I find two problems

Home Page Forums Network Management ZeroShell I find two problems

This topic contains 2 replies, has 0 voices, and was last updated by  yuda 8 years, 9 months ago.

Viewing 4 posts - 1 through 4 (of 4 total)
  • Author
    Posts
  • #40728

    yuda
    Member

    I find two problems

    My hardware
    CPU : VIA C3 1G
    RAM:512 M
    Medium Type:ZeroShell-1.0.beta5-CompactFlash512.img.gz
    connection session :less than 2500
    QOS classfilter : 62 rules
    LAN:eth00
    wan:pppoe

    1.Kernel log :
    Display “ip_ct_ras: decoding error: out of bound” everyday
    2.QOS upload
    This classifier limits tcp dports:25-80
    In view that have some packages in this rule
    12542 1087K MARK tcp — ETH00 * 0.0.0.0/0 0.0.0.0/0 tcp dpts:25:80 MARK set 0xf
    But flows more than Max Bandwidth
    Only tcp dport:80
    Other protocol no problem

    My classifier
    Chain FORWARD (policy ACCEPT 93M packets, 43G bytes)
    pkts bytes target prot opt in out source destination
    0 0 MARK tcp — ETH00 * 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto jpeg tcp dpt:80 MARK set 0xf
    0 0 MARK all — ETH00 * 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto msn-filetransfer MARK set 0xf
    9 360 MARK all — ETH00 * 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto rar MARK set 0xf
    0 0 MARK all — ETH00 * 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto zip MARK set 0xf
    0 0 MARK all — ETH00 * 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto xunlei MARK set 0xf
    0 0 MARK all — ETH00 * 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto thecircle MARK set 0xf
    0 0 MARK all — ETH00 * 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto soulseek MARK set 0xf
    0 0 MARK all — ETH00 * 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto poco MARK set 0xf
    0 0 MARK all — ETH00 * 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto openft MARK set 0xf
    0 0 MARK all — ETH00 * 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto napster MARK set 0xf
    0 0 MARK all — ETH00 * 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto mute MARK set 0xf
    0 0 MARK all — ETH00 * 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto kugoo MARK set 0xf
    0 0 MARK all — ETH00 * 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto goboogy MARK set 0xf
    0 0 MARK all — ETH00 * 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto gnutella MARK set 0xf
    0 0 MARK all — ETH00 * 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto fasttrack MARK set 0xf
    0 0 MARK all — ETH00 * 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto directconnect MARK set 0xf
    18 1176 MARK all — ETH00 * 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto edonkey MARK set 0xf
    0 0 MARK all — ETH00 * 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto bittorrent MARK set 0xf
    0 0 MARK all — ETH00 * 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto 100bao MARK set 0xf
    27 1268 MARK all — ETH00 * 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto ftp MARK set 0xf
    390K 65M CONNMARK all — * * 0.0.0.0/0 0.0.0.0/0 CONNMARK restore
    1 40 ACCEPT all — * * 0.0.0.0/0 0.0.0.0/0 MARK match !0x0
    0 0 MARK all — ETH00 * 0.0.0.0/0 0.0.0.0/0 ipp2p v0.8.2 –kazaa –gnu –edk –dc –bit MARK set 0xf
    390K 65M CONNMARK all — * * 0.0.0.0/0 0.0.0.0/0 CONNMARK save
    19482 2150K MARK tcp — ETH00 * 0.0.0.0/0 0.0.0.0/0 tcp dpts:25:80 MARK set 0xf
    390K 64M CONNMARK all — * * 0.0.0.0/0 0.0.0.0/0 CONNMARK restore
    1 40 ACCEPT all — * * 0.0.0.0/0 0.0.0.0/0 MARK match !0x0
    0 0 MARK all — * ETH00 0.0.0.0/0 0.0.0.0/0 ipp2p v0.8.2 –kazaa –gnu –edk –dc –bit MARK set 0xb
    390K 64M CONNMARK all — * * 0.0.0.0/0 0.0.0.0/0 CONNMARK save
    0 0 MARK all — * ETH00 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto poco MARK set 0xb
    0 0 MARK all — * ETH00 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto kugoo MARK set 0xb
    0 0 MARK all — * ETH00 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto directconnect MARK set 0xb
    18 6344 MARK all — * ETH00 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto edonkey MARK set 0xb
    0 0 MARK all — * ETH00 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto 100bao MARK set 0xb
    0 0 MARK all — * ETH00 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto bittorrent MARK set 0xb
    12 13178 MARK all — * ETH00 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto rar MARK set 0xd
    0 0 MARK all — * ETH00 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto zip MARK set 0xd
    21142 26M MARK all — * ETH00 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto http MARK set 0xc
    0 0 MARK all — * ETH00 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto msn-filetransfer MARK set 0xd
    30 3193 MARK all — * ETH00 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto ftp MARK set 0xd
    0 0 MARK all — * ETH00 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto applejuice MARK set 0xb
    0 0 MARK all — * ETH00 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto ares MARK set 0xb
    0 0 MARK all — * ETH00 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto fasttrack MARK set 0xb
    0 0 MARK all — * ETH00 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto gnucleuslan MARK set 0xb
    1 40 MARK all — * ETH00 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto gnutella MARK set 0xb
    0 0 MARK all — * ETH00 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto hotline MARK set 0xb
    0 0 MARK all — * ETH00 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto imesh MARK set 0xb
    0 0 MARK all — * ETH00 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto mute MARK set 0xb
    0 0 MARK all — * ETH00 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto napster MARK set 0xb
    0 0 MARK all — * ETH00 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto openft MARK set 0xb
    0 0 MARK all — * ETH00 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto soribada MARK set 0xb
    0 0 MARK all — * ETH00 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto soulseek MARK set 0xb
    0 0 MARK all — * ETH00 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto tesla MARK set 0xb
    0 0 MARK all — * ETH00 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto thecircle MARK set 0xb
    0 0 MARK all — * ETH00 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto xunlei MARK set 0xb
    0 0 MARK all — * ETH00 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto mute MARK set 0xb
    0 0 MARK all — * ETH00 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto napster MARK set 0xb
    0 0 MARK all — * ETH00 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto openft MARK set 0xb
    0 0 MARK all — * ETH00 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto soribada MARK set 0xb
    0 0 MARK all — * ETH00 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto soulseek MARK set 0xb
    0 0 MARK all — * ETH00 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto tesla MARK set 0xb
    0 0 MARK all — * ETH00 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto thecircle MARK set 0xb
    0 0 MARK all — * ETH00 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto xunlei MARK set 0xb
    22953 26M MARK tcp — * ETH00 0.0.0.0/0 0.0.0.0/0 tcp spts:25:80 MARK set 0xe
    0 0 MARK all — * ETH00 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto xunlei MARK set 0xb
    22895 25M MARK tcp — * ETH00 0.0.0.0/0 0.0.0.0/0 tcp spts:25:80 MARK set 0xe

    #45746

    imported_fulvio
    Participant

    1) Don’t worry for the warning. I will try to remove it in the next release.

    2) I think the QoS classifier is being confused because you created double rules (downstream+upstream) and class for any protocol. You should create only one class for type of traffic and assign the bandwidth parameters in the Interface Manager. The local QoS parameters of the interface ETH00 is for shaping the downstream and the ones of the interface ppp0 (WAN with PPPoE) if for shaping the upstream.

    Regards
    Fulvio

    #45747

    yuda
    Member

    I repair my QOS rule
    Now it is no problem
    Thank you very much

    #45748

    micampo
    Member

    like I’m finally qos rule?

Viewing 4 posts - 1 through 4 (of 4 total)

You must be logged in to reply to this topic.