Hello. I´m using an ftp server in passive mode using ports 30000-50000 and i have a question: how i can limit bandwidth using shorewall for multiple ports? It´s possible? Can someone send me an example? Thanks Wilson ------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
Wilson A. Galafassi Jr. wrote:> Hello. > > I´m using an ftp server in passive mode using ports 30000-50000 and i have a > question: how i can limit bandwidth using shorewall for multiple ports? It´s > possible? Can someone send me an example? >It''s possible -- simply use a port range in your /etc/shorewall/tcrules entry. Someone has to make the first example so there will be one to send -- it may as well be you. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
On Sunday 07 May 2006 08:37, Tom Eastep wrote:> Wilson A. Galafassi Jr. wrote: > > Hello. > > > > I´m using an ftp server in passive mode using ports 30000-50000 and i > > have a question: how i can limit bandwidth using shorewall for multiple > > ports? It´s possible? Can someone send me an example? > > It''s possible -- simply use a port range in your /etc/shorewall/tcrules > entry. > > Someone has to make the first example so there will be one to send -- it > may as well be you.Although if you look at the traffic shaping configuration at http://www.shorewall.net/myfiles.htm, it should give you a clue. There, I am metering rsync responses from my DMZ. So your tcrule entry will need: a) $FW in the SOURCE column. b) Your port range in the SOURCE PORT(S) column. See http://www.shorewall.net/configuration_file_basics.html for information about port ranges. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
Very thanks Tom. You are the best. Wilson -----Mensagem original----- De: shorewall-users-admin@lists.sourceforge.net [mailto:shorewall-users-admin@lists.sourceforge.net] Em nome de Tom Eastep Enviada em: domingo, 7 de maio de 2006 13:28 Para: shorewall-users@lists.sourceforge.net Assunto: Re: [Shorewall-users] bandwidth limitation in passive mode On Sunday 07 May 2006 08:37, Tom Eastep wrote:> Wilson A. Galafassi Jr. wrote: > > Hello. > > > > I´m using an ftp server in passive mode using ports 30000-50000 and i > > have a question: how i can limit bandwidth using shorewall for multiple > > ports? It´s possible? Can someone send me an example? > > It''s possible -- simply use a port range in your /etc/shorewall/tcrules > entry. > > Someone has to make the first example so there will be one to send -- it > may as well be you.Although if you look at the traffic shaping configuration at http://www.shorewall.net/myfiles.htm, it should give you a clue. There, I am metering rsync responses from my DMZ. So your tcrule entry will need: a) $FW in the SOURCE column. b) Your port range in the SOURCE PORT(S) column. See http://www.shorewall.net/configuration_file_basics.html for information about port ranges. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key ------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642