[LARTC] Optimization on Bandwidth Management-L7 filtering?
lee weejin
leeweejin at hotmail.com
Thu Jul 6 18:35:50 CEST 2006
>>>Try marking only first/new packages/connections, that will be analyzed by
>>>layer-7 filter
Question: Is it layer-7 filtering able to perform marking the first/new
packages/connections? May I know how to do that? Thanks.
>From: Andraz Sraka <a at aufbix.org>
>To: lee weejin <leeweejin at hotmail.com>
>CC: lartc at mailman.ds9a.nl
>Subject: Re: [LARTC] Optimization on Bandwidth Management-L7 filtering?
>Date: Mon, 26 Jun 2006 19:14:26 +0200
>
>re
>
>On Sun, 2006-06-11 at 04:32 +0000, lee weejin wrote:
> > Since all the incoming packets was checked one by one-(it is time
> > consuming and will cause the processing delay if it is handling more
> > than 50 PC at a time), thus i am thinking that is there any way to
> > have a random checking on incoming packets ? Scipt or tools? so that
> > it wont check all the incoming packets one follow by another one.
>********************************************************************************
>Try marking only first/new packages/connections, that will be analyzed
>by layer-7 filter in another chain and there do whole connecting mark
>(-j CONNMARK --mark XX). Those mark packages/connections can be then
>picked up by 'tc' for prioritizing traffic or netfilter for
>rejecting/dropping/.. traffic.
>
>regards,
> Andraz
>
>--
>BOFH excuse #62:
>
>need to wrap system in aluminum foil to fix problem
><< signature.asc >>
><< smime.p7s >>
More information about the LARTC
mailing list