Zdraveite,
Imam sledniq problem: izpozvam skript 4rez koito ograni4avam
download trafika na vhodq6t interfeis na linux ruter
INTERNET >>>eth0>>linux>>eth1>>> LAN
#!/bin/bash
DEV=eth0
RATEDN=700
modprobe imq numdevs=1
ip link set imq0 up
tc qdisc add dev imq0 root handle 1: htb default 21
tc class add dev imq0 parent 1: classid 1:1 htb rate
${RATEDN}kbit
tc class add dev imq0 parent 1:1 classid 1:20 htb rate
$[$RATEDN/2]kbit ceil ${RATEDN}kbit prio 0
tc class add dev imq0 parent 1:1 classid 1:21 htb rate
$[$RATEDN/2]kbit ceil ${RATEDN}kbit prio 1
tc qdisc add dev imq0 parent 1:20 handle 20: sfq perturb 10
tc qdisc add dev imq0 parent 1:21 handle 21: red limit
1000000 min 5000 max 100000 avpkt 1000 burst 50
tc filter add dev imq0 parent 1:0 prio 0 protocol ip handle
20 fw flowid 1:20
tc filter add dev imq0 parent 1:0 prio 0 protocol ip handle
21 fw flowid 1:21
iptables -t mangle -N MYSHAPER-IN
iptables -t mangle -I PREROUTING -i $DEV -j MYSHAPER-IN
iptables -t mangle -A MYSHAPER-IN -p ! tcp -j MARK
--set-mark 20
iptables -t mangle -A MYSHAPER-IN -p tcp -m length --length
:64 -j MARK --set-mark 20
iptables -t mangle -A MYSHAPER-IN -p tcp --dport ssh -j MARK
--set-mark 20
iptables -t mangle -A MYSHAPER-IN -p tcp --sport ssh -j MARK
--set-mark 20
iptables -t mangle -A MYSHAPER-IN -p tcp --dport telnet -j
MARK --set-mark 20
iptables -t mangle -A MYSHAPER-IN -p tcp --sport telnet -j
MARK --set-mark 20
iptables -t mangle -A MYSHAPER-IN -m mark --mark 0 -j MARK
--set-mark 21
iptables -t mangle -A MYSHAPER-IN -j IMQ
echo "Inbound shaping added to $DEV. Rate:
${RATEDN}Kbit/sec."
pri startirane na skripta se poqvqva stranen efekt vsi4ko
raboti no pri logvane po ssh v servera sled okolo desetina
sekundi 6ela spira bez da se razpada vraskata sled spirane
na sripta rabotata prez 6ela se vastanovqva pri startirane
na skripta otnovo spira nqkoi ima li ideq ot kakvo moje da e
? Debian linux Sarge, kernel-2.6.14, iptables-1.3.4,
linux-2.6.14-imq2.diff
|