From mboxrd@z Thu Jan 1 00:00:00 1970 From: "Masse, Tom" Date: Thu, 16 Jan 2003 12:42:42 +0000 Subject: [LARTC] In what order are CBQ and iptables applied? MIME-Version: 1 Content-Type: multipart/mixed; boundary="----_=_NextPart_001_01C2BD5C.C331B1D0" Message-Id: List-Id: To: lartc@vger.kernel.org This message is in MIME format. Since your mail reader does not understand this format, some or all of this message may not be legible. ------_=_NextPart_001_01C2BD5C.C331B1D0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Let's say I have two Ethernet interfaces (eth0 and eth1). I am trying = to shape multiple TCP connections to 56K from one 100MBit pipe. CLIENT ---------- ETH0 -------- ETH1 ---------- SERVER 192.168.1.1 192.168.1.254 172.16.1.254 172.16.1.1 For example, I want the client to be able to make multiple TCP = connections (.1.1:80, .1.1:8081, .1.1:8082) all at 56K from the server, which = obviously has the ability to deliver 100MBit. My CBQ file looks like so: DEVICE=3Deth0,100MBit,10Mbit RATE=3D56Kbit WEIGHT=3D5Kbit PRIO=3D5 RULE=3D192.168.1.1/24:80 RULE=3D192.168.1.1/24:8081 RULE=3D192.168.1.1/24:8082 RULE=3D192.168.1.1/24:8083 RULE=3D192.168.1.1/24:8084 RULE=3D192.168.1.1/24:8085 Is it possible to use iptables to make all the connections' destination ports appear to be port 80? How, and to which interface, should I = apply the rules? Also, when is CBQ applied? Prerouting? Postrouting? Is it applied pre- = or post-routing specific to the interface, or to the kernel? Tom Masse Engineer, Network Operations G=F3mez, Inc. T 781.768.2134 F 781.466.1434 Maximize Your Internet Channel Effectiveness=20 http://www.gomez.com/ ------_=_NextPart_001_01C2BD5C.C331B1D0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable In what order are CBQ and iptables applied?

Let's say I have two Ethernet = interfaces (eth0 and eth1).  I am trying to shape multiple TCP = connections to 56K from one 100MBit pipe.

CLIENT  ----------  = ETH0  --------  ETH1  ----------  SERVER
192.168.1.1     192.168.1.254   = 172.16.1.254      172.16.1.1

For example, I want the client to be = able to make multiple TCP connections (.1.1:80, .1.1:8081, .1.1:8082) = all at 56K from the server, which obviously has the ability to deliver = 100MBit.

My CBQ file looks like so:
        DEVICE=3Deth0,100MBit,10Mbit
        RATE=3D56Kbit
        WEIGHT=3D5Kbit
        PRIO=3D5
        RULE=3D192.168.1.1/24:80
        RULE=3D192.168.1.1/24:8081
        RULE=3D192.168.1.1/24:8082
        RULE=3D192.168.1.1/24:8083
        RULE=3D192.168.1.1/24:8084
        RULE=3D192.168.1.1/24:8085

Is it possible to use iptables to make = all the connections' destination ports appear to be port 80?  How, = and to which interface, should I apply the rules?

Also, when is CBQ applied?  = Prerouting? Postrouting? Is it applied pre- or post-routing specific to = the interface, or to the kernel?


Tom Masse
Engineer, Network Operations
G=F3mez, Inc.

T 781.768.2134
F 781.466.1434

Maximize Your Internet Channel = Effectiveness
http://www.gomez.com/

------_=_NextPart_001_01C2BD5C.C331B1D0-- _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/