Hi all I''m new in this list and i hope to lear and to help if possible. But firt i need help :-( I have this messege in my syslog when my classes and qdiscs goes down. Can any one know what does it mean? Thnx in advance. Yannick Arrimadas Bot Oct 14 16:09:27 pototogorri kernel: HTB init, kernel part version 3.17 Oct 14 16:09:27 pototogorri kernel: Unable to handle kernel paging request at virtual address 00100100 Oct 14 16:09:27 pototogorri kernel: printing eip: Oct 14 16:09:27 pototogorri kernel: c0267fb4 Oct 14 16:09:27 pototogorri kernel: *pde = 00000000 Oct 14 16:09:27 pototogorri kernel: Oops: 0000 [#1] Oct 14 16:09:27 pototogorri kernel: Modules linked in: cls_fw sch_sfq sch_htb ipt_MARK iptable_mangle ide_floppy ide_tape sg sr_mod ide_cd cd Oct 14 16:09:27 pototogorri kernel: CPU: 0 Oct 14 16:09:27 pototogorri kernel: EIP: 0060:[<c0267fb4>] Not tainted Oct 14 16:09:27 pototogorri kernel: EFLAGS: 00010206 (2.6.8.1) Oct 14 16:09:27 pototogorri kernel: EIP is at qdisc_lookup+0x34/0x50 Oct 14 16:09:27 pototogorri kernel: eax: 001000d4 ebx: 001000d4 ecx: dd3f7914 edx: 00100100 Oct 14 16:09:27 pototogorri kernel: esi: 00010000 edi: 00010000 ebp: c204dc38 esp: c204dc30 Oct 14 16:09:27 pototogorri kernel: ds: 007b es: 007b ss: 0068 Oct 14 16:09:27 pototogorri kernel: Process tc (pid: 22899, threadinfo=c204c000 task=c80219d0) Oct 14 16:09:27 pototogorri kernel: Stack: ddeca290 dd3f7800 c204dc80 c0268a62 dd3f7800 00010000 d1a8873c 00000000 Oct 14 16:09:27 pototogorri kernel: 000005c8 ddb15800 0000000a 00000000 00000000 ffffffff dd3f7800 ddb15800 Oct 14 16:09:27 pototogorri kernel: 00000010 dce34a40 00000048 c204dcb0 c204dcfc c0262297 dce34a40 ddeca280 Oct 14 16:09:27 pototogorri kernel: Call Trace: Oct 14 16:09:27 pototogorri kernel: [<c010707b>] show_stack+0x9b/0xb0 Oct 14 16:09:27 pototogorri kernel: [<c01071cb>] show_registers+0x11b/0x180 Oct 14 16:09:27 pototogorri kernel: [<c0107310>] die+0x50/0xb0 Oct 14 16:09:27 pototogorri kernel: [<c0117280>] do_page_fault+0x330/0x5b8 Oct 14 16:09:27 pototogorri kernel: [<c0106cbd>] error_code+0x2d/0x40 Oct 14 16:09:27 pototogorri kernel: [<c0268a62>] tc_modify_qdisc+0x102/0x450 Oct 14 16:09:27 pototogorri kernel: [<c0262297>] rtnetlink_rcv+0x347/0x3b0 Oct 14 16:09:27 pototogorri kernel: [<c026c3c4>] netlink_data_ready+0x54/0x60 Oct 14 16:09:27 pototogorri kernel: [<c026baca>] netlink_sendskb+0x6a/0x90 Oct 14 16:09:27 pototogorri kernel: [<c026c0a9>] netlink_sendmsg+0x1f9/0x2c0 Oct 14 16:09:27 pototogorri kernel: [<c0253078>] sock_sendmsg+0x88/0xb0 Oct 14 16:09:27 pototogorri kernel: [<c0254696>] sys_sendmsg+0x196/0x210 Oct 14 16:09:27 pototogorri kernel: [<c0254960>] sys_socketcall+0x80/0x1a0 Oct 14 16:09:27 pototogorri kernel: [<c0105c79>] sysenter_past_esp+0x52/0x79 Oct 14 16:09:27 pototogorri kernel: Code: 8b 40 2c 0f 18 00 90 39 ca 75 e6 31 c0 5b 5e 5d c3 8d 74 26 Oct 14 17:23:30 pototogorri kernel: HTB: quantum of class 10481 is small. Consider r2q change. Oct 14 17:23:30 pototogorri kernel: HTB: quantum of class 10482 is small. Consider r2q change. Oct 14 17:23:30 pototogorri kernel: HTB: quantum of class 10483 is small. Consider r2q change. Oct 14 17:23:30 pototogorri kernel: HTB: quantum of class 11041 is small. Consider r2q change. Oct 14 17:23:30 pototogorri kernel: HTB: quantum of class 11042 is small. Consider r2q change. Servicio ofrecido por www.systemwifi.com _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
On Thursday 14 October 2004 14:23, sistemas wrote:> Hi all > > I''m new in this list and i hope to lear and to help if possible. > > But firt i need help :-( > > I have this messege in my syslog when my classes and qdiscs goes down. > > Can any one know what does it mean? >I used to have an Oops an awful lot like that. I upgraded to 2.6.9-rc3 and it resolved the problem. Yours could be something else, though. What `tc` configuration are you using? What''s the simplest possible configuration you can create that consistently reproduces the problem? What specifically did you do to trigger this problem, if you know? Thanks. _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
hey ja,
do you have a small script example to show me ? ... i am new to those thing..
wanna study examples to understand how things works... tried reading some docs
but my english is poor so, i could understand very few..
thanks
----- Original Message -----
From: ja
To: James Lista ; lartc@mailman.ds9a.nl
Sent: Sunday, October 17, 2004 10:53 AM
Subject: Re: [LARTC] htb
This is no good cause for example bittorent can download on port 80 :D. So the
best way is create classes with ceil parameter for example 128kbit to ensure
relability for every user and limit number of connections to 50-80 per user.
This the best (i can get a word grr....- you know) if you dont want to block
p2p.
----- Original Message -----
From: James Lista
To: lartc@mailman.ds9a.nl
Sent: Sunday, October 17, 2004 2:42 PM
Subject: [LARTC] htb
buddies,
i am newbie to band control.. i have a linux box (as a router, NATing,)
sharing internet
----internet----------eth0-[linux.box]-eth1----------my.lan
wan = adsl 600
lan = about 20 users
my problem is that due the contract i cannot block users from my lan from
downloading anything, so they can use kazaa (argghh), edonkey(argghhhhh),
emule(arghhhhhh), soulseek(arghjhhhh) etc etc etc,
so,
I want to know if using htb i can make that users that uses browsers (port
80) have priority then users that uses port (110 and 25) , then rest of the
ports..... as if i could have such thing:
600kbit -------- 50% for port 80
30% for port 25 and 110
20% for the rest
this way no user can complain that cannot access his internet banking,
checking his emails and other thing that are essentials...
if it is possible (with htb) or any other method, please tell me a direction
for me to go..
really thanks
james
Am Sunday 17 October 2004 14:42 schrieb James Lista:> 600kbit ------------ 50% for port 80 > 30% for port 25 and 110 > 20% for the restSure, that''s possible. That''s one 600kbit class with three child classes. However, there may be many other ports besides 25, 80, and 110 that deserve prioritizing. Throwing them in the same class as all filesharing traffic could make things even worse than before. Then there''s the problem that many filesharing protocols can work on any port, so your users could just move to one of the prioritized ports and take all the bandwidth again. That''s some of the reasons why I never bothered with prioritizing ports on a global basis. Consider using ipp2p or l7-filter for a more reliable way for detecting P2P traffic. No matter how you look at it, 600kbit for 20 users is a bit slow. Even without P2P traffic, if all of them surf the web at the same time, they won''t be very happy with the speed. Besides traffic shaping, you should do anything possible to reduce load. Cache DNS queries, provide a HTTP proxy, probably squid. Make sure that you can''t be flooded from the outside. Stuff like that. HTH Andreas _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
andreas, having one class per user seems cool... please buddy, have a sample script of that ? so, if i have 600kbit / 7 = 86kbit for each, is it that ??? if so, is it too few for a single user ? about something that i read that say "borrowing", when a user borrow his spare band to a "vampire", when will he gets it back when he needs it...? thanks again ----- Original Message ----- From: "Andreas Klauer" <Andreas.Klauer@metamorpher.de> To: <lartc@mailman.ds9a.nl> Sent: Sunday, October 17, 2004 11:20 AM Subject: Re: [LARTC] htb> Am Sunday 17 October 2004 15:02 schrieb James Lista: > > and about that you say take a look at ipp2p or l7-filter: errr, can > > they identify when a user changed edonkey or any other p2p default port > > and limit such packet even so ???? > > They try to. I''m using IPP2P and it works okay for me. > > Although my shaping setup is a little different from what you want to do. > I''ve got one class per user, so everyone gets the same share of bandwidth. > This way it doesn''t matter what kind of traffic a user generates, as it > doesn''t influence the others. > > Prioritization is then done within the user classes, the only effect of > that is that a user can still have a lag free SSH connection while he''s > downloading stuff at the same time. > > So in my setup, if the user finds a way to trick the prioritization > settings, he''s only tricking himself, because he can''t escape his user > class :) > > Andreas > _______________________________________________ > LARTC mailing list / LARTC@mailman.ds9a.nl > http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/ >_______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
buddies,
i am newbie to band control.. i have a linux box (as a router, NATing,) sharing
internet
----internet----------eth0-[linux.box]-eth1----------my.lan
wan = adsl 600
lan = about 20 users
my problem is that due the contract i cannot block users from my lan from
downloading anything, so they can use kazaa (argghh), edonkey(argghhhhh),
emule(arghhhhhh), soulseek(arghjhhhh) etc etc etc,
so,
I want to know if using htb i can make that users that uses browsers (port 80)
have priority then users that uses port (110 and 25) , then rest of the
ports..... as if i could have such thing:
600kbit -------- 50% for port 80
30% for port 25 and 110
20% for the rest
this way no user can complain that cannot access his internet banking, checking
his emails and other thing that are essentials...
if it is possible (with htb) or any other method, please tell me a direction for
me to go..
really thanks
james
This is no good cause for example bittorent can download on port 80 :D. So the
best way is create classes with ceil parameter for example 128kbit to ensure
relability for every user and limit number of connections to 50-80 per user.
This the best (i can get a word grr....- you know) if you dont want to block
p2p.
----- Original Message -----
From: James Lista
To: lartc@mailman.ds9a.nl
Sent: Sunday, October 17, 2004 2:42 PM
Subject: [LARTC] htb
buddies,
i am newbie to band control.. i have a linux box (as a router, NATing,)
sharing internet
----internet----------eth0-[linux.box]-eth1----------my.lan
wan = adsl 600
lan = about 20 users
my problem is that due the contract i cannot block users from my lan from
downloading anything, so they can use kazaa (argghh), edonkey(argghhhhh),
emule(arghhhhhh), soulseek(arghjhhhh) etc etc etc,
so,
I want to know if using htb i can make that users that uses browsers (port 80)
have priority then users that uses port (110 and 25) , then rest of the
ports..... as if i could have such thing:
600kbit -------- 50% for port 80
30% for port 25 and 110
20% for the rest
this way no user can complain that cannot access his internet banking,
checking his emails and other thing that are essentials...
if it is possible (with htb) or any other method, please tell me a direction
for me to go..
really thanks
james
andreas first thanks for the answer and the advices. well. let me say some things: inspite of saying that i have 600kbit for 20 users, it is really rare to have more than 7 at the same time and about that you say take a look at ipp2p or l7-filter: errr, can they identify when a user changed edonkey or any other p2p default port and limit such packet even so ???? ----- Original Message ----- From: "Andreas Klauer" <Andreas.Klauer@metamorpher.de> To: <lartc@mailman.ds9a.nl> Sent: Sunday, October 17, 2004 10:19 AM Subject: Re: [LARTC] htb> Am Sunday 17 October 2004 14:42 schrieb James Lista: > > 600kbit ------------ 50% for port 80 > > 30% for port 25 and 110 > > 20% for the rest > > Sure, that''s possible. That''s one 600kbit class with three child classes. > > However, there may be many other ports besides 25, 80, and 110 thatdeserve> prioritizing. Throwing them in the same class as all filesharing traffic > could make things even worse than before. > > Then there''s the problem that many filesharing protocols can work on any > port, so your users could just move to one of the prioritized ports and > take all the bandwidth again. > > That''s some of the reasons why I never bothered with prioritizing ports on > a global basis. Consider using ipp2p or l7-filter for a more reliable way > for detecting P2P traffic. > > No matter how you look at it, 600kbit for 20 users is a bit slow. Even > without P2P traffic, if all of them surf the web at the same time, they > won''t be very happy with the speed. > > Besides traffic shaping, you should do anything possible to reduce load. > Cache DNS queries, provide a HTTP proxy, probably squid. Make sure that > you can''t be flooded from the outside. Stuff like that. > > HTH > Andreas > _______________________________________________ > LARTC mailing list / LARTC@mailman.ds9a.nl > http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/ >_______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Am Sunday 17 October 2004 15:02 schrieb James Lista:> and about that you say take a look at ipp2p or l7-filter: errr, can > they identify when a user changed edonkey or any other p2p default port > and limit such packet even so ????They try to. I''m using IPP2P and it works okay for me. Although my shaping setup is a little different from what you want to do. I''ve got one class per user, so everyone gets the same share of bandwidth. This way it doesn''t matter what kind of traffic a user generates, as it doesn''t influence the others. Prioritization is then done within the user classes, the only effect of that is that a user can still have a lag free SSH connection while he''s downloading stuff at the same time. So in my setup, if the user finds a way to trick the prioritization settings, he''s only tricking himself, because he can''t escape his user class :) Andreas _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Am Sunday 17 October 2004 14:08 schrieb James Lista:> do you have a small script example to show me ? ...I don''t know about the "small" part... My own script: http://www.metamorpher.de/fairnat/ HTH Andreas _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
Hello folks,
I´m a fully Beginner in Linux and Traffic Control.
I have a lot of Problems to realize the following Scenario(I need it for my
scholastics):
2 customers share one 2Mbit link. The packets of the customers are coming
on
the interface with a NAT Adress each. Each of the customers should use only
1Mbit of the Line.
192.168.0.1 - - -
customer1 eth0 | | eth1 customer1
-----------| |--------------
customer2 2Mbit| | 2Mbit customer2
192.168.1.99 - - -
I think I have to use 2 Scripts, one for each interface (on every side).
I have written a small skript, but i´m unsteady if it works. It would be
very nice, if you can take a look at it and give me some hints.
Greetings
Marcus Schäfer
############################################################################Traffic
Control
###########################################################################
#! /bin/sh
#variables
ext_dev_1=eth0
bw=1Mbps
#####root qdisc for eth0
tc qdisc add dev $ext_dev_1 root handle 1: htb
#####root class for customer 1 on eth0
tc class add dev $ext_dev_1 parent 1: classid 1:1 htb rate $bw ceil $bw
prio
0
##### 3 classes for customer 1 on eth0
tc class add dev $ext_dev_1 parent 1:1 classid 1:2 htb rate 450kbps ceil
$bw
prio 0
tc class add dev $ext_dev_1 parent 1:1 classid 1:3 htb rate 450kbps ceil
$bw
prio 1
tc class add dev $ext_dev_1 parent 1:1 classid 1:4 htb rate 100kbps ceil
$bw
prio 2
#####root class for customer 2 on eth0
tc class add dev $ext_dev_1 parent 1: classid 2:1 htb rate $bw ceil $bw
prio
0
#####3 classes for customer 2 on eth0
tc class add dev $ext_dev_1 parent 1:1 classid 2:2 htb rate 450kbps ceil
$bw
prio 0
tc class add dev $ext_dev_1 parent 1:1 classid 2:3 htb rate 450kbps ceil
$bw
prio 1
tc class add dev $ext_dev_1 parent 1:1 classid 2:4 htb rate 100kbps ceil
$bw
prio 2
#####Filters which directs packets marked with iptables in the right
classes
#####Filters for customer 1 on eth0
tc filter add dev ext_dev_1 parent 1: prio 0 protocol ip handle 1 fw flowid
1:2
tc filter add dev ext_dev_1 parent 1: prio 1 protocol ip handle 2 fw flowid
1:3
tc filter add dev ext_dev_1 parent 1: prio 2 protocol ip handle 3 fw flowid
1:4
#####Filters for customer 2 on eth0
tc filter add dev ext_dev_1 parent 1: prio 0 protocol ip handle 4 fw flowid
2:2
tc filter add dev ext_dev_1 parent 1: prio 1 protocol ip handle 5 fw flowid
2:3
tc filter add dev ext_dev_1 parent 1: prio 1 protocol ip handle 6 fw flowid
2:4
############################################################################
iptables
###########################################################################
$ipt=/sbin/iptables
########### mark packets for customer 1 on eth0 ###########################
# mark packets with 1 which come from 192.168.0.1 and have a source port
#of
80
$ipt -t mangle -A FORWARD -s 192.168.0.1 -p tcp --sport 80 -j MARK
--set-mark 1
# mark packets with 2 which come from 192.168.0.1 and have a source port
#of
22
$ipt -t mangle -A FORWARD -s 192.168.0.1 -p tcp --sport 22 -j MARK
--set-mark 2
######## mark packets for customer 2 on eth0 ##############################
# mark packets with 4 which come from 192.168.1.99 and have a source port
#of 80
$ipt -t mangle -A FORWARD -s 192.168.1.99 -p tcp --sport 80 -j MARK
--set-mark 4
# mark packets with 5 which come from 192.168.1.99 and have a source port
#of 22
$ipt -t mangle -A FORWARD -s 192.168.1.99 -p tcp --sport 22 -j MARK
--set-mark 5
######## mark unmatched packets ###########################################
#mark packets with 3 which come from 192.168.0.1
$ipt -t mangle -A FORWARD -s 192.168.0.1 -j MARK --set-mark 3
#mark packets with 6 which come from 192.168.1.99
$ipt -t mangle -A FORWARD -s 192.168.1.99 -j MARK --set-mark 6
--
NEU +++ DSL Komplett von GMX +++ http://www.gmx.net/de/go/dsl
GMX DSL-Netzanschluss + Tarif zum supergünstigen Komplett-Preis!
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/