* quota match with quota per ip
@ 2003-05-28 13:10 Diego Woitasen
0 siblings, 0 replies; only message in thread
From: Diego Woitasen @ 2003-05-28 13:10 UTC (permalink / raw)
To: netfilter-devel; +Cc: samj, Brad Fisher
[-- Attachment #1: Type: text/plain, Size: 743 bytes --]
Here is a modified patch of quota match. I add the destination ip quota
match. I maintain a table with the quota used by each destination IP
address, and match (or not match "!") according to the used quota.
We use this in www.linux.org.ar for bandwith control. With this we mark
the packets that have exceeded the quota and then we do shaping with
QoS. For example:
iptables -I OUTPUT -m quota --ipdstquota ! 50000000 -j MARK --set-mark XX
Then all the packets that exceeded the 50 mb quota are mark for shaping.
This is for avoiding bandwith abuses, for people that like download
mirrors without sense.
Suggestions and comments are welcome, I 'm newbie...
Diego Woitasen
Lanux - Lanus Linux Users Group
Lanus, Buenos Aires, Argentina
[-- Attachment #2: patch.tgz --]
[-- Type: application/x-gzip, Size: 5504 bytes --]
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2003-05-28 13:10 UTC | newest]
Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2003-05-28 13:10 quota match with quota per ip Diego Woitasen
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.