On Oct 23, 2007, at 5:50 PM, List Receiver wrote: > > This represents a challenge to me, as coming out of the Cisco > router I have only one Ethernet connection to the Shorewall box. > Aggregate speeds across that link can be up to both lines summed, > but individual sessions can only be the speed of one of the circuits.
This basically proves that they're distributing across the links by state/connection rather than by packet. If you can get the ISP to do it by packet, you'll be able to shape the connection much more effectively. Keep in mind that routers on both end would have to share this configuration. Also beware that some protocols/clients don't handle out of order packets very well and that out of order packets are much more likely to happen when using a by packet distribution scheme. -Brian ------------------------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/ _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
