On Thu, 2013-06-13 at 23:45 -0400, David Shaw wrote: > > 1. Do the shaping on the opposite outbound interface (so if you're > > forwarding packets from ppp0 to eth0 and are trying to do the ingress > > shaping on ppp0, then do it on the egress of eth0 instead). This only > > works if you are actually forwarding packets. > > > > 2. Use IMQ, which unfortunately is not part of the vanilla kernel. > > This is what I was afraid of. Unfortunately I'm not forwarding > packets, so I'm wondering if I might be better off marking the packets > in netfilter and then using tc with a policing filter to police the > marked packets. It wouldn't be as flexible as the IFB solution, but > would I be able to match on the marked packets that way? That still won't help I'm afraid. The policing would only happen at the ingress of the interface, which would be before netfilter has seen the packets. -- To unsubscribe from this list: send the line "unsubscribe lartc" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
