similar to: Shorewall Firewall con Openswan and OpenVPN

Hi list, I have a shorewall installed on 2 interfaces which also has multiple static public IP. Let''s say I have 1.2.3.4 and 1.2.3.5. I have assigned nat with: 1.2.3.4 eth0 11.22.33.4 no no But then I have a situation where I need 11.22.33.44 to connect to a host in the net zone and appears also to be 1.2.3.5 not only 1.2.3.4. How to do it? TIA Willy

We are trying to configure shorewall as follows: 1. We have shorewall running at gateway (172.16.1.1) with NAT. 2. We have a number of web servers (172.16.1.x/24). These web servers are accessed through port forwarding at the gateway (172.16.1.1) and websites are visible through virtual hosting through a web re-director. 3. Presently the proxy server runs in a transparent mode, i.e., all web

----- Original Message ----- From: Michał Joachimiak To: lartc@mailman.ds9a.nl Sent: Tuesday, July 20, 2004 3:45 PM Subject: HTB - Really Big problem Hello everybody! Since week i dig lists and www and can''t find solution for my problem. I''m using HTB 3.13 kernel 2-4-25 smp iptables 1.2.9. I''ve got situation like this: LAN------Linux Box(routing only)------- Linux

Dear All, I''m using the kernel 2.6.6, iproute2-2.4.7.20020116, iptables v1.2.9, and gentoo. I have a leased-line 64 kbps. I can see the counter works in iptables, but in the htb, it doesn''t go to the right class (it always go to the default class). Any help will be appreciated here''s my htb conf #!/bin/bash tc qdisc del dev eth1 root tc qdisc add dev eth1 root

Hi I have setup iproute2 and need a bit of help reading the stats from it ===== output qdisc htb 1: r2q 10 default 20 direct_packets_stat 0 ver 3.17 Sent 547326809 bytes 1342627 pkts (dropped 9303, overlimits 2817572 requeues 0) backlog 46p qdisc sfq 10: limit 128p quantum 1514b flows 128/1024 perturb 10sec Sent 41874343 bytes 730889 pkts (dropped 0, overlimits 0 requeues 0) qdisc sfq

Hi, I''m fighting seriously with a most simple HTB setup. I''d like to share the incoming 64kbps into 5 and 59 for two different machines under NAT. HTB seems to hold the required limits when ceil is not set (no borrowing), but when borrowing enabled it seems to share equally rather then keeping the specified ratio. My setup is below. A typical output of "tc -s -d qdisc

Hi I''m doing traffic shaping with tc on ''10.0.0.0/30'' and ''10.0.0.28/30''. I want to delete part of shaping rules on the fly. (see my configuration at the end of this mail) I wan''t to delete the shaping for ''10.0.0.0/30'' on the fly while still keeping the shaping for part ''10.0.0.28/30'' running. When I for

Hi, I wanted to implement some QOS on my Linux Box with HTB, but after some time spend on the configuration and tests, I still don''t manage to have some correct results. Here are the details : -ROOT 2000 kbits -HIGHPRIO SUBCLASS 50 kbits prio 0 -SUBCLASS1 750 kbits prio 1 -SERVICE1 250 kbits prio 1

dear All, I'm a new student and my job is too shapping bandwith for our campus faculty network. I want to implement htb with Redhat-9.0 distro. does this distro kernel support htb and tc good ? or i should apply some patch or upgrade kernel ? regards reza

EHLO tc gurus. New to traffic control. Unfortunately, the politicians here in Denmark have decided that a PC is the same as a television set - so anyone owning a PC and internet connection of over 255 kbit/s must pay DKR 2200/year = EUR 300 = USD 400 in television licence fees :-( This is a lot of money for poor students, so we want to offer the students the *option* of limiting their

With the below script, whenever I ping 10.0.16.10 (which matches the only filter I have), traffic still get''s sent to the default 1:2 class instead of 1:1 and I don''t know why... Any hints? (kernel 2.6.12, iproute2-2.6.15) tc qdisc del dev eth0 root > /dev/null 2>&1 tc qdisc add dev eth0 handle 1: root htb default 2 tc class add dev eth0 classid 1:1 parent 1: htb rate

Hi! I built some rules to shape traffic from my linux router in both dirrections: to the Internet and to the LAN. When i apply the rules my computer cannot acces the Internet or the LAN. Is this behavior normal? Do I need to write some rules for local IPs of my router? (I have sevaral, both on the internal and the external NICs.) Thank you for any advice! Sorin.

Hello all! As far as I know that the traffic that will pass thru the router is balanced so that all connections have the same privilegies. Is it possible to configure the linux based router so that all computers will have the same privilegies? I mean that if in default case full traffic is splitted by connections, so I need to split it by users to prevent one user occupy all traffic by starting

Hey all. I''m trying to set up QoS using the HTB qdisc in a very basic setup, but it the example shown in the howto doesn''t seem to be working. While the packets show up in the correct classes, they appear to be completely ignoring the rates, meaning nothing gets shaped. My setup is that I''ve got a a bunch of machines behind my firewall/router: 1.2.3.1

Hi all :) I''m new to this list, as I''m new too to traffic shaping ;) I''ve set up an FTP server in my ADSL line and I wanted it to serve as fast as possible as long as I don''t use my outgoing ADSL bandwidth, and I''m currently using HTB for that (succesfully, I must add). The problem is (when the FTP server is serving higher than its

Hi, I have a typical configuration for my firewall/gateway box: single network card, with a pppoe connection to the DSL modem. I''m already successfully shaping the uplink (how come that the wondershaper.htb doesn''t use the ceil parameter? It should implement bandwidth borrowing!) but i found the ingress policy a little bit rough. I''d like to keep the traffic categories

Hi, I''m trying to perform some (what I consider) basic traffic shaping on our network utilising HTB. I have mostly reused the example on the lartc.org site: tc qdisc add dev eth0 root handle 1: htb default 10 tc class add dev eth0 parent 1: classid 1:1 htb rate 100mbit burst 24k tc class add dev eth0 parent 1:1 classid 1:10 htb rate 50mbit ceil 80mbit burst 19k tc class add dev eth0

I''m a new comer. I have problems using tc+htb. I run the following commands, and expect outgoing ssh flow goes into 1:11. But actually it goes into default 12. What''s wrong? tc qdisc add dev eth0 root handle 1: htb default 12 tc class add dev eth0 parent 1: classid 1:1 htb rate 1000kbit ceil 2000kbit prio 1 tc class add dev eth0 parent 1:1 classid 1:11 htb rate 100kbit ceil

Hi, machine: AMD K6 200 MHz Linux distribution: Mandrake 8.1 kernel: compiled 2.4.21 applied this: #define PSCHED_CLOCK_SOURCE PSCHED_CPU in file linux/include/net/pkt_sched.h bevore compiled the kernel (described on http://www.docum.org/stef.coene/qos/faq/cache/40.html) bandwitch on eth0: 128kbit The most simple configuration - 122kbit guaranted for WWW (sport 80) and

Dear All! I reach the point that I must ask you what I have to do. I am beginner at traffic shaping and I''m very confused with it. :) Here''s my script that doesn''t do what I want to do with it: tc qdisc del dev eth1 root tc qdisc add dev eth1 root handle 1 htb default 2 r2q 10 tc class add dev eth1 parent 1: classid 1:1 htb rate 300kbit tc class add dev eth1 parent 1: