From mboxrd@z Thu Jan  1 00:00:00 1970
From: VladSun <vladsun@relef.net>
Date: Sat, 02 Jun 2007 11:46:38 +0000
Subject: Re: [LARTC] u32 classifier
Message-Id: <4661589E.8070100@relef.net>
List-Id: <lartc.vger.kernel.org>
References: <marc-lartc-105818475719019@msgid-missing>
In-Reply-To: <marc-lartc-105818475719019@msgid-missing>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
To: lartc@vger.kernel.org

terraja-based написа:
> Hi folks...!!!
> I´ve a problem that i did not solve it.
> i want to limit the DOWNLOAD to my hosts (upstream traffic for the 
> firewall) using IMQ,
> If i classify by PORT (source or destination) all seems to be fine, 
> but...BUT...if i want to restrict by IP addresss (internal IP address) 
> i can´t do it, because my hosts go to Internet toward the firewall 
> using NAT, so after NAT my IP address in Internet is not my internal 
> address, because the NAT acction change my source and internal IP 
> address.
> So...so...so...how can i limit the traffic by IP address using TC, 
> IMQ, U32..etc...?????
> Can i modify some field in the TCP header with u32 filter?, i did read 
> the TCP RFC and nothing, i can´t guess how can solve it...
> Please, HELPPPPPPP ME...!!!
>
>
> -- 
> terraja-based
> ------------------------------------------------------------------------
>
> _______________________________________________
> LARTC mailing list
> LARTC@mailman.ds9a.nl
> http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
>   
Use iptables MARK, and TC fw.
_______________________________________________
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc