From mboxrd@z Thu Jan  1 00:00:00 1970
From: "streeterk" <streeterk@w2h.net>
Date: Sat, 09 Jun 2001 05:44:48 +0000
Subject: [LARTC] TC on a Masqued Machine
MIME-Version: 1
Content-Type: multipart/mixed; boundary="----=_NextPart_000_00D8_01C0F06C.9F372760"
Message-Id: <marc-lartc-99206550301257@msgid-missing>
List-Id: <lartc.vger.kernel.org>
To: lartc@vger.kernel.org

This is a multi-part message in MIME format.

------=_NextPart_000_00D8_01C0F06C.9F372760
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

I have a single DSL connection I share with 7 computers and wish to =
divide the bandwidth.  I will be adding another one later and hope to =
divide the traffic and re-route to one if the other fails, but that is a =
nother project.  The connection is 384/128.  I am able to control the =
downstream traffic, but the upstream traffic has proven to be more =
challenging.  It seems that the Masquerading takes place between =
adapters, so all the traffic to the outbound adapter appears to be from =
the same IP.  I can control the traffic if I specify the IP of the =
outbound adapter, but reference to the LAN address has no affect.  Here =
is a summary of my setup

eth1  (internet)
|
eth0 (LAN)
|
Switch
|
Comp1-Comp2-Comp3-etc.

I tried to filter the outbound traffic on eth0 by adding subclasses for =
outbound traffic to eth1 and filtering by src but I could not seem to =
get that to work either. =20

Here is my latest effort:

#Down

tc qdisc add dev eth0 root handle 10: cbq bandwidth 100Mbit avpkt 1000

tc class add dev eth0 parent 10:0 classid 10:1 cbq bandwidth 100Mbit =
rate 100Mbit allot 1514 weight 10Mbit prio 8 maxburst 200 avpkt 1000 =
bounded

tc class add dev eth0 parent 10:1 classid 10:100 cbq bandwidth 384Kbit =
rate 256Kbit allot 1514 weight 12Kbit prio 5 maxburst 20 avpkt 1000 =
bounded

tc class add dev eth0 parent 10:1 classid 10:200 cbq bandwidth 384Kbit =
rate 90Kbit allot 1514 weight 12Kbit prio 5 maxburst 20 avpkt 1000 =
bounded   =20
                                                                 =20

tc qdisc add dev eth0 parent 10:1 sfq quantum 1514b perturb 15

tc qdisc add dev eth0 parent 10:100 sfq quantum 1514b perturb 15

tc qdisc add dev eth0 parent 10:200 sfq quantum 1514b perturb 15


tc filter add dev eth0 parent 10:0 protocol ip prio 25 u32 match ip src =
192.168.0.10 flowid 10:1

tc filter add dev eth0 parent 10:0 protocol ip prio 25 u32 match ip dst =
192.168.0.2 flowid 10:100

tc filter add dev eth0 parent 10:0 protocol ip prio 100 u32 match ip dst =
192.168.0.3 flowid 10:200

tc filter add dev eth0 parent 10:0 protocol ip prio 100 u32 match ip dst =
192.168.0.14 flowid 10:200

tc filter add dev eth0 parent 10:0 protocol ip prio 100 u32 match ip dst =
192.168.0.15 flowid 10:200

tc filter add dev eth0 parent 10:0 protocol ip prio 100 u32 match ip dst =
192.168.0.20 flowid 10:200

tc filter add dev eth0 parent 10:0 protocol ip prio 100 u32 match ip dst =
192.168.0.0/24 flowid 10:200


# Up

tc class add dev eth0 parent 10:1 classid 10:300 cbq bandwidth 128Kbit =
rate 96Kbit allot 1514 weight 9Kbit prio 5 maxburst 20 avpkt 1000 =
bounded

tc class add dev eth0 parent 10:1 classid 10:400 cbq bandwidth 128Kbit =
rate 16Kbit allot 1514 weight 3Kbit prio 5 maxburst 20 avpkt 1000 =
bounded


tc qdisc add dev eth0 parent 10:300 sfq quantum 1514b perturb 15

tc qdisc add dev eth0 parent 10:400 sfq quantum 1514b perturb 15


tc filter add dev eth0 parent 10:0 protocol ip prio 100 u32 match ip src =
192.168.0.1 flowid 10:400

tc filter add dev eth0 parent 10:0 protocol ip prio 25 u32 match ip src =
192.168.0.2 flowid 10:300

tc filter add dev eth0 parent 10:0 protocol ip prio 100 u32 match ip src =
192.168.0.3 flowid 10:400

tc filter add dev eth0 parent 10:0 protocol ip prio 100 u32 match ip src =
192.168.0.14 flowid 10:400

tc filter add dev eth0 parent 10:0 protocol ip prio 100 u32 match ip src =
192.168.0.15 flowid 10:400

tc filter add dev eth0 parent 10:0 protocol ip prio 100 u32 match ip src =
192.168.0.20 flowid 10:400=20

tc filter add dev eth0 parent 10:0 protocol ip prio 100 u32 match ip src =
192.168.0.0/24 flowid 10:400=20



I would also be very interested in documentation that clearly defines =
the commands and variables.  For example. what is prio and what is the =
significance of it's value as with weight and maxburst.   Can I filter =
on src and dst on the same line?=20

Thanks,

Kurt

------=_NextPart_000_00D8_01C0F06C.9F372760
Content-Type: text/html;
	charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=3DContent-Type content=3D"text/html; =
charset=3Diso-8859-1">
<META content=3D"MSHTML 5.50.4522.1801" name=3DGENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=3D#ffffff>
<DIV><FONT face=3DArial size=3D2>I have a single DSL connection I share =
with 7=20
computers and wish to divide the bandwidth.&nbsp; I will be adding =
another one=20
later and hope to divide the traffic and re-route to one if the other =
fails, but=20
that is a nother project.&nbsp; The connection is 384/128.&nbsp; I am =
able to=20
control the downstream traffic, but the upstream traffic has proven to =
be more=20
challenging.&nbsp; It seems that the Masquerading takes place between =
adapters,=20
so all the traffic to the outbound adapter appears to be from the same =
IP.&nbsp;=20
I can control the traffic if I specify the IP of the&nbsp;outbound =
adapter, but=20
reference to the LAN address has no affect.&nbsp; Here is a summary of =
my=20
setup</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2>eth1&nbsp; (internet)</FONT></DIV>
<DIV><FONT face=3DArial size=3D2>|</FONT></DIV>
<DIV><FONT face=3DArial size=3D2>eth0 (LAN)</FONT></DIV>
<DIV><FONT face=3DArial size=3D2>|</FONT></DIV>
<DIV><FONT face=3DArial size=3D2>Switch</FONT></DIV>
<DIV><FONT face=3DArial size=3D2>|</FONT></DIV>
<DIV><FONT face=3DArial size=3D2>Comp1-Comp2-Comp3-etc.</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2>I tried to filter the outbound traffic =
on eth0 by=20
adding subclasses for outbound traffic to eth1 and filtering by =
src&nbsp;but I=20
could not seem to get that to work either.&nbsp; </FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2>Here is my latest effort:</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2>#Down</FONT></DIV>
<DIV>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2>tc qdisc add dev eth0 root handle 10: =
cbq bandwidth=20
100Mbit avpkt 1000</FONT></DIV>
<DIV>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2>tc class add dev eth0 parent 10:0 =
classid 10:1 cbq=20
bandwidth 100Mbit rate 100Mbit allot 1514 weight 10Mbit prio 8 maxburst =
200=20
avpkt 1000 bounded</FONT></DIV>
<DIV>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2>tc class add dev eth0 parent 10:1 =
classid 10:100=20
cbq bandwidth 384Kbit rate 256Kbit allot 1514 weight 12Kbit prio 5 =
maxburst 20=20
avpkt 1000 bounded</FONT></DIV>
<DIV>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2>tc class add dev eth0 parent 10:1 =
classid 10:200=20
cbq bandwidth 384Kbit rate 90Kbit allot 1514 weight 12Kbit prio 5 =
maxburst 20=20
avpkt 1000=20
bounded&nbsp;&nbsp;&nbsp;&nbsp;<BR>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&n=
bsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb=
sp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbs=
p;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp=
;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;=
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;=20
</FONT></DIV>
<DIV>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2>tc qdisc add dev eth0 parent 10:1 sfq =
quantum 1514b=20
perturb 15</FONT></DIV>
<DIV>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2>tc qdisc add dev eth0 parent 10:100 sfq =
quantum=20
1514b perturb 15</FONT></DIV>
<DIV>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2>tc qdisc add dev eth0 parent 10:200 sfq =
quantum=20
1514b perturb 15</FONT></DIV>
<DIV>&nbsp;</DIV><FONT face=3DArial size=3D2>
<DIV><BR>tc filter add dev eth0 parent 10:0 protocol ip prio 25 u32 =
match ip src=20
192.168.0.10 flowid 10:1</DIV>
<DIV>&nbsp;</DIV>
<DIV>tc filter add dev eth0 parent 10:0 protocol ip prio 25 u32 match ip =
dst=20
192.168.0.2 flowid 10:100</DIV>
<DIV>&nbsp;</DIV>
<DIV>tc filter add dev eth0 parent 10:0 protocol ip prio 100 u32 match =
ip dst=20
192.168.0.3 flowid 10:200</DIV>
<DIV>&nbsp;</DIV>
<DIV>tc filter add dev eth0 parent 10:0 protocol ip prio 100 u32 match =
ip dst=20
192.168.0.14 flowid 10:200</DIV>
<DIV>&nbsp;</DIV>
<DIV>tc filter add dev eth0 parent 10:0 protocol ip prio 100 u32 match =
ip dst=20
192.168.0.15 flowid 10:200</DIV>
<DIV>&nbsp;</DIV>
<DIV>tc filter add dev eth0 parent 10:0 protocol ip prio 100 u32 match =
ip dst=20
192.168.0.20 flowid 10:200</DIV>
<DIV>&nbsp;</DIV>
<DIV>tc filter add dev eth0 parent 10:0 protocol ip prio 100 u32 match =
ip dst=20
192.168.0.0/24 flowid 10:200</DIV>
<DIV>&nbsp;</DIV>
<DIV><BR># Up</DIV>
<DIV>&nbsp;</DIV>
<DIV>tc class add dev eth0 parent 10:1 classid 10:300 cbq bandwidth =
128Kbit rate=20
96Kbit allot 1514 weight 9Kbit prio 5 maxburst 20 avpkt 1000 =
bounded</DIV>
<DIV>&nbsp;</DIV>
<DIV>tc class add dev eth0 parent 10:1 classid 10:400 cbq bandwidth =
128Kbit rate=20
16Kbit allot 1514 weight 3Kbit prio 5 maxburst 20 avpkt 1000 =
bounded</DIV>
<DIV>&nbsp;</DIV>
<DIV><BR>tc qdisc add dev eth0 parent 10:300 sfq quantum 1514b perturb =
15</DIV>
<DIV>&nbsp;</DIV>
<DIV>tc qdisc add dev eth0 parent 10:400 sfq quantum 1514b perturb =
15</DIV>
<DIV>&nbsp;</DIV>
<DIV><BR>tc filter add dev eth0 parent 10:0 protocol ip prio 100 u32 =
match ip=20
src 192.168.0.1 flowid 10:400</DIV>
<DIV>&nbsp;</DIV>
<DIV>tc filter add dev eth0 parent 10:0 protocol ip prio 25 u32 match ip =
src=20
192.168.0.2 flowid 10:300</DIV>
<DIV>&nbsp;</DIV>
<DIV>tc filter add dev eth0 parent 10:0 protocol ip prio 100 u32 match =
ip src=20
192.168.0.3 flowid 10:400</DIV>
<DIV>&nbsp;</DIV>
<DIV>tc filter add dev eth0 parent 10:0 protocol ip prio 100 u32 match =
ip src=20
192.168.0.14 flowid 10:400</DIV>
<DIV>&nbsp;</DIV>
<DIV>tc filter add dev eth0 parent 10:0 protocol ip prio 100 u32 match =
ip src=20
192.168.0.15 flowid 10:400</DIV>
<DIV>&nbsp;</DIV>
<DIV>tc filter add dev eth0 parent 10:0 protocol ip prio 100 u32 match =
ip src=20
192.168.0.20 flowid 10:400 </DIV>
<DIV>&nbsp;</DIV>
<DIV>tc filter add dev eth0 parent 10:0 protocol ip prio 100 u32 match =
ip src=20
192.168.0.0/24 flowid 10:400 </DIV>
<DIV>&nbsp;</DIV>
<DIV></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2>I would also be very interested in =
documentation=20
that clearly defines the commands and variables.&nbsp; For example. what =
is prio=20
and what is the significance of it's value as with weight and=20
maxburst.&nbsp;&nbsp;</FONT>&nbsp;<FONT face=3DArial size=3D2>Can I =
filter on src=20
and dst on the same line?&nbsp;</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2>Thanks,</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT>&nbsp;</DIV>
<DIV><FONT face=3DArial size=3D2>Kurt</FONT></DIV></BODY></HTML>

------=_NextPart_000_00D8_01C0F06C.9F372760--



_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://ds9a.nl/2.4Routing/