On Thursday 12 June 2003 22:04, Morten Isaksen wrote: > > -----Original Message----- > > From: lartc-admin@xxxxxxxxxxxxxxx [mailto:lartc-admin@xxxxxxxxxxxxxxx] On > > Behalf Of Stef Coene > > Sent: 12. juni 2003 21:35 > > To: Ratel; lartc@xxxxxxxxxxxxxxx > > Subject: Re: [LARTC] htb problem > > > > > adequate lines from firewall script : > > > [...] > > > # ftp > > > $IPTABLES -A FORWARD -p tcp -s 0/0 -d 0/0 --dport 21 -m state --state > > > NEW,ESTABLISHED -t mangle -j MARK --set-mark 3 > > > # ssh > > > $$IPTABLES -A FORWARD -p tcp -s 0/0 -d 0/0 --dport 22 -m state --state > > > NEW,ESTABLISHED -t mangle -j MARK --set-mark 2 > > > # smtp > > > $IPTABLES -A FORWARD -p tcp -s 0/0 -d 0/0 --dport 25 -m state --state > > > NEW,ESTABLISHED -t mangle -j MARK --set-mark 4 > > > [...] > > > > Mhh. Can you check with iptables -L -v -n that your packets are marked? > > And > > can you tell us what's your setup ? I mean wich nic is connected to the > > internet, what do you want to shape, is this also a firewall? And try > > marking in the PREROUTING tables. > > I have the same problem. According to iptables the packets are marked but > all the traffic goes to the root htb class. Mhh. Some commands that works for me : tc filter add dev eth0 parent 1: protocol ip handle 1 fw classid 1:100 iptables -A OUTPUT -t mangle -p tcp --dport 2000 -j MARK --set-mark 1 Stef -- stef.coene@xxxxxxxxx "Using Linux as bandwidth manager" http://www.docum.org/ #lartc @ irc.oftc.net
