[LARTC] Help please with tc and iptables mark
Andy Furniss
andy.furniss at dsl.pipex.com
Mon Apr 4 15:31:52 CEST 2005
Adrian Turcu wrote:
> Hello list members,
>
> Finaly I'm here after a week of trying to subscribe to this list... pfew...
>
> Anyway... I have a rather strange problem with tc. I am trying to police the
> ingress traffic into my network using the iptables MARK feature (in mangle
> table, PREROUTING) but it seems that tc filters ignore this marks and they
> don't work at all for me. Let me explain a bit more in detail:
There is alot of work going on with tc at the moment - There are/will be
lots more matches and the ability to run iptables commands from filters.
>
> I have a server behind my linux-firewall box (firewall is with 2.6.10 kernel
> custom build,
I think with 2.6.10 you can still get the behaviour you want if you
don't select packet action in Qos and/or fair queuing of config - you
get to select a different policer then.
CONFIG_NET_CLS_POLICE is the one you want if the other doesn't disappear
de select it aswell.
Andy.
More information about the LARTC
mailing list