LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices

Reply
 
Search this Thread
Old 08-29-2006, 06:52 PM   #1
ImpactDNI
Member
 
Registered: Jun 2004
Posts: 124

Rep: Reputation: 15
Traffic Shaping (Shorewall)


Doing some traffic shaping here (or at least trying to)...
Done it before, but now using shorewall, as it seems like it will make config'ing a bit easier...

Got most things running, but suddenly had a thought...
I have cable internet at home, and obviously a much larger down pipe than up, so I'm really concerned with not saturating my upload, but download is fine...
I have the following (in tcrules):
3 0.0.0.0/0 0.0.0.0/0 tcp 21,22
3 0.0.0.0/0 0.0.0.0/0 tcp - 20,21


And define mark 3 in tcclasses
eth0 3 full/4 full 3 default

I obviously want to match FTP traffic and assign it to mark 3. However, I'd really like to have my upload limited (full/4), but have my download basically unlimited (maybe a different mark?). As in, if someone wants to push 2MBs to my server, let them do it, but if they want me to upload as fast as possible, tweak it back...


Anyone have any information about that?

PS: I have the following setup
Net <--> eth0 (router) eth1 <--> computers (10.0.0.xxx)
 
Old 08-29-2006, 09:03 PM   #2
ImpactDNI
Member
 
Registered: Jun 2004
Posts: 124

Original Poster
Rep: Reputation: 15
Sorry... I'm a tool... I realize you can't control how fast people are sending you stuff =P

However, another question...

Is there a way to tweak upload going out eth0 (WAN) based on internal (eth1) IP addresses?
Say I have the config from above
the router is 10.1.1.1
and there are two boxes inside (10.1.1.2, and 10.1.1.3)

Is there a way through shorewall to assign X upload (out eth0) to 10.1.1.2, and Y amount to 10.1.1.3?

Don't think source/destination on eth0 will work, because source would be my external IP, and destination the server I'm trying to upload to...

I know there is capability to mark packets in the FORWARD instead of PREROUTING chain... However, by the looks of that, that will only let me mark incomming packets (packets GOING to 10.1.1.2, not coming...)

Last edited by ImpactDNI; 08-29-2006 at 09:43 PM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Traffic shaping (limiting outgoing bandwidth of all TCP-traffic except FTP/HTTP) ffkodd Linux - Networking 3 10-25-2008 12:09 AM
Traffic Shaping SchwipSchwap Linux - Newbie 2 10-23-2008 12:42 PM
Traffic Shaping uguoT Linux - Networking 0 02-21-2006 02:02 AM
Traffic shaping shy Linux - Networking 2 11-30-2004 09:51 AM
Trying to make webmin + shorewall do Traffic Shaping PunkPT Slackware 0 09-27-2004 03:26 PM


All times are GMT -5. The time now is 07:33 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration