Hello Barry,
: I'm using TCNG to restrict certain types of traffic to certain ip
: addresses using a Linux router, and some masq'd computers behind it.
You didn't tell us anything about the networks behind eth1. So, is this
host running as an Internet access device?
: #define INTERFACE eth1
:
: dev INTERFACE {
: egress {
:
: /* In class selection path, the filters come first! DSmark */
: class ( <$video> ) if tcp_sport == 554 && ip_dst == 10.1.1.10;
: class ( <$other> ) if 1 ;
:
: /* section in which we configure the qdiscs and classes */
:
: htb () {
: class ( rate 3500kbps, ceil 3500kbps ) {
:
: $video = class ( rate 50kbps, ceil 50kbps ) { sfq; } ;
: $other = class ( rate 1000kbps, ceil 3450kbps ) { sfq; } ;
:
: }
: }
: }
: }
: Doesn't seem to be working...
Are you able to tell if traffic is classified at all into any classes
("tc -s class show dev eth1")?
What happens if you [off-hours] drop your maximum rate (3500kbps) to
something much slower (2000kbps)? Are you actually shaping traffic?
Presumably, given the above configuration, the host 10.1.1.10 is a client
and is located on the network reachable via eth1. The Internet (the
source of the tcp/554 packets) must be reachable on another interface.
-Martin
--
Martin A. Brown --- SecurePipe, Inc. --- mabrown@xxxxxxxxxxxxxx
_______________________________________________
LARTC mailing list / LARTC@xxxxxxxxxxxxxxx
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
