Re: PPP, Poptop and tc (Traffic Shaping)

From: Andy Furniss (firstname.lastname_at_dsl.pipex.com)
Date: 03/26/05 

Date: Sat, 26 Mar 2005 15:51:48 +0000

Christian Reiter wrote:
> Hi!
>
> I have to shape up- and down-stream traffic on my Linux
> Router for the subnet which is behind the router.
>
> Six different combinations of up/download bandwiths should
> be applied. The speed should be assigned by the clients ip address.
>
> Example:
> 10.1.1.0 Subnet gets 128/128 KBit/Sec.
> 10.1.2.0 Subnet gets 512/512 KBit/Sec.
> 10.1.3.0 Subnet gets 1024/512 KBit/Sec. and so on...
>
> This are the interfaces on the linux router box:
>
> eth1 Connect to the Internet
> eth0 Listens for incoming pptp connections
> ppp0 to pppN Are the Endpoints for the PPTP Tunnels
> For each new PPTP Tunnel a new pppN interface
> is created ppp0, ppp1, ppp2 ... for example
>
> It is possible to shape download speed for the clients by applying
> tc/tcng rules a the pppN interface.
>
> I didn't found a way to apply the clients upload rate, because
> on the eth1 interface (where the packets leave the system on their
> way into the internet) i can not see the clients ip anymore (because of
> nat)

So you are doing NAT without iptables ?

>
> I know this can be done using an imq device, but imq need patching
> and recompiling the kernel as well as the iptables command.
>
> Is there any other way to do a kind of bandwith limitation without
> the need of recompiling the kernel and iptables?

You could attach policers to the pppX interfaces - not quite shaping as
they measure rate and drop rather than queue.

If you didn't mind just iptables you could just use it to mark the
packets in forward and then shape on eth1 using the marks.

Soon you will be able to use the dummy device to shape so you won't need
IMQ or iptables - you'll need to patch if you want it now, though.

Andy.

>
> I use the following software-projects on my system (fedora core 3):
>
> ppp-2.4.3
> poptop-1.2.1 (the pptpd)
> freeradius-1.0.2 (the radius-server)
> iptables-1.2.11
>
> Thanks in advice for your help!
>
>
> chris
>
>
>

Relevant Pages

  • PPP, Poptop and tc (Traffic Shaping)
    ... I have to shape up- and down-stream traffic on my Linux ... Router for the subnet which is behind the router. ... Six different combinations of up/download bandwiths should ... The speed should be assigned by the clients ip address. ...
    (comp.os.linux.networking)
  • RE: DHCP: not reached by clients
    ... Based on my research, we do not need to configure the DHCP or DNS on SBS, ... Run the Change Server IP address wizard to configure the SBS IP: ... One network adapter - manual router connection to broadband ... DHCP on router and other clients. ...
    (microsoft.public.windows.server.sbs)
  • Re: Internet Connect of FC6..
    ... I was just borrowing a co-workers' ADSL internet connection to get some updates and get XGL working... ... Please see to it that iptables is ... I can recommend the router as a GP solution that will give you a much ...
    (Fedora)
  • Re: Problem
    ... the remote site and see if they have the connection manager installed. ... So...whichever is easier to set up on the router. ... location B need to connect individually via VPN to the SBS server at ... server - not sure of the clients ip scheme - but I think it is ...
    (microsoft.public.windows.server.sbs)
  • Re: VPN/RAS Access other network resources
    ... is my ADSL Modem Router Firewall. ... PPP adapter RAS Server Interface: ... > DHCP server for the LAN but VPN clients are issued IP addressess by the VPN ...
    (microsoft.public.windows.server.networking)