> We're running a small ISP and all the users are shaped to 384/512/768k
> both ways (whichever package they choose).
> The router is a linux (debian sarge), the kernel is 2.4.25 right now.
> All users are getting 10.1.1.* ip addresses (eth1) and eth0 connects
> to the isp using ethernet (via a media converter, it's fiber from
> there). They're nat's using iptables masquerade.
> tc class add dev eth0 parent 100: classid 100:$htbindex htb rate $row->{shaper}kbit prio 0
> tc filter add dev eth0 protocol ip parent 100: prio 0 u32 match ip src $row->{ip} flowid 100:$htbindex
Yoa are doing nat on the same machine, thus the filter above will not
get the clients IP address but the NAT-ed address. Thats because TC
stuff happens after all of the netfilter, routing and bridging stuff.
You could MARK packet when they enter eth1 (with iptables) and then
match them using the "fw" match in TC.
--
damjan | ÐÐÐÑÐÐ
This is my jabber ID --> damjan@xxxxxxxxxxxx <-- not my mail address!!!
_______________________________________________
LARTC mailing list / LARTC@xxxxxxxxxxxxxxx
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
