I'm deploying a CentOS 7 box as a gateway and I'm trying to figure out how to set up traffic shaping. Historically I've used the Wondershaper script but apparently it's not deprecated in favor of superior queue management. I haven't yet found a packaged solution and I'm wondering what others do to configure this kind of thing. Apparently the new modules are available in many appliance router products (eg. OpenWrt and Streamboost). Perhaps someone here knows of an RPM that wraps this up for RH-based distros? <https://www.bufferbloat.net/projects/cerowrt/wiki/Smart_Queue_Management/> Here's an article arguing why Wondershaper was great in its day but is now bad for modern traffic flows. <https://www.bufferbloat.net/projects/bloat/wiki/Wondershaper_Must_Die/>
I came across this on the Fedora devel list. I added /etc/sysctl.d/51-bufferbloat.conf containing the suggested line and it installs the new codel qdisc as desired. There's probably more knobs that might be useful to tweak but this makes a good start. More reading on the bufferbloat site suggests that the later "cake" module will be even better, but it requires a newer kernel than CentOS currently ships with. <https://lists.fedoraproject.org/pipermail/devel/2015-March/209508.html> # 51-bufferbloat.conf # Address bufferbloat net.core.default_qdisc = fq_codel
On 15/12/17 07:05, Kenneth Porter wrote:> I came across this on the Fedora devel list. I added > /etc/sysctl.d/51-bufferbloat.conf containing the suggested line and it > installs the new codel qdisc as desired. There's probably more knobs > that might be useful to tweak but this makes a good start. More reading > on the bufferbloat site suggests that the later "cake" module will be > even better, but it requires a newer kernel than CentOS currently ships > with. > > <https://lists.fedoraproject.org/pipermail/devel/2015-March/209508.html> > > # 51-bufferbloat.conf > # Address bufferbloat > net.core.default_qdisc = fq_codel >I don't know your full requirements, but in the past for simple QoS gw I used FireQOS It's part of https://firehol.org/ , but can be used without firehol so in parallel of your own iptables rules Here is the doc : https://firehol.org/tutorial/fireqos-new-user/ -- Fabian Arrotin The CentOS Project | https://www.centos.org gpg key: 56BEC54E | twitter: @arrfab -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 198 bytes Desc: OpenPGP digital signature URL: <http://lists.centos.org/pipermail/centos/attachments/20171215/c10d2f4d/attachment-0001.sig>
Possibly Parallel Threads
- Traffic shaping on CentOS
- Traffic shaping on CentOS
- tinc vpn: adding dscp passthrough (priorityinherit), ecn, and fq_codel support
- [Cerowrt-devel] tinc vpn: adding dscp passthrough (priorityinherit), ecn, and fq_codel support
- tinc vpn: adding dscp passthrough (priorityinherit), ecn, and fq_codel support