Hi friends,
Am a little lost with using of the rateest target.
I'm trying to match if one of my interfaces have load over 2000kbit
but it does not seem to work.
While trying to understand the MAN page I'm a little lost - while man
gives example on the comparing the delta, but even trying the simpler
case it does not work for me.
my example s simpler - i just want to know if one interface have load
X to mark packets (to route them later to interface y) - and it does
not seem to work at all.
# iptables -t mangle -A POSTROUTING -o eth0.3810 -j RATEEST
--rateest-name fiber --rateest-interval 250ms --rateest-ewma 0.5s
# iptables -t mangle -A POSTROUTING -o eth0.3811 -j RATEEST
--rateest-name satellite --rateest-interval 250ms --rateest-ewma 0.5s
# iptables -t mangle -A PREROUTING -s 82.198.22.27/32 -m rateest
--rateest1 fiber --rateest-bps1 2000kbit --rateest-gt -j MARK
--set-mark 4
# iptables -t mangle -A PREROUTING -s 82.198.22.27/32 -m rateest
--rateest1 fiber --rateest-bps1 2000kbit --rateest-lt -j MARK
--set-mark 7
iptables -nL -v -t mangle gives
Chain PREROUTING (policy ACCEPT 302M packets, 151G bytes)
pkts bytes target prot opt in out source destination
1426 140K MARK all -- * * 82.198.22.27
0.0.0.0/0 rateest match fiber bps gt 0 MARK xset
0x4/0xffffffff
0 0 MARK all -- * * 82.198.22.27
0.0.0.0/0 rateest match fiber bps lt 0 MARK xset
0x7/0xffffffff
May anyone give me a piece of clue?
--
To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
