From mboxrd@z Thu Jan  1 00:00:00 1970
From: "Martin A. Brown" <mabrown-lartc@securepipe.com>
Date: Fri, 14 Mar 2003 02:37:33 +0000
Subject: Re: [LARTC] About HTB , bandwidth limiting for ftp port...
Message-Id: <marc-lartc-104760952809225@msgid-missing>
List-Id: <lartc.vger.kernel.org>
References: <marc-lartc-104759525429091@msgid-missing>
In-Reply-To: <marc-lartc-104759525429091@msgid-missing>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
To: lartc@vger.kernel.org

Hi there Dhirendra,

 : Okay now I put on a rule for FTP port 21 for 100Kbps. Now when I am
 : retriving data from ftp server I think the port is different when doing
 : passive ftp transfer. If I am not wrong then a new dynamic port is sent
 : by the ftp server to the client.. and then client initiates a new
 : connection on that port and then the real ftp data transfer happens.

Yes.  I think FTP should be summarily executed.  It has been plaguing us
since the beginnings of firewalls and NAT.  Sadly, another spiritually
impoverished but well-known operating system has two basic options for
file transfer:  HTTP ("the Internet", of course!), and FTP (for experts!).
Of course, on the other side of the divide, people (ab)use ssh for all
sorts of nefarious purposes.......  (anybody remember a recent article in
some print periodical detailing NFS over ssh?)

There has been discussion on the question of FTP (port/passive) and
shaping on this list in the past.  Here are some links.

See the following threads:

  http://mailman.ds9a.nl/pipermail/lartc/2001q3/001473.html
  http://mailman.ds9a.nl/pipermail/lartc/2002q1/002388.html
  http://mailman.ds9a.nl/pipermail/lartc/2003q1/007498.html

See also Eric Leblond's description of usage:

  http://home.regit.org/connmark.html

 : My Question is : Now when limiting the bandwidht will htb limit that
 : data transfer(i.e. the real file transfer) also under 100Kbps or will
 : that data transfer be not at all affected by the rule..?

That depends entirely on how you use the tools above.  Take a look at Eric
Lelond's description, and let us know if you are successful.

 : Just a novice question.. but please guide me...

This question is in exactly the right forum, and I'm quite sure I wouldn't
call it a novice question....though it might well belong in that rumoured
FAQ.

Good luck,

-Martin

-- 
Martin A. Brown --- SecurePipe, Inc. --- mabrown@securepipe.com

_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/