From mboxrd@z Thu Jan 1 00:00:00 1970 From: Stef Coene Date: Sat, 09 Aug 2003 21:23:13 +0000 Subject: Re: [LARTC] Bandwith sharing in NAT environment. Message-Id: List-Id: References: In-Reply-To: MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit To: lartc@vger.kernel.org On Saturday 09 August 2003 18:30, Rajesh wrote: > Hi > > I wish to implement Bandwith sharing in a NAT environment. > > The question is whether I can classify input packets on the basis of > ip-addresses (private LAN addresses)? These packets finally need to be > NATed before going on to Internet. > > Would the tc filters see the private addresses and put it in the > appropriate classes or would the tc filters see only the NATed address and > the filter would fail in putting the packets in the appropriate classes? > > The n/w diag would be somewhat like this > > private address LAN ips ------>iptables(NAT)------>Internet. > > Can I mark packets using iptables matching source ip-address? Yes. > What address will tc filter see when the private addresses are masqueraded > ? The ip address of your firewall. So you have to mark the packets in prerouting before the natting.... Stef -- stef.coene@docum.org "Using Linux as bandwidth manager" http://www.docum.org/ #lartc @ irc.oftc.net _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/