From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.2.5 (2008-06-10) on sa.int.altlinux.org X-Spam-Level: X-Spam-Status: No, score=-2.6 required=5.0 tests=BAYES_00,SPF_PASS autolearn=ham version=3.2.5 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:content-type :content-transfer-encoding; bh=gcNxP0lot3L4z6OxCixntCYLRcW0jgdIwoHR73ocBPQ=; b=rfDikUXKqsUEvYepFBqGOSUEqaDTfOi9YdALo7VgU1OmMBXHld/zeZVoNylpUIoHY3 1JG8HCHXyGaPUPmzcCibjbA74O9J49/op7GALzrwtJeegcNk2JF1MjrQmsreh6S1RrlO FkRpqakuupFKACot0d7hRlcAWrH7ua6YZGj3Q= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type:content-transfer-encoding; b=BljUVDWAxxdfrdOsG0qTo3yaGV4eLog/JV665CmlnvdDPYYBIgiA3hxRissP/1Gyu8 eBxVuUs8GUqzzKmvisB1BcbwVcOg1x8hBfcgVfopY73p7NbNzePmxm5/VvAh2UdtoOnu H1lAcOQeeN1k76A8zM1OaePPMW7bPQSuak9jg= MIME-Version: 1.0 In-Reply-To: References: <49789701.6080900@gmail.com> Date: Mon, 26 Jan 2009 17:25:13 +0400 Message-ID: From: =?KOI8-R?B?5MXOydMg/sXSzs/Tz9c=?= To: ALT Linux Community general discussions Content-Type: text/plain; charset=KOI8-R Content-Transfer-Encoding: quoted-printable Subject: Re: [Comm] =?koi8-r?b?68HLINLB2sTFzNHU2CDV2svVwCDQz8zP09Ug0NLP0NXT?= =?koi8-r?b?y8HOydEgxMzRINfIz8TR3cXHzyDU0sHGycvBPw==?= X-BeenThere: community@lists.altlinux.org X-Mailman-Version: 2.1.10b3 Precedence: list Reply-To: ALT Linux Community general discussions List-Id: ALT Linux Community general discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 26 Jan 2009 13:25:19 -0000 Archived-At: List-Archive: List-Post: =FE=D4=CF-=D4=CF =D1 =D4=D5=D0=CC=C0... 1) =E4=CF=C2=C1=D7=C9=CC =CD=C1=D2=CB=C9=D2=CF=D7=CB=D5 =D0=C1=CB=C5=D4=CF= =D7 =D7 mangle/PREROUTING. =E5=D3=CC=C9 =D0=CF=D3=D4=C1=D7=C9=D4=D8 =D6=D5=D2=CE=C1=CC=C9=D2=CF=D7=C1=CE=C9=C5 =CD=C1=D2=CB=C9=D2=CF=D7=C1=CE= =CE=D9=C8 =D0=C1=CB=C5=D4=CF=D7 =D7 filter/FORWARD, =D4=CF =D7=C9=C4=CE=CF,= =DE=D4=CF =D0=C1=CB=C5=D4=D9 =CD=C1=D2=CB=C9=D2=D5=C0=D4=D3=D1. # cat /etc/net/ifaces/default/fw/iptables/mangle/PREROUTING -i wan -p tcp -m tcp -m multiport --sports 443,25,110,143 -j MARK --set-mar= k 11 -i wan -p tcp -m tcp --sport 80 -j MARK --set-mark 12 ... # cat /etc/net/ifaces/default/fw/iptables/filter/FORWARD -m mark --mark 11 -j LOG -m mark --mark 12 -j LOG ... # tail /var/log/messages Jan 26 17:24:33 gate kernel: IN=3Dwan OUT=3Dlan SRC=3D81.177.9.109 DST=3D192.168.5.148 LEN=3D238 TOS=3D0x00 PREC=3D0x00 TTL=3D120 ID=3D16505 D= F PROTO=3DTCP SPT=3D443 DPT=3D3723 WINDOW=3D32430 RES=3D0x00 ACK PSH URGP=3D0 Jan 26 17:24:33 gate kernel: IN=3Dwan OUT=3Dlan SRC=3D217.74.44.32 DST=3D192.168.5.7 LEN=3D280 TOS=3D0x00 PREC=3D0x00 TTL=3D122 ID=3D22799 DF PROTO=3DTCP SPT=3D443 DPT=3D5774 WINDOW=3D64453 RES=3D0x00 ACK PSH URGP=3D0 Jan 26 17:24:33 gate kernel: IN=3Dwan OUT=3Dlan SRC=3D81.177.9.109 DST=3D192.168.5.148 LEN=3D112 TOS=3D0x00 PREC=3D0x00 TTL=3D120 ID=3D18766 D= F PROTO=3DTCP SPT=3D443 DPT=3D3723 WINDOW=3D32430 RES=3D0x00 ACK PSH URGP=3D0 ... 2) =D3=C4=C5=CC=C1=CC =D4=D2=C9 =CF=DE=C5=D2=C5=C4=C9 (=C4=C5=C6=CF=CC=D4= =CE=C1=D1 13): # find /etc/net/ifaces/lan/ /etc/net/ifaces/lan/ /etc/net/ifaces/lan/qos /etc/net/ifaces/lan/qos/1 /etc/net/ifaces/lan/qos/1/1 /etc/net/ifaces/lan/qos/1/1/13 /etc/net/ifaces/lan/qos/1/1/13/class /etc/net/ifaces/lan/qos/1/1/extra /etc/net/ifaces/lan/qos/1/1/class /etc/net/ifaces/lan/qos/1/1/11 /etc/net/ifaces/lan/qos/1/1/11/class /etc/net/ifaces/lan/qos/1/1/11/filter /etc/net/ifaces/lan/qos/1/1/12 /etc/net/ifaces/lan/qos/1/1/12/class /etc/net/ifaces/lan/qos/1/1/12/filter /etc/net/ifaces/lan/qos/1/qdisc /etc/net/ifaces/lan/ipv4address /etc/net/ifaces/lan/options # cat /etc/net/ifaces/lan/qos/1/qdisc htb default 13 #cat /etc/net/ifaces/lan/qos/1/1/11/filter protocol ip prio 1 handle 11 fw =EE=CF =D0=C1=CB=C5=D4=D9 =D0=CF=D0=C1=C4=C1=C0=D4 =D4=CF=CC=D8=CB=CF =D7 = =C4=C5=C6=CF=CC=D4=CE=D5=C0 =CF=DE=C5=D2=C5=C4=D8: # eqos lan stat class Interface is "lan" Action is "stat" "class" statistics on device lan: class htb 1:11 parent 1:1 prio 0 quantum 1000 rate 64000bit ceil 100000Kbit burst 1631b/8 mpu 0b overhead 0b cburst 51599b/8 mpu 0b overhead 0b level 0 Sent 0 bytes 0 pkt (dropped 0, overlimits 0 requeues 0) rate 0bit 0pps backlog 0b 0p requeues 0 lended: 0 borrowed: 0 giants: 0 tokens: 208895 ctokens: 4227 class htb 1:1 root rate 100000Kbit ceil 100000Kbit burst 51599b/8 mpu 0b overhead 0b cburst 51599b/8 mpu 0b overhead 0b level 7 Sent 2700907 bytes 2419 pkt (dropped 0, overlimits 0 requeues 0) rate 240136bit 26pps backlog 0b 0p requeues 0 lended: 0 borrowed: 0 giants: 0 tokens: 4217 ctokens: 4217 class htb 1:13 parent 1:1 prio 0 quantum 200000 rate 100000Kbit ceil 100000Kbit burst 51599b/8 mpu 0b overhead 0b cburst 51599b/8 mpu 0b overhead 0b level 0 Sent 2700907 bytes 2419 pkt (dropped 0, overlimits 0 requeues 0) rate 234144bit 25pps backlog 0b 0p requeues 0 lended: 2419 borrowed: 0 giants: 0 tokens: 4217 ctokens: 4217 class htb 1:12 parent 1:1 prio 0 quantum 1000 rate 64000bit ceil 100000Kbit burst 1631b/8 mpu 0b overhead 0b cburst 51599b/8 mpu 0b overhead 0b level 0 Sent 0 bytes 0 pkt (dropped 0, overlimits 0 requeues 0) rate 0bit 0pps backlog 0b 0p requeues 0 lended: 0 borrowed: 0 giants: 0 tokens: 208895 ctokens: 4227 =FE=D4=CF =D1 =CE=C5 =D4=C1=CB =C4=C5=CC=C1=C0?