You can indeed use the MAC addess in a u32 match by using negative offsets. See the faq article for details. http://www.docum.org/docum.org/faq/cache/62.html This will work to enforce your w1/w2 based download limits on the LAN interface. However, when your upload packets leave the WAN interface, the original workstation MACs will be long gone before the TC processing occurs. You could use the mac source tests in iptables and marks to propagate the information to the TC phase. Susan On Tue, 2009-07-14 at 16:44 +0200, Fabio Marcone wrote: > Hi! > I have a problem setting traffic shaping rules for routing packets. > > scenario: > I have a linux router and two workstation that generate traffic to web > server in Internet. > I need to limit: > - w1 to 100Kb/s in upload and 1MB/s in download > - w2 to 200 Kb/s in upload and 2 MB/s in download > > I know that I have to set upload limit on wan interface and download > limit on lan interface. > The problem is in download: how can I setup tc filter to recognize > response packets to w1 and to w2? only by ip? and if I use dhcp? Does > exist a way to use mac address? > > Thanks in advance, > Fabio > -- > To unsubscribe from this list: send the line "unsubscribe netfilter" in > the body of a message to majordomo@xxxxxxxxxxxxxxx > More majordomo info at http://vger.kernel.org/majordomo-info.html -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
