Hi, I''ve been asked something I couldn''t really give an answer to out of the box. Someone I know wants to do fair bandwidth sharing over long periods. The period would be related to the provider''s capping period ;) So, for example, if five people share one connection, and the ISP allows 10 GB per month of traffic, each person could only use 2 GB per month, and be effectively turned off when passing that limit. Now, my question is - has anyone done anything similar ? I''d think that this application would lean more to an approach that just does accounting by the hour,, for example, and turn off net access through firewall rules based on those values. Also, it would probably have to store intermediate accounting values to disk instead of keep everything in memory. What do you guys think ? Thomas -- The Dave/Dina Project : future TV today ! - http://davedina.apestaart.org/ <-*- -*-> You think I''m scared of girls well maybe but I''m not afraid of you You want to scare me then you''ll cling to me no matter what I do <-*- thomas@apestaart.org -*-> URGent, the best radio on the Internet - 24/7 ! - http://urgent.rug.ac.be/ _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Try using the iptables quota extension (works just fine here with iptables-1.2.6a). On Wed, 16 Oct 2002, Thomas Vander Stichele wrote:> Hi, > > I''ve been asked something I couldn''t really give an answer to out of the > box. Someone I know wants to do fair bandwidth sharing over long periods. > The period would be related to the provider''s capping period ;) > So, for example, if five people share one connection, and the ISP allows > 10 GB per month of traffic, each person could only use 2 GB per month, and > be effectively turned off when passing that limit. > > Now, my question is - has anyone done anything similar ? I''d think that > this application would lean more to an approach that just does accounting > by the hour,, for example, and turn off net access through firewall rules > based on those values. Also, it would probably have to store intermediate > accounting values to disk instead of keep everything in memory. > > What do you guys think ? > > Thomas > > >_______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Hi, Try a VPN solution with RADIUS accounting for amount of bytes each user had transmit over the network.Radius protocol can do accounting bytes (octects actually) as well ''online'' time.In that way,You can have multiple business policies for clients,one for kids,one for family,one for guests,etc... This solution maybe enters some delay in TCP/IP protocol,but guarantee You secure connections (no more sniffing:),and You won''t have possible trouble about filtering MAC addresses of malicius clients trying to forge their IP numbers if You have ''layer 3 accounting solution'' :) When they exceed the payed amount of bytes,simply that account won''t be in use anymore :) Hope this help :) f2zubac On Wed, 16 Oct 2002, Thomas Vander Stichele wrote:> Hi, > > I''ve been asked something I couldn''t really give an answer to out of the > box. Someone I know wants to do fair bandwidth sharing over long periods. > The period would be related to the provider''s capping period ;) > So, for example, if five people share one connection, and the ISP allows > 10 GB per month of traffic, each person could only use 2 GB per month, and > be effectively turned off when passing that limit. > > Now, my question is - has anyone done anything similar ? I''d think that > this application would lean more to an approach that just does accounting > by the hour,, for example, and turn off net access through firewall rules > based on those values. Also, it would probably have to store intermediate > accounting values to disk instead of keep everything in memory. > > What do you guys think ? > > Thomas > > > -- > > The Dave/Dina Project : future TV today ! - http://davedina.apestaart.org/ > <-*- -*-> > You think I''m scared of girls well maybe > but I''m not afraid of you > You want to scare me then you''ll > cling to me no matter what I do > <-*- thomas@apestaart.org -*-> > URGent, the best radio on the Internet - 24/7 ! - http://urgent.rug.ac.be/ > > _______________________________________________ > LARTC mailing list / LARTC@mailman.ds9a.nl > http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/ >_______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/