From mboxrd@z Thu Jan 1 00:00:00 1970 From: Stef Coene Date: Mon, 02 Jun 2003 16:29:11 +0000 Subject: Re: [LARTC] HTB question (problem with tc filter + NAT) Message-Id: List-Id: References: In-Reply-To: MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit To: lartc@vger.kernel.org On Monday 02 June 2003 12:35, TeraHz wrote: > I wan to share internet to these 12 PCs. But my traffic control is not > working. I'm using IP Masquerading to route internet to the LAN > > eth0 - LAN interface > eth1 - Internet interface > > I thing that this is wright but no! > I've changed FORWARD with OUTUP. I tryed without specifying Interface -> > still nothing. > > What is wrong? > there is no filtration at all! Every packet is forwarded to the root > class! You can guess what happens when someone from the LAN starts to > dowload! Check out with iptables -L -v -n -t mangle if the packets get marked. And the mark and the classid are in hex. So to be sure, write the mark as 0x37 like iptables -A FORWARD -i eth0 -t mangle -p tcp -s 192.168.139.34 -j MARK -- set-mark 0x34 Stef -- stef.coene@docum.org "Using Linux as bandwidth manager" http://www.docum.org/ #lartc @ irc.oftc.net _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/