>>>> I've got packet shaping set up with a basic config and I'm wondering >>>> if anyone has any recommendations for these settings. The main thing >>>> to be moving along priority 4 should be p2p. Is this only shaping the >>>> outbound traffic or is it doing ingress too? >>> Given that you are asking this question, you can't have read the >>> documentation very carefully. But to answer your question, you are only >>> shaping outbound traffic. You are dropping inbound traffic in excess of >>> 1000kbps. >>> >>>> tcdevices: >>>> eth0 1000kbps 100kbps >>> Your values look like you have just used the published (max) data rates >>> specified by your ISP. Those are usually too high. There is a procedure >>> in the documentation for tuning IN-BANDWIDTH; OUT-BANDWIDTH is usually >>> set between 80 and 90% of the maximum. >> >> I actually used data from the various flash tests around the internet >> to arrive at those numbers. I read shorewall-tcdevices.html and I'd >> like to move the inbound queue off of my cable provider, but it >> doesn't say how to do that. Should I just set it to the max? > > A) go to http://www.shorewall.net/traffic_shaping.htm > B) scan down the page until you get to the description of IN-BANDWIDTH. > C) read
BTW, here's my latest incarnation. Priority 1 is meant to be for SIP and 192.168.100.5 is my Nokia N82 for wifi calls. The RTP port it uses seems to be random and non-configurable so I used its static IP. Priority 6 is meant to be a catch-all for p2p since one of my bittorrent clients seems to use random ports as well. 1 192.168.100.5/24 0.0.0.0/0 1 0.0.0.0/0 0.0.0.0/0 udp 5060 1 0.0.0.0/0 0.0.0.0/0 udp 8000 2 0.0.0.0/0 0.0.0.0/0 tcp 22 2 0.0.0.0/0 0.0.0.0/0 tcp - 22 2 0.0.0.0/0 0.0.0.0/0 udp 123 2 0.0.0.0/0 0.0.0.0/0 icmp echo-request,echo-reply 3 0.0.0.0/0 0.0.0.0/0 tcp - 631 3 0.0.0.0/0 0.0.0.0/0 udp - 631 4 0.0.0.0/0 0.0.0.0/0 tcp 80,443 4 0.0.0.0/0 0.0.0.0/0 udp 53 5 0.0.0.0/0 0.0.0.0/0 tcp 873 eth0 1 full*5/10 full*9/10 1 eth0 2 full*1/10 full*9/10 2 eth0 3 full*1/10 full*9/10 3 eth0 4 full*1/10 full*9/10 4 eth0 5 full*1/10 full*9/10 5 eth0 6 full*1/10 full*9/10 6 default - Grant ------------------------------------------------------------------------------ This SF.net email is sponsored by: SourcForge Community SourceForge wants to tell your story. http://p.sf.net/sfu/sf-spreadtheword _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
