--XsQoSWH+UP9D9v3l
Content-Type: text/plain; charset=iso-8859-1
Content-Disposition: inline
Hi!
I've got a box which redirects http traffic to another box (proxy). I'd like
to do some traffic shaping on this box as well (including traffic destined
for the proxy). In order to do that I need to intercept packets in the
mangle table in PREROUTING, shape it and then it will be redirected when it
gets to the nat table in PREROUTING (or not, if it is not http).
So now I have
| eth0 (incoming)
.---------.
| QoS box |
`---------'
| eth1 (outgoing)
and I have
iptables -t mangle -N qos
iptables -t mangle -A PREROUTING -j qos
iptables -t nat -A PREROUTING -i eth1 -s .... -p tcp --dport 80 -j DNAT --to ...
and then a couple of rules in the qos table which sets skb->priority so that
tc can delay the packets (I'm using HTB)
Problem is that if I do this, the box stops routing traffic until I remove
the qos filters _and_ the tc queuing discplines.
Any ideas what is happening here, why it doesn't work and what I should do
different?
--
Regards
Abraham
Time is fluid ... like a river with currents, eddies, backwash.
-- Spock, "The City on the Edge of Forever", stardate 3134.0
___________________________________________________
Abraham vd Merwe [ZR1BBQ] - Frogfoot Networks
P.O. Box 3472, Matieland, Stellenbosch, 7602
Cell: +27 82 565 4451 Http: http://www.frogfoot.net/
Email: abz@frogfoot.net
--XsQoSWH+UP9D9v3l
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.5 (GNU/Linux)
Comment: For info see http://www.gnupg.org
iD8DBQE+OpyO0jJV70h31dERAgayAJ0dOB2O/iw1lw/eVJe7x1fJHenLZQCfQoru
B6JdQI9VgRqz4ww6ySPgFpE=
=Gbjp
-----END PGP SIGNATURE-----
--XsQoSWH+UP9D9v3l--
