[LARTC] big problem with HTB/CBQ and CPU for more than 1.700
customers
Marek Kierdelewicz
marek at piasta.pl
Sat May 26 16:22:10 CEST 2007
>Hello,
Hi there!
>iptables -t mangle -A POSTROUTING --dest x.x.x.x -o eth0 -j CLASSIFY
>--set-class 1:5
>iptables -t mangle -A FORWARD --src x.x.x.x -o eth1 -j CLASSIFY
>--set-class 1:5
3k iptables rules strike me as something suicidaly slow.
Try using tc hashing filters for traffic classification as described
here:
http://lartc.org/howto/lartc.adv-filter.hashing.html
If you use private addresses and NAT then you'll need IFB
(http://linux-net.osdl.org/index.php/IFB) to shape upload per client
with u32 hashing filters.
Hope that helps.
pozdrawiam,
Marek Kierdelewicz
KoBa ISP
More information about the LARTC
mailing list