Hi, Ok, here is the output of the script w/ the '-x' + DOWNLINK=1450 + UPLINK=180 + DEV=eth0 + NOPRIOHOSTSRC=80 + NOPRIOHOSTDST= + NOPRIOPORTSRC= + NOPRIOPORTDST= + '[' start = status ']' + tc qdisc del dev eth0 root + tc qdisc del dev eth0 ingress + '[' start = stop ']' + tc qdisc add dev eth0 root handle 1: cbq avpkt 1000 bandwidth 10mbit + tc class add dev eth0 parent 1: classid 1:1 cbq rate 180kbit allot 1500 prio 5 bounded isolated + tc class add dev eth0 parent 1:1 classid 1:10 cbq rate 180kbit allot 1600 prio 1 avpkt 1000 + tc class add dev eth0 parent 1:1 classid 1:20 cbq rate 162kbit allot 1600 prio 2 avpkt 1000 + tc class add dev eth0 parent 1:1 classid 1:30 cbq rate 144kbit allot 1600 prio 2 avpkt 1000 + tc qdisc add dev eth0 parent 1:10 handle 10: sfq perturb 10 + tc qdisc add dev eth0 parent 1:20 handle 20: sfq perturb 10 + tc qdisc add dev eth0 parent 1:30 handle 30: sfq perturb 10 + tc filter add dev eth0 parent 1:0 protocol ip prio 10 u32 match ip tos 0x10 0xff flowid 1:10 + tc filter add dev eth0 parent 1:0 protocol ip prio 11 u32 match ip protocol 1 0xff flowid 1:10 + tc filter add dev eth0 parent 1: protocol ip prio 12 u32 match ip protocol 6 0xff match u8 0x05 0x0f at 0 match u16 0x0000 0xffc0 at 2 flowid 1:10 + tc filter add dev eth0 parent 1: protocol ip prio 16 u32 match ip src 80 flowid 1:30 + tc filter add dev eth0 parent 1: protocol ip prio 18 u32 match ip dst 0.0.0.0/0 flowid 1:20 + tc qdisc add dev eth0 handle ffff: ingress + tc filter add dev eth0 parent ffff: protocol ip prio 50 u32 match ip src 0.0.0.0/0 police rate 1450kbit burst 10k drop flowid :1 ================================================================ Do you see anything obvious? The commands that kill the connection in the last one... seems to drop all pacets instead of being selective... *sigh* Anyway, thanks for ANY help you can give :) -Rob On Wed, 30 Oct 2002 19:34:30 -0800 Kenneth Porter <shiva@sewingwitch.com> wrote: > --On Wednesday, October 30, 2002 10:07 PM -0500 Rob <rob00si@fastmail.fm> > wrote: > > ># low priority OUTGOING traffic - you can leave this blank if you want > ># low priority source netmasks > > NOPRIOHOSTSRC=80 > > BTW, this looks like a bug in the script. The 80 should be the value for > NOPRIOPORTSRC. (But this shouldn't kill the connection.) > > You might try throwing a "set -x" at the top of the script to expand and > echo commands before they execute, to see what's really getting issued. > _______________________________________________ > LARTC mailing list / LARTC@mailman.ds9a.nl > http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/ _______________________________________________ LARTC mailing list / LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/