On 12/30/06, Ismael Milach da Silveira <[EMAIL PROTECTED]> wrote: > tcclasses > ############################### > eth0 1 128kbps 256kbps 2 > eth0 2 full full 1 default
For some reason I don't know why, your actual tcrules are translated thus! Note that the 1:11 is 1024kbit/2048kbit. htb 1:12 is 512kbit/512kbit. htb 1:1 is 512/512. class htb 1:11 parent 1:1 leaf 11: prio 2 quantum 12288 rate 1024Kbit ceil 2048Kbit burst 1627b/8 class htb 1:1 root rate 512000bit ceil 512000bit burst 1563b/8 mpu 0b overhead 0b cburst 1563b/8 class htb 1:12 parent 1:1 leaf 12: prio 1 quantum 6144 rate 512000bit ceil 512000bit burst 1563b/8 Secondly, tcrules ####################################### 1 0.0.0.0/0 0.0.0.0/0 tcp 80 2 0.0.0.0/0 0.0.0.0/0 all 3 0.0.0.0/0 0.0.0.0/0 tcp 80 4 0.0.0.0/0 0.0.0.0/0 all ###################################### If you look at your tcfor, you'll find that you first mark the outgoing packet as 0x1 and then as 0x3. Since there is no 0x3 for eth0, it goes into default perhaps? Third, you seem to have squid running on 3128, can't really tell myself though. In which case you need to mark packets from $FW to 0.0.0.0/0 tcp 80, and shorewall automatically puts it in the tcpost. My 2c(entavos in this case :) Prasanna. ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
