Трохи роботи .)
Щойно дописав підтримку IPv6 для свого конфігуратора (Django/Python) шейпера (HTB/Linux). «Воно жахливе, але працює чудово»™ .)
Tag: Shaper
tc filter … protocol 802.1q … u32 and filtering VLAN tagged packets
This info was tested with kernels 2.6.26 and 2.6.32. Caution, 2.6.31, looks like, has some nitpicks. Well, I did not examine cls_u32.c etc-etc — so I can be wrong .) Some notes regarding «filtering logic»: When we write tc filter … protocol <proto> u32 match u<length> … Continue readingtc filter … protocol 802.1q … u32 and filtering VLAN tagged packets
Django-based HTB shaper configurator
I’ve decided to make it available after some nice people asked for this. Now i have no time and, let’s say, health to make it better, so please don’t complain :-) I guess it maybe would be better to make it available somewhere at code.google.com — … Continue readingDjango-based HTB shaper configurator
Shaper as an effective firewall
Hash-tables based shaper can act as an effective firewall; just take a look. Now our shaper configurator generates, let’s say, this script for a client’s connection (excerpt): # # Contract I-1082, # connection 606 (0x25e). # # input: /sbin/tc class add dev clients0 classid 1:25e … Continue readingShaper as an effective firewall
REORDER_HDR, again and again
If you wish to use vlan sub-interfaces in linux, and sub-sub-interfaces, and sub-sub-sub-… and if you wish to ping something — sure, you may wish to have them only for switching, but if you wish to ping — don’t forget to re-set REORDER_HDR flag: ip link set … Continue readingREORDER_HDR, again and again
Finally: my django-based configurator for HTB shaper works
Well.. I’ve done my django based configurator for my HTB shaper (bridge/linux). I will try to translate this post in english; if you can read Ukrainian, try here. *subj* :-) Давно було зрозуміло, що без нормального конфігуратора керувати нормальним шейпером «важкувато», але… все ускладнювала одна … Continue readingFinally: my django-based configurator for HTB shaper works
HTB/8021q: That was my fault
Regarding the problem with shaping vlan-tagged traffic on linux bridge — it was my fault :-) I asked community@lists.altlinux.org, and Sergey Vlasov answered me with some info and hint — thanks a lot!-) As Sergey told, «a packet is being passed to bridge module before 8021q can … Continue readingHTB/8021q: That was my fault
Problem with shaping vlan-tagged traffic on linux bridge
Update: there are no any problem with vlans in classifiers, that was my fault. Have been playing with shapers and run into such a problem: u32 classifier does not work (?) for tagged traffic on «non-tagged» linux bridge. In more details: Test bed: Let’s take … Continue readingProblem with shaping vlan-tagged traffic on linux bridge
Using SPARK module
I have finally formatted my «old» paper about using Python’s SPARK module for compiling «little languages» and code generation — as example, for scanning, parsing, analyzing a simple configuration file for configuring HTB shaper and generating a code (shell script). I put it as a staic … Continue readingUsing SPARK module