Hi, > I actually think iptables/ebtables is working properly; In 2.6, ebtables > does indeed count the correct number of packets passing through each > rule, and assuming that "-j mark" actually marks them, the only possibly > answer would be that the tc stuff isn't catching those marks. I'm using kernel 2.6.3 (just patched with CONNMARK) here and everything works great. Using iptables and CONNMARK to mark packets and CLASSIFY to sort it into different HTB (and CBQ) classes is running flawless. box:~ # uname -a Linux ipp2p 2.6.3 #3 Mon Mar 8 12:56:15 CET 2004 i686 i686 i386 GNU/Linux box:~ # tc -s class show dev eth0 class htb 1:11 parent 1:1 prio 5 rate 100Kbit ceil 2000Kbit burst 1727b cburst 4159b Sent 3187475 bytes 55392 pkts (dropped 0, overlimits 0) lended: 55392 borrowed: 0 giants: 0 tokens: 219818 ctokens: 26900 class htb 1:1 root rate 100Mbit ceil 100Mbit burst 132657b cburst 132657b Sent 235605755 bytes 776816 pkts (dropped 0, overlimits 0) rate 1340bps 8pps lended: 0 borrowed: 0 giants: 0 tokens: 16939 ctokens: 16939 class htb 1:10 parent 1:1 prio 1 rate 102300Kbit ceil 100Mbit burst 132528b cburst 132657b Sent 232418280 bytes 721424 pkts (dropped 0, overlimits 0) rate 1340bps 8pps lended: 721424 borrowed: 0 giants: 0 tokens: 16939 ctokens: 16939 box:~ # iptables -t mangle -L -n -v Chain MARKED (1 references) pkts bytes target prot opt in out source destination 55392 2412K CLASSIFY all -- * * 0.0.0.0/0 0.0.0.0/0 PHYSDEV match --physdev-out eth0 CLASSIFY set 1:11 Also using tc filter rules instead of CLASSIFY put traffic in the appropiated classes. For me everything works just as fine as it did with kernel 2.4.x Regards, -- +++ NEU bei GMX und erstmalig in Deutschland: TÜV-geprüfter Virenschutz +++ 100% Virenerkennung nach Wildlist. Infos: http://www.gmx.net/virenschutz _______________________________________________ LARTC mailing list / LARTC@xxxxxxxxxxxxxxx http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
