[LARTC] TC Rules on a Bridge..

[LARTC] TC Rules on a Bridge..

[Dhirendra Pal Singh]

Hi All,

While I am still doing R&D with the ftp problem got another question to 
bug you all..:)

A) Okay if I am runnging Bandwidth management (HTB) using TC will it 
work if the machine is a bridge also?

B) I have tried it for my learning and it does slows down the traffic, 
which I intented to do. But now since there is no eth0 interface, so 
should I apply the rules on the bridge interface or eth0 should be fine. 
I can see that eth0 works . But is it right to do it?

Thanks again for helping..
Dp



_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

Re: [LARTC] TC Rules on a Bridge..

[Martin A. Brown]

Dhirendra,

Here are some past threads involving this question (and some answers to
other questions which usually follow the "can I do traffic shaping on a
bridge" question.

Yes, you can perform QoS/traffic control on a bridge:

  http://mailman.ds9a.nl/pipermail/lartc/2003q1/007367.html

Make sure you have bridge+nf (netfilter support) if you want to do any
packet marking, filtering, mangling or NAT on the bridge [ a NATting
bridge, he remarked incredulously... ]:

  http://mailman.ds9a.nl/pipermail/lartc/2003q1/007378.html

ebtables and iptables interaction on a bridge+netfilter:

  http://users.pandora.be/bart.de.schuymer/ebtables/br_fw_ia/br_fw_ia.html

Don't forget the firewall-bridge (helpful to understand bridge+netfilter):

  http://www.sparkle-cc.co.uk/firewall/firewall.html

Now let's roll out that Euro currency, and build some bridges,

-Martin

 : While I am still doing R&D with the ftp problem got another question to
 : bug you all..:)
 :
 : A) Okay if I am runnging Bandwidth management (HTB) using TC will it
 : work if the machine is a bridge also?
 :
 : B) I have tried it for my learning and it does slows down the traffic,
 : which I intented to do. But now since there is no eth0 interface, so
 : should I apply the rules on the bridge interface or eth0 should be fine.
 : I can see that eth0 works . But is it right to do it?
 :
 : Thanks again for helping..
 : Dp
 :
 :
 :
 : _______________________________________________
 : LARTC mailing list / LARTC@mailman.ds9a.nl
 : http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
 :

-- 
Martin A. Brown --- SecurePipe, Inc. --- mabrown@securepipe.com

_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

RE: [LARTC] TC Rules on a Bridge..

[S Mohan]

I've done exactly this and am using it in that config for over 8 months
now. I also wrote a manual chapter and a howto for LEAF Bering distro
which is what I was using to do this.
http://leaf.sourceforge.net/devel/jnilo/buhtb.html

My input:

1. TC will operate even if bridge is enabled on the enslaved devices.
The queues/classes are at the physical device level interface. Only a
few virtual devices have TC hooks like IMQ.
2. iptables will only work on the FORWARD table/chain in a standard
bridge configuration.
3. If you want packets to be forced thro' iptables INPUT, FORWARD and
OUTPUT chains, then ebtables can be forced to push packets one layer up
to iptables. Example given in ebtables home page Packet Flow
Diagram/Discussion page.

Mohan

-----Original Message-----
From: lartc-admin@mailman.ds9a.nl [mailto:lartc-admin@mailman.ds9a.nl]
On Behalf Of Martin A. Brown
Sent: Saturday, March 15, 2003 10:12 AM
To: Dhirendra Pal Singh
Cc: LARTC Mailing List
Subject: Re: [LARTC] TC Rules on a Bridge..


Dhirendra,

Here are some past threads involving this question (and some answers to
other questions which usually follow the "can I do traffic shaping on a
bridge" question.

Yes, you can perform QoS/traffic control on a bridge:

  http://mailman.ds9a.nl/pipermail/lartc/2003q1/007367.html

Make sure you have bridge+nf (netfilter support) if you want to do any
packet marking, filtering, mangling or NAT on the bridge [ a NATting
bridge, he remarked incredulously... ]:

  http://mailman.ds9a.nl/pipermail/lartc/2003q1/007378.html

ebtables and iptables interaction on a bridge+netfilter:

 
http://users.pandora.be/bart.de.schuymer/ebtables/br_fw_ia/br_fw_ia.html

Don't forget the firewall-bridge (helpful to understand
bridge+netfilter):

  http://www.sparkle-cc.co.uk/firewall/firewall.html

Now let's roll out that Euro currency, and build some bridges,

-Martin

 : While I am still doing R&D with the ftp problem got another question
to
 : bug you all..:)
 :
 : A) Okay if I am runnging Bandwidth management (HTB) using TC will it
 : work if the machine is a bridge also?
 :
 : B) I have tried it for my learning and it does slows down the
traffic,
 : which I intented to do. But now since there is no eth0 interface, so
 : should I apply the rules on the bridge interface or eth0 should be
fine.
 : I can see that eth0 works . But is it right to do it?
 :
 : Thanks again for helping..
 : Dp
 :
 :
 :
 : _______________________________________________
 : LARTC mailing list / LARTC@mailman.ds9a.nl
 : http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO:
http://lartc.org/
 :

-- 
Martin A. Brown --- SecurePipe, Inc. --- mabrown@securepipe.com

_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/