however.
>
> Regards,
>
> bert
>
> --
> http://www.PowerDNS.com Versatile DNS Software & Services
> http://www.tk the dot in .tk
> Netherlabs BV / Rent-a-Nerd.nl - Nerd Available -
> Linux Advanced Routing & Traffic Control: http://ds9a.nl/lartc
>
Hello everybody. I have a learning-network that consists of a linux file server with samba installed and 2 other windows machines. I have also been able to shape traffic to the 2 machines depending on their ip address, by filtering the traffic with tc. My problem is this: Let''s suppose i want to watch a video file that is located in the linux server, using one of the windows machines. The same windows machine might be also copying other files from the linux server. How can i make sure that the video stream will remain fast, even if there are several files being copied to the same machine? How do i seperate these connections? I thought the connections would use different ports, but if i run netstat on the windows machine, i only get 1 connection and 1 open port. I get the same from the linux server. Thanks in advance. antonis lazaridis. _________________________________________________________________ Send and receive Hotmail on your mobile device: http://mobile.msn.com
depents what video stream are you using. Some uses UDP and some even non-IP protocol. Use tcpdump on Linux side if you are not sure. devik On Tue, 22 Jan 2002, Antonis Lazaridis wrote:> Hello everybody. > > I have a learning-network that consists of a linux file server with samba > installed and 2 other windows machines. > > I have also been able to shape traffic to the 2 machines depending on their > ip address, by filtering the traffic with tc. > > My problem is this: > Let''s suppose i want to watch a video file that is located in the linux > server, using one of the windows machines. The same windows machine might be > also copying other files from the linux server. > > How can i make sure that the video stream will remain fast, even if there > are several files being copied to the same machine? > > How do i seperate these connections? I thought the connections would use > different ports, but if i run netstat on the windows machine, i only get 1 > connection and 1 open port. I get the same from the linux server. > > Thanks in advance. > antonis lazaridis. > > _________________________________________________________________ > Send and receive Hotmail on your mobile device: http://mobile.msn.com > > _______________________________________________ > LARTC mailing list / LARTC@mailman.ds9a.nl > http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://ds9a.nl/lartc/ > >
Ohh well ;) ... hmm .. you can''t do it. You would have to differentiate at SMB blocks level which is not possible because their ordering is fixed in/by TCP stream. Try to use more virtual IPs on the server and run two sambas, one for video and one for other. But it is probably inconvenient and could make problems with locking. devik On Wed, 23 Jan 2002, Antonis Lazaridis wrote:> Hi devik. > > I don''t use any special streams (i wouldn''t know how to do it anyway). > I just connect to the samba server from a windows machine and then from > media player i open the video file (located in the samba server). Then i > start copying another file, and the video quality gets bad. > But the only open ports i see are the samba ports. It seems that both files > are being transferred through the same port. > > How can i differentiate these 2 services?
I see... Could you give me some starting point on how "video streams?" Where can i find info on how to implement them?>From: Martin Devera <devik@cdi.cz> >Date: Wed, 23 Jan 2002 09:23:39 +0100 (CET) > >Ohh well ;) ... hmm .. you can''t do it. You would have to >differentiate at SMB blocks level which is not possible because >their ordering is fixed in/by TCP stream. >Try to use more virtual IPs on the server and run two sambas, >one for video and one for other. But it is probably inconvenient >and could make problems with locking. > >devik > >On Wed, 23 Jan 2002, Antonis Lazaridis wrote: > > > Hi devik. > > > > I don''t use any special streams (i wouldn''t know how to do it anyway). > > I just connect to the samba server from a windows machine and then from > > media player i open the video file (located in the samba server). Then i > > start copying another file, and the video quality gets bad. > > But the only open ports i see are the samba ports. It seems that both >files > > are being transferred through the same port. > > > > How can i differentiate these 2 services? >_________________________________________________________________ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp.
Sorry I don''t know this area .. Look for some HOWTOs or wait if someone other responds here ;) devik On Wed, 23 Jan 2002, Antonis Lazaridis wrote:> I see... > Could you give me some starting point on how "video streams?" > Where can i find info on how to implement them? >
Hello again, i have another question. Is there any way to shape traffic according to file types or directories? Something like: access to files in folderA can have 10Mbps, access to files in forderB can have 5Mbps. Possible? Thanks, antonis. _________________________________________________________________ Join the world’s largest e-mail service with MSN Hotmail. http://www.hotmail.com
hehe, hey people are you joking or what ? well it would be possible witch patched samba :) On Fri, 25 Jan 2002, Antonis Lazaridis wrote:> Hello again, > > i have another question. > > Is there any way to shape traffic according to file types or directories? > Something like: > access to files in folderA can have 10Mbps, > access to files in forderB can have 5Mbps. > > Possible? > > Thanks, > antonis. > > _________________________________________________________________ > Join the worlds largest e-mail service with MSN Hotmail. > http://www.hotmail.com > > _______________________________________________ > LARTC mailing list / LARTC@mailman.ds9a.nl > http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://ds9a.nl/lartc/ > >
Using two IP aliases you could... so folder A is shared on the alias 192.168.0.1 and folder B on 192.168.0.2, then limit the traffic by IP. Out of the box, I don''t believe you''ll have much success. There''s (almost) no way of telling which samba traffic is for which file.> hehe, hey people are you joking or what ? > well it would be possible witch patched samba :)> On Fri, 25 Jan 2002, Antonis Lazaridis wrote:>> Hello again, >> >> i have another question. >> >> Is there any way to shape traffic according to file types or directories? >> Something like: >> access to files in folderA can have 10Mbps, >> access to files in forderB can have 5Mbps. >> >> Possible? >> >> Thanks, >> antonis. >> >> _________________________________________________________________ >> Join the worlds largest e-mail service with MSN Hotmail. >> http://www.hotmail.com >> >> _______________________________________________ >> LARTC mailing list / LARTC@mailman.ds9a.nl >> http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://ds9a.nl/lartc/ >> >>> _______________________________________________ > LARTC mailing list / LARTC@mailman.ds9a.nl > http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://ds9a.nl/lartc/--- "They that can give up essential liberty to obtain a little temporary safety deserve neither liberty nor safety." -- Benjamin Franklin, 1759
On Friday 25 January 2002 09:11, Antonis Lazaridis wrote:> Hello again, > > i have another question. > > Is there any way to shape traffic according to file types or directories? > Something like: > access to files in folderA can have 10Mbps, > access to files in forderB can have 5Mbps. > > Possible?I think it''s possible. There is a ftp-helper for iptables that can mark all ftp-data because it''s smart enough to recoginise the ftp-data path. You can do the same : write a helper that can read the data-stream and that can recognize for instance the attachements of emails. Once you can do this, you can mark these packets and shape them. I don''t know if this is possible, I''m not a kernel/iptabes guru, but there are other people on this list that can say "Stef, you are stupid" or "hey, I will write this for you" ;-) Anyway, it''s not possible with the tools we have right now. Stef -- stef.coene@docum.org More QOS info : http://www.docum.org/ Title : "Using Linux as bandwidth manager"