On Wednesday 15 March 2006 02:19, grharry@freemail.gr
wrote:> If I understand correct in a Multi ISP env traffic shaping affects
> indirectly loc->net routing if the packet is marked.
>
> Correct ?? Or I missed some documetation.
>
To use Multi-ISP with traffic shaping, the traffic shaping marking:
a) Use classifiers for traffic shaping rather than firewall marks (see the
documentation at the top of /etc/shorewall/tcrules -- With the built-in
traffic shaper, the major class is the interface number (order in tcdevices)
and the minor class is 100+the class mark).
Here''s an example using my files:
/etc/shorewall/tcdevices:
#INTERFACE IN-BANDWITH OUT-BANDWIDTH
$EXT_IF 1.3mbit 330kbit
#LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE
/etc/shorewall/tcclasses:
#INTERFACE MARK RATE CEIL PRIORITY OPTIONS
$EXT_IF 10 full full 1
tcp-ack,tos-minimize-delay
$EXT_IF 20 9*full/10 9*full/10 2 default
$EXT_IF 30 6*full/10 6*full/10 3
#LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE
/etc/shorewall/tcrules:
#MARK SOURCE DEST PROTO PORT(S) CLIENT USER TEST
# PORT(S)
1:110 192.168.0.0/22 $EXT_IF #Our internel nets get priority
#over the server
1:130 206.124.146.177 $EXT_IF tcp - 873
#LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE
b) Apply your routing marks in the PREROUTING chain and your traffic-control
marks in the FORWARD chain.
-Tom
--
Tom Eastep \ Nothing is foolproof to a sufficiently talented fool
Shoreline, \ http://shorewall.net
Washington USA \ teastep@shorewall.net
PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key