Alexandra Alvarado wrote: > > Hello, I'm Alexandra > > I have a Linux firewall [Red Hat 7.0] and i need to implement cbq, until > now i make my file configuration that is: > > ==========Introduction============ > > [The Internet] --- [Linux router] --- [Intranet] > eth0 eth1 > > The Networks Cards are "rtl8139" > > And what i whant is that the input and output to the intranet can reach > a max bandwidth of 64 Kbit per second > > ============================= File cbq.init > ================================ > > #!/bin/sh > > # eth1 > > tc qdisc add dev eth1 root handle 10: cbq bandwidth 100Mbit avpkt 1000 > > tc class add dev eth1 parent 10:0 classid 10:1 cbq bandwidth 100Mbit > rate 100Mbit allot 1514 weight 1Mbit prio 8 maxburst 20 avpkt 1000 > > tc class add dev eth1 parent 10:1 classid 10:100 cbq bandwidth 100Mbit > rate 64Kbit allot 1514 weight 6Kbit prio 5 maxburst 20 avpkt 1000 > bounded > > tc qdisc add dev eth1 parent 10:100 sfq quantum 1514b perturb 15 > > tc filter add dev eth1 parent 10:0 protocol ip prio 25 u32 match ip dst > 10.10.10.0/24 flowid 10:100 > > # eth0 > > tc qdisc add dev eth0 root handle 20: cbq bandwidth 100Mbit avpkt 1000 > > tc class add dev eth0 parent 20:0 classid 20:1 cbq bandwidth 100Mbit > rate 100Mbit allot 1514 weight 1Mbit prio 8 maxburst 20 avpkt 1000 > > tc class add dev eth0 parent 20:1 classid 20:100 cbq bandwidth 100Mbit > rate 64Kbit allot 1514 weight 6Kbit prio 5 maxburst 20 avpkt 1000 > bounded > > tc qdisc add dev eth0 parent 20:100 sfq quantum 1514b perturb 15 > > tc filter add dev eth0 parent 20:0 protocol ip prio 25 u32 match ip src > 10.10.10.0/24 flowid 20:100 > > ===================== cbq.init stats ============================= > > ---[ eth0: configured classes ]--------------------------- > > class cbq 20: root rate 100Mbit (bounded,isolated) prio no-transmit > Sent 6723337 bytes 32154 pkts (dropped 0, overlimits 0) > borrowed 0 overactions 0 avgidle 61 undertime 0 > class cbq 20:100 parent 20:1 leaf 8004: rate 64Kbit (bounded) prio 5 > Sent 0 bytes 0 pkts (dropped 0, overlimits 0) > borrowed 0 overactions 0 avgidle 2.83654e+06 undertime 0 > class cbq 20:1 parent 20: rate 100Mbit prio no-transmit > Sent 0 bytes 0 pkts (dropped 0, overlimits 0) > borrowed 0 overactions 0 avgidle 62 undertime 0 > > ---[ eth0: queueing disciplines ]------------------------- > > qdisc sfq 8004: quantum 1514b perturb 15sec > Sent 0 bytes 0 pkts (dropped 0, overlimits 0) > > qdisc cbq 20: rate 100Mbit (bounded,isolated) prio no-transmit > Sent 6724367 bytes 32157 pkts (dropped 0, overlimits 0) > borrowed 0 overactions 0 avgidle 62 undertime 0 > > > ---[ eth1: configured classes ]--------------------------- > > class cbq 10: root rate 100Mbit (bounded,isolated) prio no-transmit > Sent 26432943 bytes 32209 pkts (dropped 0, overlimits 0) > borrowed 0 overactions 0 avgidle 62 undertime 0 > class cbq 10:100 parent 10:1 leaf 8003: rate 64Kbit (bounded) prio 5 > Sent 26410431 bytes 31673 pkts (dropped 455, overlimits 188780) > borrowed 0 overactions 20574 avgidle 375275 undertime 0 > class cbq 10:1 parent 10: rate 100Mbit prio no-transmit > Sent 26410431 bytes 31673 pkts (dropped 0, overlimits 0) > borrowed 0 overactions 0 avgidle 62 undertime 0 > > ---[ eth1: queueing disciplines ]------------------------- > > qdisc sfq 8003: quantum 1514b perturb 15sec > Sent 27456058 bytes 33494 pkts (dropped 455, overlimits 0) > > qdisc cbq 10: rate 100Mbit (bounded,isolated) prio no-transmit > Sent 27482602 bytes 34126 pkts (dropped 455, overlimits 184922) > borrowed 0 overactions 0 avgidle 62 undertime 0 > > ============= cbq.init list ==================== > > ---[ eth0: configured classes ]--------------------------- > > class cbq 20: root rate 100Mbit (bounded,isolated) prio no-transmit > class cbq 20:100 parent 20:1 leaf 8004: rate 64Kbit (bounded) prio 5 > class cbq 20:1 parent 20: rate 100Mbit prio no-transmit > > ---[ eth0: queueing disciplines ]------------------------- > > qdisc sfq 8004: quantum 1514b perturb 15sec > qdisc cbq 20: rate 100Mbit (bounded,isolated) prio no-transmit > > ---[ eth1: configured classes ]--------------------------- > > class cbq 10: root rate 100Mbit (bounded,isolated) prio no-transmit > class cbq 10:100 parent 10:1 leaf 8003: rate 64Kbit (bounded) prio 5 > class cbq 10:1 parent 10: rate 100Mbit prio no-transmit > > ---[ eth1: queueing disciplines ]------------------------- > > qdisc sfq 8003: quantum 1514b perturb 15sec > qdisc cbq 10: rate 100Mbit (bounded,isolated) prio no-transmit > > ==============Problem=============== > > I have an mrtg monitor, and according to this the bandwidth of the > firewall exceeds the 64 Kbit per seconds, i don't know why, i need > extrictly the bandwidth does no exceeds 64 Kbps. > > ==================================== > > Thanks > > Alexandra
