Displaying 20 results from an estimated 5000 matches similar to: "mark range"
2005 Jan 26
11
Question on tcrules implementation
Hi all,
I moved wshaper 1.1 cbq file to tcstart, but none of my tcrules are being
observed. The only way I can set the marks is by editing the tcstart file.
Is there a way to incorporate for tcstart to read and apply my set marks in
tcrules?
Thank you,
~Andrew Nady.
2003 Oct 15
4
tcrules ignored? wondershaper integration?
Hi,
first of all, let me thank you for your great Shoreline Firewall. I use
it with great success at home (protecting my WiFi connection).
And now if I could have a question about traffic shaping. I did read
everything I could find but I still have two problems: first, the MARK
from tcrules is not working in HTB based simple tc filter line ("handle
$MARK fw classid 1:20"). If I switch
2003 Oct 21
14
Prioritizing traffic
I don''t know whether this is the right place to ask, but kindly point me to
an FM that I can R if it isn''t.
My wife is creating lots of Kazaa traffic, and I am using rsync to create a
full mirror of Red Hat''s FTP site, Aurora Linux FTP site, the LDP site, and
some other stuff. Clearly, when one is moving well over 100GB over a 128
Kbps link, this is going to take a
2005 Jun 24
7
tcp redirect questions
Hi there. Currently, our network design has two ISP
lines and 3 subnets for LAN. Below are some details :-
eth0 - isp1
eth1 - isp2
eth2 - subnet1
eth3 - subnet2
eth4 - subnet3
What i wanted to do is to assign incoming port 80 to
our local squid server running on the firewall itself
and assigned it to eth0(ISP1). I think it shouldnt be
a problem as /etc/shorewall/rules provides a sample of
the
2005 Aug 18
9
Running Shorewall with WonderShaper on a dual-ISP setup.
I''m currently building a firewall for a network with 2 ISP links.
Unfortunately, one of the ISP''s doesn''t support BGP yet, otherwise I
would be doing load balancing at the router, instead of the firewall.
I''ve been trying to find information on how to get WonderShaper working,
but everything I''ve found talks about setting it up for a firewall with
one
2003 Jan 14
3
Shorewall-1.3.13
Just some stuff that was laying around in CVS:
1. Added ''DNAT-'' target.
2. Print policies in ''check'' command.
3. Added CLEAR_TC option.
4. Added SHARED_DIR option.
[teastep@wookie Shorewall]$ cat releasenotes.txt
This is a minor release of Shorewall that has a couple of new features.
New features include:
1) A new ''DNAT-'' action has been
2013 Sep 08
2
Fwd: Where to put custom rules
Hi All,
I have a custom TC configuration where I''m building the tc hierarchy
manually with the tcstart script. I also need to add custom iptables
rules in the mangle table to classify the packets.
Currently I''m using started to insert the iptables commands, but
that''s way too late in the process.
I tried putting them into the initdone file, but it''s trying to
2005 Feb 16
6
Re: Bandwith Control with a firewall/bridge
>Miguel Ángel Domínguez Durán wrote:
>> Hello again,
>> First, excuse me for my poor english.
>> I''m trying now to make bandwith control in a firewall machine running
>> Shorewall. This machine is also a bridge using bridge-utils
>> bridge-utils-devel. It is a mandrake 10. The configuration is something
>> like
>> this:
>>
>>
2004 May 14
1
OTHER BUG IN SAMBA 3.0.4 ?! FORCE USER
(excuse me for my bad english)
I CAN?T CHANGE WRITABLE/READ-ONLY VALUE BECAUSE I NEED THAT
ANYONE WRITE EXCEPT THE USER/GROUP IN WRITELIST
I used the samba-3.0.1pre1 without problems.
Now, I use the samba-3.0.4 (bug ms04-011 fixed)
Is this a samba 3.0.4 bug ?! :
[rental]
comment = Rental
path = /home/rental
valid users = @administradores @rental mesaayuda ctoledo
public = no
2004 Dec 18
14
Traffic Control
So after reading the traffic control documentation at shorewall.net I am
a little confused. I don''t understand how to use the tcrules file.
What I would ideally like to do is setup htb on a per user basis (either
by IP or MAC address). If anybody has any hints on the best way to do
this or is willing to explain the use of tcrules file a little better
(how I could mark it per IP or MAC)
2005 Feb 25
1
Traffic control in a bridge/firewall machine
Hi everyone,
I don''t know if you remember me, but i had a problem with a machine
performing bridge (bridge-utils) and firewall (shorewall) duties. I wanted
to control traffic in this machine using iproute2 and tc command with the
tcstart and tcrules file in shorewall configuration. My machine hanged up
when I used my traffic control script that way, but I found a solution :)
The key
2004 Dec 14
4
fwmark
how can I check whether packets are being marked as per my tcrules file?
4 0.0.0.0/0 202.37.230.93 udp 500
4 fw 0.0.0.0/0 udp 500
also can someone confirm what ports are needed to be opened for ipsec?
1701,1723,47,500 ???
P.
2004 Nov 24
14
traffic shaping on ftp server don''t work
Having study a number of documents on linux traffic shaper, I started
to setup my shaping rules in my network.
My linux box is running RH AS3 U3, shorewall 2.0.9.
It is using PPPoE connected to the Internet
firewall:
eth0: connect to the adsl modem
eth1: private net
ppp0: virtual dial up interface for pppoe
There is a ftp server on the private net
It is listen for port 21 and configured
2012 May 08
19
Shorewall, TPROXY, Transparent Squid and Multiples ISP
Hello,
I wonder if someone could use the TPROXY with Shorewall and
transparent Squid with using the routing rules on shorewall
(tcrules) for hosts / networks (LAN) with multiples providers (WANs)
directly from the internal network on port 80 (with TPROXY
transparent squid or REDIRECT).
On this issue, the routing rules is not work propertly because the
source is the
2007 Aug 15
28
traffic shaping
I try use setup traffic shaping with Shorewall-4.0.2 and have fault.
When i start Shorewall with tc-files configured i get follow messages:
...
RTNETLINK answers: No such file or directory
We have an error talking to the kernel
ERROR: Command "tc filter add dev eth2 parent ffff: protocol ip prio
50 u32 match ip src 0.0.0.0/0 police rate 500kbit burst 10k drop flowid
:1" Failed
2004 Aug 07
11
Traffic shaping?
Ok, shaping on Linux is new to me.. so bear with me if i am just stupid.
curtain:/etc/shorewall# grep TC shorewall.conf | grep -v ^#
TCP_FLAGS_LOG_LEVEL=info
TC_ENABLED=Yes
CLEAR_TC=Yes
TCP_FLAGS_DISPOSITION=DROP
curtain:/etc/shorewall#
So it should be enabled, right?
---- tcrules ----
1 eth0 0.0.0.0/0 all
2 eth1 0.0.0.0/0 all
2 eth2 0.0.0.0/0
2005 Feb 15
1
Bandwith Control with a firewall/bridge machine
Hello again,
First, excuse me for my poor english.
I''m trying now to make bandwith control in a firewall machine running
Shorewall. This machine is also a bridge using bridge-utils
bridge-utils-devel. It is a mandrake 10. The configuration is something like
this:
FTP/Webserver ------| eth0 eth1
Mailserver
2004 Oct 17
8
Shorewall and IPP2P
Hi!
I''m wondering whether anyone has successfully set up a bandwidth control
system using ipp2p and shorewall. I have been able to drop connecions
altogether, but I don''t seem to be able to get CONNMARK working with ipp2p.
Any pointers would be greatly appreciated :)
______________________________
Mario R. Pizzolanti
2007 Jul 29
3
Integrating QoS and Traffic Shaping from HowToForge Article
Hi !
I found an excellent article about QoS and traffic shaping for VoIP (Asterisk
IAX protocol), which is designed to improve sound quality even over very busy
lines.
http://www.howtoforge.com/voip_qos_traffic_shaping_iproute2_asterisk
Should I just cut and paste all that to shorewall''s tcrules (replacing 4569
with 5060)?
Additionally, author of this article uses IAX protocol,
2004 May 21
2
fwmark / MARK / --set-mark syntax never run on my system! Search step by step help.
Hello!
This arguments never run on my system, but I need this:
#!/bin/bash -x
echo "1"
iptables -t mangle -p tcp -d 0/0 --dport 80 -j MARK --set-mark 2
echo "2"
echo "201 T1" >> /etc/iproute2/rt_tables
echo "3"
ip rule add fwmark 2 table T1
echo "4"
ip route add default via 192.168.21.2 dev eth1 table T1
echo "5"
ip route