03-24-2009
dummynet problem.
I am using dummynet in bridge mode. and its working fine.
Now I have built another box (freebsd 7.1) in router mode. On this box I have two NICs, one for lan and one for wan. both networks are segmented physically and logically i-e both interfaces have different ip pools and connected to different physical networks e.g
lan has 1.2.3.4 (only IP)
wan has 2.3.4.5 including its gateway and dns servers.
Both networks are /24.
Ony my router i add a static route to forward all traffic for 1.2.3.4/24 to 2.3.4.5 (freebsd).
So far the networking is working fine. I can reach any network from 1.2.3.0/24 network and similerly any network can reach 1.2.3.0/24 network.
Now I enabled the dummynet on this box and add a teast rule like below.
$cmd pipe 78 $bwd 512kbits/s
$cmd pipe 79 $bwd 512kbits/s
$cmd add pipe 78 ip $src 1.2.3.39 $dest any
$cmd add pipe 79 ip $src any $dest 1.2.3.39
Now the problem is I am only getting the quarter of bandwidth i-e 128kbits (no other process is accessing internet).
But if i changed the rules to
$cmd pipe 78 $bwd 512kbits/s
$cmd pipe 79 $bwd 512kbits/s
$cmd add pipe 78 ip $src 1.2.3.39 $dest any out via le0
$cmd add pipe 79 ip $src any $dest 1.2.3.39 in via le0
Then I got half bandwidth. But the problem is if the client is connected over pppoe then the above rule doesnt apply on it because now the client traffic is comming from tun0. So I cant mention the interface in my rules because everytime client pppoe tunnel changes i-e tun0, tun1, tun3 etc.
As I cant mention the interface name thatswhy I am still getting quarter bandwidth on download.
Any ideas where i am wrong!
10 More Discussions You Might Find Interesting
1. UNIX for Advanced & Expert Users
Hi,
Just recently we seem to be getting the following error message relating to SSH when we run the UNIX script in background mode:
warning: You have no controlling tty. Cannot read confirmation.^M
warning: Authentication failed.^M
Disconnected; key exchange or algorithm negotiation... (1 Reply)
Discussion started by: budrito
1 Replies
2. IP Networking
Hello
I need to limit the bandwidth from a list of ip addresses. I was planning to use the dummynet with lookup tables, so i took the example given in the manual pages:
ipfw pipe 1 config bw 1000Kbyte/s
ipfw pipe 4 config bw 4000Kbyte/s
...
ipfw table 1... (1 Reply)
Discussion started by: Alex_sh
1 Replies
3. Shell Programming and Scripting
Hi, folks.
Sorry for bothering, but maybe someone could help me please.
The problem is the following:
there is some script that copies files from local file system to AFS. The copying is performed with dd command.
The script copies data into some AFS volumes.
The problem appeared with one... (0 Replies)
Discussion started by: Anta
0 Replies
4. Shell Programming and Scripting
Hi
Please help me with the following problem with my script.
The following block of code is not repeating in the while loop and exiting after searching for first message.
input_file
==========
host001-01
host001-02
2008-07-23 13:02:04,651 ConnectionFactory - Setting session state... (2 Replies)
Discussion started by: pcjandyala
2 Replies
5. Solaris
Hi
I am right now facing a strange hardware problem. System get booted with the following error:
Fatal Error Reset
CPU 0000.0000.0000.0003 AFSR 0100.0000.0000.0000 SCE
AFAR 0000.07c6.0000.1000
SC Alert: Host System has Reset
It happen 4 or 5 times and get the same error every time.I... (8 Replies)
Discussion started by: girish.batra
8 Replies
6. BSD
Hi!
I've already posted this on the freebsd-questions mailing list, but I thought I could try it here too.
I'm using FreeBSD 7.0 with IPFW DUMMYNET enabled.
I've got a problem with creating a ruleset, which allows me to limit the overall bandwidth of a link and afterwards pass the packets... (0 Replies)
Discussion started by: xenator
0 Replies
7. AIX
1) when user login to the server the session got colosed. How will resolve?
2) While firing the command ls -l we are not able to see the any files in the director. but over all view the file system using the command df -g it is showing 91% used. what will be the problem?
Thanks in advance. (1 Reply)
Discussion started by: pernasivam
1 Replies
8. AIX
Dear ALL.
I installed AIX OS on customer sites.
but Only one site is too slow when I connected telnet, ftp..
Ping is too fast. but telnet and FTP is not connected..
of course i check the configuration file on aix but it's normal.
Do any Idea??
thanks in advance.
- Jun - (3 Replies)
Discussion started by: Jeon Jun Seok
3 Replies
9. IP Networking
Hi,
This is rather a question from a "user" than from a sys admin, but I think this forum is apropriate for the question.
I have an adress with automatic email forwarding and for some senders (two hietherto), emails are bouncing. This has really created a lot of problems those two time so I... (0 Replies)
Discussion started by: carwe
0 Replies
10. UNIX for Dummies Questions & Answers
I don't know if you guys get this problem sometimes at Terminal but I had been having this problem since yesterday :( Maybe I overdid the Terminal. Even the codes that used to work doesn't work anymore.
Here is what 's happening:
* I wanted to remove lines containing digits so I used this... (25 Replies)
Discussion started by: Nexeu
25 Replies
DUMMYNET(4) BSD Kernel Interfaces Manual DUMMYNET(4)
NAME
dummynet -- traffic shaper, bandwidth manager and delay emulator
DESCRIPTION
The dummynet system facility permits the control of traffic going through the various network interfaces, by applying bandwidth and queue
size limitations, implementing different scheduling and queue management policies, and emulating delays and losses.
The user interface for dummynet is implemented by the ipfw(8) utility, so please refer to the ipfw(8) manpage for a complete description of
the dummynet capabilities and how to use it.
Kernel Options
The following options in the kernel configuration file are related to dummynet operation:
IPFIREWALL enable ipfirewall (required for dummynet)
IPFIREWALL_VERBOSE enable firewall output
IPFIREWALL_VERBOSE_LIMIT limit firewall output
DUMMYNET enable dummynet operation
HZ set the timer granularity
Generally, the following options are required:
options IPFIREWALL
options DUMMYNET
options HZ=1000 # strongly recommended
Additionally, one may want to increase the number of mbuf clusters (used to store network packets) according to the sum of the bandwidth-
delay products and queue sizes of all configured pipes.
SEE ALSO
setsockopt(2), if_bridge(4), ip(4), ipfw(8), sysctl(8)
HISTORY
The dummynet facility was initially implemented as a testing tool for TCP congestion control by Luigi Rizzo <luigi@iet.unipi.it>, as
described on ACM Computer Communication Review, Jan.97 issue. Later it has been modified to work at the IP and bridging levels, integrated
with the ipfw(4) packet filter, and extended to support multiple queueing and scheduling policies.
BSD
October 28, 2002 BSD