Nie jesteś zalogowany.
Jeśli nie posiadasz konta, zarejestruj je już teraz! Pozwoli Ci ono w pełni korzystać z naszego serwisu. Spamerom dziękujemy!

Ogłoszenie

Prosimy o pomoc dla małej Julki — przekaż 1% podatku na Fundacji Dzieciom zdazyć z Pomocą.
Więcej informacji na dug.net.pl/pomagamy/.

Strony: 1

 

#1  2011-08-11 18:22:55

  mihoo_koz - Użytkownik

mihoo_koz
Użytkownik
Zarejestrowany: 2006-09-27

htb problem

Witam

mam problem z htb, nie działa to dobre proszę sprawdzenie ewentualnie prosze o podpowiedzi zależy mi na szybkim działaniu www,skype,youtube i gry niski ping. Po odpalniu skryptu ping np z 2-3 idzie do 9-10, www zaczyna wolno działać.

Kod:

#!/bin/bash
iptables -t mangle -F

DOWNLOAD=32

WYSOKI=7
SREDNI=20
NORMALNY=3
NISKI=2

tc qdisc del root dev eth1
tc qdisc add dev eth1 root handle 1: htb default 13
tc class add dev eth1 parent 1: classid 1:1 htb rate ${DOWNLOAD}Mbit ceil ${DOWNLOAD}Mbit
tc class add dev eth1 parent 1:1 classid 1:10 htb rate ${WYSOKI}Mbit ceil ${WYSOKI}Mbit prio 0
tc class add dev eth1 parent 1:1 classid 1:11 htb rate ${SREDNI}Mbit ceil ${DOWNLOAD}Mbit prio 1
tc class add dev eth1 parent 1:1 classid 1:12 htb rate ${NORMALNY}Mbit ceil ${DOWNLOAD}Mbit prio 3
tc class add dev eth1 parent 1:1 classid 1:13 htb rate ${NISKI}Mbit ceil ${DOWNLOAD}Mbit prio 5

tc qdisc add dev eth1 parent 1:11 handle 110: sfq perturb 10
tc qdisc add dev eth1 parent 1:12 handle 120: sfq perturb 10
tc qdisc add dev eth1 parent 1:13 handle 130: sfq perturb 10

tc filter add dev eth1 parent 1:0 protocol ip prio 1 handle 1 fw classid 1:10
tc filter add dev eth1 parent 1:0 protocol ip prio 2 handle 2 fw classid 1:11
tc filter add dev eth1 parent 1:0 protocol ip prio 3 handle 3 fw classid 1:12
tc filter add dev eth1 parent 1:0 protocol ip prio 4 handle 4 fw classid 1:13

## kolejka 1
iptables -t mangle -A PREROUTING -p icmp -j MARK --set-mark 0x1
iptables -t mangle -A PREROUTING -p icmp -j RETURN
iptables -t mangle -A PREROUTING -m tos --tos Minimize-Delay -j MARK --set-mark 0x1
iptables -t mangle -A PREROUTING -m tos --tos Minimize-Delay -j RETURN
iptables -t mangle -A PREROUTING -p tcp -m tcp --tcp-flags SYN,RST,ACK SYN -j MARK --set-mark 0x1
iptables -t mangle -A PREROUTING -p tcp -m tcp --tcp-flags SYN,RST,ACK SYN -j RETURN

#ssh
iptables -t mangle -A PREROUTING -p tcp -m tcp --sport 60022 -j MARK --set-mark 0x1
iptables -t mangle -A PREROUTING -p tcp -m tcp --sport 60022 -j RETURN
# vip
iptables -t mangle -A PREROUTING -m layer7 --l7proto h323 -j MARK --set-mark 0x1
iptables -t mangle -A PREROUTING -m layer7 --l7proto h323 -j RETURN
iptables -t mangle -A PREROUTING -m layer7 --l7proto sip -j MARK --set-mark 0x1
iptables -t mangle -A PREROUTING -m layer7 --l7proto sip -j RETURN
iptables -t mangle -A PREROUTING -m layer7 --l7proto skypetoskype -j MARK --set-mark 0x1
iptables -t mangle -A PREROUTING -m layer7 --l7proto skypetoskype -j RETURN
iptables -t mangle -A PREROUTING -m layer7 --l7proto skypeout -j MARK --set-mark 0x1
iptables -t mangle -A PREROUTING -m layer7 --l7proto skypeout -j RETURN
# dns
iptables -t mangle -A PREROUTING -m layer7 --l7proto dns -j MARK --set-mark 0x1
iptables -t mangle -A PREROUTING -m layer7 --l7proto dns -j RETURN
#
iptables -t mangle -A PREROUTING -m layer7 --l7proto teamspeak -j MARK --set-mark 0x1
iptables -t mangle -A PREROUTING -m layer7 --l7proto teamspeak -j RETURN
# gry
iptables -t mangle -A PREROUTING -m layer7 --l7proto doom3 -j MARK --set-mark 0x1
iptables -t mangle -A PREROUTING -m layer7 --l7proto doom3 -j RETURN
iptables -t mangle -A PREROUTING -m layer7 --l7proto quake1 -j MARK --set-mark 0x1
iptables -t mangle -A PREROUTING -m layer7 --l7proto quake1 -j RETURN
iptables -t mangle -A PREROUTING -m layer7 --l7proto halflife2-deathmatch -j MARK --set-mark 0x1
iptables -t mangle -A PREROUTING -m layer7 --l7proto halflife2-deathmatch -j RETURN
iptables -t mangle -A PREROUTING -m layer7 --l7proto battlefield2142 -j MARK --set-mark 0x1
iptables -t mangle -A PREROUTING -m layer7 --l7proto battlefield2142 -j RETURN
iptables -t mangle -A PREROUTING -m layer7 --l7proto battlefield2 -j MARK --set-mark 0x1
iptables -t mangle -A PREROUTING -m layer7 --l7proto battlefield2 -j RETURN
iptables -t mangle -A PREROUTING -m layer7 --l7proto battlefield1942 -j MARK --set-mark 0x1
iptables -t mangle -A PREROUTING -m layer7 --l7proto battlefield1942 -j RETURN
iptables -t mangle -A PREROUTING -m layer7 --l7proto counterstrike-source -j MARK --set-mark 0x1
iptables -t mangle -A PREROUTING -m layer7 --l7proto counterstrike-source -j RETURN
iptables -t mangle -A PREROUTING -m layer7 --l7proto quake-halflife -j MARK --set-mark 0x1
iptables -t mangle -A PREROUTING -m layer7 --l7proto quake-halflife -j RETURN
iptables -t mangle -A PREROUTING -m layer7 --l7proto worldofwarcraft -j MARK --set-mark 0x1
iptables -t mangle -A PREROUTING -m layer7 --l7proto worldofwarcraft -j RETURN

## kolejka 2
#iptables -t mangle -A PREROUTING -m layer7 --l7proto http -j MARK --set-mark 0x2
#iptables -t mangle -A PREROUTING -m layer7 --l7proto http -j RETURN
iptables -t mangle -A PREROUTING -m layer7 --l7proto ssl -j MARK --set-mark 0x2
iptables -t mangle -A PREROUTING -m layer7 --l7proto ssl -j RETURN
iptables -t mangle -A PREROUTING -p tcp -m tcp --sport 80 -j MARK --set-mark 0x1
iptables -t mangle -A PREROUTING -p tcp -m tcp --sport 80 -j RETURN
#iptables -t mangle -A PREROUTING -m layer7 --l7proto pop3 -j MARK --set-mark 0x2
#iptables -t mangle -A PREROUTING -m layer7 --l7proto pop3 -j RETURN
#iptables -t mangle -A PREROUTING -m layer7 --l7proto smtp -j MARK --set-mark 0x2
#iptables -t mangle -A PREROUTING -m layer7 --l7proto smtp -j RETURN

## kolejka 3
iptables -t mangle -A PREROUTING -m layer7 --l7proto youtube -j MARK --set-mark 0x3
iptables -t mangle -A PREROUTING -m layer7 --l7proto youtube -j RETURN
iptables -t mangle -A PREROUTING -m tos --tos Minimize-Cost -j MARK --set-mark 0x3
iptables -t mangle -A PREROUTING -m tos --tos Minimize-Cost -j RETURN
#iptables -t mangle -A PREROUTING -m layer7 --l7proto ftp -j MARK --set-mark 0x3
#iptables -t mangle -A PREROUTING -m layer7 --l7proto ftp -j RETURN

## klasa 4
iptables -t mangle -A PREROUTING -m tos --tos Maximize-Throughput -j MARK --set-mark 0x4
iptables -t mangle -A PREROUTING -m tos --tos Maximize-Throughput -j RETURN
#p2p
iptables -t mangle -A PREROUTING -m layer7 --l7proto ares  -j MARK --set-mark 0x4
iptables -t mangle -A PREROUTING -m layer7 --l7proto ares -j RETURN
iptables -t mangle -A PREROUTING -m layer7 --l7proto gnutella -j MARK --set-mark 0x4
iptables -t mangle -A PREROUTING -m layer7 --l7proto gnutella -j RETURN
iptables -t mangle -A PREROUTING -m layer7 --l7proto fasttrack -j MARK --set-mark 0x4
iptables -t mangle -A PREROUTING -m layer7 --l7proto fasttrack -j RETURN
iptables -t mangle -A PREROUTING -m layer7 --l7proto bittorrent -j MARK --set-mark 0x4
iptables -t mangle -A PREROUTING -m layer7 --l7proto bittorrent -j RETURN
iptables -t mangle -A PREROUTING -m layer7 --l7proto edonkey -j MARK --set-mark 0x4
iptables -t mangle -A PREROUTING -m layer7 --l7proto edonkey -j RETURN
iptables -t mangle -A PREROUTING -m layer7 --l7proto directconnect -j MARK --set-mark 0x4
iptables -t mangle -A PREROUTING -m layer7 --l7proto directconnect -j RETURN

#reszta
iptables -t mangle -A PREROUTING -j MARK --set-mark 0x4

Ostatnio edytowany przez mihoo_koz (2011-08-11 18:24:27)

Offline

 

 

Strony: 1

Stopka forum

Powered by PunBB
© Copyright 2002–2005 Rickard Andersson
Możesz wyłączyć AdBlock — tu nie ma reklam ;-)