[LARTC] simple questions about imq
Tóth Nándor
nug@sch.bme.hu
Mon, 31 Jan 2005 17:59:24 +0100
Hi!
Andre Correa wrote:
>
> Cool Toth, please let us know if you make it work. Just take care to
> hook IMQ in the right place if you are doing NAT. You can choose to hook
> it after or before NAT.
Where can i set it?
Can you answer my questions below?
I will document these things, if i managed to do it.
--
Udv,
Nandor
> Tóth Nándor wrote:
>
>> Hi!
>>
>> I have read all informations i could find, but some things are still
>> not clear.
>>
>> My setup is:
>> ---INTERNET1(eth0)-\ /- Local net1 (eth2)
>> GW
>> ---INTERNET2(eth1)-/ \- Local net2 (eth3)
>>
>> I have NAT and a working setup using HTB,SFQ, classifying with the
>> iptables -j CLASSIFY way. I shape only the traffic coming from the
>> internet heading to the intranet.
>>
>> I would like to have a configuration like this:
>> ---INTERNET1(eth0)-\ /- Local net1 (eth2)
>> GW--imq0
>> ---INTERNET2(eth1)-/ \- Local net2 (eth3)
>>
>> I think it can be done this way:
>> iptables -t mangle -A PREROUTING -i eth0 -j IMQ --todev 0
>> iptables -t mangle -A PREROUTING -i eth1 -j IMQ --todev 0
>>
>> But it would include traffic heading to the gateway directly, wouldn't
>> it? Can i put these rules to the POSTROUTING chain?
>>
>> And i can still have my CLASSIFY targets in the POSTROUTING chain,
>> because IMQ queing will happen after it according to
>> http://lartc.org/howto/lartc.imq.html.
>> So for example:
>> $IPTABLES -t mangle -A POSTROUTING -o $eth2 ... -j CLASSIFY
>> --set-class 1:30
>> $IPTABLES -t mangle -A POSTROUTING -o $eth3 ... -j CLASSIFY
>> --set-class 1:30
>> $IPTABLES -t mangle -A POSTROUTING -o $eth2 ... -j RETURN
>> $IPTABLES -t mangle -A POSTROUTING -o $eth3 ... -j RETURN
>>
>> If i managed to do this, i promise, i will document it to the imq wiki.
>>
>> Any advice/help is appreciated!
>>
>