[LARTC] htb script
jayesh
jayesh@bol.co.tz
Sat, 8 Jan 2005 12:25:36 +0300
This is a multi-part message in MIME format.
------=_NextPart_000_000F_01C4F57D.281AD220
Content-Type: multipart/alternative;
boundary="----=_NextPart_001_0010_01C4F57D.281AD220"
------=_NextPart_001_0010_01C4F57D.281AD220
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
dear all=20
iam newbie , i have 256 kbits of down link and 64 kbits of up link iam =
using squid and htb i have got this while browsing the net , there are =
some few issues i need help=20
while running the script i want browsing to be as fast as possible , =
uplink especially kaaza should not eat my band width.=20
eth1 got public ip address and eth0 is internal with network =
10.0.0.0/24 iam also using nat , how can i make squid incoporates with =
htb (squid uses 3128)
here is my script=20
please help with clarification=20
regards
Dealing in Computers, Software and Peripherals=20
=20
Jayesh Chandran Compucat Technologies
(An associate of Milan Cable Television)
1.Goliondoi Road, Arusha.
2.Ground Floor, Serengeti Wing,
PB No. 10367, AICC, Arusha, Tanzania =20
jayesh@bol.co.tz tel:=20
fax:=20
mobile: +255 27 2502660
+255 27 2504527
+255 748 586169 =20
=20
=20
=20
=20
Add me to your address book... Want a signature like this?=20
=20
------=_NextPart_001_0010_01C4F57D.281AD220
Content-Type: text/html;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=3DContent-Type content=3D"text/html; =
charset=3Diso-8859-1">
<META content=3D"MSHTML 6.00.2900.2523" name=3DGENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=3D#ffffff>
<DIV><FONT face=3DArial size=3D2>dear all </FONT></DIV>
<DIV><FONT face=3DArial size=3D2>iam newbie , i have 256 kbits of =
down link=20
and 64 kbits of up link iam using squid and htb i have got =
this while=20
browsing the net , there are some few issues i need help </FONT></DIV>
<DIV><FONT face=3DArial size=3D2>while running the script i want =
browsing to=20
be as fast as possible , uplink especially kaaza should not eat my band =
width.=20
</FONT></DIV>
<DIV><FONT face=3DArial size=3D2>eth1 got public ip address and =
eth0 is=20
internal with network 10.0.0.0/24 iam also using nat , how can =
i make=20
squid incoporates with htb (squid uses 3128)</FONT></DIV>
<DIV><FONT face=3DArial size=3D2>here is my script </FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>please help with clarification =
</FONT></DIV>
<DIV><FONT face=3DArial size=3D2>regards</FONT></DIV>
<DIV>
<STYLE>
<!--
A.psl {
TEXT-DECORATION:none; COLOR: #0000ff
}
A:hover {
TEXT-DECORATION: underline
}
A.psl:hover {
COLOR: #999999
}
.noro {
FONT-SIZE: 11pt; COLOR: #0000ff; FONT-FAMILY: Times New =
Roman,Arial,fixed
}
.tiny {
FONT-SIZE: 1pt
}
.logotext {
TEXT-DECORATION: none; FONT-SIZE: 10pt; COLOR: #ffffff; FONT-FAMILY: =
Verdana,Arial,fixed
}
A.brand {
COLOR: #777777; FONT-SIZE: 7pt; FONT-FAMILY: Times New =
Roman,Arial,fixed; TEXT-DECORATION: none
}
-->
</STYLE>
<TABLE cellSpacing=3D0 cellPadding=3D0 width=3D600 border=3D0>
<TBODY>
<TR>
<TD>
<TABLE height=3D80 cellSpacing=3D0 cellPadding=3D0 width=3D600 =
align=3Dright=20
border=3D0>
<TBODY>
<TR>
<TD class=3Dtiny>
<TABLE=20
style=3D"BORDER-RIGHT: #666666 1px solid; BORDER-TOP: =
#666666 1px solid; BORDER-LEFT: #666666 1px solid; BORDER-BOTTOM: =
#666666 1px solid"=20
height=3D"100%" cellSpacing=3D0 width=3D600 =
bgColor=3D#effbea>
<TBODY>
<TR bgColor=3D#3992d9>
<TD class=3Dtiny width=3D"100%" height=3D1>
<TABLE cellSpacing=3D0 cellPadding=3D1 width=3D"100%" =
border=3D0>
<TBODY>
<TR>
<TD class=3Dlogotext style=3D"PADDING-LEFT: =
5px"></TD>
<TD class=3Dnoro=20
style=3D"PADDING-RIGHT: 5px; FONT-SIZE: 10pt; =
COLOR: #ffffff"=20
align=3Dright>Dealing in Computers, Software and=20
Peripherals</TD></TR></TBODY></TABLE></TD>
<TD class=3Dtiny></TD></TR>
<TR>
<TD colSpan=3D2>
<TABLE height=3D"100%" cellSpacing=3D2 width=3D"100%" =
align=3Dright=20
border=3D0>
<TBODY>
<TR style=3D"PADDING-BOTTOM: 4px" height=3D1>
<TD class=3Dnoro style=3D"PADDING-LEFT: 4px"=20
vAlign=3Dtop><B>Jayesh Chandran</B> </TD>
<TD class=3Dnoro style=3D"PADDING-RIGHT: 4px" =
vAlign=3Dtop=20
align=3Dright><B>Compucat Technologies</B><BR>(An=20
associate of Milan Cable =
Television)<BR>1.Goliondoi=20
Road, Arusha.<BR>2.Ground Floor, Serengeti =
Wing,<BR>PB=20
No. 10367, AICC, Arusha, Tanzania </TD></TR>
<TR height=3D1>
<TD class=3Dnoro=20
style=3D"PADDING-LEFT: 4px; PADDING-BOTTOM: 4px"=20
vAlign=3Dbottom><A class=3Dpsl=20
href=3D"mailto:jayesh@bol.co.tz"=20
target=3D_blank>jayesh@bol.co.tz</A> </TD>
<TD class=3Dnoro=20
style=3D"PADDING-RIGHT: 4px; PADDING-BOTTOM: 4px"=20
vAlign=3Dbottom align=3Dright>
<TABLE cellSpacing=3D0 align=3Dright border=3D0>
<TBODY>
<TR>
<TD class=3Dnoro noWrap align=3Dright>tel: =
<BR>fax:=20
<BR>mobile: </TD>
<TD class=3Dnoro style=3D"PADDING-LEFT: 4px" =
noWrap=20
align=3Dright>+255 27 2502660<BR>+255 27=20
2504527<BR>+255 748 586169=20
=
</TD></TR></TBODY></TABLE></TD></TR></TBODY></TABLE></TD></TR></TBODY></T=
ABLE></TD>
<TD></TD></TR></TBODY></TABLE></TD></TR>
<TR>
<TD class=3Dtiny colSpan=3D2>
<TABLE cellSpacing=3D0 cellPadding=3D0 width=3D"100%">
<TBODY>
<TR>
<TD align=3Dleft><A class=3Dbrand=20
=
href=3D"https://www.plaxo.com/add_me?u=3D21475269546&v0=3D843353&=
k0=3D1757891688"=20
target=3D_blank><I>Add me to your address =
book...</I></A></TD>
<TD align=3Dright><A class=3Dbrand =
href=3D"http://www.plaxo.com/signature"=20
target=3D_blank><I>Want a signature like=20
=
this?</I></A></TD></TR></TBODY></TABLE></TD></TR></TBODY></TABLE></DIV></=
BODY></HTML>
------=_NextPart_001_0010_01C4F57D.281AD220--
------=_NextPart_000_000F_01C4F57D.281AD220
Content-Type: text/plain;
name="rc.txt"
Content-Transfer-Encoding: quoted-printable
Content-Disposition: attachment;
filename="rc.txt"
#!/bin/bash=0A=
TC=3D/sbin/tc=20
IPTABLES=3D/sbin/iptables
$TC qdisc del dev eth0 root 2> /dev/null > /dev/null
$TC qdisc del dev eth1 root 2> /dev/null > /dev/null=0A=
$TC qdisc del dev eth1 ingress 2> /dev/null > /dev/null
$IPTABLES -F POSTROUTING -t mangle=0A=
$TC qdisc add dev eth0 root handle 1: htb default 50 r2q 2
$TC class add dev eth0 parent 1: classid 1:2 htb rate 248Kbit burst 35k
$TC class add dev eth0 parent 1:2 classid 1:10 htb rate 220Kbit ceil =
240Kbit burst 25k prio 0
$TC class add dev eth0 parent 1:2 classid 1:30 htb rate 28Kbit ceil =
28Kbit burst 10k prio 1=20
$TC class add dev eth0 parent 1: classid 1:60 htb rate 1Kbit ceil =
100Mbit prio 1
$TC qdisc add dev eth0 parent 1:10 handle 11: sfq perturb 10
$TC qdisc add dev eth0 parent 1:30 handle 33: sfq perturb 10
$IPTABLES -t mangle -A POSTROUTING -o eth0 -s ! 10.0.0.0/24 -j MARK =
--set-mark 3
$IPTABLES -t mangle -A POSTROUTING -o eth0 -s ! 10.0.0.0/24 -p tcp =
--sport 80 -j MARK --set-mark 1
$IPTABLES -t mangle -A POSTROUTING -o eth0 -s ! 10.0.0.0/24 -p tcp =
--sport 443 -j MARK --set-mark 1
$IPTABLES -t mangle -A POSTROUTING -o eth0 -s ! 10.0.0.0/24 -p tcp =
--sport 22 -j MARK --set-mark 1
$IPTABLES -t mangle -A POSTROUTING -o eth0 -s ! 10.0.0.0/24 -p tcp =
--sport 21 -j MARK --set-mark 1
$IPTABLES -t mangle -A POSTROUTING -o eth0 -s ! 10.0.0.0/24 -p tcp =
--sport 53 -j MARK --set-mark 1 =0A=
$IPTABLES -t mangle -A POSTROUTING -o eth0 -s ! 10.0.0.0/24 -p udp =
--sport 53 -j MARK --set-mark 1=20
$IPTABLES -t mangle -A POSTROUTING -o eth0 -s ! 10.0.0.0/24 -p tcp =
--sport 110 -j MARK --set-mark 1
$IPTABLES -t mangle -A POSTROUTING -o eth0 -s ! 10.0.0.0/24 -p tcp =
--sport 5190 -j MARK --set-mark 1
$IPTABLES -t mangle -A POSTROUTING -o eth0 -s ! 10.0.0.0/24 -p tcp =
--sport 6661:6669 -j MARK --set-mark 1=20
$IPTABLES -t mangle -A POSTROUTING -o eth0 -s ! 10.0.0.0/24 -p tcp =
--sport 3128 -j MARK --set-mark 1
$IPTABLES -t mangle -A POSTROUTING -o eth0 -s ! 10.0.0.0/24 -p udp =
--sport 3128 -j MARK --set-mark 1#$IPTABLES -t mangle -A POSTROUTING -o =
eth0 -s ! 10.0.0.0/24 -p icmp -j MARK --set-mark 1=0A=
=20
$TC filter add dev eth0 parent 1:0 protocol ip handle 1 fw flowid 1:10
$TC filter add dev eth0 parent 1:0 protocol ip handle 3 fw flowid 1:30=0A=
$TC filter add dev eth0 parent 1:0 protocol ip prio 1 u32 \
match ip protocol 0x6 0xff \
match ip tos 0x10 0xff \
flowid 1:60
=20
##############################
$TC qdisc add dev eth1 root handle 1: htb default 20
$TC class add dev eth1 parent 1: classid 1:1 htb rate 62Kbit burst 35k
$TC class add dev eth1 parent 1:1 classid 1:10 htb rate 40Kbit ceil =
60Kbit burst 25k prio 1
$TC class add dev eth1 parent 1:1 classid 1:20 htb rate 15Kbit ceil =
55Kbit burst 10k prio 2
$TC class add dev eth1 parent 1:1 classid 1:30 htb rate 7Kbit ceil =
28Kbit burst 5k prio 3
$TC qdisc add dev eth1 parent 1:10 handle 10: sfq perturb 10
$TC qdisc add dev eth1 parent 1:20 handle 20: sfq perturb 10
$TC qdisc add dev eth1 parent 1:30 handle 30: sfq perturb 10
$TC filter add dev eth1 parent 1:0 protocol ip prio 10 u32 \
match ip tos 0x10 0xff flowid 1:10
$TC filter add dev eth1 parent 1: protocol ip prio 10 u32 \
match ip protocol 6 0xff \
match u8 0x05 0x0f at 0 \
match u16 0x0000 0xffc0 at 2 \
match u8 0x10 0xff at 33 \
flowid 1:10=0A=
=20
$IPTABLES -t mangle -A POSTROUTING -o eth1 -s ! 10.0.0.0/24 -j MARK =
--set-mark 12
# $IPTABLES -t mangle -A POSTROUTING -o eth1 -s ! 10.0.0.0/24 -p icmp -j =
MARK --set-mark 11
$IPTABLES -t mangle -A POSTROUTING -o eth1 -s ! 10.0.0.0/24 -p tcp =
--sport 22 -j MARK --set-mark 11
$IPTABLES -t mangle -A POSTROUTING -o eth1 -s ! 10.0.0.0/24 -p tcp =
--sport 80 -j MARK --set-mark 11
$IPTABLES -t mangle -A POSTROUTING -o eth1 -s ! 10.0.0.0/24 -p tcp =
--dport 80 -j MARK --set-mark 11
$IPTABLES -t mangle -A POSTROUTING -o eth1 -s ! 10.0.0.0/24 -p tcp =
--dport 21 -j MARK --set-mark 11
$IPTABLES -t mangle -A POSTROUTING -o eth1 -s ! 10.0.0.0/24 -p tcp =
--dport 20 -j MARK --set-mark 11
$IPTABLES -t mangle -A POSTROUTING -o eth1 -s ! 10.0.0.0/24 -p tcp =
--sport 3128 -j MARK --set-mark 11
$IPTABLES -t mangle -A POSTROUTING -o eth1 -s ! 10.0.0.0/24 -p tcp =
--dport 3128 -j MARK --set-mark 11
$IPTABLES -t mangle -A POSTROUTING -o eth1 -s 10.0.0.0/24 -j MARK =
--set-mark 13
=20
$IPTABLES -t mangle -A POSTROUTING -o eth1 -s 10.0.0.0/24 -p tcp --dport =
80 -j MARK --set-mark 11
$IPTABLES -t mangle -A POSTROUTING -o eth1 -s 10.0.0.0/24 -p tcp =
--dport 443 -j MARK --set-mark 11
$IPTABLES -t mangle -A POSTROUTING -o eth1 -s 10.0.0.0/24 -p tcp =
--dport 53 -j MARK --set-mark 11
$IPTABLES -t mangle -A POSTROUTING -o eth1 -s 10.0.0.0/24 -p udp =
--dport 53 -j MARK --set-mark 11
$IPTABLES -t mangle -A POSTROUTING -o eth1 -s 10.0.0.0/24 -p tcp =
--dport 22 -j MARK --set-mark 11
$IPTABLES -t mangle -A POSTROUTING -o eth1 -s 10.0.0.0/24 -p tcp =
--dport 23 -j MARK --set-mark 11
$IPTABLES -t mangle -A POSTROUTING -o eth1 -s 10.0.0.0/24 -p tcp =
--dport 21 -j MARK --set-mark 11
$IPTABLES -t mangle -A POSTROUTING -o eth1 -s 10.0.0.0/24 -p tcp =
--dport 25 -j MARK --set-mark 11
$IPTABLES -t mangle -A POSTROUTING -o eth1 -s 10.0.0.0/24 -p tcp =
--dport 110 -j MARK --set-mark 11
$IPTABLES -t mangle -A POSTROUTING -o eth1 -s 10.0.0.0/24 -p tcp =
--dport 5190 -j MARK --set-mark 11
$IPTABLES -t mangle -A POSTROUTING -o eth1 -s 10.0.0.0/24 -p tcp =
--dport 6661:6669 -j MARK --set-mark 11
$IPTABLES -t mangle -A POSTROUTING -p icmp -j MARK --set-mark 11=0A=
$IPTABLES -t mangle -A POSTROUTING -o eth0 -s 10.0.0.0/24 -p udp --dport =
3128 -j MARK --set-mark 11
$IPTABLES -t mangle -A POSTROUTING -o eth0 -s 10.0.0.0/24 -p tcp --dport =
3128 -j MARK --set-mark 11
#$IPTABLES -t mangle -A POSTROUTING -p icmp -j RETURN
$TC filter add dev eth1 parent 1:0 protocol ip handle 11 fw flowid 1:10
$TC filter add dev eth1 parent 1:0 protocol ip handle 12 fw flowid 1:20
$TC filter add dev eth1 parent 1:0 protocol ip handle 13 fw flowid 1:30
------=_NextPart_000_000F_01C4F57D.281AD220--