Re: [freenet-support] Bandwidth limiting of outgoing traffic...
On Thu, Aug 04, 2005 at 10:06:04PM +0200, Evert Meulie wrote: Since Freenet uses random ports for outgoing traffic, I can't really shape it on my firewall either. (I do have an option to shape traffic based on packet content. Do all Freenet packages have some common, unique content perhaps?) The Freenet site suggested to control the bandwidth usage on the OS-level instead. Who can tell me how to do this? On linux you can tag packets with the iptables MARK target based on uid or pid, and then use tc (from iproute2) filters to select only the marked packets. No icky looking inside packets required. If you're shaping traffic on a different machine than the one running freenet it's slightly more complicated, as the iptables MARKs don't go out on the network, they're just there while the local machine is juggling the packet. What I do is encode the appropriate policy in the TOS header with --set-tos in the mangle table based on a MARK I set based on the uid. Then, on the machine that does the traffic shaping you just prioritise or drop based on the tos field, optionally resetting it before pushing it out on the wire. Similar facilities are available on many other OSes. -- Frank v Waveren Key fingerprint: BDD7 D61E [EMAIL PROTECTED] 5D39 CF05 4BFC F57A Public key: hkp://wwwkeys.pgp.net/468D62C8 FA00 7D51 468D 62C8 signature.asc Description: Digital signature ___ Support mailing list Support@freenetproject.org http://news.gmane.org/gmane.network.freenet.support Unsubscribe at http://dodo.freenetproject.org/cgi-bin/mailman/listinfo/support Or mailto:[EMAIL PROTECTED]
Re: [freenet-support] Modem lines MTU?
On Wed, Jan 19, 2005 at 04:36:11PM +, Toad wrote: Yuck! I'm skeptical... Could well be snake oil. Please find me an internet standard that mentions an MTU of 576 bytes - or even some cisco documentation. It seems pretty clear that bigger is better within the limits available... Bigger=Higher latency. It matters less on most modern ADSL and cable modems as they're high-bandwidth which is throttled, but there are older cable modems where it does give a marked latency decrease. -- Frank v Waveren Fingerprint: BDD7 D61E [EMAIL PROTECTED]|stack.nl] ICQ#10074100 5D39 CF05 4BFC F57A Public key: hkp://wwwkeys.pgp.net/468D62C8 FA00 7D51 468D 62C8 signature.asc Description: Digital signature ___ Support mailing list Support@freenetproject.org http://news.gmane.org/gmane.network.freenet.support Unsubscribe at http://dodo.freenetproject.org/cgi-bin/mailman/listinfo/support Or mailto:[EMAIL PROTECTED]
Re: [freenet-support] Freenet under a chroot
On Sat, Nov 06, 2004 at 09:59:40PM -0600, Eric Gillingham wrote: I do have a hostname as my ipAddress so it would have to resolve that however I did copy /etc/resolve.conf into the chroot and also libresolv so I am not sure what exactly the issue is. Any help with getting this working is appreciated. /etc/nsswitch.conf perhaps? -- Frank v Waveren Fingerprint: 9106 FD0D [EMAIL PROTECTED]|stack.nl] ICQ#10074100 D6D9 3E7D FAF0 92D1 Public key: hkp://wwwkeys.pgp.net/8D54EB90 3931 90D6 8D54 EB90 ___ Support mailing list [EMAIL PROTECTED] http://news.gmane.org/gmane.network.freenet.support Unsubscribe at http://dodo.freenetproject.org/cgi-bin/mailman/listinfo/support Or mailto:[EMAIL PROTECTED]
Re: [freenet-support] OT where devl maillist is gone
On Fri, Feb 07, 2003 at 02:56:26PM +0100, [EMAIL PROTECTED] wrote: Chat/web/clinets/tech are so rare that I cannot say if I still receive it or not. It has been noted before that the freenet mailman lists are very quick to disable delivery if your mailserver ever times out or anything. To check if delivery is disabled, go to http://hawk.freenetproject.org:8080/cgi-bin/mailman/listinfo/listname/ and check if 'delivery disabled' is marked 'on'. And to prevent it happening, make sure you're subscribed on an address hosted on a very reachable mailserver. Or for the more adventurous, you could subscribe to the lists you want to see on more than one address, and set up a script from .forward that only sends on ones you haven't seen before, and if mail doesn't come in for one of the addresses within a specific time while you have seen mail from the other addresses fire off wget to reenable delivery on that account. Still, it's kind of overkill... -- Frank v Waveren Fingerprint: 21A7 C7F3 fvw@[var.cx|stack.nl|chello.nl] ICQ#100741001FF3 47FF 545C CB53 Public key: hkp:[EMAIL PROTECTED]7BD9 09C0 3AC1 6DF2 ___ support mailing list [EMAIL PROTECTED] http://hawk.freenetproject.org/cgi-bin/mailman/listinfo/support
