LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 02-13-2016, 10:35 AM   #1
Novi
LQ Newbie
 
Registered: May 2013
Posts: 19

Rep: Reputation: Disabled
Question Linux outbound traffic shaping with: cgroups + tc + iptables.


I spent a lot of time trying to implement outbound traffic filtering with: cgroups + tc + iptables on Debian Jessie. Unfortunately there is still something wrong.
The biggest issue is:
- cgroups install + config
- net_cls subsystem implementation
- packets marking with net_cls
- appropriate (tc) traffic control konfiguration.
- iptables OUTBOUND rules is already done.
Briefly, network access only for marked (with net_cls) packets, next assigned to (created by tc) class and at least iptables roule like:
-A OUTPUT -m cgroup --cgroup 3 -j ACCEPT

I would appreciate any professional support.
Mark.
 
Old 02-21-2016, 02:33 AM   #2
Keruskerfuerst
Senior Member
 
Registered: Oct 2005
Location: Horgau, Germany
Distribution: Manjaro KDE, Win 10
Posts: 2,199

Rep: Reputation: 164Reputation: 164
Do you have any books about Iptables?

Try to search on Amazon for the following: http://www.amazon.com/gp/product/013...=sr_1_3&sr=8-3

It should be availaible in you country, too.
 
Old 02-21-2016, 06:30 AM   #3
Novi
LQ Newbie
 
Registered: May 2013
Posts: 19

Original Poster
Rep: Reputation: Disabled
I already have: http://www.amazon.com/Linux-iptables...YY75DE5DXCK4YM
There is nothing about cgroups in this book.
What I need is: cgroups, net_cls subsystem, daemon cgrulesengd, tc(traffic control with HTB - queuing)
The main issue in my opinion is Kernel, patching and settings.
How to prepare the Kernel to work with cgroups on Debian 8 ???
Next question is, how to konfigure and start cgroups with all subsystems ???

Kind Regards

Mark

Last edited by Novi; 02-21-2016 at 06:35 AM.
 
Old 02-21-2016, 07:44 AM   #4
Keruskerfuerst
Senior Member
 
Registered: Oct 2005
Location: Horgau, Germany
Distribution: Manjaro KDE, Win 10
Posts: 2,199

Rep: Reputation: 164Reputation: 164
Have you done search with google?
 
Old 02-21-2016, 08:20 AM   #5
Novi
LQ Newbie
 
Registered: May 2013
Posts: 19

Original Poster
Rep: Reputation: Disabled
Everything and everywhere, the comprehensive, guide, manual, tutorial does not exist.
All informations are incomplete.
In my opinion, the only way is to get in touch with experienced Linux, Unix system administrator.
I lost a hundreds of hours to solve this issue, in spite !

Last edited by Novi; 02-21-2016 at 08:22 AM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
[SOLVED] iptables blocking outbound traffic from my router?! kenneth_phough Linux - Networking 4 12-12-2012 11:46 AM
traffic shaping using tc and iptables fw mark jomen Linux - Networking 3 04-15-2010 06:14 AM
iptables outbound traffic to all ports sunlinux Linux - Security 1 12-01-2007 10:46 AM
shaping outbound traffic to different NICS jasongroves Linux - Networking 1 04-13-2006 08:23 PM
Traffic-shaping with iptables Quantum0726 Linux - Networking 7 08-21-2005 11:39 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 02:15 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration