|
ipt_CONNMARK modules still not working on P2p
guss,
i have gotten all things to limit the bandwidth to be consumed my P2p but its not still limiting it.
my rules isset like this:
tc qdisc add dev eth0 root handle 1:0 htb r2q 1
tc qdisc add dev eth1 root handle 2:0 htb r2q 1
tc class add dev eth0 parent 1:0 classid 1:1 htb rate 102400kbit ceil 102400kbit quantum 20000
tc class add dev eth0 parent 1:1 classid 1:10 htb rate 102380kbit ceil 102400kbit
tc class add dev eth0 parent 1:1 classid 1:12 htb rate 20kbit ceil 25kbit
tc class add dev eth1 parent 2:0 classid 2:2 htb rate 102400kbit ceil 102400kbit
tc class add dev eth1 parent 2:2 classid 2:10 htb rate 102380kbit ceil 102400kbit
tc class add dev eth1 parent 2:2 classid 2:12 htb rate 20kbit ceil 25kbit
iptables -A PREROUTING -t mangle -p tcp -j CONNMARK --restore-mark
iptables -A PREROUTING -t mangle -p tcp -m mark ! --mark 0 -j ACCEPT
iptables -A PREROUTING -t mangle -p tcp -m ipp2p --ipp2p -j MARK --set-mark 22
iptables -A PREROUTING -t mangle -p tcp -m mark --mark 22 -j CONNMARK --save-mark
iptables -A POSTROUTING -t mangle -o eth0 -m mark --mark 22 -j CLASSIFY --set-class 1:12
iptables -A POSTROUTING -t mangle -o eth1 -m mark --mark 22 -j CLASSIFY --set-class 2:12
pls am i wrong some where. i need helppp
THANKS
|
