All of lore.kernel.org
 help / color / mirror / Atom feed
* [LARTC] Iptables connbytes
@ 2003-11-03 21:31 Todor Neshev
  2003-11-04  8:54 ` Cezar Atanasiu
  0 siblings, 1 reply; 2+ messages in thread
From: Todor Neshev @ 2003-11-03 21:31 UTC (permalink / raw)
  To: lartc

	Hello,
Is it possible to mark packets from particular IP and if it downloads
over 100Kbytes, then it enters in CBQ shaper 32kbit/s for example ?
My kernel is 2.4.22.
If someone experimented with connection bytes patch please answer me.

Regards,
Todor Neshev

_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

^ permalink raw reply	[flat|nested] 2+ messages in thread
* Re: [LARTC] Iptables connbytes
  2003-11-03 21:31 [LARTC] Iptables connbytes Todor Neshev
@ 2003-11-04  8:54 ` Cezar Atanasiu
  0 siblings, 0 replies; 2+ messages in thread
From: Cezar Atanasiu @ 2003-11-04  8:54 UTC (permalink / raw)
  To: lartc

On Mon, 2003-11-03 at 23:31, Todor Neshev wrote:
> 	Hello,
> Is it possible to mark packets from particular IP and if it downloads
> over 100Kbytes, then it enters in CBQ shaper 32kbit/s for example ?
> My kernel is 2.4.22.
> If someone experimented with connection bytes patch please answer me.
> 

I did, and I am running it since I saw it first anounced on the list,
and works really smooth ( ymmv ).

I declare a download class and after that I mark the packets like this :
$i -t mangle -A PREROUTING -m connbytes --connbytes 307200: -j MARK
                                                        --set-mark 3

and then : 

$tc filter add dev $dev parent 1:0 protocol ip prio 1 handle 3 fw
                                                        classid 1:30

this allows me to do dynamic shaping, shaping that keeps track of
medium/large downloads and takes action when those are detected.

hope it helps.


> Regards,
> Todor Neshev
> 
> _______________________________________________
> LARTC mailing list / LARTC@mailman.ds9a.nl
> http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
-- 
Cezar ATANASIU
GMB Computers
Departamentul Internet
Tel/fax: +40 241 619222/673199     


_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

^ permalink raw reply	[flat|nested] 2+ messages in thread
end of thread, other threads:[~2003-11-04  8:54 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2003-11-03 21:31 [LARTC] Iptables connbytes Todor Neshev
2003-11-04  8:54 ` Cezar Atanasiu

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.