hi all, I''m writing not for technical problems but for a simple question. Do You know if there is a distro which is ready for traffic shaping etc. ''out of the box''? I mean a distro which does not require patching the kernel and/or iptables and/or installing from source etc. and gives the user most of the tools needed (imq, ipp2p, l7filter and so on). many thanks riki
Debian 4.0 has all I need including iptables and tc, but _not_ L7 filter or ipp2p :-( You should look into Zeroshell, which has L7 (haven''t tried it) http://linuxdevices.com/news/NS9446520379.html http://www.zeroshell.net/eng Shorewall appears to have ipp2p (but apparently not L7?) and it looks like there are add ons to IPCop. It is sad it is not easier... I looked into L7 etc. and ended up deciding that is is such an imperfect way of classifying data that it is better (for me at least) to instead choose a different policy - prioritize ssh, VOIP and web by port and then prevent each host from hogging more than their fair share of the total bandwidth. But e.g. DD-WRT (embedded distro for wireless routers like the WRT54GL) seems to do a quite good job of it (with L7). sincerely, Nicolas Riccardo (SCASI) wrote:> hi all, > > I''m writing not for technical problems but for a simple question. > Do You know if there is a distro which is ready for traffic shaping > etc. ''out of the box''? > I mean a distro which does not require patching the kernel and/or > iptables and/or installing from source etc. and gives the user most of > the tools needed (imq, ipp2p, l7filter and so on). > > many thanks > riki
Hi, nic-lartc@studentergaarden.dk wrote:> Debian 4.0 has all I need including iptables and tc, but _not_ L7 filter or > ipp2p :-( > > You should look into Zeroshell, which has L7 (haven''t tried it) > http://linuxdevices.com/news/NS9446520379.html > http://www.zeroshell.net/eng > > Shorewall appears to have ipp2p (but apparently not L7?) > > and it looks like there are add ons to IPCop. > > It is sad it is not easier... I looked into L7 etc. and ended up deciding > that is is such an imperfect way of classifying data that it is better (for > me at least) to instead choose a different policy - prioritize ssh, VOIP > and web by port and then prevent each host from hogging more than their > fair share of the total bandwidth. > > But e.g. DD-WRT (embedded distro for wireless routers like the WRT54GL) > seems to do a quite good job of it (with L7).By the way, OpenWRT also offers an x86 version (Kamikaze) which might suit you.> > sincerely, > NicolasSincerely, Andreas
Riccardo (SCASI) wrote:> I''m writing not for technical problems but for a simple question. > Do You know if there is a distro which is ready for traffic shaping > etc. ''out of the box''? > I mean a distro which does not require patching the kernel and/or > iptables and/or installing from source etc. and gives the user most of > the tools needed (imq, ipp2p, l7filter and so on).I think the short answer is ''no''. I use OpenWrt on embedded systems for part of our network and it''s quite good in this respect, but I wasn''t willing to put in the effort to make it run on regular x86 PC hardware (I think it does run but there were too many unknowns for my tastes). So where we use PCs I install Fedora and build the extra modules I need myself. It is a bit strange that nobody seems to be able to succeed with a router distribution -- there have been many attempts over the years but they''ve all failed (wikipedia has a good page listing them all).