* [LARTC] Whats wrong with my script?
@ 2004-01-27 13:41 Gastón
2004-01-29 13:05 ` andybr
` (5 more replies)
0 siblings, 6 replies; 7+ messages in thread
From: Gastón @ 2004-01-27 13:41 UTC (permalink / raw)
To: lartc
I`m trying to shape both upload (eth0) and download(eth1). I made this
script to acomplishthis but the filters are not working even though the
classes and qdiscs are created. What am I doing wrong? #!/bin/bash
tc qdisc del dev eth0 root
tc qdisc add dev eth0 root handle 1 htb default 10 r2q 5
tc qdisc del dev eth1 root
tc qdisc add dev eth1 root handle 1 htb default 10 r2q 5
tc class add dev eth0 parent 1: classid 1:2 htb rate 5Mbit burst 15k
tc class add dev eth0 parent 1:2 classid 1:59 htb rate 64Kbit ceil 64Kbit
tc qdisc add dev eth0 parent 1:59 handle 59 sfq perturb 10
tc filter add dev eth0 parent 1:0 protocol ip prio 100 u32 match ip src
192.168.0.50 classid 1:59
tc class add dev eth1 parent 1: classid 1:2 htb rate 5Mbit burst 15k
tc class add dev eth1 parent 1:2 classid 1:56 htb rate 64Kbit ceil 64Kbit
tc qdisc add dev eth1 parent 1:56 handle 56 sfq perturb 10
tc filter add dev eth1 parent 1:0 protocol ip prio 100 u32 match ip dst
192.168.0.50 classid 1:56
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
^ permalink raw reply [flat|nested] 7+ messages in thread
* Re:[LARTC] Whats wrong with my script?
2004-01-27 13:41 [LARTC] Whats wrong with my script? Gastón
@ 2004-01-29 13:05 ` andybr
2004-01-29 20:19 ` Gastón
` (4 subsequent siblings)
5 siblings, 0 replies; 7+ messages in thread
From: andybr @ 2004-01-29 13:05 UTC (permalink / raw)
To: lartc
Hello,
According with rules you are controlling only download
(src ip) you should add a (dst rule) also. Make a try.
[]'s
Anderson
> I`m trying to shape both upload (eth0) and download
(eth1). I made this
> script to acomplishthis but the filters are not working
even though the
> classes and qdiscs are created. What am I doing wrong?
#!/bin/bash
>
>
> tc qdisc del dev eth0 root
> tc qdisc add dev eth0 root handle 1 htb default 10 r2q
5
>
> tc qdisc del dev eth1 root
> tc qdisc add dev eth1 root handle 1 htb default 10 r2q
5
>
> tc class add dev eth0 parent 1: classid 1:2 htb rate 5M
bit burst 15k
>
> tc class add dev eth0 parent 1:2 classid 1:59 htb rate
64Kbit ceil 64Kbit
> tc qdisc add dev eth0 parent 1:59 handle 59 sfq perturb
10
> tc filter add dev eth0 parent 1:0 protocol ip prio 100
u32 match ip src
> 192.168.0.50 classid 1:59
>
> tc class add dev eth1 parent 1: classid 1:2 htb rate 5M
bit burst 15k
>
> tc class add dev eth1 parent 1:2 classid 1:56 htb rate
64Kbit ceil 64Kbit
> tc qdisc add dev eth1 parent 1:56 handle 56 sfq perturb
10
> tc filter add dev eth1 parent 1:0 protocol ip prio 100
u32 match ip dst
> 192.168.0.50 classid 1:56
>
>
> _______________________________________________
> LARTC mailing list / LARTC@mailman.ds9a.nl
> http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: ht
tp://lartc.org/
>
__________________________________________________________________________
Acabe com aquelas janelinhas que pulam na sua tela.
AntiPop-up UOL - É grátis!
http://antipopup.uol.com.br/
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
^ permalink raw reply [flat|nested] 7+ messages in thread
* Re: Re:[LARTC] Whats wrong with my script?
2004-01-27 13:41 [LARTC] Whats wrong with my script? Gastón
2004-01-29 13:05 ` andybr
@ 2004-01-29 20:19 ` Gastón
2004-01-30 7:16 ` [LARTC] " Damion de Soto
` (3 subsequent siblings)
5 siblings, 0 replies; 7+ messages in thread
From: Gastón @ 2004-01-29 20:19 UTC (permalink / raw)
To: lartc
What about this? : tc filter add dev eth1 parent 1:0 protocol ip prio 100
u32 match ip dst 192.168.0.50 classid 1:56
Is this correct for shaping upload?
----- Original Message -----
From: "andybr" <andybr@bol.com.br>
To: <gaston@steel.com.ar>
Cc: <lartc@mailman.ds9a.nl>
Sent: Thursday, January 29, 2004 10:05 AM
Subject: Re:[LARTC] Whats wrong with my script?
Hello,
According with rules you are controlling only download
(src ip) you should add a (dst rule) also. Make a try.
[]'s
Anderson
> I`m trying to shape both upload (eth0) and download
(eth1). I made this
> script to acomplishthis but the filters are not working
even though the
> classes and qdiscs are created. What am I doing wrong?
#!/bin/bash
>
>
> tc qdisc del dev eth0 root
> tc qdisc add dev eth0 root handle 1 htb default 10 r2q
5
>
> tc qdisc del dev eth1 root
> tc qdisc add dev eth1 root handle 1 htb default 10 r2q
5
>
> tc class add dev eth0 parent 1: classid 1:2 htb rate 5M
bit burst 15k
>
> tc class add dev eth0 parent 1:2 classid 1:59 htb rate
64Kbit ceil 64Kbit
> tc qdisc add dev eth0 parent 1:59 handle 59 sfq perturb
10
> tc filter add dev eth0 parent 1:0 protocol ip prio 100
u32 match ip src
> 192.168.0.50 classid 1:59
>
> tc class add dev eth1 parent 1: classid 1:2 htb rate 5M
bit burst 15k
>
> tc class add dev eth1 parent 1:2 classid 1:56 htb rate
64Kbit ceil 64Kbit
> tc qdisc add dev eth1 parent 1:56 handle 56 sfq perturb
10
> tc filter add dev eth1 parent 1:0 protocol ip prio 100
u32 match ip dst
> 192.168.0.50 classid 1:56
>
>
> _______________________________________________
> LARTC mailing list / LARTC@mailman.ds9a.nl
> http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: ht
tp://lartc.org/
>
__________________________________________________________________________
Acabe com aquelas janelinhas que pulam na sua tela.
AntiPop-up UOL - É grátis!
http://antipopup.uol.com.br/
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
^ permalink raw reply [flat|nested] 7+ messages in thread
* Re: [LARTC] Whats wrong with my script?
2004-01-27 13:41 [LARTC] Whats wrong with my script? Gastón
2004-01-29 13:05 ` andybr
2004-01-29 20:19 ` Gastón
@ 2004-01-30 7:16 ` Damion de Soto
2004-01-30 12:33 ` Gastón
` (2 subsequent siblings)
5 siblings, 0 replies; 7+ messages in thread
From: Damion de Soto @ 2004-01-30 7:16 UTC (permalink / raw)
To: lartc
Gastón wrote:
> What about this? : tc filter add dev eth1 parent 1:0 protocol ip prio 100
> u32 match ip dst 192.168.0.50 classid 1:56
> Is this correct for shaping upload?
On your upload (eth0) interface, you can't use private IPs, because they've already
been natted to real ones (see http://www.docum.org/stef.coene/qos/kptd/ )
If you want to shape outbound traffic based on private-lan IP, you need to mark the
packets with iptables, then filter based on mark.
(There are lots of examples of this in the doco and mail archives).
Your download rules seem correct enough.
regards,
>
> ----- Original Message -----
> From: "andybr" <andybr@bol.com.br>
> To: <gaston@steel.com.ar>
> Cc: <lartc@mailman.ds9a.nl>
> Sent: Thursday, January 29, 2004 10:05 AM
> Subject: Re:[LARTC] Whats wrong with my script?
>
>
> Hello,
>
> According with rules you are controlling only download
> (src ip) you should add a (dst rule) also. Make a try.
>
>
> []'s
> Anderson
>
>>I`m trying to shape both upload (eth0) and download
>
> (eth1). I made this
>
>>script to acomplishthis but the filters are not working
>
> even though the
>
>>classes and qdiscs are created. What am I doing wrong?
>
> #!/bin/bash
>
>>
>>tc qdisc del dev eth0 root
>>tc qdisc add dev eth0 root handle 1 htb default 10 r2q
>
> 5
>
>>tc qdisc del dev eth1 root
>>tc qdisc add dev eth1 root handle 1 htb default 10 r2q
>
> 5
>
>>tc class add dev eth0 parent 1: classid 1:2 htb rate 5M
>
> bit burst 15k
>
>>tc class add dev eth0 parent 1:2 classid 1:59 htb rate
>
> 64Kbit ceil 64Kbit
>
>>tc qdisc add dev eth0 parent 1:59 handle 59 sfq perturb
>
> 10
>
>>tc filter add dev eth0 parent 1:0 protocol ip prio 100
>
> u32 match ip src
>
>>192.168.0.50 classid 1:59
>>
>>tc class add dev eth1 parent 1: classid 1:2 htb rate 5M
>
> bit burst 15k
>
>>tc class add dev eth1 parent 1:2 classid 1:56 htb rate
>
> 64Kbit ceil 64Kbit
>
>>tc qdisc add dev eth1 parent 1:56 handle 56 sfq perturb
>
> 10
>
>>tc filter add dev eth1 parent 1:0 protocol ip prio 100
>
> u32 match ip dst
>
>>192.168.0.50 classid 1:56
>>
>>
>>_______________________________________________
>>LARTC mailing list / LARTC@mailman.ds9a.nl
>>http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: ht
>
> tp://lartc.org/
>
>
>
> __________________________________________________________________________
> Acabe com aquelas janelinhas que pulam na sua tela.
> AntiPop-up UOL - É grátis!
> http://antipopup.uol.com.br/
>
>
> _______________________________________________
> LARTC mailing list / LARTC@mailman.ds9a.nl
> http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
>
> _______________________________________________
> LARTC mailing list / LARTC@mailman.ds9a.nl
> http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
>
>
--
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Damion de Soto - Software Engineer email: damion@snapgear.com
SnapGear - A CyberGuard Company --- ph: +61 7 3435 2809
| Custom Embedded Solutions fax: +61 7 3891 3630
| and Security Appliances web: http://www.snapgear.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
--- Free Embedded Linux Distro at http://www.snapgear.org ---
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
^ permalink raw reply [flat|nested] 7+ messages in thread
* Re: [LARTC] Whats wrong with my script?
2004-01-27 13:41 [LARTC] Whats wrong with my script? Gastón
` (2 preceding siblings ...)
2004-01-30 7:16 ` [LARTC] " Damion de Soto
@ 2004-01-30 12:33 ` Gastón
2004-01-30 14:23 ` Anderson O Muniz
2004-02-01 23:09 ` [LARTC] " Damion de Soto
5 siblings, 0 replies; 7+ messages in thread
From: Gastón @ 2004-01-30 12:33 UTC (permalink / raw)
To: lartc
What if I use public, routable IPs? i.e eth0: public eth1: public and
client`s ips also public.
----- Original Message -----
From: "Damion de Soto" <damion@snapgear.com>
To: "Gastón" <gaston@steel.com.ar>
Cc: <lartc@mailman.ds9a.nl>
Sent: Friday, January 30, 2004 4:16 AM
Subject: Re: [LARTC] Whats wrong with my script?
> Gastón wrote:
> > What about this? : tc filter add dev eth1 parent 1:0 protocol ip prio
100
> > u32 match ip dst 192.168.0.50 classid 1:56
> > Is this correct for shaping upload?
> On your upload (eth0) interface, you can't use private IPs, because
they've already
> been natted to real ones (see http://www.docum.org/stef.coene/qos/kptd/ )
> If you want to shape outbound traffic based on private-lan IP, you need to
mark the
> packets with iptables, then filter based on mark.
> (There are lots of examples of this in the doco and mail archives).
>
> Your download rules seem correct enough.
>
> regards,
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
^ permalink raw reply [flat|nested] 7+ messages in thread
* Re: Re:[LARTC] Whats wrong with my script?
2004-01-27 13:41 [LARTC] Whats wrong with my script? Gastón
` (3 preceding siblings ...)
2004-01-30 12:33 ` Gastón
@ 2004-01-30 14:23 ` Anderson O Muniz
2004-02-01 23:09 ` [LARTC] " Damion de Soto
5 siblings, 0 replies; 7+ messages in thread
From: Anderson O Muniz @ 2004-01-30 14:23 UTC (permalink / raw)
To: lartc
If you want to set upload coming from eth0 for example:
tc filter add eth0 parent 1:0 protocol ip prio 100 u32 match ip src
192.168.0.50 classid 1:56
Try and let us know if it worked.
Anderson
----- Original Message -----
From: "Gastón" <gaston@steel.com.ar>
To: "andybr" <andybr@bol.com.br>
Cc: <lartc@mailman.ds9a.nl>
Sent: Thursday, January 29, 2004 6:19 PM
Subject: Re: Re:[LARTC] Whats wrong with my script?
> What about this? : tc filter add dev eth1 parent 1:0 protocol ip prio 100
> u32 match ip dst 192.168.0.50 classid 1:56
> Is this correct for shaping upload?
>
> ----- Original Message -----
> From: "andybr" <andybr@bol.com.br>
> To: <gaston@steel.com.ar>
> Cc: <lartc@mailman.ds9a.nl>
> Sent: Thursday, January 29, 2004 10:05 AM
> Subject: Re:[LARTC] Whats wrong with my script?
>
>
> Hello,
>
> According with rules you are controlling only download
> (src ip) you should add a (dst rule) also. Make a try.
>
>
> []'s
> Anderson
> > I`m trying to shape both upload (eth0) and download
> (eth1). I made this
> > script to acomplishthis but the filters are not working
> even though the
> > classes and qdiscs are created. What am I doing wrong?
> #!/bin/bash
> >
> >
> > tc qdisc del dev eth0 root
> > tc qdisc add dev eth0 root handle 1 htb default 10 r2q
> 5
> >
> > tc qdisc del dev eth1 root
> > tc qdisc add dev eth1 root handle 1 htb default 10 r2q
> 5
> >
> > tc class add dev eth0 parent 1: classid 1:2 htb rate 5M
> bit burst 15k
> >
> > tc class add dev eth0 parent 1:2 classid 1:59 htb rate
> 64Kbit ceil 64Kbit
> > tc qdisc add dev eth0 parent 1:59 handle 59 sfq perturb
> 10
> > tc filter add dev eth0 parent 1:0 protocol ip prio 100
> u32 match ip src
> > 192.168.0.50 classid 1:59
> >
> > tc class add dev eth1 parent 1: classid 1:2 htb rate 5M
> bit burst 15k
> >
> > tc class add dev eth1 parent 1:2 classid 1:56 htb rate
> 64Kbit ceil 64Kbit
> > tc qdisc add dev eth1 parent 1:56 handle 56 sfq perturb
> 10
> > tc filter add dev eth1 parent 1:0 protocol ip prio 100
> u32 match ip dst
> > 192.168.0.50 classid 1:56
> >
> >
> > _______________________________________________
> > LARTC mailing list / LARTC@mailman.ds9a.nl
> > http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: ht
> tp://lartc.org/
> >
>
>
> __________________________________________________________________________
> Acabe com aquelas janelinhas que pulam na sua tela.
> AntiPop-up UOL - É grátis!
> http://antipopup.uol.com.br/
>
>
> _______________________________________________
> LARTC mailing list / LARTC@mailman.ds9a.nl
> http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
>
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
^ permalink raw reply [flat|nested] 7+ messages in thread
* Re: [LARTC] Whats wrong with my script?
2004-01-27 13:41 [LARTC] Whats wrong with my script? Gastón
` (4 preceding siblings ...)
2004-01-30 14:23 ` Anderson O Muniz
@ 2004-02-01 23:09 ` Damion de Soto
5 siblings, 0 replies; 7+ messages in thread
From: Damion de Soto @ 2004-02-01 23:09 UTC (permalink / raw)
To: lartc
Gastón wrote:
> What if I use public, routable IPs? i.e eth0: public eth1: public and
> client`s ips also public.
Yes, you can also do that.
You don't have to though, iptables marking private IP and then filtering on marks
works quite fine.
regards,
--
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Damion de Soto - Software Engineer email: damion@snapgear.com
SnapGear - A CyberGuard Company --- ph: +61 7 3435 2809
| Custom Embedded Solutions fax: +61 7 3891 3630
| and Security Appliances web: http://www.snapgear.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
--- Free Embedded Linux Distro at http://www.snapgear.org ---
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
^ permalink raw reply [flat|nested] 7+ messages in thread
end of thread, other threads:[~2004-02-01 23:09 UTC | newest]
Thread overview: 7+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2004-01-27 13:41 [LARTC] Whats wrong with my script? Gastón
2004-01-29 13:05 ` andybr
2004-01-29 20:19 ` Gastón
2004-01-30 7:16 ` [LARTC] " Damion de Soto
2004-01-30 12:33 ` Gastón
2004-01-30 14:23 ` Anderson O Muniz
2004-02-01 23:09 ` [LARTC] " Damion de Soto
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.