Having Trouble shaping traffic with a bridge

Home Page Forums Network Management ZeroShell Having Trouble shaping traffic with a bridge

This topic contains 0 replies, has 0 voices, and was last updated by  HTG 11 years ago.

Viewing 2 posts - 1 through 2 (of 2 total)
  • Author
    Posts
  • #40913

    HTG
    Member

    Hi.

    I have a bridge set for eth00 and eth01 and I’m trying to just shape HTTP traffic. In a nutshell I want to kill all http traffic and then increase it from there.

    These are the rules I have set up for HTTP:

    * * MARK tcp opt — in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:80 MARK set 0x10

    * * MARK tcp opt — in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp spt:80 MARK set 0x10

    Would it be better to use L7 filters so that way I can choke all the various http traffic? Or should those two rules suffice.

    Any advice or guidance would be greatly appreciated.

    Thanks
    HTG

    #46165

    imported_fulvio
    Participant

    The L7 filter is better because not all http requests are directed to the port 80/tcp.

    Regards
    Fulvio

Viewing 2 posts - 1 through 2 (of 2 total)

You must be logged in to reply to this topic.