On Thursday 03 February 2005 07:11, CcM wrote: > Hi, > I got the following lines from 'Linux Advanced Routing & Traffice > Control HOWTO' and got confused! > > iptables -A PREROUTING -i $INDEV -t mangle -p tcp --syn \ > -j MARK --set-mark 1 > tc qdisc add dev $INDEV handle ffff: ingress > tc filter add dev $INDEV parent ffff: protocol ip prio 50 handle 1 fw > \ police rate 1kbit burst 40 mtu 9k drop flowid :1 > > Does the second command mean that the filter will police the traffic > of syn to 1kbit by dropping? What does flowid:1 mean here? It means that all traffic that's under 1kbit, will be send to class :1 (or long notation: ffff:1). All traffic above 1kbit will be dropped. Stef _______________________________________________ LARTC mailing list / LARTC@xxxxxxxxxxxxxxx http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
