I am wondering, what is the best way to do some 'generic shaping' on a firewall/gateway box.
Currently, I'm just running a wondershaper variant on the WAN interface.
htb qdiscs for outbound, and ingress policer for inbound.
Now, assuming most traffic (except DNS requests etc) goes through the firewall, I could shape on the LAN side as well.
Should I put htb qdiscs on WAN as well as LAN and not use any ingress policers ? or should I use them as well?
also, with rules like this: tc qdisc add dev ppp0 root handle 1: htb default 20 tc class add dev ppp0 parent 1:1 classid 1:1 htb rate 512kbit burst 6k tc class add dev ppp0 parent 1:1 classid 1:10 htb rate 512kbit burst 6k prio 1 tc class add dev ppp0 parent 1:1 classid 1:20 htb rate 460kbit burst 6k prio 2 tc class add dev ppp0 parent 1:1 classid 1:30 htb rate 409kbit burst 6k prio 2
Will the slower queues be able to borrow extra bandwidth from the faster ones (when they're not in use), or do I need to specify the ceiling parameter to allow that?
I'm a bit unsure of the default behaviour of the htb qdisc.
thanks
-- ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Damion de Soto - Software Engineer email: damion@xxxxxxxxxxxx SnapGear - A CyberGuard Company --- ph: +61 7 3435 2809 | Custom Embedded Solutions fax: +61 7 3891 3630 | and Security Appliances web: http://www.snapgear.com ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ --- Free Embedded Linux Distro at http://www.snapgear.org ---
_______________________________________________ LARTC mailing list / LARTC@xxxxxxxxxxxxxxx http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
