Hi, I want to classify incoming traffic and then put them in HTB queues, is that possible with tc (and/or iptables)? and when yes, which chain should I use: PREROUTING, or INPUT? Thanx _________________________________________________________________ Add photos to your e-mail with MSN 8. Get 2 months FREE*. http://join.msn.com/?page=features/featuredemail _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
On Saturday, 10 May 2003, at 16:15:00 +0000, sun reflex4 wrote:> I want to classify incoming traffic and then put them in HTB queues, is > that possible with tc (and/or iptables)? and when yes, which chain should I > use: PREROUTING, or INPUT? >You should patch your kernel to support IMQ device and configure it, as has been said several times on this list. Check the archives. If you are configuring Linux traffic shaping in a router for a whole net behind it, you can avoid IMQ and shapa incoming traffic in the inner network card, shaping outgoing traffic to your internal network. IP packets travel through the operating system stack following a well defined path, that you can check at: http://www.docum.org/stef.coene/qos/kptd/ Regards. -- Jose Luis Domingo Lopez Linux Registered User #189436 Debian Linux Sid (Linux 2.5.69) _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Hi AFAIK, If you have Two interfaces, better you do up control in one interface and down in one interface this can be achived, even i have tested, not yet kept on live, still some more testing iam doing with my test setup But if you have looking for up+down= total b/w people in this Group recomending IMQ, but i have never seen any of the post in this group this IMQ successfully running, may be it may be not working for me( since iam using bridge) But you can try, with the help of stef and Patrick help hare ----- Original Message ----- From: "Jose Luis Domingo Lopez" <lartc@24x7linux.com> To: <lartc@mailman.ds9a.nl> Sent: Saturday, May 10, 2003 11:35 PM Subject: Re: [LARTC] incoming traffic??> On Saturday, 10 May 2003, at 16:15:00 +0000, > sun reflex4 wrote: > > > I want to classify incoming traffic and then put them in HTB queues, is > > that possible with tc (and/or iptables)? and when yes, which chainshould I> > use: PREROUTING, or INPUT? > > > You should patch your kernel to support IMQ device and configure it, as > has been said several times on this list. Check the archives. > > If you are configuring Linux traffic shaping in a router for a whole net > behind it, you can avoid IMQ and shapa incoming traffic in the inner > network card, shaping outgoing traffic to your internal network. > > IP packets travel through the operating system stack following a well > defined path, that you can check at: > http://www.docum.org/stef.coene/qos/kptd/ > > Regards. > > -- > Jose Luis Domingo Lopez > Linux Registered User #189436 Debian Linux Sid (Linux 2.5.69) > _______________________________________________ > LARTC mailing list / LARTC@mailman.ds9a.nl > http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/ >_______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
well, I have 2 interfaces, but I didn''t get what you mean. You say I use one for incoming and one for outgoing? can this then be achieved only with iptables and tc? Best greetings>From: "hare ram" <hareram@sol.net.in> >Reply-To: "hare ram" <hareram@sol.net.in> >To: <lartc@mailman.ds9a.nl> >Subject: Re: [LARTC] incoming traffic?? >Date: Sun, 11 May 2003 10:21:16 +0530 > >Hi > >AFAIK, > >If you have Two interfaces, better you do >up control in one interface and down in one interface >this can be achived, even i have tested, not yet kept on live, still some >more testing iam doing with my test setup > >But if you have looking for up+down= total b/w >people in this Group recomending IMQ, but i have never seen any of the post >in this group this IMQ successfully running, may be it may be not working >for me( since iam using bridge) > >But you can try, with the help of stef and Patrick help > >hare >----- Original Message ----- >From: "Jose Luis Domingo Lopez" <lartc@24x7linux.com> >To: <lartc@mailman.ds9a.nl> >Sent: Saturday, May 10, 2003 11:35 PM >Subject: Re: [LARTC] incoming traffic?? > > > > On Saturday, 10 May 2003, at 16:15:00 +0000, > > sun reflex4 wrote: > > > > > I want to classify incoming traffic and then put them in HTB queues, >is > > > that possible with tc (and/or iptables)? and when yes, which chain >should I > > > use: PREROUTING, or INPUT? > > > > > You should patch your kernel to support IMQ device and configure it, as > > has been said several times on this list. Check the archives. > > > > If you are configuring Linux traffic shaping in a router for a whole net > > behind it, you can avoid IMQ and shapa incoming traffic in the inner > > network card, shaping outgoing traffic to your internal network. > > > > IP packets travel through the operating system stack following a well > > defined path, that you can check at: > > http://www.docum.org/stef.coene/qos/kptd/ > > > > Regards. > > > > -- > > Jose Luis Domingo Lopez > > Linux Registered User #189436 Debian Linux Sid (Linux 2.5.69) > > _______________________________________________ > > LARTC mailing list / LARTC@mailman.ds9a.nl > > http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/ > > > >_______________________________________________ >LARTC mailing list / LARTC@mailman.ds9a.nl >http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/_________________________________________________________________ MSN 8 with e-mail virus protection service: 2 months FREE* http://join.msn.com/?page=features/virus _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
On Sun, 11 May 2003 10:13:08 +0000, sun reflex4 <sunreflex4@hotmail.com> wrote:> well, I have 2 interfaces, but I didn''t get what you mean. You say I use > one for incoming and one for outgoing? can this then be achieved only > with iptables and tc? > > Best greetings >Yes it can. Outgoing traffic can be shaped on your outgoing interface on your gateway. Incoming traffic is a little bit trickier - but if you have two interfaces you can use the interface that connects to your lan. Check http://www.docum.org/stef.coene/qos/kptd/ and you get a clue where to mark packets with iptables and then use tc and tc filter to do your shaping. e.g. for download/incoming traffic: #delete qdisc on dev tc qdisc del dev $INTIF root 2>/dev/null #new root qdisc tc qdisc add dev $INTIF root handle 2:0 htb default 20 #some classes tc class add dev $INTIF parent 2:0 classid 2:2 htb rate 10mbps ceil 101mbps tc class add dev $INTIF parent 2:2 classid 2:20 htb rate 2000kbps ceil 101mbps prio 2 ... or whatever qdiscs and classes and then: #create a class for a single user for example tc class add dev $INTIF parent 2:20 classid 2:2001 htb rate 1kbps ceil 200kbps #mark his incoming traffic /sbin/iptables -A POSTROUTING -t mangle -o $INTIF -p tcp --destination 192.168.1.1 -j MARK --set-mark 2001 #send all his incoming traffic to his class tc filter add dev $INTIF parent 2:0 protocol ip handle 2001 fw flowid 2:2001 $INTIF is the interface, that connects to your lan. Dunno if it is all right what I wrote here fast. So you have to recheck before use. Hope it helps anyway. Regards, Graste -- Using M2, Opera''s new e-mail client. _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/