Hi all,
I am wondering if it is possibile to do bandwidth limiting on a
zone. More specifics, I have two ISP''s and I have shorewall setup to
load balance across the both of them. Now I want to limit the
bandwidth. I have read the docs on how to do it but do I set it up on
both connections individually or setup so that it covers both ISP''s as
one connection. Not sure.
I have two dsl connections connected to eth0 and eth1 and both are
7168kbit down and 896kbit up.
Here is what I would have in my config files following the examples.
tcdevices file
#INTERFACE IN-BANDWITH OUT-BANDWIDH
eth0 7168kbit 896kbit
eth1 7168kbit 896kbit
tcclasses file
#INTERFACE MARK RATE CEIL PRIORITY OPTIONS
not sure what to put here
tcrules file
#MARK SOURCE DEST PROTO PORT(S) CLIENT
USER
# PORT(S)
I am not sure what to put in the other two files, I basically have three groups
of people that I want to limit the bandwidth equally between them. ie..
I have group1, 2, and 3. if only 1 group is using the bandwitdh, they get it
all. but when a someone in the second group starts to use it it splits the
bandwitdh
equally between them. and then if someone from the third group starts using it
as well, then it would split the bandwidth in thirds.
Now that is only between the three groups. If there are multiple people on in
the same group they still get all the bandwidth for the one group, no limiting
between people in the same group.
I am new to the traffic shaping stuff so forgive my ignorance. I appreciate any
help.
THanks,
Jon Scottorn
Systems Administrator
The Possibility Forge, Inc.
http://www.possibilityforge.com
435.635.0591 x.1004
On Thu, Jan 12, 2006 at 10:24:16AM -0700, Jon Scottorn wrote:> I am wondering if it is possibile to do bandwidth limiting on a > zone. More specifics, I have two ISP''s and I have shorewall setup to > load balance across the both of them. Now I want to limit theBandwidth limiting and load balancing are two different topics. I think you are saying ''i want to balance my bandwidth across a set of interfaces''. Bandwidth limiting is when you say ''I only want to allow X bps out a given interface, and anything else has to wait''. Start with http://www.shorewall.net/MultiISP.html -Jason Martin> bandwidth. I have read the docs on how to do it but do I set it up on > both connections individually or setup so that it covers both ISP''s as > one connection. Not sure. > > I have two dsl connections connected to eth0 and eth1 and both are > 7168kbit down and 896kbit up. > > Here is what I would have in my config files following the examples. > > > > > tcdevices file > > #INTERFACE IN-BANDWITH OUT-BANDWIDH > eth0 7168kbit 896kbit > eth1 7168kbit 896kbit > > > > > tcclasses file > > #INTERFACE MARK RATE CEIL PRIORITY OPTIONS > not sure what to put here > > tcrules file > > #MARK SOURCE DEST PROTO PORT(S) CLIENT USER > # PORT(S) > > I am not sure what to put in the other two files, I basically have three groups of people that I want to limit the bandwidth equally between them. ie.. > > I have group1, 2, and 3. if only 1 group is using the bandwitdh, they get it all. but when a someone in the second group starts to use it it splits the bandwitdh > equally between them. and then if someone from the third group starts using it as well, then it would split the bandwidth in thirds. > > Now that is only between the three groups. If there are multiple people on in the same group they still get all the bandwidth for the one group, no limiting between people in the same group. > > I am new to the traffic shaping stuff so forgive my ignorance. I appreciate any help. > > THanks, > > > Jon Scottorn > Systems Administrator > The Possibility Forge, Inc. > http://www.possibilityforge.com > 435.635.0591 x.1004-- It''s not hard to meet expenses, they''re everywhere! This message is PGP/MIME signed.
I want both. I want to load balance across two ISP''s which I already have setup and working and I also want to limit traffic like they mention using the HTB bucket methods. On Thu, 2006-01-12 at 14:08 -0500, Jason Martin wrote:> On Thu, Jan 12, 2006 at 10:24:16AM -0700, Jon Scottorn wrote: > > I am wondering if it is possibile to do bandwidth limiting on a > > zone. More specifics, I have two ISP''s and I have shorewall setup to > > load balance across the both of them. Now I want to limit the > Bandwidth limiting and load balancing are two different topics. > I think you are saying ''i want to balance my bandwidth across a > set of interfaces''. Bandwidth limiting is when you say ''I only > want to allow X bps out a given interface, and anything else has > to wait''. > > Start with http://www.shorewall.net/MultiISP.html > > -Jason Martin > > > > > bandwidth. I have read the docs on how to do it but do I set it up on > > both connections individually or setup so that it covers both ISP''s as > > one connection. Not sure. > > > > I have two dsl connections connected to eth0 and eth1 and both are > > 7168kbit down and 896kbit up. > > > > Here is what I would have in my config files following the examples. > > > > > > > > > > tcdevices file > > > > #INTERFACE IN-BANDWITH OUT-BANDWIDH > > eth0 7168kbit 896kbit > > eth1 7168kbit 896kbit > > > > > > > > > > tcclasses file > > > > #INTERFACE MARK RATE CEIL PRIORITY OPTIONS > > not sure what to put here > > > > tcrules file > > > > #MARK SOURCE DEST PROTO PORT(S) CLIENT USER > > # PORT(S) > > > > I am not sure what to put in the other two files, I basically have three groups of people that I want to limit the bandwidth equally between them. ie.. > > > > I have group1, 2, and 3. if only 1 group is using the bandwitdh, they get it all. but when a someone in the second group starts to use it it splits the bandwitdh > > equally between them. and then if someone from the third group starts using it as well, then it would split the bandwidth in thirds. > > > > Now that is only between the three groups. If there are multiple people on in the same group they still get all the bandwidth for the one group, no limiting between people in the same group. > > > > I am new to the traffic shaping stuff so forgive my ignorance. I appreciate any help. > > > > THanks, > > > > > > Jon Scottorn > > Systems Administrator > > The Possibility Forge, Inc. > > http://www.possibilityforge.com > > 435.635.0591 x.1004 >Jon Scottorn Systems Administrator The Possibility Forge, Inc. http://www.possibilityforge.com 435.635.0591 x.1004
Hi Jon As far as I know, you''ll have to make the traffic control on each line by itself. The traffic control will never be totally accurate: If group 1 has one connection on line 1, while group 2 and group 3 each have a connection on line 2, group 1 will get all the bandwidth of line 1, while group 2 and 3 will have to share the bandwidth of line 2. But in most cases, it will be good enough. Rune On 1/12/06, Jon Scottorn <jscottorn@possibilityforge.com> wrote:> I want both. I want to load balance across two ISP''s which I already have setup and working and I also want to limit traffic like they mention using the HTB bucket methods. > > > On Thu, 2006-01-12 at 14:08 -0500, Jason Martin wrote: > On Thu, Jan 12, 2006 at 10:24:16AM -0700, Jon Scottorn wrote: > I am wondering if it is possibile to do bandwidth limiting on a > zone. More specifics, I have two ISP''s and I have shorewall setup to > load balance across the both of them. Now I want to limit theBandwidth limiting and load balancing are two different topics. I think you are saying ''i want to balance my bandwidth across a set of interfaces''. Bandwidth limiting is when you say ''I only want to allow X bps out a given interface, and anything else has to wait''. Start with http://www.shorewall.net/MultiISP.html -Jason Martin> bandwidth. I have read the docs on how to do it but do I set it up on > both connections individually or setup so that it covers both ISP''s as > one connection. Not sure. > > I have two dsl connections connected to eth0 and eth1 and both are > 7168kbit down and 896kbit up. > > Here is what I would have in my config files following the examples. > > > > > tcdevices file > > #INTERFACE IN-BANDWITH OUT-BANDWIDH > eth0 7168kbit 896kbit > eth1 7168kbit 896kbit > > > > > tcclasses file > > #INTERFACE MARK RATE CEIL PRIORITY OPTIONS > not sure what to put here > > tcrules file > > #MARK SOURCE DEST PROTO PORT(S) CLIENT USER > # PORT(S) > > I am not sure what to put in the other two files, I basically have three groups of people that I want to limit the bandwidth equally between them. ie.. > > I have group1, 2, and 3. if only 1 group is using the bandwitdh, they get it all. but when a someone in the second group starts to use it it splits the bandwitdh > equally between them. and then if someone from the third group starts using it as well, then it would split the bandwidth in thirds. > > Now that is only between the three groups. If there are multiple people on in the same group they still get all the bandwidth for the one group, no limiting between people in the same group. > > I am new to the traffic shaping stuff so forgive my ignorance. I appreciate any help. > > THanks, > > > Jon Scottorn > Systems Administrator > The Possibility Forge, Inc. > http://www.possibilityforge.com > 435.635.0591 x.1004> > Jon Scottorn > Systems Administrator > The Possibility Forge, Inc. > http://www.possibilityforge.com > 435.635.0591 x.1004------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Do you grep through log files for problems? Stop! Download the new AJAX search engine that makes searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! http://sel.as-us.falkag.net/sel?cmd=lnk&kid=103432&bid=230486&dat=121642
I am in the process of setting up a bridge (as referenced in Shorewall) on a new CentOS 4.3 32Bit Server. I noticed that there are bridge configurations for other OS but none for CentOS? Does anybody have configuration for CentOS? Kirt Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642