Products Openwall GNU/*/Linux   server OS Linux Kernel Runtime Guard John the Ripper   password cracker Free & Open Source for any platform in the cloud Pro for Linux Pro for macOS Wordlists   for password cracking passwdqc   policy enforcement Free & Open Source for Unix Pro for Windows (Active Directory) yescrypt   KDF & password hashing yespower   Proof-of-Work (PoW) crypt_blowfish   password hashing phpass   ditto in PHP tcb   better password shadowing Pluggable Authentication Modules scanlogd   port scan detector popa3d   tiny POP3 daemon blists   web interface to mailing lists msulogin   single user mode login php_mt_seed   mt_rand() cracker Services Publications Articles Presentations Resources Mailing lists Community wiki Source code repositories (GitHub) Source code repositories (CVSweb) File archive & mirrors How to verify digital signatures OVE IDs What's new

Message-ID: <008401c3be35$c35cf860$4e72da91@promexim.com.pl>
Date: Tue, 9 Dec 2003 10:21:01 +0100
From: "Adam Sosnowski" <A.Sosnowski@...mexim.com.pl>
To: <owl-users@...ts.openwall.com>
Subject: Re: tc filter fwmark didn't work

I had the same problem when I wanted to use HTB.
Problem is with "/sbin/tc". This "tc" is not supporting
( in my opinion ) the HTB. You have to download
new HTB from this url: http://luxik.cdi.cz/~devik/qos/htb/
There should be the latest archive with patches called
htb3.6-020525.tgz. Inside this archive is new "tc".
If you will change the "tc" from "/sbin/tc" to the new one
every thing should work ok.

PS. You do not have to change original kernel.
       Of course the HTB should be compile in the kernel.
      I did it and in my OWL it is working just fine !!!


----- Original Message -----
From: "Robert Baranowski" <robertik@...zta.tygrys.com.pl>
To: <owl-users@...ts.openwall.com>
Sent: Tuesday, December 09, 2003 9:54 AM
Subject: tc filter fwmark didn't work


> I have problem with tc filter fwmark.
> My htb script:
>
> tc qdisc add dev eth2 root handle 1:0 htb default 2
> tc class add dev eth2 parent 1:0 classid 1:1 htb rate 500kbit ceil 500kbit
> tc class add dev eth2 parent 1:1 classid 1:2 htb rate 512kbit ceil 512kbit
> burst 15k
> tc class add dev eth2 parent 1:1 classid 1:3 htb rate 500kbit ceil 500kbit
> prio 9
> tc qdisc add dev eth2 parent 1:3 sfq perturb 10
> iptables: Chain already exists
> tc class add dev eth2 parent 1:2 classid 1:20 htb rate 128kbit ceil
128kbit
> burst 9k
> tc filter add dev eth2 protocol ip parent 1:2 prio 9 u32 match ip dst
> 192.168.3.2 flowid 1:20
> iptables -t mangle -N 192.168.3.2
> iptables -t mangle -A POSTROUTING -o eth2 -d 192.168.3.2 -j 192.168.3.2
> iptables -t mangle -A 192.168.3.2 -o eth2 -s 212.33.91.122 -d
192.168.3.2 -j
> MARK --set-mark 20
> iptables -t mangle -A 192.168.3.2 -o eth2 -s 192.168.3.248 -d
192.168.2.2 -j
> MARK --set-mark 20
> tc filter add dev eth2 protocol ip parent 1:1 prio 1 handle 20 fw flowid
1:
> iptables -t mangle -A 192.168.3.2 -o eth2 -p icmp -d 192.168.3.2 -j MARK
> --set-mark 21
> tc class add dev eth2 parent 1:20 classid 1:21 htb rate 20kbit ceil
128kbit
> burst 15k quantum 1500 prio 3
> tc qdisc add dev eth2 parent 1:21 handle 21: sfq perturb 1
> tc filter add dev eth2 protocol ip parent 1:20 prio 3 handle 21 fw flowid
> 1:21
>
> It return no errors, but i can't see any tc filter on eth2 :(
> I try iproute from htb home site, iproute2 compiled from source with
> patches.
>
> What is wromg ?
> owl-current
> kernel 2.4.22-ow1, 2.4.23, 2.4.23+pom
>
>

Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.