All of lore.kernel.org
 help / color / mirror / Atom feed
* [LARTC] trouble when using IPMARK module
@ 2007-09-24 11:07 yang,fang
  2007-09-24 12:17 ` Peter V. Saveliev
  2007-09-24 13:44 ` Mohan Sundaram
  0 siblings, 2 replies; 3+ messages in thread
From: yang,fang @ 2007-09-24 11:07 UTC (permalink / raw)
  To: lartc


[-- Attachment #1.1: Type: text/plain, Size: 612 bytes --]

Hello,

 

I am trying to use iptables together with tc

I need to use IPMARK module of iptables, but I got a strange error after I
run 'iptables -t mangle -A POSTROUTING -o eth0 -j IPMARK --addr=dst
--and-mask=0xffff --or-mask=0x1000'

The command is copied from iptables manual itself (of course interface
changed)

I only got " iptables v1.3.5: Unknown arg `--addr=dst'

Try `iptables -h' or 'iptables --help' for more information."

 

Environment: CentOS5, iproute2-ss061002, iptables v1.3.5

I have tried several servers and got the same error.

 

Any further ideas?

Many thanks.

 

Regards,

yfang

 


[-- Attachment #1.2: Type: text/html, Size: 4895 bytes --]

[-- Attachment #2: Type: text/plain, Size: 143 bytes --]

_______________________________________________
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc

^ permalink raw reply	[flat|nested] 3+ messages in thread
* Re: [LARTC] trouble when using IPMARK module
  2007-09-24 11:07 [LARTC] trouble when using IPMARK module yang,fang
@ 2007-09-24 12:17 ` Peter V. Saveliev
  2007-09-24 13:44 ` Mohan Sundaram
  1 sibling, 0 replies; 3+ messages in thread
From: Peter V. Saveliev @ 2007-09-24 12:17 UTC (permalink / raw)
  To: lartc

В сообщении от Monday 24 September 2007 15:07:28 yang,fang написал(а):
> Hello,
>
>
>
> I am trying to use iptables together with tc
>
> I need to use IPMARK module of iptables, but I got a strange error after I
> run 'iptables -t mangle -A POSTROUTING -o eth0 -j IPMARK --addr=dst
> --and-mask=0xffff --or-mask=0x1000'
>
> The command is copied from iptables manual itself (of course interface
> changed)
>
> I only got " iptables v1.3.5: Unknown arg `--addr=dst'
>
<skip />

I think, your iptables just does not have IPMARK extension, which was cleaned 
from pom tree. You can check it with shell command:

$ ls -l /lib/iptables/ | grep IPMARK || echo no IPMARK found

If you still want to have separate buckets for every destination IP and do not 
want to build iptables extension by yourself, you can use tc filter with 
hashing.

I have a ip/tc management tool, which can build such solutions with simple 
configs like that:

!
egress htb
	rate 100Mbit
	!
	class-factory 10.0.0.0/24
		rate 64Kbit
	class-factory 10.0.1.0/24
		rate 128Kbit

But I wrote no English documentation yet. If there is need for such tool and 
there will be anyone to proofread very-bad-English docs, I can try to write 
it.	

-- 
Peter V. Saveliev
_______________________________________________
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc

^ permalink raw reply	[flat|nested] 3+ messages in thread
* Re: [LARTC] trouble when using IPMARK module
  2007-09-24 11:07 [LARTC] trouble when using IPMARK module yang,fang
  2007-09-24 12:17 ` Peter V. Saveliev
@ 2007-09-24 13:44 ` Mohan Sundaram
  1 sibling, 0 replies; 3+ messages in thread
From: Mohan Sundaram @ 2007-09-24 13:44 UTC (permalink / raw)
  To: lartc

Peter V. Saveliev wrote:
> But I wrote no English documentation yet. If there is need for such tool and 
> there will be anyone to proofread very-bad-English docs, I can try to write 
> it.	
> 
Please send me the docs and I'll turn it around in a couple of days.

Mohan
_______________________________________________
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc

^ permalink raw reply	[flat|nested] 3+ messages in thread
end of thread, other threads:[~2007-09-24 13:44 UTC | newest]

Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2007-09-24 11:07 [LARTC] trouble when using IPMARK module yang,fang
2007-09-24 12:17 ` Peter V. Saveliev
2007-09-24 13:44 ` Mohan Sundaram

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.