Hi Guys, I have a problem marking traffic in the system descriped in the attached png file.
I have a Gentoo-box running Shorewall(3.4.6), sharing our internet connection in a small building. To distribute internet to the rooms, I use an old Allied Telesyn router w. a builtin DHCP server. This router supports private VLANS, which basically mean that clients cant communicate between rooms. I have split the clients in two groups, VLAN1 (10.0.1.x) and VLAN2 (10.0.2.x). I use the groups to control who is connected and who is not, simply by routing all VLAN2 traffic to the router, containing a webpage explaining how to get connected. This saves me a trip to the basement every time i need to connect/disconnect a room. My problem is that bandwidth is limited so I need to do some scheduling. I used to do this using ipp2p in a crude setup, but I cant seem to make it work on my reinstalled Gentoo box. It was lagging behind anyway so I decided to try to do somthing new. My new approach is to sort traffic by host IP address instead of traffic type. My guess is that this will give a more fair use of the bandwidth. Even though rooms with multiple clients will get double bandwith. This will be my little secret. The problem is when I start shorewall the traffic slows down to almost complete standstill, indicating that my tcrules dont mark the traffic correctly. What am I doing wrong? I have attached a diagram of the setup, my "shorewall dump" file, and my config files are at the end of this mail. The system is "on air", so i dumped the data after just a few minutes of uptime on this setup. I dont know if this is reflected in the dump. Thanx in advance Jesper Taxbøl /etc/conf.d/local.start: route add -net 10.0.0.0/15 gw 10.0.64.2 eth1 tcdevices: #INTERFACE IN-BANDWITH OUT-BANDWIDTH eth0 1555kbit 425kbit eth1 375kbit 1655kbit tcrules: 102 0.0.0.0/0 0.0.0.0/0 tcp 22 102 0.0.0.0/0 0.0.0.0/0 tcp 22 1 10.0.1.2 0.0.0.0/0 all 1 0.0.0.0/0 10.0.1.2 all 2 10.0.1.3 0.0.0.0/0 all 2 0.0.0.0/0 10.0.1.3 all 3 10.0.1.4 0.0.0.0/0 all 3 0.0.0.0/0 10.0.1.4 all 4 10.0.1.5 0.0.0.0/0 all 4 0.0.0.0/0 10.0.1.5 all ... tcclasses: eth0 1 full*1/20 full*1/2 2 eth1 1 full*1/20 full*1/2 2 eth0 2 full*1/20 full*1/2 2 eth1 2 full*1/20 full*1/2 2 eth0 3 full*1/20 full*1/2 2 eth1 3 full*1/20 full*1/2 2 eth0 4 full*1/20 full*1/2 2 eth1 4 full*1/20 full*1/2 2 ... eth0 101 full*1/30 full*1/20 3 default eth1 101 full*1/30 full*1/20 3 default eth0 102 full*1/30 full*1/30 1 eth1 102 full*1/30 full*1/30 1
<<attachment: net.png>>
shorewall.dump.bz2
Description: BZip2 compressed data
------------------------------------------------------------------------- SF.Net email is sponsored by: The Future of Linux Business White Paper from Novell. From the desktop to the data center, Linux is going mainstream. Let it simplify your IT future. http://altfarm.mediaplex.com/ad/ck/8857-50307-18918-4
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
