similar to: iptables MARK behaviour out of the box

Displaying 20 results from an estimated 50000 matches similar to: "iptables MARK behaviour out of the box"

2004 Sep 09
5
Limiting speed of individual TCP sessions ?
Hi All, Does anyone know of a way to limit the speed of *individual* TCP sessions, but without placing any overall bandwidth limits, and without requiring an explicit QoS entry for every ip address the machine is communicating with ? The scenario is a mailserver - say you want to limit individual TCP sessions (pop3, smtp etc) to no more than 512Kbit so that an individual session
2007 Feb 05
2
tc filter matches ip fileds inside pppoe frames
I have a requirement which I guess it is not too unusually, however I haven''t quite figured out how to do it and couldn''t find any examples which handle that. I have made myself a Linux-based bridge, eth0 bridged with eth1 to form br0. In this bridge, I run ''tc'' script to handle QoS. So far nothing unusual. However, what''s different is that this
2007 Dec 06
4
prio qdisc not wokring
Hi, I am working on linux 2.6.16.I tried to prioritize traffic using prio module but its not working well.It always maps to same class irrespective of ToS.Is it possible to fix it using filters?Anybody fixed this problem? -- Regards Archana Rajagopal _______________________________________________ LARTC mailing list LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
2005 Apr 04
8
Help please with tc and iptables mark
Hello list members, Finaly I''m here after a week of trying to subscribe to this list... pfew... Anyway... I have a rather strange problem with tc. I am trying to police the ingress traffic into my network using the iptables MARK feature (in mangle table, PREROUTING) but it seems that tc filters ignore this marks and they don''t work at all for me. Let me explain a bit more in
2003 Aug 29
1
Priomap
Hi all, Here is something that i still haven''t understood. When installing PRIO, it creates 3 "classes" with priority level according to the TOS. That command line : # tc qdisc add dev eth0 root handle 1: prio give that result : # tc qd sh qdisc prio 1: dev eth0 bands 3 priomap 1 2 2 2 1 2 0 0 1 1 1 1 1 1 1 1 How should i read that priomap, what does it mean and how to
2004 May 09
3
prerouting does not effect filtering
I try to shape traffic using HTB and mark packets within iptables using PREROUTING. But the filterrules seems to ignore the marks set with PREROUTING Only POSTROUTING marks are accepted. First my configuration I have a router connected to the internet via ADSL over interface ppp0. eth0 is a tunnel to ppp0 and eth1 serves the LAN. LAN is 192.168.57.0/24 on 10Mbit ppp0 is 80.126.16.44 on
2005 Oct 22
4
Differentiating between http downloads and interactive traffic
Hi, I''ve been wondering if anyone has thought of a way to differentiate between an established http download and interactive http traffic? I would like to give interactive http traffic priority over someone downloading large files. Has anyone any ideas how to detect packets that are part of a download like this? Thanks. _______________________________________________
2006 May 25
3
How to limit bandwidth in iptables -- HELP
Hi, Can anybody help me out, how to manage or limit bandwidth through iptables while having internet connection on eth0 and working as a gateway in LAN. Thnaks in Advance. Vikram _______________________________________________ LARTC mailing list LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
2004 Apr 04
8
Can I give more bandwidth to a specific URL
Hi all, Can I give more bandwidth to a specific URL. Regards Abdul Khader __________________________________ Do you Yahoo!? Yahoo! Small Business $15K Web Design Giveaway http://promotions.yahoo.com/design_giveaway/ _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
2005 Feb 16
9
DSCP, ToS and Egress
I''m successfully using HTB + GRED to shape traffic based on the DSCP field. I would like to strip the DSCP and possibly replace it with normal ToS bits on egress traffic leaving my network. Leaving DSCP set is pointless, and could potentially cause problems with some ISPs that use DSCP internally I suppose. Setting ToS bits would seem ideal as most networks still honor it to varying
2002 Nov 24
2
Extending Wondershaper a bit
Hello everyone. I''ve been trying to get Qos to work here for two days now, but it REALLY doesn''t seem to work the way I want to. Here is my situation: Internet Wireless LAN Firewall DMZ Local lan As you can see, I got a Debian box in the middle as my firewall with 3 network interfaces and a wireless one. I use
2004 May 04
4
Wrapping prio in tbf
The manual says (about prio): > Because it doesn''t actually shape, the same warning as for SFQ holds: > either use it only if your physical link is really full or wrap it > inside a classful qdisc that does shape. The latter holds for almost all > cable modems and DSL devices. I want to wrap prio inside of tbf. Here''s why: I have a server on a DSL line, which has
2004 May 09
2
MARK target question
This is more of a NF question but it is tightly related to LARTC as well. In the following example: -t mangle -A PREROUTING -i eth0 -j MARK 0x1 .... -t mangle -A INPUT -i eth0 -j MARK 0x2 Since MARK is a non-terminatring target, what would be the resulting mark on a packet comming from the outside and destined for a local process? Thanks P.S. I agree, the example looks stupid, but on the
2006 Jul 10
5
simple TOS based setup vs more complex ones
Hi, After reading section 9 of LARTC it seemed to me that a pure TOS based QoS setup with be sufficient for a small newtork. Interactive packets could have the highest priority, second highest for DNS and small HTTP packets and lowest prio for all others. The advantage is that, the setup would be simply a couple of iptables lines, because the default pfifo_fast qdisc already implements
2004 Jun 10
6
Shaping incoming traffic on the other interface
Hi, I have a typical configuration for my firewall/gateway box: single network card, with a pppoe connection to the DSL modem. I''m already successfully shaping the uplink (how come that the wondershaper.htb doesn''t use the ceil parameter? It should implement bandwidth borrowing!) but i found the ingress policy a little bit rough. I''d like to keep the traffic categories
2003 Oct 31
2
tc filter oddities
I shape my upstream cable link with HTB from a script. My voip traffic (from the 192.168.0.14 host) gets priority over everything else to the near-starvation of other classes; the rest of the traffic is split up based on some priority rules (qos, empty ack packets, etc). eth1 is the uplink I''ve been using HTB and fw marking for the job until recently, when I changed the queue structure
2003 Dec 03
12
$100 USD to the first person that can provide the rules/scripts that will solve the QOS latency & bandwidth allocation issue !!!!
To stress the urgency and importance of my questions, I am willing to pay $100 to the first person that can provide me with the scripts/ rules that will work in my SnapGear firewalls that will solve the problems I am having. Please see the following post: Linux QOS and prioritization of real-time data (RTP/VoIP) Thank you!
2007 Feb 04
4
tc ingress + iptables mark problem
Hi guys , i am starting to "play" with qos in linux. Well , i am trying to setup an ingress filter but i do not know why it is not working. tc add qdisc dev eth0 ingress tc filter add dev eth0 parent ffff: protocol ip prio 1 handle 1 fw police rate 160kbit burst 256kbit drop flowid :1 After that : iptables -A PREROUTING -t mangle --sport 80 -j MARK --set-mark 1 So , i think this
2005 Jan 12
1
dynamic bandwidth allocation
Hi, Hope someone can help me. I am a student who hass been given a project to develop a dynamic bandwidth service. I currently have a linux router which at the moment gives users static bandwidth and assigns each of them to a bucket. I have not gotten information yet as to whether each bucket is serviced in a round robin fashion or whether certain buckets get preferential treatment (i.e. bucket
2003 Mar 13
4
howto mark packet''s dscp value
Dear all can anyone tell me how to mark packet''s DSCP value using tc? Thanks. Regards, philip -- Hong Kong IP Multicast Initiative (HKIPMI) Department of Information Engineering The Chinese University of Hong Kong Phone : 2603 5240 Fax : 2603 5032 _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl