Thread: [bwm-tools-tech] Snapshot: 200505041033
Brought to you by:
nkukard
Menu
▾
▴
bwm-tools-tech
|
From: Nigel K. <nk...@lb...> - 2005-05-05 06:43:01
Attachments:
signature.asc
|
This snapshot includes fixes for the rrd.h problem when building bwmtools on a system which doesn't have the rrdtool headers installed. Also... what is even better, NO rrdtool files are installed by bwmtools. bwmtools is built statically against the rrdtool source and installed. By the way if anyone was wondering rrdtool 1.2.0 is NOT supported yet, there were a few API changes made which makes it incompatible with bwmtools. The second I have a chance I'll update bwmtools to build against rrdtool 1.2.0. Kind regards Nigel Kukard (Author) |
|
From: Victor Y. <ye...@nd...> - 2005-05-12 08:56:08
|
i followed the example as in BWM documentation. I got a "Failed to =
ACCEPT packet" error from bwmd,
when i run bwmd and ftp connection at the same time. Why?
victor
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3Dquote=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D
Imagine you would like your linux router to rate limit all traffic from =
and to IP 192.168.1.100, an example of this can be found below...=20
Configuring iptables=20
iptables -t filter -A FORWARD -m mark ! --mark 0x0 -j =
QUEUE
iptables -t mangle -A FORWARD -s 192.168.1.100 -j MARK =
--set-mark 100
iptables -t mangle -A FORWARD -d 192.168.1.100 -j MARK =
--set-mark 101
=20
Configuring bwmd=20
<firewall>
<global>
<modules>
<load name=3D"ip_queue"/>
</modules>
</global>
=20
# Traffic flows
<traffic>
<flow name=3D"pc_in" max-rate=3D"64000" =
report-timeout=3D"60"
nfmark=3D"100" />
<flow name=3D"pc_out" max-rate=3D"64000" =
report-timeout=3D"60"
nfmark=3D"101" />
</traffic>
</firewall>
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3Dend =
quote=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D
|
|
From: Nigel K. <nk...@lb...> - 2005-05-12 09:02:18
Attachments:
signature.asc
|
Could you give us the following information plz... 1. Version of BWM Tools you're using 2. Your kernel version 3. iptables version 4. distribution & version 5. Pasted error from BWM Tools Regards Nigel Victor Yeo wrote: > i followed the example as in BWM documentation. I got a "Failed to > ACCEPT packet" error from bwmd, > when i run bwmd and ftp connection at the same time. Why? > victor > > ==================quote====================================================== > Imagine you would like your linux router to rate limit all traffic > from and to IP 192.168.1.100, an example of this can be found below... > > Configuring iptables > > > iptables -t filter -A FORWARD -m mark ! --mark 0x0 -j QUEUE > iptables -t mangle -A FORWARD -s 192.168.1.100 -j MARK > --set-mark 100 > iptables -t mangle -A FORWARD -d 192.168.1.100 -j MARK > --set-mark 101 > > Configuring bwmd > > > <firewall> > <global> > <modules> > <load name="ip_queue"/> > </modules> > </global> > > # Traffic flows > <traffic> > <flow name="pc_in" max-rate="64000" > report-timeout="60" > nfmark="100" /> > <flow name="pc_out" max-rate="64000" > report-timeout="60" > nfmark="101" /> > </traffic> > </firewall> > ==================end > quote====================================================== > -- Nigel Kukard, PhD CompSc (Chief Executive Officer) Linux Based Systems Design Web: www.lbsd.net Email: nk...@lb... Tel: (+27) 023 349 8000 Cell: (+27) 082 333 3723 Fax: (+27) 023 349 1395 Support: 086 747 7600 Address: LIGT House, 2 Klipdrift Rd, Rawsonville Linux Systems Design & Technology Solutions The best language to use is the language that was designed for what you want to use it for. ===================================================================== Disclaimer ---------- The contents of this message and any attachments are intended solely for the addressee's use and may be legally privileged and/or confidential information. This message may not be retained, distributed, copied or used if you are not he addressee of this message. If this message was sent to you in error, please notify the sender immediately by reply e-mail and then destroy the message and any copies thereof. Opinions, conclusions and other information in this message may be personal to the sender and is not that of Linux Based Systems Design, LinuxRulz or any of it's subsideries, associated companies or principals and is therefore not endorsed by Linux Based Systems Design or LinuxRulz. Due to e-maill communication being insecure, Linux Based Systems Design and LinuxRulz do not guarantee confidentiality, security, accuracy or performance of the e-mail. Any liability for viruses is excluded to the fullest extent. |
|
From: Victor Y. <ye...@nd...> - 2005-05-12 09:58:23
|
See my answers below. thanks for any reply that might help.
victor
Could you give us the following information plz...
1. Version of BWM Tools you're using
[Vic] bwm-0.2.1
2. Your kernel version
[Vic] linux-2.4.20-8custom
3. iptables version
[Vic] v1.2.7.a
4. distribution & version
[Vic] Redhat 9
5. Pasted error from BWM Tools
[Vic] When i run bwmd in one window, and open ftp connection in =
another to "192.168.1.100", bwmd gives this error continuously:
Failed to ACCEPT packet
Failed to ACCEPT packet
Failed to ACCEPT packet
.................
More info here:
192.168.1.100 is a PC on the same subnet.
i added in the iptable rules :
iptables -t mangle -A INPUT -s 192.168.1.100 -j MARK =
--set-mark 102
iptables -t mangle -A INPUT -d 192.168.1.100 -j MARK =
--set-mark 102
iptables -t filter -A INPUT -m mark ! --mark 0x0 -j QUEUE
and a new traffic flow to firewall.xml
<traffic>
<flow name=3D"pc_in" max-rate=3D"64000" =
report-timeout=3D"60"
nfmark=3D"100" />
<flow name=3D"pc_out" max-rate=3D"64000" =
report-timeout=3D"60"
nfmark=3D"101" />
<flow name=3D"pc_new" max-rate=3D"64000" =
report-timeout=3D"60"
nfmark=3D"102" />
</traffic>
|
|
From: go0ogl3 <go...@gm...> - 2005-05-12 10:49:50
|
Maybe you have a DROP policy or some others iptables filters. Make a check to be sure. I'm out of ideeas for now... go0ogl3 On 5/13/05, Victor Yeo <ye...@nd...> wrote: > See my answers below. thanks for any reply that might help. > =20 > victor > =20 > Could you give us the following information plz... >=20 > 1. Version of BWM Tools you're using > [Vic] bwm-0.2.1 >=20 > 2. Your kernel version > [Vic] linux-2.4.20-8custom >=20 > 3. iptables version > [Vic] v1.2.7.a >=20 > 4. distribution & version > [Vic] Redhat 9 >=20 > 5. Pasted error from BWM Tools > [Vic] When i run bwmd in one window, and open ftp connection in another t= o > "192.168.1.100", bwmd gives this error continuously: > Failed to ACCEPT packet > Failed to ACCEPT packet > Failed to ACCEPT packet > ................. > =20 > More info here: > =20 > 192.168.1.100 is a PC on the same subnet. > =20 > i added in the iptable rules : > =20 > iptables -t mangle -A INPUT -s 192.168.1.100 -j MARK --set-mark = 102 > iptables -t mangle -A INPUT -d 192.168.1.100 -j MARK --set-mark = 102 > iptables -t filter -A INPUT -m mark ! --mark 0x0 -j QUEUE > and a new traffic flow to firewall.xml >=20 > <traffic> > <flow name=3D"pc_in" max-rate=3D"64000" > report-timeout=3D"60" > nfmark=3D"100" /> > <flow name=3D"pc_out" max-rate=3D"64000" > report-timeout=3D"60" > nfmark=3D"101" /> > <flow name=3D"pc_new" max-rate=3D"64000" > report-timeout=3D"60" > nfmark=3D"102" /> >=20 > </traffic> > |
×
Want the latest updates on software, tech news, and AI?
Get latest updates about software, tech news, and AI from SourceForge directly in your inbox once a month.
Thanks for helping keep SourceForge clean.
X