Hello, I have a problem with simple traffic shapping in shorewall, my current configuration is: zones vlan10 ipv4 # interfaces vlan10 vlan10 detect tcpflags,routeback shorewall.conf TC_ENABLED=Simple tcinterfaces vlan10 Internal 1mbit:50kb shorewall show tc Device vlan10: qdisc prio 5: root refcnt 2 bands 3 priomap 1 2 2 2 1 2 0 0 1 1 1 1 1 1 1 1 Sent 25341476 bytes 45125 pkt (dropped 0, overlimits 0 requeues 0) backlog 0b 0p requeues 0 qdisc sfq 51: parent 5:1 limit 127p quantum 1875b flows 127/1024 perturb 10sec Sent 14106 bytes 253 pkt (dropped 0, overlimits 0 requeues 0) backlog 0b 0p requeues 0 qdisc sfq 52: parent 5:2 limit 127p quantum 1875b flows 127/1024 perturb 10sec Sent 25327370 bytes 44872 pkt (dropped 0, overlimits 0 requeues 0) backlog 0b 0p requeues 0 qdisc sfq 53: parent 5:3 limit 127p quantum 1875b flows 127/1024 perturb 10sec Sent 0 bytes 0 pkt (dropped 0, overlimits 0 requeues 0) backlog 0b 0p requeues 0 qdisc ingress ffff: parent ffff:fff1 ---------------- Sent 2289875 bytes 16407 pkt (dropped 277, overlimits 0 requeues 0) backlog 0b 0p requeues 0 But, When I start a download inside vlan10 my download speed is around 20 megabits per second and it should be 1 mbit per second at max. Anyone knows why this happens? Best Rergards -- Márcio Filipe Mendes Moreira <mfm@eurotux.com> Administrador de Sistemas Eurotux Informática, S.A. | www.eurotux.com Tel: (+351) 253680300 - Suporte: (+351) 253680301 Fax:(+351) 253680319 ------------------------------------------------------------------------------ Monitor your physical, virtual and cloud infrastructure from a single web console. Get in-depth insight into apps, servers, databases, vmware, SAP, cloud infrastructure, etc. Download 30-day Free Trial. Pricing starts from $795 for 25 servers or applications! http://p.sf.net/sfu/zoho_dev2dev_nov
On 11/20/2012 09:43 AM, Marcio Moreira wrote:> Hello, > > I have a problem with simple traffic shapping in shorewall, my current > configuration is: > > zones > > vlan10 ipv4 # > > interfaces > > vlan10 vlan10 detect tcpflags,routeback > > shorewall.conf > > TC_ENABLED=Simple > > tcinterfaces > > vlan10 Internal 1mbit:50kb > > shorewall show tc > > Device vlan10: > qdisc prio 5: root refcnt 2 bands 3 priomap 1 2 2 2 1 2 0 0 1 1 1 1 1 1 1 1 > Sent 25341476 bytes 45125 pkt (dropped 0, overlimits 0 requeues 0) > backlog 0b 0p requeues 0 > qdisc sfq 51: parent 5:1 limit 127p quantum 1875b flows 127/1024 perturb 10sec > Sent 14106 bytes 253 pkt (dropped 0, overlimits 0 requeues 0) > backlog 0b 0p requeues 0 > qdisc sfq 52: parent 5:2 limit 127p quantum 1875b flows 127/1024 perturb 10sec > Sent 25327370 bytes 44872 pkt (dropped 0, overlimits 0 requeues 0) > backlog 0b 0p requeues 0 > qdisc sfq 53: parent 5:3 limit 127p quantum 1875b flows 127/1024 perturb 10sec > Sent 0 bytes 0 pkt (dropped 0, overlimits 0 requeues 0) > backlog 0b 0p requeues 0 > qdisc ingress ffff: parent ffff:fff1 ---------------- > Sent 2289875 bytes 16407 pkt (dropped 277, overlimits 0 requeues 0) > backlog 0b 0p requeues 0 > > But, When I start a download inside vlan10 my download speed is around 20 > megabits per second and it should be 1 mbit per second at max. > > Anyone knows why this happens?You are setting the IN-BANDWIDTH rather than the OUT-BANDWIDTH. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ Monitor your physical, virtual and cloud infrastructure from a single web console. Get in-depth insight into apps, servers, databases, vmware, SAP, cloud infrastructure, etc. Download 30-day Free Trial. Pricing starts from $795 for 25 servers or applications! http://p.sf.net/sfu/zoho_dev2dev_nov
Hello Tom, Thanks for your help, after I send the email we see that, my mistake now I have this configuration in tcinterfaces: vlan10 Internal - 8mbit:4mbit I have two more questions to make: - what''s the best way to find the accurate burst? I define 4mbit for burst, but dont''t known if it''s the best number, my internet line support 20 mbits download and 20 mbits upload, but I have 30 vlan''s and each one of them belongs a different company. - it''s possible in shorewall let people inside vlan10 use more than 8mbit if internet line isn''t congested ? Best Regards, Márcio Moreira -- Márcio Filipe Mendes Moreira <mfm@eurotux.com> Administrador de Sistemas Eurotux Informática, S.A. | www.eurotux.com Tel: (+351) 253680300 - Suporte: (+351) 253680301 Fax:(+351) 253680319 On Tuesday 20 November 2012 10:15:47 Tom Eastep wrote:> On 11/20/2012 09:43 AM, Marcio Moreira wrote: > > Hello, > > > > I have a problem with simple traffic shapping in shorewall, my current > > configuration is: > > > > zones > > > > vlan10 ipv4 # > > > > interfaces > > > > vlan10 vlan10 detect tcpflags,routeback > > > > shorewall.conf > > > > TC_ENABLED=Simple > > > > tcinterfaces > > > > vlan10 Internal 1mbit:50kb > > > > shorewall show tc > > > > Device vlan10: > > qdisc prio 5: root refcnt 2 bands 3 priomap 1 2 2 2 1 2 0 0 1 1 1 1 1 1 1 > > 1> > > Sent 25341476 bytes 45125 pkt (dropped 0, overlimits 0 requeues 0) > > backlog 0b 0p requeues 0 > > > > qdisc sfq 51: parent 5:1 limit 127p quantum 1875b flows 127/1024 perturb > > 10sec> > > Sent 14106 bytes 253 pkt (dropped 0, overlimits 0 requeues 0) > > backlog 0b 0p requeues 0 > > > > qdisc sfq 52: parent 5:2 limit 127p quantum 1875b flows 127/1024 perturb > > 10sec> > > Sent 25327370 bytes 44872 pkt (dropped 0, overlimits 0 requeues 0) > > backlog 0b 0p requeues 0 > > > > qdisc sfq 53: parent 5:3 limit 127p quantum 1875b flows 127/1024 perturb > > 10sec> > > Sent 0 bytes 0 pkt (dropped 0, overlimits 0 requeues 0) > > backlog 0b 0p requeues 0 > > > > qdisc ingress ffff: parent ffff:fff1 ---------------- > > > > Sent 2289875 bytes 16407 pkt (dropped 277, overlimits 0 requeues 0) > > backlog 0b 0p requeues 0 > > > > But, When I start a download inside vlan10 my download speed is around 20 > > megabits per second and it should be 1 mbit per second at max. > > > > Anyone knows why this happens? > > You are setting the IN-BANDWIDTH rather than the OUT-BANDWIDTH. > > -Tom------------------------------------------------------------------------------ Monitor your physical, virtual and cloud infrastructure from a single web console. Get in-depth insight into apps, servers, databases, vmware, SAP, cloud infrastructure, etc. Download 30-day Free Trial. Pricing starts from $795 for 25 servers or applications! http://p.sf.net/sfu/zoho_dev2dev_nov
On 11/20/2012 11:20 AM, Marcio Moreira wrote:> Hello Tom, > > Thanks for your help, after I send the email we see that, my mistake > > now I have this configuration in tcinterfaces: > > > vlan10 Internal - 8mbit:4mbit > > > I have two more questions to make: > > - what''s the best way to find the accurate burst? I define 4mbit for burst, but > dont''t known if it''s the best number, my internet line support 20 mbits > download and 20 mbits upload, but I have 30 vlan''s and each one of them > belongs a different company.I would decrease the burst until you see it begin to decrease throughput and then use the last setting that gave you full throughput.> > - it''s possible in shorewall let people inside vlan10 use more than 8mbit if > internet line isn''t congested ? >Rather than configuring TC on each vlan interface, you can use an IFB and define a class for each of the VLANs (use network addresses to classify the packets in /etc/shorewall/tcfilters). Each class can be guaranteed 1/30th of the input bandwidth but can use the full amount if no one else needs it. Be sure to set the IFB output bandwidth well below the maximum downlink rate (start at 80% or so). -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ Monitor your physical, virtual and cloud infrastructure from a single web console. Get in-depth insight into apps, servers, databases, vmware, SAP, cloud infrastructure, etc. Download 30-day Free Trial. Pricing starts from $795 for 25 servers or applications! http://p.sf.net/sfu/zoho_dev2dev_nov