Hello !!! First of all, sorry for my poor english. I am talking from brasil, and english is not my first language.
I've been an enthusiastic user of Shorewall in the last 5 years. Now, I am trying to do traffic shaping by IP Address. I want to do it in both incoming and outgoing traffic. I have a Shorewall Box between the internet and my local network with about 20 clients. My premises: a) Let the traffic going in both directions at the max speed that is possible. b) Do not allow that one client suck all the band in detriment of the others. c) Allow maximum use of the connection between the current users. d) Prioritize the traffic in that order : ssh, www, smtp, ftp, others. e) Not forbid any kind of traffic from the local zone to the internet. f) Can determine who is on. My Services: In my Shorewall Box I am using: Bind, Dhcp (with static addresses by mac address) and Squid (with Transparent proxy) I decided to shaping incoming traffic, basically because I'm afraid that some people are using download accelerators and p2p all the time and compromising my second law. Everything is working well (accounting working fine), with one dysfunction: I can not make the Ip mark work on the www traffic (while accounting can do). (could be because of the redirect rule for transparent proxy in the rules file?) I want to take this opportunity to express my gratitude for your great job. Can You help me to bypass this problem ? if possible, can You show me how to improve my effort? Cesar Alano ------------------------------------------------------------------------------ Download Intel® Parallel Studio Eval Try the new software tools for yourself. Speed compiling, find bugs proactively, and fine-tune applications for parallel performance. See why Intel Parallel Studio got high marks during beta. http://p.sf.net/sfu/intel-sw-dev _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
