Share your knowledge at the LQ Wiki.
Go Back > Forums > Linux Forums > Linux - Software
User Name
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.


  Search this Thread
Old 08-29-2006, 06:52 PM   #1
Registered: Jun 2004
Posts: 124

Rep: Reputation: 15
Traffic Shaping (Shorewall)

Doing some traffic shaping here (or at least trying to)...
Done it before, but now using shorewall, as it seems like it will make config'ing a bit easier...

Got most things running, but suddenly had a thought...
I have cable internet at home, and obviously a much larger down pipe than up, so I'm really concerned with not saturating my upload, but download is fine...
I have the following (in tcrules):
3 tcp 21,22
3 tcp - 20,21

And define mark 3 in tcclasses
eth0 3 full/4 full 3 default

I obviously want to match FTP traffic and assign it to mark 3. However, I'd really like to have my upload limited (full/4), but have my download basically unlimited (maybe a different mark?). As in, if someone wants to push 2MBs to my server, let them do it, but if they want me to upload as fast as possible, tweak it back...

Anyone have any information about that?

PS: I have the following setup
Net <--> eth0 (router) eth1 <--> computers (
Old 08-29-2006, 09:03 PM   #2
Registered: Jun 2004
Posts: 124

Original Poster
Rep: Reputation: 15
Sorry... I'm a tool... I realize you can't control how fast people are sending you stuff =P

However, another question...

Is there a way to tweak upload going out eth0 (WAN) based on internal (eth1) IP addresses?
Say I have the config from above
the router is
and there are two boxes inside (, and

Is there a way through shorewall to assign X upload (out eth0) to, and Y amount to

Don't think source/destination on eth0 will work, because source would be my external IP, and destination the server I'm trying to upload to...

I know there is capability to mark packets in the FORWARD instead of PREROUTING chain... However, by the looks of that, that will only let me mark incomming packets (packets GOING to, not coming...)

Last edited by ImpactDNI; 08-29-2006 at 09:43 PM.


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Traffic shaping (limiting outgoing bandwidth of all TCP-traffic except FTP/HTTP) ffkodd Linux - Networking 3 10-25-2008 12:09 AM
Traffic Shaping SchwipSchwap Linux - Newbie 2 10-23-2008 12:42 PM
Traffic Shaping uguoT Linux - Networking 0 02-21-2006 02:02 AM
Traffic shaping shy Linux - Networking 2 11-30-2004 09:51 AM
Trying to make webmin + shorewall do Traffic Shaping PunkPT Slackware 0 09-27-2004 03:26 PM > Forums > Linux Forums > Linux - Software

All times are GMT -5. The time now is 10:55 AM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration