Try marking only first/new packages/connections, that will be analyzed by
layer-7 filter
Question: Is it layer-7 filtering able to perform marking the first/new
packages/connections? May I know how to do that? Thanks.
From: Andraz Sraka <a@xxxxxxxxxx>
To: lee weejin <leeweejin@xxxxxxxxxxx>
CC: lartc@xxxxxxxxxxxxxxx
Subject: Re: Optimization on Bandwidth Management-L7 filtering?
Date: Mon, 26 Jun 2006 19:14:26 +0200
re
On Sun, 2006-06-11 at 04:32 +0000, lee weejin wrote:
> Since all the incoming packets was checked one by one-(it is time
> consuming and will cause the processing delay if it is handling more
> than 50 PC at a time), thus i am thinking that is there any way to
> have a random checking on incoming packets ? Scipt or tools? so that
> it wont check all the incoming packets one follow by another one.
********************************************************************************
Try marking only first/new packages/connections, that will be analyzed
by layer-7 filter in another chain and there do whole connecting mark
(-j CONNMARK --mark XX). Those mark packages/connections can be then
picked up by 'tc' for prioritizing traffic or netfilter for
rejecting/dropping/.. traffic.
regards,
Andraz
--
BOFH excuse #62:
need to wrap system in aluminum foil to fix problem
<< signature.asc >>
<< smime.p7s >>
_______________________________________________
LARTC mailing list
LARTC@xxxxxxxxxxxxxxx
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
