* [LARTC] Mark with Iptables
@ 2001-07-05 19:17 Kovarththanan Rajaratnam
2001-07-06 10:24 ` Stef Coene
2001-07-06 10:24 ` Stef Coene
0 siblings, 2 replies; 3+ messages in thread
From: Kovarththanan Rajaratnam @ 2001-07-05 19:17 UTC (permalink / raw)
To: lartc
Hey
I've been playing with bandwidth sharing and the best solution seems to be a
mix of iptables and CBQ but I seem to be in trouble already. I've choosen to
mark al traffic from my LAN going to the internet (upload) as according to
the following command which seems to work:
iptables -A PREROUTING -t mangle -i eth0 -p tcp -d ! 192.168.0.0/24 -j
MARK --set-mark 1
But how do I mark the data that's being transferred through the masquaraded
connection (download) established by the computers on the LAN?
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://ds9a.nl/2.4Routing/
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: [LARTC] Mark with Iptables
2001-07-05 19:17 [LARTC] Mark with Iptables Kovarththanan Rajaratnam
@ 2001-07-06 10:24 ` Stef Coene
2001-07-06 10:24 ` Stef Coene
1 sibling, 0 replies; 3+ messages in thread
From: Stef Coene @ 2001-07-06 10:24 UTC (permalink / raw)
To: lartc
Kovarththanan Rajaratnam wrote:
>
> Hey
>
> I've been playing with bandwidth sharing and the best solution seems to be a
> mix of iptables and CBQ but I seem to be in trouble already. I've choosen to
> mark al traffic from my LAN going to the internet (upload) as according to
> the following command which seems to work:
>
> iptables -A PREROUTING -t mangle -i eth0 -p tcp -d ! 192.168.0.0/24 -j
> MARK --set-mark 1
>
> But how do I mark the data that's being transferred through the masquaraded
> connection (download) established by the computers on the LAN?
You can mark the packets in the forward chain, so they are allready
demasqueraded. I think that will work, but I didn't tried it.
Stef
--
stafke@iname.com stef.coene@belgacom.net
More QOS info : http://users.belgacom.net/staf/
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://ds9a.nl/2.4Routing/
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: [LARTC] Mark with Iptables
2001-07-05 19:17 [LARTC] Mark with Iptables Kovarththanan Rajaratnam
2001-07-06 10:24 ` Stef Coene
@ 2001-07-06 10:24 ` Stef Coene
1 sibling, 0 replies; 3+ messages in thread
From: Stef Coene @ 2001-07-06 10:24 UTC (permalink / raw)
To: lartc
Kovarththanan Rajaratnam wrote:
>
> Hey
>
> I've been playing with bandwidth sharing and the best solution seems to be a
> mix of iptables and CBQ but I seem to be in trouble already. I've choosen to
> mark al traffic from my LAN going to the internet (upload) as according to
> the following command which seems to work:
>
> iptables -A PREROUTING -t mangle -i eth0 -p tcp -d ! 192.168.0.0/24 -j
> MARK --set-mark 1
>
> But how do I mark the data that's being transferred through the masquaraded
> connection (download) established by the computers on the LAN?
You can mark the packets in the forward chain, so they are allready
demasqueraded. I think that will work, but I didn't tried it.
Stef
--
stafke@iname.com stef.coene@belgacom.net
More QOS info : http://users.belgacom.net/staf/
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://ds9a.nl/2.4Routing/
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2001-07-06 10:24 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2001-07-05 19:17 [LARTC] Mark with Iptables Kovarththanan Rajaratnam
2001-07-06 10:24 ` Stef Coene
2001-07-06 10:24 ` Stef Coene
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.