Shorewall users - Oct 2004 - Will Frottle work with Shorewall?

Hi there,

I''m not subscribed to this list so please cc: replies to me...

I use Shorewall on all my wireless router PCs, and am also starting to
use it on the Linksys WRT54G wireless router (running OpenWRT firmware).
I would like to know if Frottle will work with Shorewall (any version).

Frottle (http://frottle.sourceforge.net/) is a wireless QoS application
that mitigates the "hidden node" problem inherent with 802.11b/g
Access
Points.  It uses netfilter to queue traffic - clients to the access
point run Frottle in client mode, and the PC/router behind the AP runs
Frottle in master mode.  The master controls traffic by polling the AP
clients, telling them when to transmit.

Frottle clients need to run this iptables script:

modprobe iptable_filter # load module 
modprobe ip_queue # load module 
iptables -A INPUT -p UDP --sport 999 -j ACCEPT # Allow control packets
in 
iptables -A OUTPUT -p UDP --dport 999 -j ACCEPT # Allow control packets
out 
iptables -A OUTPUT -p ALL -o eth1 -j QUEUE # where eth1 is the wireless
interface 
iptables -A FORWARD -p ALL -o eth1 -j QUEUE # where eth1 is the wireless
interface
>From the Frottle homepage:
"It is important that all outbound traffic (on the wireless interface)
other than control packets are given the QUEUE target. Failure to do so
will bypass Frottle and contribute to collisions/performance problems.
You may however add other rules to block unwanted outbound traffic."

The Frottle master needs to run this script:

modprobe iptable_filter # load module 
modprobe ip_queue # load module 
iptables -A INPUT -p UDP --dport 999 -j ACCEPT # Allow control packets
in 
iptables -A OUTPUT -p UDP --sport 999 -j ACCEPT # Allow control packets
out 
iptables -A OUTPUT -p ALL -o eth1 -j QUEUE # where eth1 is the wireless
interface 
iptables -A FORWARD -p ALL -o eth1 -j QUEUE # where eth1 is the wireless
interface

I haven''t experimented with Frottle yet, but I get the impression that,
by default, Shorewall will not recognise Frottle''s QUEUE target and
will
bypass it.  I see that Shorewall''s rules file contains a QUEUE action,
but I''m not sure if this does what I want.  What I''d really
like is to
be able to specify interfaces in Shorewall''s interfaces file as
"Frottle-master" or "Frottle-client".

Cheers,

Dan

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Dan Flett wrote:
>
> I haven''t experimented with Frottle yet, but I get the impression
that,
> by default, Shorewall will not recognise Frottle''s QUEUE target
and will
> bypass it.  I see that Shorewall''s rules file contains a QUEUE
action,
> but I''m not sure if this does what I want.
It does.
> What I''d really like is to
> be able to specify interfaces in Shorewall''s interfaces file as
> "Frottle-master" or "Frottle-client".
>
Then start coding...

- -Tom
- --
Tom Eastep    \ Nothing is foolproof to a sufficiently talented fool
Shoreline,     \ http://shorewall.net
Washington USA  \ teastep@shorewall.net
PGP Public Key   \ https://lists.shorewall.net/teastep.pgp.key
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFBYXACO/MAbZfjDLIRAvHyAJ9Q4T5WhdZBVRcsr9/wMw7p3EYxVgCfRrpu
At3s4GYSXxfKZP5xOGhtWPQ=j5gF
-----END PGP SIGNATURE-----