Gentoo Forums :: View topic - Shorewall markiert keine Packete

Shorewall markiert keine Packete

View unanswered posts
View posts from last 24 hours
View posts from last 7 days

Gentoo Forums Forum Index

Deutsches Forum (German)

View previous topic :: View next topic

Author

Message

manuels
Advocate

Advocate

Joined: 22 Nov 2003
Posts: 2146
Location: Europe

Posted: Wed Aug 25, 2004 2:00 pm Post subject: Shorewall markiert keine Packete

Reply with quote

Moin,
ich bau mir grad ein kleines QoS-System mit Shorewall, aber Shorewall markiert mir komischerweise keine Packete.
Hier erstmal meine tcstart:

Code:

#!/bin/sh
dev='ppp0'
tcc="tc class add dev $dev parent 1:1"
tcf="tc filter add dev $dev parent 1:0"
tcq="tc qdisc add dev $dev"
up=120kbit

#löschen
tc qdisc del dev $dev root

$tcq root handle 1: htb default 40

tc class add dev $dev parent 1: classid 1:1 htb rate $up ceil $up

#klassen
$tcc classid 1:10 htb rate 50kbit ceil 50kbit prio 0
$tcc classid 1:20 htb rate 40kbit ceil $up prio 1
$tcc classid 1:30 htb rate 20kbit ceil 20kbit prio 2
$tcc classid 1:40 htb rate 10kbit ceil $up prio 3

#andere qdiscs für fairness
$tcq parent 1:10 handle 110: sfq perturb 10
$tcq parent 1:20 handle 120: sfq perturb 10
$tcq parent 1:30 handle 130: sfq perturb 10
$tcq parent 1:40 handle 140: sfq perturb 10

#klassifizieren
$tcf protocol ip prio 1 handle 1 fw classid 1:10
$tcf protocol ip prio 2 handle 2 fw classid 1:20
$tcf protocol ip prio 3 handle 3 fw classid 1:30
$tcf protocol ip prio 4 handle 4 fw classid 1:40

soweit so gut, und hier ist meine tcrules

Code:

#MARK SOURCE DEST PROTO PORT(S) CLIENT USER
# PORT(S)

1 eth0,wlan0 0.0.0.0/0 tcp www,https,ssh,smtp,domain
2 eth0,wlan0 0.0.0.0/0 udp :1024,domain
3 eth0,wlan0 0.0.0.0/0 tcp ftp,ftp-data,:1024
4 eth0,wlan0 0.0.0.0/0 all

Code:

tc -d -s class show dev ppp0

sagt mir, dass der GESAMTE traffic über die classid 40 läuft, aber das auch nur, da dies die standard-klasse ist.

hat jemand ne idee, was ich da machen kann?

Tschö
Manuel

Send private message

manuels
Advocate

Advocate

Joined: 22 Nov 2003
Posts: 2146
Location: Europe

Posted: Wed Aug 25, 2004 2:09 pm Post subject:

Lieber manuel, vielleicht aktivierst du mal MARK_IN_FORWARD_CHAIN=yes in der shorewall.conf Tschö mit ö Manuel

Send private message

Display posts from previous:

	Gentoo Forums Forum Index Deutsches Forum (German)	All times are GMT
Page 1 of 1

Jump to:

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum

Copyright 2001-2024 Gentoo Foundation, Inc. Designed by Kyle Manna © 2003; Style derived from original subSilver theme. | Hosting by Gossamer Threads Inc. © | Powered by phpBB 2.0.23-gentoo-p11 © 2001, 2002 phpBB Group
Privacy Policy