July 16, 2009 at 3:53 pm #41792
In 1.0beta12, when you go to the QoS menu, and click on L7, you bring up the Layer7 filter manager. In that window there is a button “Update patterns”. When you click the Update Patterns button, a pop-up windows informs you that this function is not yet implemented. This is fine, as I understand this is a beta and not all functions are finished.
The problem is that when you try and update the filter patterns, the message that informs you that the function is not available also gives you instructions on how to manually update the filter patterns.
This is the message.
“This function is not yet available, but you can manually update the protocol definitions by downloading the gzipped tar file from http://l7-filter.sourceforge.net/ and installing it in the location /var/register/system/net/L7/l7-protocols.tgz. After that you have to reboot the system.”
The problem is that those instructions are wrong. This will not update the l7 filters properly. I had to manually futz with the L7 install from a shell to get it updated.
I have since re-installed (I’m in testing with this router presently) and will be going through the L7 update process again soon so I’ll try and document it and post here.November 12, 2009 at 2:17 pm #48453
Have you figured out how to update the l7 protocol definitions?
What is the status of those anyway, are they currently maintained at all?November 12, 2009 at 4:35 pm #48454
Unfortunately I was pressed for time and had to go live with those routers before I could work out this process. We’ve been able to get by with the existing L7 definitions and custom filters for now.
Eventually I’ll need to setup a test system and work this out sometime in the future, but I’ve had a lot on my plate lately so it hasn’t been done.
However, what I did originally was manually download the L7 filters from the main site to my PC and extract them to a folder. I then read the install docs for the filters and looked at the file structure layout of the uncompressed archive as well as where the docs said those files and folders should end up on the system they were to be installed on. I SSH’d into the zeroshell box, used the command line to find the matching subdirectory, then manually downloaded and installed the filter updates there. I then rebooted to get it to pick up the new filters.
That’s the short version anyway. I wouldn’t do it on a production system the first time. It took me a couple of tries to get it right.
I think this is something that someone with the skills and time should volunteer to fix for Fulvio since it’s a powerful feature. When I looked at my options for an OS for the routers I setup, Zeroshell was the only one (that I found) that could do a transparent filter bridge as well as meet my other criteria. I’m sure others will use it for this reason as well, especially those who need to setup VoIP. It’s absolutely necessary for running a VoIP system to have bandwidth management capability.
I use the zeroshell system to reserve bandwidth for the VoIP system and prioritize it over the regular Internet traffic coming from our LAN.
You must be logged in to reply to this topic.