Andy Furniss wrote:
There are lots of complicated things you can do with policers/u32 but I have no experience.
First thoughts are to mark all that aren't -sport 8000 and change the police rule to police to police marked.
iptables -A PREROUTING -t mangle -p tcp ! --sport 8000 -j MARK --set-mark 1
tc qdisc add dev $DEV handle ffff: ingress
tc filter add dev $DEV parent ffff: protocol ip prio 1 handle 1 fw police rate ${DOWNLINK}kbit burst 10k drop flowid :1
I haven't tested that.
Ignore that - it's no good if your stream(s) use much bandwidth.
If you only have one LAN interfave you can shape ingress by seting up queues on that.
Andy.
_______________________________________________ LARTC mailing list / LARTC@xxxxxxxxxxxxxxx http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
