The webpage was helpful in some ways, but I think it is a step too advanced for me at this time. I guess what I want to know is if the 'plan' I have is sound? I want to put a linux box between my cable modem and my lan. It'll go from the cablemodem into eth0 then from eth1 to the LAN. I just want to do complete passthrough (with packets intact) if possible from one side to the other. This machine doesn't have to do NAT or anything. Then I want to throttle the bandwidth through that box intelligently (I kind of know how to do that from the Advanced Routing Howto. I've done it on the other three servers to throttle the bandwidth down). Once all that is working, I'll deal with using iptables to firewall. If this plan is sound, I guess I need to know the vague steps involved to accomplish the routing. The throttling I can figure out myself. -Michael > -----Original Message----- > From: gypsy [mailto:gypsy@xxxxxxxxxx] > Sent: Monday, June 20, 2005 10:09 PM > To: lartc@xxxxxxxxxxxxxxx > Cc: ICI Support > Subject: Re: Help? Router/Bandwidth throttle needed. > > ICI Support wrote: > > > > I hope this list is still active. I'm an experienced Linux Sysadmin, > but I > > haven't done much in the way of routing. Due to a decision made by my > > higherups, I need to jam a computer between my ISP and my LAN to do > > bandwidth throttling. > > > > My current setup: > > > > 1 Crappy Cable Modem (7Mb/768Kb connection) with a static IP. > > 4 servers (all have static, routable IPs) - One of which is running > NAT/DHCP > > (2 NICs) for 6 workstations (All using DHCP) > > > > I have 1 spare routable IP. > > > > My current setup has the cable modem plugged directly into my LAN. But > it > > ends up this modem doesn't do intelligent traffic/bandwidth management. > I > > need a way to throttle and poll usage through the modem such that > neither > > uploads nor downloads will ever use the full capacity (and thus dominate > the > > router). > > > > Currently, the best I can do, is to throttle some of those 4 servers, > but > > that doesn't help me with the workstations. So I figured I'd need to > jam a > > machine between the modem and the LAN to work as a 'gatekeeper' to > control > > the bidirectional traffic (and I could use it for a firewall too). > > > > Can someone help me on how I need to set this up? I have a spare box I > > could easily put two NICs into, if needed, to make it the gatekeeper. > > > > ----- > > > > Michael Yacht > > CTO > > Ideal Conditions, Inc. > > 5329 Beeler Street, #2 > > Pittsburgh, PA 15217 > > v: 412-325-1375 > > Michael, > > I have exactly your setup except that I have 2 internet connections and > (at long last) neither is crappy. > > http://yesican.chsoft.biz/lartc > > The top part of that describes my setup. Stop when you get to "Now we > have 2 providers". > > Short description: eth0 points to the internal servers which have > external IPs and I shape the traffic going out on that interface. eth1 > points to the internet and I shape the traffic going out on that. In > order to answer for the 4 internal machines, proxyarp is employed. Each > of the 4 internal machines has a firewall, but these are a LOT quieter > since I put a firewall on this computer <grin>. > > You may also want to ftp andthatsjazz.org/pub/lartc > -- > gypsy _______________________________________________ LARTC mailing list LARTC@xxxxxxxxxxxxxxx http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
