Keith Edmunds wrote: > - in tcclasses, we're assigning tun0 with mark 2 as follows: rate=full, > ceil=full, priority=1, no options. We want to have "tun0, mark 2" rule
I assume you mean "tun0, mark 1" > at priority 2; is it valid to set rate=0 and ceil=full? When we did so > in tests, it seemed to stop all traffic. I would just set rate=1kbit > > - because VPN traffic goes over the same physical interface as eth0, > presumably we have to limit eth0 traffic as well, otherwise excessive > non-VPN traffic could adversely affect VoIP VPN traffic? Yes. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ [EMAIL PROTECTED] PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys -- and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
_______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
