Created
August 30, 2010 15:33
-
-
Save ViktorStiskala/557567 to your computer and use it in GitHub Desktop.
Wondershaper script without LAN limitation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#!/bin/bash | |
# Wonder Shaper | |
# please read the README before filling out these values | |
# | |
# Speed/Rate syntax: tcng vs. tc | |
# source: http://www.faqs.org/docs/Linux-HOWTO/Traffic-Control-tcng-HTB-HOWTO.html | |
# | |
# tcng English tc | |
# ---------------------------------------------- | |
# bps bit(s) per second bit | |
# Bps byte(s) per second bps (argh!) | |
# kbps kilobit(s) per second kbit | |
# kBps kilobyte(s) per second kbps | |
# Mbps megabit(s) per second mbit or Mbit | |
# MBps megabyte(s) per second mbps or Mbps | |
# pps packet per second ?? | |
# Set the following values to somewhat less than your actual | |
# download and uplink speed. Use units for tc from the table | |
# above. Also set the device that is to be shaped and the | |
# LANIPMASK to recognize LAN traffic | |
# You have to set uplink in kilobits and do not add any units, | |
# eg. UPLINK=200, because there is some calculation later in | |
# this script. | |
# DO NOT set LANSPEED to lower value than UPLINK | |
LANSPEED=1000Mbps | |
LANIPMASK=192.168.1/24 # set this to your own if needed | |
DOWNLINK= | |
UPLINK= | |
DEV=eth0 | |
# low priority OUTGOING traffic - you can leave this blank if you want | |
# low priority source netmasks | |
NOPRIOHOSTSRC= | |
# low priority destination netmasks | |
NOPRIOHOSTDST= | |
# low priority source ports | |
NOPRIOPORTSRC= | |
# low priority destination ports | |
NOPRIOPORTDST= | |
# Now remove the following two lines :-) | |
echo Please read the documentation in 'README' first | |
exit | |
if [ "$1" = "status" ] | |
then | |
tc -s qdisc ls dev $DEV | |
tc -s class ls dev $DEV | |
exit | |
fi | |
# clean existing down- and uplink qdiscs, hide errors | |
tc qdisc del dev $DEV root 2> /dev/null > /dev/null | |
tc qdisc del dev $DEV ingress 2> /dev/null > /dev/null | |
if [ "$1" = "stop" ] | |
then | |
exit | |
fi | |
###### uplink | |
# install root HTB, point default traffic to 1:30: | |
tc qdisc add dev $DEV root handle 1: htb default 30 | |
# root have to be at $LANSPEED to allow higher speed for LAN | |
tc class add dev $DEV parent 1: classid 1:1 htb rate ${LANSPEED} burst 6k | |
# LAN traffic class 1:10 | |
tc class add dev $DEV parent 1:1 classid 1:10 htb rate ${LANSPEED} \ | |
burst 6k prio 1 | |
# high prio class 1:20: | |
tc class add dev $DEV parent 1:1 classid 1:20 htb rate ${UPLINK}kbit \ | |
burst 6k prio 2 | |
# bulk & default class 1:30 - gets slightly less traffic, | |
# and a lower priority: | |
tc class add dev $DEV parent 1:1 classid 1:30 htb rate $[9*$UPLINK/10]kbit \ | |
burst 6k prio 3 | |
tc class add dev $DEV parent 1:1 classid 1:40 htb rate $[8*$UPLINK/10]kbit \ | |
burst 6k prio 3 | |
# all get Stochastic Fairness: | |
tc qdisc add dev $DEV parent 1:10 handle 10: sfq perturb 10 | |
tc qdisc add dev $DEV parent 1:20 handle 20: sfq perturb 10 | |
tc qdisc add dev $DEV parent 1:30 handle 30: sfq perturb 10 | |
tc qdisc add dev $DEV parent 1:40 handle 40: sfq perturb 10 | |
# LAN traffic with highest priority and speed | |
tc filter add dev $DEV parent 1:0 protocol ip prio 10 u32 \ | |
match ip dst ${LANIPMASK} flowid 1:10 | |
# TOS Minimum Delay (ssh, NOT scp) in 1:20: | |
# you can change this to 1:10 if you don't want TOS to be shaped | |
tc filter add dev $DEV parent 1:0 protocol ip prio 10 u32 \ | |
match ip tos 0x10 0xff flowid 1:20 | |
# ICMP (ip protocol 1) in the interactive class 1:10 so we | |
# can do measurements & impress our friends: | |
tc filter add dev $DEV parent 1:0 protocol ip prio 10 u32 \ | |
match ip protocol 1 0xff flowid 1:20 | |
# To speed up downloads while an upload is going on, put ACK packets in | |
# the interactive class: | |
tc filter add dev $DEV parent 1: protocol ip prio 10 u32 \ | |
match ip protocol 6 0xff \ | |
match u8 0x05 0x0f at 0 \ | |
match u16 0x0000 0xffc0 at 2 \ | |
match u8 0x10 0xff at 33 \ | |
flowid 1:20 | |
# some traffic suffers a worse fate (1:40 - lowest priority) | |
for a in $NOPRIOPORTDST | |
do | |
tc filter add dev $DEV parent 1: protocol ip prio 14 u32 \ | |
match ip dport $a 0xffff flowid 1:40 | |
done | |
for a in $NOPRIOPORTSRC | |
do | |
tc filter add dev $DEV parent 1: protocol ip prio 15 u32 \ | |
match ip sport $a 0xffff flowid 1:40 | |
done | |
for a in $NOPRIOHOSTSRC | |
do | |
tc filter add dev $DEV parent 1: protocol ip prio 16 u32 \ | |
match ip src $a flowid 1:40 | |
done | |
for a in $NOPRIOHOSTDST | |
do | |
tc filter add dev $DEV parent 1: protocol ip prio 17 u32 \ | |
match ip dst $a flowid 1:40 | |
done | |
# rest is 'non-interactive' ie 'bulk' and ends up in 1:30 | |
tc filter add dev $DEV parent 1: protocol ip prio 18 u32 \ | |
match ip dst 0.0.0.0/0 flowid 1:30 | |
########## downlink ############# | |
# slow downloads down to somewhat less than the real speed to prevent | |
# queuing at our ISP. Tune to see how high you can set it. | |
# ISPs tend to have *huge* queues to make sure big downloads are fast | |
# | |
# attach ingress policer: | |
tc qdisc add dev $DEV handle ffff: ingress | |
# filter *everything* to it (0.0.0.0/0), drop everything that's | |
# coming in too fast: | |
tc filter add dev $DEV parent ffff: protocol ip prio 50 u32 match ip src \ | |
0.0.0.0/0 police rate ${DOWNLINK} burst 10k drop flowid :1 | |
# add your filter here if you don't want your LAN downlink to be shaped | |
# check http://lartc.org/howto/index.html for more information |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment