1SHOREWALL-TCPRI(5) [FIXME: manual] SHOREWALL-TCPRI(5)
2
3
4
6 tcpri - Shorewall file
7
9 /etc/shorewall/tcpri
10
12 This file is used to specify the priority of traffic for simple traffic
13 shaping (TC_ENABLED=Simple in shorewall.conf[1](5)). The priority band
14 of each packet is determined by the last entry that the packet matches.
15 If a packet doesn't match any entry in this file, then its priority
16 will be determined by its TOS field. The default mapping is as follows
17 but can be changed by setting the TC_PRIOMAP option in
18 shorewall.conf[1](5).
19
20 TOS Bits Means Linux Priority BAND
21 ------------------------------------------------------------
22 0x0 0 Normal Service 0 Best Effort 2
23 0x2 1 Minimize Monetary Cost 1 Filler 3
24 0x4 2 Maximize Reliability 0 Best Effort 2
25 0x6 3 mmc+mr 0 Best Effort 2
26 0x8 4 Maximize Throughput 2 Bulk 3
27 0xa 5 mmc+mt 2 Bulk 3
28 0xc 6 mr+mt 2 Bulk 3
29 0xe 7 mmc+mr+mt 2 Bulk 3
30 0x10 8 Minimize Delay 6 Interactive 1
31 0x12 9 mmc+md 6 Interactive 1
32 0x14 10 mr+md 6 Interactive 1
33 0x16 11 mmc+mr+md 6 Interactive 1
34 0x18 12 mt+md 4 Int. Bulk 2
35 0x1a 13 mmc+mt+md 4 Int. Bulk 2
36 0x1c 14 mr+mt+md 4 Int. Bulk 2
37 0x1e 15 mmc+mr+mt+md 4 Int. Bulk 2
38
39 The columns in the file are as follows.
40
41 BAND - {1|2|3}
42 Classifies matching traffic as High Priority (1), Medium Priority
43 (2) or Low Priority (3). For those interfaces listed in
44 shorewall-tcinterfaces[2](5), Priority 2 traffic will be deferred
45 so long and there is Priority 1 traffic queued and Priority 3
46 traffic will be deferred so long as there is Priority 1 or Priority
47 2 traffic to send.
48
49 PROTO - protocol
50 Optional. The name or number of an IPv4 protocol.
51
52 PORT(S) - port [,...]
53 Optional. May only be given if the the PROTO is TCP (6), UDP (17),
54 DCCP (33), SCTP (132) or UDPLITE (136). A list of one or more port
55 numbers or service names from /etc/services. Port ranges of the
56 form lowport:highport may also be included.
57
58 ADDRESS - [address]
59 Optional. The IP or MAC address that the traffic originated from.
60 MAC addresses must be given in Shorewall format. If this column
61 contains an address, then the PROTO, PORT(S) and INTERFACE column
62 must be empty ("-").
63
64 INTERFACE - [interface]
65 Optional. The logical name of an interface that traffic arrives
66 from. If given, the PROTO, PORT(S) and ADDRESS columns must be
67 empty ("-").
68
69 Note
70 INTERFACE classification of packets occurs before
71 classification by PROTO/PORT(S)/ADDRESS. So it is highly
72 recommended to place entries that specify INTERFACE at the top
73 of the file so that the rule about last entry matches is
74 preserved.
75
76 HELPER - [helper]
77 Optional. Names a Netfiler protocol helper module such as ftp, sip,
78 amanda, etc. A packet will match if it was accepted by the named
79 helper module. You can also append "-" and a port number to the
80 helper module name (e.g., ftp-21) to specify the port number that
81 the original connection was made on.
82
84 /etc/shorewall/tcpri
85
87 PRIO(8), shorewall(8), shorewall-accounting(5), shorewall-actions(5),
88 shorewall-blacklist(5), shorewall-hosts(5), shorewall_interfaces(5),
89 shorewall-ipsets(5), shorewall-maclist(5), shorewall-masq(5),
90 shorewall-nat(5), shorewall-netmap(5), shorewall-params(5),
91 shorewall-policy(5), shorewall-providers(5), shorewall-proxyarp(5),
92 shorewall-route_rules(5), shorewall-routestopped(5),
93 shorewall-rules(5), shorewall.conf(5), shorewall-secmarks(5),
94 shorewall-tcclasses(5), shorewall-tcdevices(5), shorewall-tcrules(5),
95 shorewall-tos(5), shorewall-tunnels(5), shorewall-zones(5)
96
98 1. shorewall.conf
99 http://www.shorewall.net/manpages/shorewall.conf.html
100
101 2. shorewall-tcinterfaces
102 http://www.shorewall.net/manpages/shorewall-tcinterfaces.html
103
104
105
106[FIXME: source] 09/16/2011 SHOREWALL-TCPRI(5)