[Firehol-support] Problem setting up FireQOS on A-DSL with PPPoE

Tsaousis, Costa costa at tsaousis.gr
Sat Nov 9 02:10:04 GMT 2013


Hi again,

I changed the default qdisc to fq_codel (only if it is available in
your kernel), instead of sfq.

fq_codel has a little magic in it: within the same class, a new
flow/socket is favored over the old ones. The new socket will take
more bandwidth than the existing sockets. This means your big
downloads will slow down as time passes and the new sockets will be
snappier. All within the same class.

Try it. It should offer a noticable improvement.

Regards,

Costa


On Mon, Nov 4, 2013 at 10:49 PM, Florian Schröck <floschroeck at gmail.com> wrote:
> Hi Costa,
> thanks for the second mail, I will try that.
> It's great to see there is such good and fast support for FireQOS/Firehol :)
> We use firehol on about 10 servers at my company, it's the easiest Linux
> firewall ever! :)
>
>
> 2013/11/4 Tsaousis, Costa <costa at tsaousis.gr>
>
>> Hi,
>>
>> I resubmit my response (I didn't include the list previously).
>>
>> You cannot use hostnames in FireQOS. It works in layer 3 (just
>> network). What you ask is layer 7. The only way to do something like
>> that is squid.
>>
>> I think however, you should not have an issue with big downloads, at
>> least if you download just 1 thing at a time. The bandwidth will be
>> spread between your download and the web surfing.
>>
>> Let me also add this: You can benefit a little the new sockets, by
>> moving the synacks class, before/above the surfing class. This will
>> allow new surfing sockets to be preferred over the packets already
>> running. However, the packets carrying data will still be competing
>> with each other. The sfq qdisc added by FireQOS will try to balance
>> the sockets though. Your big download will not monopolize all the
>> bandwidth.
>>
>> Costa
>>
>> 2013/11/3 Florian Schröck <floschroeck at gmail.com>:
>> > Hello again,
>> > with the ifb module it is working now! Is there a way i can classify
>> > high-volume HTTP downloads, eg. by the target domain, maybe even with a
>> > wildcard - like *.somehost.com?
>> > To keep surfing smooth while a big download is running.
>> >
>> > Thanks!
>> >
>> >
>> > 2013/11/2 Florian Schröck <floschroeck at gmail.com>
>> >>
>> >> Hello Costa,
>> >> thanks for the fast reply!
>> >>
>> >> Indeed there is no ifb module. I'm runinng Raspberian, a Debian
>> >> variant:
>> >> Linux raspberrypi 3.6.11 #1 PREEMPT Sat Sep 21 21:12:11 CEST 2013
>> >> armv6l
>> >> GNU/Linux
>> >>
>> >> I'm recompiling my kernel with ifb enabled now. This takes a day on the
>> >> Raspberry Pi though ;)
>> >>
>> >>
>> >>
>> >> 2013/11/2 Tsaousis, Costa <costa at tsaousis.gr>
>> >>>
>> >>> Hi Florian,
>> >>>
>> >>> Thanks for trying FireQOS.
>> >>>
>> >>> It seems that your kernel does not have the IFB module. What distro
>> >>> are you using? Which kernel version?
>> >>>
>> >>> To verify you don't have IFB in kernel, fo this:
>> >>>
>> >>> # modprobe ifb
>> >>>
>> >>> does it work?
>> >>>
>> >>> Without IFB in your kernel, you are limited to use FireQOS for traffic
>> >>> control on the output of interfaces only. Copy and paste only the
>> >>> output interface to see it working.
>> >>>
>> >>> Regards,
>> >>>
>> >>> 2013/11/2 Florian Schröck <floschroeck at gmail.com>:
>> >>> > Hello,
>> >>> > I was looking for a traffic shaping solution for my home network and
>> >>> > i
>> >>> > love
>> >>> > firehol i stumbled upon fireqos. To get started i just pasted the
>> >>> > complete
>> >>> > example from the howto and changed the DEVICE=ppp0 and the speeds.
>> >>> > ppp0 is my PPPoE device on my raspberry pi from a german DSL
>> >>> > provider.
>> >>> > But
>> >>> > at the start i just get the errors below. Can somebody point me in
>> >>> > the
>> >>> > right
>> >>> > direction?
>> >>> > Thank you!
>> >>> >
>> >>> > FireQOS $Id: 3bd5794f2e29d2748784acd5d7810d54ba1e99e2 $
>> >>> > (C) 2013 Costa Tsaousis, GPL
>> >>> >
>> >>> >
>> >>> > : interface ppp0 world-in input rate 14000kbit adsl local
>> >>> > pppoe-llcCannot
>> >>> > find device "ppp0-ifb"
>> >>> >
>> >>> > FAILED: Cannot bring device ppp0-ifb UP.
>> >>> > FAILED TO ACTIVATE TRAFFIC CONTROL.
>> >>> >
>> >>> > Clearing failed interface: world-in (ppp0 input => ppp0-ifb)...
>> >>> >
>> >>> >          ppp0-ifb: ./fireqos.in: line 334: interface_inout: command
>> >>> > not
>> >>> > found
>> >>> > cleared traffic control
>> >>> >          ppp0-ifb: removed IFB device
>> >>> >
>> >>> > No traffic control is operational by FireQOS
>> >>> >
>> >>> > bye...
>> >>> >
>> >>> >
>> >>> > _______________________________________________
>> >>> > Firehol-support mailing list
>> >>> > Firehol-support at lists.firehol.org
>> >>> > http://lists.firehol.org/mailman/listinfo/firehol-support
>> >>
>> >>
>> >
>
>



More information about the Firehol-support mailing list