www.nethd.ro

[tr3s]

Hi! First of all, i would like to say thanks for sharing this great piece of work. Good job. It will really help us (not too technical people) a lot.

Is it possible to create a client rule in webhtb for a range of ip addresses? I needed to know because I'm using dchp in providing ip address to workstations in the network.

Thanks a bunch!

[daniel]

for an ip class, example: 192.168.0.0
that meens from 192.168.0.1 to 192.168.0.254,
you can specify shosrt netmask also to reduce range, /24 example for all range like: 192.168.0.0/24

[daniel]

and option 2 are to make the rule in iptables, with any range you want, set mark of that iptables rules and in webhtb put only that mark, not ip or ip class on src-ip`s or dst-ip`s, is very simple howto use mark on iptables

[tr3s]

if i set the limit to 256, will this apply to the whole ip range already or just for a single ip address in that range? i just noticed that the speed for the ip range doesn't exceed 256 even if there are many clients connected. what i would like to implement is set the limit for every computer in the network by just creating 1 client rule.

another is i don't want to manage the http traffic (port 80) since i already have squid delay pools handling the speed limit for that. is it possible to exempt port 80 from htb?

thanks for your time and effort. more power! i can't believe there are only few people in these forum

[daniel]

to all ip range

[daniel]

for question 2: create a rule with more bandwidth or equal with delay pools, that will not affect measurement of delay pools

[tr3s]

got it. thank you

[tr3s]

it is not possible to manipulate client connections by port? my set up with delay pools is a client can initially download a file at full speed and will eventually drop the bandwidth to 16KB/s after downloading 10MB. so i'm looking at the possible solution by exempting the http port.

any other workaround?

[daniel]

it is posibile, an rule by port example:
src-ip`s: 0.0.0.0 src-ports: 80,443 dst-ip`s: 192.168.0.0/24

that will limit the web for ip`s range 192.168.0.1 - 192.168.0.254

you need imagination and science

[tr3s]

it is posibile, an rule by port example:
src-ip`s: 0.0.0.0 src-ports: 80,443 dst-ip`s: 192.168.0.0/24

that will limit the web for ip`s range 192.168.0.1 - 192.168.0.254

this is if i want to control traffic coming from port 80 and 443. how about the reverse, that is to control all other ports except port 80 and 443? let's say ports 1025-65535, i think this is the ports bit torrent and p2p applications are using. if i'm gonna do it the way you suggested, it will be a very long list of code to include all ports except 80 and 443

thanks for your support and patience. by the way, is there a documentation on how to use webhtb? i'd like to know what src-ip's, src-ports, mark, etc are for