> Hello! > > > > another is to classify ACKs to separate class. > > > > How can I distinguish just ACK's? > > Well, I hope iptables are able to do this. > Ipatbeles is able to match ACKs for every packet. For example you can rate limit incoming connection speed (presumable that you are on a lan) by limiting the number of the ACK packets that you send back. (I tested this scenario on my lan and it works very well. the only thing you need to do is to use tc. i used cbq.init to set this up because tc is hardly documented) > Actually, packet length <= 20+32 is good approximation. > This can be made f.e. using policer: > > ... police mtu 66 action ok/continue ... > > Alexey > - > : send the line "unsubscribe linux-net" in > the body of a message to majordomo@vger.kernel.org > More majordomo info at http://vger.kernel.org/majordomo-info.html > - : send the line "unsubscribe linux-net" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
