* Iptables bandwidth limit
@ 2002-09-20 10:35 Daniel Cohen
0 siblings, 0 replies; 7+ messages in thread
From: Daniel Cohen @ 2002-09-20 10:35 UTC (permalink / raw)
To: netfilter
Is it possible to set a bandwidth limit with IPTABLES. Lets say for
instance that 10.1.204.49/32 should have maximum 100k speed to 10.1.10.30.
Can iptables fix this?
^ permalink raw reply [flat|nested] 7+ messages in thread
* Iptables bandwidth limit
@ 2002-09-20 11:17 Daniel Cohen
2002-09-20 11:32 ` Roy Sigurd Karlsbakk
2002-09-20 12:07 ` Eric Leblond
0 siblings, 2 replies; 7+ messages in thread
From: Daniel Cohen @ 2002-09-20 11:17 UTC (permalink / raw)
To: netfilter
Is it possible to set a bandwidth limit with IPTABLES. Lets say for
instance that 10.1.204.49/32 should have maximum 100k speed to 10.1.10.30.
Can iptables fix this?
^ permalink raw reply [flat|nested] 7+ messages in thread
* Re: Iptables bandwidth limit
2002-09-20 11:17 Iptables bandwidth limit Daniel Cohen
@ 2002-09-20 11:32 ` Roy Sigurd Karlsbakk
2002-09-20 12:07 ` Eric Leblond
1 sibling, 0 replies; 7+ messages in thread
From: Roy Sigurd Karlsbakk @ 2002-09-20 11:32 UTC (permalink / raw)
To: Daniel Cohen, netfilter
On Friday 20 September 2002 13:17, Daniel Cohen wrote:
> Is it possible to set a bandwidth limit with IPTABLES. Lets say for
> instance that 10.1.204.49/32 should have maximum 100k speed to 10.1.10.30.
>
> Can iptables fix this?
nope
but iproute2, the ip util, QoS compiled into kernel etc can do. try googling
around for QoS howtos.
the TBF qdisc is fine for this. see
http://snafu.freedom.org/linux2.2/iproute-notes.html#syntcqtbf
roy
--
Roy Sigurd Karlsbakk, Datavaktmester
ProntoTV AS - http://www.pronto.tv/
Tel: +47 9801 3356
Computers are like air conditioners.
They stop working when you open Windows.
^ permalink raw reply [flat|nested] 7+ messages in thread
* Re: Iptables bandwidth limit
2002-09-20 11:17 Iptables bandwidth limit Daniel Cohen
2002-09-20 11:32 ` Roy Sigurd Karlsbakk
@ 2002-09-20 12:07 ` Eric Leblond
1 sibling, 0 replies; 7+ messages in thread
From: Eric Leblond @ 2002-09-20 12:07 UTC (permalink / raw)
To: netfilter
On Fri, 2002-09-20 at 13:17, Daniel Cohen wrote:
> Is it possible to set a bandwidth limit with IPTABLES. Lets say for
> instance that 10.1.204.49/32 should have maximum 100k speed to 10.1.10.30.
>
> Can iptables fix this?
You can almost do this with the limit module, but you should better use
HTB or CBQ (QOS) which are really done for this.
BR,
--
Éric Leblond
courriel : eleblond@init-sys.com
^ permalink raw reply [flat|nested] 7+ messages in thread
* RE: Iptables bandwidth limit
@ 2002-09-20 12:23 Rob Sterenborg
2002-09-20 12:35 ` Andrei Ivanov
0 siblings, 1 reply; 7+ messages in thread
From: Rob Sterenborg @ 2002-09-20 12:23 UTC (permalink / raw)
To: netfilter
[-- Attachment #1: Type: text/plain, Size: 235 bytes --]
> You can almost do this with the limit module, but you should
> better use
> HTB or CBQ (QOS) which are really done for this.
>
I first accomplished it with CBQ, but later I switched to HTB which is a lot
easier to configure.
Rob
[-- Attachment #2: Type: text/html, Size: 689 bytes --]
^ permalink raw reply [flat|nested] 7+ messages in thread
* RE: Iptables bandwidth limit
2002-09-20 12:23 Rob Sterenborg
@ 2002-09-20 12:35 ` Andrei Ivanov
2002-09-20 19:46 ` Oskar Andreasson
0 siblings, 1 reply; 7+ messages in thread
From: Andrei Ivanov @ 2002-09-20 12:35 UTC (permalink / raw)
To: netfilter
What amazes me is that iptables doesn't know to match packets by a tos
value other then the ones in ip.h... this really SUCKS.
On Fri, 20 Sep 2002, Rob Sterenborg wrote:
> > You can almost do this with the limit module, but you should
> > better use
> > HTB or CBQ (QOS) which are really done for this.
> >
> I first accomplished it with CBQ, but later I switched to HTB which is a lot
> easier to configure.
>
>
> Rob
>
^ permalink raw reply [flat|nested] 7+ messages in thread
* RE: Iptables bandwidth limit
2002-09-20 12:35 ` Andrei Ivanov
@ 2002-09-20 19:46 ` Oskar Andreasson
0 siblings, 0 replies; 7+ messages in thread
From: Oskar Andreasson @ 2002-09-20 19:46 UTC (permalink / raw)
To: Andrei Ivanov; +Cc: netfilter
First of all, the limitation was created since you should not use other
TOS values than specified in the RFC's. You may get extremely strange
problems if you start doing random TOS matches on packets.
Anyways, iptables _is_ actually able to do irregular TOS matching with the
ftos patch applied to the kernel (I _think_ it may still be in
patch-o-matic, but I don't know for sure). It should also be available
somewhere on the www.paktronix.com site.
Have a nice day,
On Fri, 20 Sep 2002, Andrei Ivanov wrote:
>
> What amazes me is that iptables doesn't know to match packets by a tos
> value other then the ones in ip.h... this really SUCKS.
>
> On Fri, 20 Sep 2002, Rob Sterenborg wrote:
>
> > > You can almost do this with the limit module, but you should
> > > better use
> > > HTB or CBQ (QOS) which are really done for this.
> > >
> > I first accomplished it with CBQ, but later I switched to HTB which is a lot
> > easier to configure.
> >
> >
> > Rob
> >
>
>
>
--
----
Oskar Andreasson
http://www.frozentux.net
http://iptables-tutorial.frozentux.net
http://ipsysctl-tutorial.frozentux.net
mailto:blueflux@koffein.net
^ permalink raw reply [flat|nested] 7+ messages in thread
end of thread, other threads:[~2002-09-20 19:46 UTC | newest]
Thread overview: 7+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2002-09-20 11:17 Iptables bandwidth limit Daniel Cohen
2002-09-20 11:32 ` Roy Sigurd Karlsbakk
2002-09-20 12:07 ` Eric Leblond
-- strict thread matches above, loose matches on Subject: below --
2002-09-20 12:23 Rob Sterenborg
2002-09-20 12:35 ` Andrei Ivanov
2002-09-20 19:46 ` Oskar Andreasson
2002-09-20 10:35 Daniel Cohen
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.