[LARTC] Bridge + TC
Jon Anderson
jon-anderson@rogers.com
Mon, 15 Mar 2004 20:00:46 -0500
Roy Walker wrote:
>I posted out on this problem some time ago and could never get 2.4.25 or any 2.6 kernel to work with TC + Bridging. If anyone has this working and has actually tested it (I am actually just doing IP based iptables filtering from my bridge interface) please let us know what version of iproute you used and what patches you applied and with which version of the kernel.
>
>The older 2.4.2x kernel's seem to work fine for this (I am currently running 2.4.22).
>
>
I just got this working under 2.4.25 on a different test rig (with only
2 interfaces) - installed Debian Testing, patched and compiled a kernel
with relevant stuff, start the bridge, apply tc rules, and *poof*
packets get filtered/classified properly. All within 1.5 hrs.
`tc -s class show dev eth0` shows the right stuff going through the
right filters at the right rate.
Versions/patches:
iproute-20010824-13, from Debian testing
iptables-1.2.9, from Debian testing (Used: iptables -t mangle -A
PREROUTING -i eth1 -j MARK --set-mark 0x4 --> no ebtables needed)
ebtables-brnf-5-vs-2.4.25 patch from ebtables.sourceforge.net
kernel-2.4.25, with above ebtables patch
Hopefully it'll still work with 3 interfaces when I get 2.4.25 on the
original test rig!
Cheers,
jon