similar to: Traffic Shaping on a machine that isn't just a firewall

Displaying 20 results from an estimated 6000 matches similar to: "Traffic Shaping on a machine that isn't just a firewall"

2006 Mar 03
3
tcdevices Error
Version 3.0.5 with the two-devices setup (eth0 - net, eth1 - loc). Kernel 2.4.29 tcdevices, tcrules, and tcclasses are clones of the wondershaper example (http://www.shorewall.net/traffic_shaping.htm) with eth0 replacing ppp. With TC_ENABLED=Internal in shorewall.conf: ---- Validating /etc/shorewall/tcdevices... Validating /etc/shorewall/tcclasses... ERROR: device A seems not to be
2012 Sep 20
1
Debian Lenny very simple traffic shaping not working
Hi, I am trying to do the simplest configuration of traffic shaping. So I did: shorewall.conf TC_ENABLED=Simple tcinterfaces eth0.2 External 500kbit tcdevices eth0.2 500kbit 200kbit And I am testing the speed on that interface - whether I did it ok or not, and my speed is still 4mbit/512kbit. So the question is - How to reduce the speed on interface connected
2004 Apr 16
1
Traffic Shaping using Shorewall and WonderShaper
Hi Guys, I''m asking this question again because I have exhausted resources for understanding how to get it to work. I''ve read the howto on getting traffic shaping to work (shorewall''s web site) as well as trying out wondershaper''s htb and cbq scripts. Somehow both does not seem to happen as I want it to. I''ve also read through the lartc
2007 Jul 29
3
Integrating QoS and Traffic Shaping from HowToForge Article
Hi ! I found an excellent article about QoS and traffic shaping for VoIP (Asterisk IAX protocol), which is designed to improve sound quality even over very busy lines. http://www.howtoforge.com/voip_qos_traffic_shaping_iproute2_asterisk Should I just cut and paste all that to shorewall''s tcrules (replacing 4569 with 5060)? Additionally, author of this article uses IAX protocol,
2012 Nov 20
3
Simple Traffic Shaping Problem
Hello, I have a problem with simple traffic shapping in shorewall, my current configuration is: zones vlan10 ipv4 # interfaces vlan10 vlan10 detect tcpflags,routeback shorewall.conf TC_ENABLED=Simple tcinterfaces vlan10 Internal 1mbit:50kb shorewall show tc Device vlan10: qdisc prio 5: root refcnt 2 bands 3 priomap 1 2 2 2 1 2 0 0 1 1 1 1 1 1 1 1
2004 Aug 16
1
CLEAR_TC=Yes & TC_ENABLED=No
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 I found a problem with my tcstart script. First I was running system TC enabled for testing and then to stop all TC I changed TC_ENABLED=No. But I started to wonder why shorewall restart did _not_ clear TC rules after TC was disabled? So I checked firewall and found out that if TC_ENABLED=No TC_CLEAR is disabled automatically. Question is: should
2004 Aug 07
11
Traffic shaping?
Ok, shaping on Linux is new to me.. so bear with me if i am just stupid. curtain:/etc/shorewall# grep TC shorewall.conf | grep -v ^# TCP_FLAGS_LOG_LEVEL=info TC_ENABLED=Yes CLEAR_TC=Yes TCP_FLAGS_DISPOSITION=DROP curtain:/etc/shorewall# So it should be enabled, right? ---- tcrules ---- 1 eth0 0.0.0.0/0 all 2 eth1 0.0.0.0/0 all 2 eth2 0.0.0.0/0
2007 Aug 15
28
traffic shaping
I try use setup traffic shaping with Shorewall-4.0.2 and have fault. When i start Shorewall with tc-files configured i get follow messages: ... RTNETLINK answers: No such file or directory We have an error talking to the kernel ERROR: Command "tc filter add dev eth2 parent ffff: protocol ip prio 50 u32 match ip src 0.0.0.0/0 police rate 500kbit burst 10k drop flowid :1" Failed
2009 Jun 27
1
Transparent Proxy Problem with Squid3 and Shorewall
Hi all, I have a strange problem in trying to install a transparent proxy (in my internal net not on the shorewall server) according to the instructions as outlined in http://www.shorewall.net/Shorewall_Squid_Usage.html#Local My Network looks the following: Internal Net: 10.0.0.0/24 Squid Server listening on port 3128 (ip 10.0.0.152, DNS name server01) | |
2009 Aug 26
2
shaping torrent traffic
hi who can ever help me out with the shaping of torrent traffic? i have a pptp at ppp0 over eth0 (10.0.0.1/8) i would like to shape outgoing traffic of rtorrent on these two interfaces, assume rtorrent is running at port 6999 need 3mbit for ppp0 and 50mbit for eth0 i supposed: [tcclasses] ppp0 1 2mbit 3mbit 1 eth0 2 20mbit 50mbit 2 [tcrules] 1 0.0.0.0/0 0.0.0.0/0 tcp
2008 Jun 04
11
traffic shaping and classes
I''m looking over this traffic shaping available in the tc* files. I went through this when I did my own traffic shaping outside of shorewall previously. For the average (i.e. home, perhaps) user, I''ve never understood why we use these more complicated shaping algorithms that define classes and guaranteed minimums and maximums and so forth. For most home, or other small use
2013 Jun 28
3
Bandwidth limited when shorewall is enabled
Hi, I''ve been having a really strange thing happen. I can''t remember when it happened, or if it coincided with a shorewall update, but if I have shorewall "running", my 100mbps connection is limited to about 1-6mbps per connection. This is with TC/Shaping/QoS disabled or enabled. I have no idea if its shorewall doing something funky or ipables or what, but if I
2005 Apr 04
1
traffic shaping - equally distribute bandwidth
Hello! I am running my linux box as a firewall in a bridge mode. Firewall is protecting a /24 network. I want to make that the bandwidth distributes equally to active nodes: if N nodes are accessing the internet simultaneous then each node gets bandwith/N. Is there any way to achieve this with shorewall? Thank you! BR, Jernej
2013 Jun 13
3
"Multiple Internet Connections" with four interfaces
Hi, I was reading document http://shorewall.net/MultiISP.html#idp3634200. Inspired by the document I was trying to establish the following changes: * one additional interface: COMA_IF * COM[A,B,C]_IF interfaces request IP address via DHCP * all non-RFC 1918 destined trafic is NATed from INT_IF to COMA_IF * all non-RFC 1918 destined trafic from GW is routed via COMB_IF by default * non-RFC 1918
2004 Nov 24
14
traffic shaping on ftp server don''t work
Having study a number of documents on linux traffic shaper, I started to setup my shaping rules in my network. My linux box is running RH AS3 U3, shorewall 2.0.9. It is using PPPoE connected to the Internet firewall: eth0: connect to the adsl modem eth1: private net ppp0: virtual dial up interface for pppoe There is a ftp server on the private net It is listen for port 21 and configured
2010 Aug 18
0
Re: [netperf-talk] How configure my firewall to execute netperf ? I use shorewall (iptable firewall) on Debian
Le 16/08/2010 19:20, Rick Jones a écrit : > Klein Stéphane wrote: >> Hi, >> >> I''ve two computer : >> * A : it''s a server with a firewall >> * B : an computer on internet >> >> I''ve installed netserver on host A. >> I use netperf on host B. >> >> On host B, I launch : >> >> $ netperf -H
2011 Jun 21
2
OpenVZ, outgoing traffic blocked
I''ve been tearing my hair out on this one for the last couple of days, I even switched from CentOS on the physical server, to Debian, just to see if it would make a difference, but it didn''t. First of all, I''ll describe my setup: I have one Dell server, running Debian 6 with only one network port connected to my test LAN (eth0), and two test containers, also running
2009 Oct 30
4
traffic shaping with two internal interfaces
Hi, my shorewall is version 4.0.15 on Debian Lenny. I have 3 following interfaces: eth0 net (4mbit/512kbit) eth1 loc (100mbit) eth2 loc (100mbit) I want to shape traffic from net on two lan interfaces like: - default is 2000mbit for each local interface - if is no traffic on eth1 is 4mbit for eth2 (and vice versa) My tcdevices eth0 4000mbit 512kbit eth1 -
2010 Oct 18
2
SAMBA 4 ACL support
Hi all, I am experimenting with samba 4. I have existing data on NTFS partition and want to share them via samba. But I have problems with permissions (ACL). There is an option: ntvfs handler that tells how mapping of permissions between unix and windows world shall behave. But there is lack of documentation. So I tried posix, simiple but in either case I wasnot able to write even set permissions
2007 Dec 08
4
disconnect after too many errors?
There are a couple of jerks that are tying to dictionary attack my email server, and one of the vectors is pop3/imap logins. Something I would like to do in dovecot, but can't seem to find, is the ability to disconnect after a certain number of errors. The vast majority of my users (i.e. me) don't hand-type POP3 or IMAP transactions, but when we do, we know how to spell things