2011-09-08 14:10 keltezéssel, Marco Coda írta:
With this rule it does not work at all.. :(
What do you mean it does not work at all???
Does the packet counter shows that the rule got any hit??? (iptables
-vnL OUTPUT -t mangle)
Can you see the mark in the conntrack??? (conntrack -L | grep 'mark=1')
At least before, even if I understand that concectually is not
correct, with --sport, traffic was shaped, in some manner, whth a
strange rate..
- You can only shape those traffic that leaves your system...
- If you send an e-mail then you connect from your system (from a random
port) to a mail server (to 25)...
- If you set your upload limit to 10kbit then you can send 1,25KByte per
sec. (It is veeerrryy slooow.) Would you try with my proposed settings???
Swifty
--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
