[Shorewall-users] Trying to make Simple TC work - something's missing

Mon, 02 May 2011 17:18:24 -0700 

This is using Shorewall 4.4.11.6.

I have an 'Internal' TC configuration that prioritizes http traffic
going out eth2 on port 80 over http going out the same interface on
port 3000.  It works nicely.

I am trying to reproduce the same configuration using the Simple TC
mode.

This is a router unit with a http server sitting on eth1 and a client
on eth2.  I apply TC on the traffic from the server going out eth2 to
reply to the laptop's wget.

         laptop  <-> eth2 router eth1 <-> HTTP server

Here are the options from shorewall.conf I think would matter.  I was
using MARK_IN_FORWARD_CHAIN=Yes for the 'Internal' mode in order to
replicate previous Shorewall 4.0.x behaviour, so I kept it for 'Simple'.

TC_ENABLED=Simple
TC_EXPERT=No
WIDE_TC_MARKS=No
CLEAR_TC=Yes
MARK_IN_FORWARD_CHAIN=Yes
FORWARD_CLEAR_MARK=No

First, I get an error when configuring tcinterfaces in the following
way (as per the tcinterfaces web page) :

tcinterfaces
#INTERFACE  TYPE      IN-BANDWIDTH   OUT-BANDWIDTH
eth2        External  -              100mbit

Checking /etc/shorewall/tcinterfaces...
   ERROR: Invalid tcinterfaces entry (too many columns) 
   : /etc/shorewall/tcinterfaces (line 3)

So I simply declare the interface instead.

tcinterfaces
#INTERFACE  TYPE      IN-BANDWIDTH   OUT-BANDWIDTH
eth2        External

And in tcpri I simply have:

#BAND   PROTO   PORT(S) 
1       tcp        80   
3       tcp        3000 

Hopefully, these are destination ports!  I also have tried with 'TCP'
in uppercase.

When shorewall is started succesfully, no 'child/parent' classes are shown
when using: tc -s -d class show dev eth2

When doing two simultaneous wgets from the laptop, one on port 80 and
one on port 3000, the transfer rates ends up the same: eg. no traffic
control was applied.

You will find attached a shorewall dump made during the above test.

What could be missing to make Simple TC work ?  Is declaring eth2 in
tcinterfaces enough ?  Does tcpri know about eth2 ?

Many thanks for taking the time to look into this !

Attachment: sh_dump.gz
Description: GNU Zip compressed data

------------------------------------------------------------------------------
WhatsUp Gold - Download Free Network Management Software
The most intuitive, comprehensive, and cost-effective network 
management toolset available today.  Delivers lowest initial 
acquisition cost and overall TCO of any competing solution.
http://p.sf.net/sfu/whatsupgold-sd
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users

Reply via email to