-
Notifications
You must be signed in to change notification settings - Fork 146
/
Traffic-Control-tcng-HTB-HOWTO.xml
946 lines (906 loc) · 37.2 KB
/
Traffic-Control-tcng-HTB-HOWTO.xml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
740
741
742
743
744
745
746
747
748
749
750
751
752
753
754
755
756
757
758
759
760
761
762
763
764
765
766
767
768
769
770
771
772
773
774
775
776
777
778
779
780
781
782
783
784
785
786
787
788
789
790
791
792
793
794
795
796
797
798
799
800
801
802
803
804
805
806
807
808
809
810
811
812
813
814
815
816
817
818
819
820
821
822
823
824
825
826
827
828
829
830
831
832
833
834
835
836
837
838
839
840
841
842
843
844
845
846
847
848
849
850
851
852
853
854
855
856
857
858
859
860
861
862
863
864
865
866
867
868
869
870
871
872
873
874
875
876
877
878
879
880
881
882
883
884
885
886
887
888
889
890
891
892
893
894
895
896
897
898
899
900
901
902
903
904
905
906
907
908
909
910
911
912
913
914
915
916
917
918
919
920
921
922
923
924
925
926
927
928
929
930
931
932
933
934
935
936
937
938
939
940
941
942
943
944
945
946
<?xml version='1.0'?>
<!DOCTYPE article PUBLIC "-//OASIS//DTD DocBook XML V4.2//EN"
"http://www.oasis-open.org/docbook/xml/4.2/docbookx.dtd" [
<!ENTITY version "1.0.1" >
<!ENTITY pubdate "April 2006" >
<!ENTITY email "<email>martin@linux-ip.net</email>" >
]>
<article lang="en">
<articleinfo>
<title>Traffic Control using tcng and HTB HOWTO</title>
<subtitle>Version &version;</subtitle>
<author>
<firstname>Martin</firstname>
<othername>A.</othername>
<surname>Brown</surname>
<affiliation>
<orgname>
<ulink url="http://linux-ip.net/">linux-ip.net</ulink>
</orgname>
<orgdiv>Network Administration</orgdiv>
<address><email>martin@linux-ip.net</email></address>
</affiliation>
</author>
<pubdate>&pubdate;</pubdate>
<legalnotice id="legalnotice">
<para>© 2006, Martin A. Brown</para>
<blockquote>
<para>Permission is granted to copy, distribute and/or modify this document under the terms of the GNU Free Documentation License, Version 1.1 or any later version published by the Free Software Foundation; with no invariant sections, with no Front-Cover Texts, with no Back-Cover Text. A copy of the license is located at <ulink url="http://www.gnu.org/licenses/fdl.html">www.gnu.org/copyleft/fdl.html</ulink>.</para>
</blockquote>
</legalnotice>
<revhistory id="revhistory">
<revision>
<revnumber>1.0.1</revnumber>
<date>2006-10-28</date>
<authorinitials>MAB</authorinitials>
<revremark>Updating contact information</revremark>
</revision>
<revision>
<revnumber>1.0</revnumber>
<date>2003-04-16</date>
<authorinitials>tab</authorinitials>
<revremark>Initial Release, reviewed by LDP</revremark>
</revision>
<revision>
<revnumber>0.5</revnumber>
<date>2002-04-01</date>
<authorinitials>MAB</authorinitials>
<revremark>submit to tldp, rename/retitle with HOWTO</revremark>
</revision>
<revision>
<revnumber>0.4</revnumber>
<date>2002-03-31</date>
<authorinitials>MAB</authorinitials>
<revremark>new example, bucket crash course</revremark>
</revision>
<revision>
<revnumber>0.3</revnumber>
<date>2002-03-16</date>
<authorinitials>MAB</authorinitials>
<revremark>corrections and notes from Jacob Teplitsky, raptor and Joshua
Heling</revremark>
</revision>
<revision>
<revnumber>0.2</revnumber>
<date>2002-03-15</date>
<authorinitials>MAB</authorinitials>
<revremark>links, cleanup, publish</revremark>
</revision>
<revision>
<revnumber>0.1</revnumber>
<date>2002-03-14</date>
<authorinitials>MAB</authorinitials>
<revremark>initial revision</revremark>
</revision>
</revhistory>
</articleinfo>
<section id="intro">
<title>Introduction</title>
<para>
This is a brief tutorial on using <command>tcng</command>
(<ulink url="http://tcng.sourceforge.net">Traffic Control Next
Generation</ulink>) with HTB
(<ulink url="http://luxik.cdi.cz/~devik/qos/htb/">Hierarchical Token
Bucket</ulink>) to perform traffic shaping on a Linux machine.
</para>
<para>
This tutorial is intended for systems administrators who have
<itemizedlist>
<listitem>
<para>
AT LEAST, a basic understanding of traffic control
</para>
</listitem>
<listitem>
<para>
EITHER the capability to compile iproute2 and tcng from source
</para>
<para>
OR the capability of building RPMS from provided SRPMs
</para>
</listitem>
<listitem>
<para>
EITHER a modular kernel with support for htb and dsmark
</para>
<para>
OR capability to compile a kernel with support for htb and dsmark
</para>
</listitem>
</itemizedlist>
<note>
<para>This article is neither comprehensive nor authoritative. The
author solicits positive and negative feedback at &email;. Corrections,
additions, and further examples are always welcome.</para>
</note>
</para>
<section id="intro-tc">
<title>What is traffic control and how does it work?</title>
<para>
Traffic control is the term given to the entire packet queuing
subsystem in a network or network device. Traffic control consists of
several distinct operations. Classifying is a mechanism by which to
identify packets and place them in individual flows or classes.
Policing is a mechanism by which one limits the number of packets or
bytes in a stream matching a particular classification. Scheduling is
the decision-making process by which packets are ordered and re-ordered
for transmission. Shaping is the process by which packets are delayed
and transmitted to produce an even and predictable flow rate.
</para>
<para>
These many characteristics of a traffic control system can be combined
in complex ways to reserve bandwidth for a particular flow (or
application) or to limit the amount of bandwidth available to a
particular flow or application.
</para>
<para>
One of the key concepts of traffic control is the concept of tokens.
A policing or shaping implementation needs to calculate the number of
bytes or packets which have passed at what rate. Each packet or byte
(depending on the implementation), corresponds to a token, and the
policing or shaping implementation will only transmit or pass the packet
if it has a token available. A common metaphorical container in
which an implementation keeps its token is the bucket. In short, a
bucket represents the both the number of tokens which can be used
instantaneously (the size of the bucket), and the rate at which the
tokens are replenished (how fast the bucket gets refilled).
</para>
<para>
See
<xref linkend="intro-htb"/> for an example of buckets in a linux traffic
control system.
</para>
<para>
Under linux, traffic control has historically been a complex
endeavor. The <command>tc</command> command line tool provides an
interface to the kernel structures which perform the shaping,
scheduling, policing and classifying. The syntax of this command is,
however, arcane. The <command>tcng</command> project provides a much
friendlier interface to the human by layering a language on top of the
powerful <command>tc</command> command line tool. By writing traffic
control configurations in <command>tcng</command> they become easily
maintainable, less arcane, and importantly also more portable.
</para>
<para>
</para>
</section>
<section id="intro-htb">
<title>What is htb?</title>
<para>
<ulink url="http://luxik.cdi.cz/~devik/qos/htb/">Hierarchichal Token
Bucket</ulink> is a classful qdisc written by Martin Devera
with a simpler set of
configuration parameters than CBQ. There is a great deal of
documentation on the author's site and also on
<ulink url="http://www.docum.org/">Stef Coene's website</ulink> about
HTB and its uses. Below is a very brief sketch of the HTB system.
</para>
<para>
Conceptually, HTB is an arbitrary number of token buckets arranged in a
hierarchy (yes, you probably could have figured that out without my
sentence). Let's consider the simplest scenario.
The primary egress queuing discipline on any device is known as
the <constant>root</constant> qdisc.
</para>
<para>
The <constant>root</constant> qdisc will contain one class (complex
scenarios could have multiple classes attached to the
<constant>root</constant> qdisc). This single HTB class will be set
with two parameters, a <constant>rate</constant> and a
<constant>ceil</constant>. These values should be the same for the
top-level class, and will represent the total
available bandwidth on the link.
</para>
<para>
In HTB, <constant>rate</constant> means the guaranteed bandwidth
available for a given class and <constant>ceil</constant> is short for
ceiling, which indicates the maximum bandwidth that class is allowed to
consume. Any bandwidth used between <constant>rate</constant> and
<constant>ceil</constant> is borrowed from a parent class, hence the
suggestion that <constant>rate</constant> and <constant>ceil</constant>
be the same in the top-level class.
</para>
<para>
A number of children classes can be made under this class, each of which
can be allocated some amount of the available bandwidth from the parent
class. In these children classes, the <constant>rate</constant> and
<constant>ceil</constant> parameter values need not be the same as
suggested for the parent class. This allows you to reserve a specified
amount of bandwidth to a particular class. It also
allows HTB to calculate the ratio of distribution of available bandwidth
to the ratios of the classes themselves. This should be more apparent
in the examples below.
</para>
<para>
Hierarchical Token Bucket implements a classful queuing mechanism for
the linux traffic control system, and provides <constant>rate</constant>
and <constant>ceil</constant> to allow the user to control the absolute
bandwidth to particular classes of traffic as well as indicate the ratio
of distribution of bandwidth when extra bandwidth becomes available (up
to <constant>ceil</constant>).
</para>
<para>
Keep in mind when choosing the bandwidth for your top-level class that
traffic shaping only helps if you are the bottleneck between your LAN
and the Internet. Typically, this is the case in home and office
network environments, where an entire LAN is serviced by a DSL or T1
connection.
</para>
<para>
In practice, this means that you should probably set the bandwidth for
your top-level class to your available bandwidth minus a fraction of
that bandwidth.
</para>
</section>
<section id="intro-tcng">
<title>What is <command>tcng</command>?</title>
<para>
<ulink url="http://tcng.sourceforge.net/">Traffic Control Next
Generation (tcng)</ulink> is a project by Werner Almesberger to provide
a powerful, abstract, and uniform language in which to describe traffic
control structures. The <command>tcc</command> parser in the
<command>tcng</command> distribution transforms tcng the language into a
number of output formats. By default, <command>tcc</command> will read
a file (specified as an argument or as STDIN) and print to STDOUT the
series of <command>tc</command> commands (see
<command>iproute2</command> below) required to create the desired traffic
control structure in the kernel.
</para>
<para>
Consult the
<ulink url="http://linux-ip.net/gl/tcng/node159.html">parameter
reference for <command>tcng</command></ulink> to see the supported
queuing disciplines. Jacob Teplitsky, active on the
<ulink url="http://lartc.org/#mailinglist">LARTC mailing list</ulink>
and a contributor to the tcng project,
wrote the htb support for <command>tcng</command>.
</para>
<para>
The <command>tcc</command> tool can produce a number of different types
of output, but this document will only consider the conventional and
default output. Consult the
<ulink url="http://linux-ip.net/gl/tcng/">TCNG manual</ulink> for
more detailed information about the use of <command>tcng</command>.
</para>
<para>
The
<command>tcsim</command> tool is a traffic control simulator which
accepts tcng configuration files and reads a control language to
simulate the behaviour of a kernel sending and receiving packets with
the specified control structures. Although <command>tcsim</command>
is a significant portion of the <command>tcng</command> project,
<command>tcsim</command> will not be covered here at all.
</para>
</section>
</section>
<section id="requirements">
<title>Requirements</title>
<para>
There are a few requirements in order for the
<link linkend="requirements-kernel">kernel to support HTB and
DSMARK</link>,
<link linkend="requirements-tc">tc to support HTB and DSMARK</link>, and
<link linkend="requirements-tcng">tcng itself</link>.
</para>
<para>
Specifically, support for HTB in the kernel and tc is absolutely required
in order for this tutorial to be remotely useful (refer to the title if
htere is any doubt in your mind). DSMARK support is, strictly speaking,
optional, although some
<link linkend="examples">examples</link> (class selection path, in
particular, but maybe others) may not operate without dsmark support.
</para>
<section id="requirements-kernel">
<title>kernel requirements</title>
<para>
The kernel requirements are very easy to meet. Kernel 2.4.20 and newer
include support for HTB and dsmark, so simply be certain that these
options are turned on in the QoS/Fair Queuing portion of your kernel
configuration. For a brief summary of the options to select in kernel
configuration, visit
<ulink url="http://diffserv.sourceforge.net/#24">the DiffServ project
kernel configuration notes</ulink>.
</para>
<para>
For kernels older than 2.4.20, the following
<ulink url="http://luxik.cdi.cz/~devik/qos/htb/v3/htb3.6-020525.tgz">tarball
containing a patch</ulink> should be applied to your 2.4.17 or newer
kernel tree.
</para>
</section>
<section id="requirements-tc">
<title><command>tc</command> requirements</title>
<para>
The <command>tc</command> command is a part of the
<command>iproute2</command> utility suite. For general documentation on
<command>iproute2</command>, see
<ulink url="http://linux-ip.net/">http://linux-ip.net/</ulink> and
<ulink url="http://linux-ip.net/gl/ip-cref/">the
<command>iproute2</command> manual</ulink>. The software itself is
available directly from
<ulink url="ftp://ftp.inr.ac.ru/ip-routing/">Alexey Kuznetsov'z FTP
archive</ulink> but commonly also via packages supplied with your
linux distribution. If your distribution can make use of RPMS, you can
download this
<ulink url="http://linux-ip.net/traffic-control/iproute-2.4.7-7.src.rpm">SRPM</ulink>
and compile it on your own system.
</para>
<para>
If you need to compile <command>iproute2</command> yourself, use the
<ulink url="http://luxik.cdi.cz/~devik/qos/htb/v3/htb3.6-020525.tgz">patch
to <command>tc</command> from this tarball</ulink> at
<ulink url="http://luxik.cdi.cz/~devik/qos/htb/">Martin Devera's HTB
site</ulink> in order to provide support for HTB in
<command>tc</command>.
</para>
<para>
Your <command>tc</command> will also need to support dsmark, the
diffserv marking mechanism. Fortunately, this is a simple change to
the <filename>Config</filename> file from the
<command>iproute2</command> source package. Simply change
<computeroutput>TC_CONFIG_DIFFSERV=n</computeroutput> to
<computeroutput>TC_CONFIG_DIFFSERV=y</computeroutput> and recompile.
</para>
<para>
The
<ulink url="http://linux-ip.net/traffic-control/iproute-2.4.7-7.src.rpm">SRPM</ulink>
creates a <command>tc</command> binary with support for
dsmark and for HTB, both of which are required for this example.
</para>
</section>
<section id="requirements-tcng">
<title><command>tcng</command> requirements</title>
<para>
Support for <command>tcng</command> is the easiest part of the process.
Simply untar the tcng source and run <userinput>./configure
--no-tcsim</userinput> before compiling.
</para>
<para>
If you are on an RPM-based system, you can use the SPEC file in
<filename>tcng/build/tcng.spec</filename> to build for your
distribution, or you can download and compile this
<ulink url="http://linux-ip.net/traffic-control/tcng-9d-1.src.rpm">SRPM</ulink>.
The SRPM produces two packages, tcc and tcc-devel. You need only tcc to
create configurations.
</para>
<para>
In order to run the <command>tcc</command> parser, you will also need to
have the <command>cpp</command> package installed.
<command>tcc</command> uses cpp.
</para>
</section>
</section>
<section id="examples">
<title>Configuration examples</title>
<para>
Examples shown here will be modified examples of downloadable
configurations available in
<ulink url="http://linux-ip.net/code/tcng/">this directory</ulink>.
</para>
<para>
These examples can be used as standalone configuration files to be fed
into a <command>tcc</command> parser, or they can be used in
conjunction with the example
<ulink url="http://linux-ip.net/code/tcng/tcng.init">SysV startup
script</ulink>. The startup script is a modification of a
<ulink url="http://mailman.ds9a.nl/pipermail/lartc/2002q4/005411.html">script
posted on the LARTC mailing list by raptor</ulink>.
</para>
<para>
If you are going to use the above startup script, take a look at
this example <filename>/etc/sysconfig/tcng</filename>:
</para>
<example id="ex-sysconfig-tcng">
<title><filename>/etc/sysconfig/tcng</filename></title>
<programlisting>
# - tcng meta-configuration file
# (I never meta-configuration file I didn't like)
#<!-- trick XML parser: file is CDATA --><![CDATA[
# -- 2003-03-15 created; -MAB
# -- 2003-03-31 modified to allow ENVAR override; -MAB
#
# -- this directory will hold all of the tcng configurations
# used on this host
#
TCCONFBASEDIR=${TCCONFBASEDIR:-/etc/sysconfig/tcng-configs}
# -- this is the active, desired tcng configuration
# note, that, because tcng provides the #include construct,
# the modularity of configuration can be built into the
# configuration files in $TCCONFBASEDIR
#
TCCONF=${TCCONF:-$TCCONFBASEDIR/global.tcc}
tcstats=${tcstats:-no} # -- will suppress statistical output
tcstats=${tcstats:-yes} # -- will throw the "-s" option to tc
tcdebug=${tcdebug:-0} # -- for typical startup script usage
tcdebug=${tcdebug:-1} # -- for a bit of information about what's happening
tcdebug=${tcdebug:-2} # -- for debugging information
#
#
# -- an additional measure to take, you can override the default tc and tcc
# command line utilities by specifying their pathnames here, for example:
#
# tc=/usr/local/bin/tc
# tcc=/usr/local/tcng/bin/tcc
#
#]]><!-- end of XML CDATA trick -->
</programlisting>
</example>
<section id="examples-adsl">
<title>Using tcng to shape download only</title>
<para>
Many general concepts will be introduced with this example. This
example can be compiled to its <command>tc</command> output with the
command <userinput>tcc
<filename>class-selection-path.tcc</filename></userinput>.
</para>
<example id="ex-example-0">
<title><filename>/etc/sysconfig/tcng/class-selection-path.tcc</filename></title>
<programlisting>
/*
* Simply commented example of a tcng traffic control file.
*
* Martin A. Brown &email;
*
* Example: Using class selection path.
*
* (If you are reading the processed output in HTML, the callouts are
* clickable links to the description text.)
*
*/
#include "fields.tc" <co id="ex-0-includes" linkends="ex-0-includes-text"/>
#include "ports.tc"
#define INTERFACE eth0 <co id="ex-0-defines" linkends="ex-0-defines-text"/>
dev INTERFACE {
egress { <co id="ex-0-egress" linkends="ex-0-egress-text"/>
/* In class selection path, the filters come first! DSmark */ <co id="ex-0-csp" linkends="ex-0-csp-text"/>
class ( <$ssh> ) if tcp_sport == 22 && ip_tos_delay == 1 ;
class ( <$audio> ) if tcp_sport == 554 || tcp_dport == 7070 ;
class ( <$bulk> ) \
if tcp_sport == PORT_SSH || tcp_dport == PORT_HTTP ; <co id="ex-0-portusage" linkends="ex-0-portusage-text"/>
class ( <$other> ) if 1 ; <co id="ex-0-leftover" linkends="ex-0-leftover-text"/>
/* section in which we configure the qdiscs and classes */
htb () { <co id="ex-0-root" linkends="ex-0-root-text"/>
class ( rate 600kbps, ceil 600kbps ) { <co id="ex-0-topclass" linkends="ex-0-topclass-text"/>
$ssh = class ( rate 64kbps, ceil 128kbps ) { sfq; } ;
<co id="ex-0-classvariable" linkends="ex-0-classvariable-text"/> $audio = class ( rate 128kbps, ceil 128kbps ) { sfq; } ;
$bulk = class ( rate 256kbps, ceil 512kbps ) { sfq; } ;
$other = class ( rate 128kbps, ceil 384kbps ) { sfq; } ; <co id="ex-0-embedsfq" linkends="ex-0-embedsfq-text"/>
}
}
}
}
</programlisting>
<calloutlist>
<callout
arearefs="ex-0-includes"
id="ex-0-includes-text">
<para>
The <command>tcng</command> language provides support for C-style
include directives which can include any file. Files are included
relative to the current directory or the <command>tcng</command>
library (normally <filename>/usr/lib/tcng/include</filename>).
Strictly speaking, it is not necessary to
<constant>#include</constant> <filename>ports.tc</filename> and
<filename>fields.tc</filename>, because
<command>tcc</command> will include these by default.
</para>
<para>
The use of <constant>#include</constant> can allow for flexible
definition of variables and inclusion of common traffic control
elements.
</para>
<para>
See also the tcng manual
<ulink url="http://linux-ip.net/gl/tcng/node35.html">on
includes</ulink>.
</para>
</callout>
<callout
arearefs="ex-0-defines"
id="ex-0-defines-text">
<para>
These are CPP directives. The <constant>#define</constant>
can be used to create macros or constants. For more on their use,
you should see the <command>tcng</command> manual
<ulink url="http://linux-ip.net/gl/tcng/node111.html">on
variables</ulink>.
</para>
</callout>
<callout
arearefs="ex-0-egress"
id="ex-0-egress-text">
<para>
The <constant>egress</constant> keyword is synonymous with the
<constant>dsmark</constant> keyword. The example here uses
<ulink url="http://linux-ip.net/gl/tcng/node32.html">class
selection path</ulink>. It is the use of the
<constant>egress</constant> keyword in this configuration which
requires dsmark support in the kernel and <command>tc</command>.
</para>
</callout>
<callout
arearefs="ex-0-csp"
id="ex-0-csp-text">
<para>
Class selection path is one approach to traffic shaping. In class
selection path, the packet is marked (DiffServ mark) upon entry
into the router. The router may take any number of actions or
apply any number of policing, scheduling or shaping actions on the
packet as a result of this initial classification.
</para>
<para>
Consult the <command>tcng</command> manual
<ulink url="http://linux-ip.net/gl/tcng/node32.html">on class
selection path</ulink> for further details.
</para>
</callout>
<callout
arearefs="ex-0-portusage"
id="ex-0-portusage-text">
<para>
This example shows the use of names for the ports instead of
numbers. This is one of the conveniences of
<command>tcng</command> afforded by the automatic inclusion of
<filename>ports.tc</filename>. The ports are named in accordance
with IANA port names. See
<ulink url="http://www.iana.org/assignments/port-numbers">IANA's
registered ports</ulink> for these names or examine the file
<filename>ports.tc</filename>.
</para>
<para>
Names and numbers are equally acceptable and valid.
</para>
</callout>
<callout
arearefs="ex-0-leftover"
id="ex-0-leftover-text">
<para>
Note this peculiar construct which classifies any packet which
have not yet been classified. Any packet which has not been
classified by the above classifiers is put into the class "$other"
here. The <constant>if 1</constant> construct can be used to
classify the remainder of unclassified traffic.
</para>
</callout>
<callout
arearefs="ex-0-root"
id="ex-0-root-text">
<para>
This is the creation of the root qdisc which is attached to
device, <constant>eth0</constant> in this case. Consult the
reference material in the <command>tcng</command>
<ulink url="http://linux-ip.net/gl/tcng/node159.html">appendix on
queuing discipline parameters</ulink> for valid parameters to
each qdisc. Any qdisc parameters can be inserted into the
parentheses in the same fashion as the class parameters further
below in the example. If no parameters need be specified, the
parentheses are optional.
</para>
</callout>
<callout
arearefs="ex-0-topclass"
id="ex-0-topclass-text">
<para>
The top level class in this example sets the maximum bandwidth
allowed through this class. Let's assume that
<constant>eth0</constant> is the inside network interface of a
machine. This limits the total bandwidth to 600 kilobits per
second transmitted to the internal network.
</para>
<para>
The parameters
<constant>rate</constant> and <constant>ceil</constant> should be
familiar to anybody who has used HTB. These are HTB specific
parameters and are translated properly by the
<command>tcc</command> utility. See the table
<link linkend="tb-misc-rates">on <command>tcng</command> rate
and speed specification</link>.
</para>
</callout>
<callout
arearefs="ex-0-classvariable"
id="ex-0-classvariable-text">
<para>
This is the assignment of a class to a variable. This is commonly
done as part of class selection path.
</para>
</callout>
<callout
arearefs="ex-0-embedsfq"
id="ex-0-embedsfq-text">
<para>
As suggested by Martin Devera on the HTB homepage, an embedded SFQ
gives each class a fair queuing algorithm for distribution of
resources to the contenders passing packets through that class.
Note the absence of any parameters to the embedded queuing
discipline.
</para>
<para>
If no queuing discipline is specified for leaf
classes, they contain the default, a pfifo_fast qdisc. The
inclusion of a stochastic fair queuing qdisc in the leaf classes
inhibits the ability of a single connection to dominate in a given
class.
</para>
</callout>
</calloutlist>
</example>
<para>
</para>
<para>
</para>
</section>
<section id="examples-1">
<title>Using a two-rate three-color meter</title>
<para>
</para>
<example id="ex-example-1">
<title><filename>/etc/sysconfig/tcng/two-rate-three-color-meter.tcc</filename></title>
<programlisting>
/*
* Simply commented example of a tcng traffic control file.
*
* Martin A. Brown &email;
*
* Example: Using a meter.
*
* (If you are reading the processed output in HTML, the callouts are
* clickable links to the description text.)
*
*/
#define EXCEPTION 192.168.137.50
#define INTERFACE eth0
$meter = trTCM( cir 128kbps, cbs 10kB, pir 256kbps, pbs 10kB ); <co id="ex-1-mdefine" linkends="ex-1-mdefine-text"/>
dev eth0 {
egress {
class ( <$full> ) if ip_src == EXCEPTION ; <co id="ex-1-notmetered" linkends="ex-1-notmetered-text"/>
class ( <$fast> ) if trTCM_green( $meter ) ; <co id="ex-1-green" linkends="ex-1-green-text"/>
class ( <$slow> ) if trTCM_yellow( $meter ) ; <co id="ex-1-yellow" linkends="ex-1-yellow-text"/>
drop if trTCM_red( $meter ) ; <co id="ex-1-red" linkends="ex-1-red-text"/>
htb {
class ( rate 600kbps, ceil 600kbps ) {
$fast = class ( rate 256kbps, ceil 256kbps ) { sfq; } ;
$slow = class ( rate 128kbps, ceil 128kbps ) { sfq; } ;
$full = class ( rate 600kbps, ceil 600kbps ) { sfq; } ;
}
}
}
}
</programlisting>
<calloutlist>
<callout
arearefs="ex-1-mdefine"
id="ex-1-mdefine-text">
<para>
This is the declaration of the meter to be used for classifying
traffic. The underlying technology used to implement this meter
is policing. See the
<ulink url="http://linux-ip.net/gl/tcng/node53.html">tcng manual
on meters</ulink> for the different types of meters.
</para>
<para>
This meter is a two-rate three-color meter, the most complex meter
available in the <command>tcng</command> language. This meter
returns the colors green, yellow and red, based on the rates
offered in the committed and peak buckets. If the metered rate
exceeds the committed rate, this meter will turn yellow, and if
the metered rate exceeds the peak rate, this meter will turn red.
</para>
<para>
The variable <varname>$meter</varname> can be operated on by
functions applicable to the meter type. In this case, there are
three functions available for testing <varname>$meter</varname>'s
state,
<function>trTCM_green</function>, <function>trTCM_yellow</function>,
and <function>trTCM_red</function>. For efficiency, consider also
the
<ulink url="http://linux-ip.net/gl/tcng/node58.html">accelerated
counterparts</ulink>.
</para>
</callout>
<callout
arearefs="ex-1-notmetered"
id="ex-1-notmetered-text">
<para>
In this example, the IP 192.168.137.50 is specifically excluded
from the policing control applied to traffic departing on eth0.
</para>
</callout>
<callout
arearefs="ex-1-green"
id="ex-1-green-text">
<para>
Up to the committed information rate (<constant>cir</constant>),
packets will pass through this class. Tokens will be removed from
the <constant>cir</constant>/<constant>cbs</constant> bucket.
</para>
<para>
The meter is green.
</para>
</callout>
<callout
arearefs="ex-1-yellow"
id="ex-1-yellow-text">
<para>
Traffic flow exceeding the
<constant>cir</constant>/<constant>cbs</constant> bucket will be
classified here. The
<constant>pir</constant>/<constant>pbs</constant> bucket
(<constant>pir</constant> is peak information rate,
<constant>pbs</constant> is peak burst size). This allows a
particular flow to be guaranteed one class of service up to a
given rate, and then be reclassified above that rate.
</para>
<para>
The meter is yellow.
</para>
</callout>
<callout
arearefs="ex-1-red"
id="ex-1-red-text">
<para>
Traffic flow exceeding the
<constant>pir</constant>/<constant>pbs</constant> bucket will be
classified here. A common configuration causes traffic to be
dropped above peak rate, although traffic could be re-classified
into a best-effort class from a guaranteed class.
</para>
<para>
The meter is red.
</para>
</callout>
</calloutlist>
</example>
<para>
</para>
</section>
<!--
** must add more examples **
-->
<!--
<section id="examples-2">
<title></title>
<para>
</para>
</section>
<section id="examples-3">
<title></title>
<para>
</para>
</section>
-->
</section>
<section id="misc">
<title>Miscellaneous Notes</title>
<para>
Thankfully, <command>tcng</command> does away with one of the minor
annoyances of <command>tc</command>. The following table maps the syntax
and convention of these tools with English equivalents.
</para>
<table id="tb-misc-rates">
<title>Speed/Rate syntax: tcng vs. tc</title>
<tgroup cols="3" align="left" colsep="1" rowsep="1">
<thead>
<row>
<entry>tcng</entry>
<entry>English</entry>
<entry>tc</entry>
</row>
</thead>
<tbody>
<row>
<entry>bps</entry>
<entry>bit(s) per second</entry>
<entry>bit</entry>
</row>
<row>
<entry>Bps</entry>
<entry>byte(s) per second</entry>
<entry>bps (argh!)</entry>
</row>
<row>
<entry>kbps</entry>
<entry>kilobit(s) per second</entry>
<entry>kbit</entry>
</row>
<row>
<entry>kBps</entry>
<entry>kilobyte(s) per second</entry>
<entry>kbps</entry>
</row>
<row>
<entry>Mbps</entry>
<entry>megabit(s) per second</entry>
<entry>mbit or Mbit</entry>
</row>
<row>
<entry>MBps</entry>
<entry>megabyte(s) per second</entry>
<entry>mbps or Mbps</entry>
</row>
<row>
<entry>pps</entry>
<entry>packet per second</entry>
<entry>??</entry>
</row>
</tbody>
</tgroup>
</table>
<para>
Note that this means a slight adjustment for longtime users of
<command>tc</command>, but a much better choice for intuitive usablity for
English speakers.
</para>
<para>
For example, we can use conventional expressions of rate in
<command>tcng</command> configurations: <userinput>100Mbps</userinput>,
<userinput>128kbps</userinput>, and even <userinput>2Gpps</userinput>.
See also the <command>tcng</command> manual
<ulink url="http://linux-ip.net/gl/tcng/node21.html">on units</ulink>.
</para>
<para>
In order for traffic control to be effective, it is important to
understand where the bottlenecks are. In most cases, you'll want to
perform the traffic control at or near the bottleneck.
</para>
<para>
</para>
</section>
<section id="further">
<title>Links and Further documentation</title>
<para>
</para>
<itemizedlist>
<listitem>
<para>
<ulink url="http://diffserv.sourceforge.net/">the linux DiffServ
project</ulink>
</para>
</listitem>
<listitem>
<para>
<ulink url="http://luxik.cdi.cz/~devik/qos/htb/">HTB
site (<emphasis>Martin <quote>devik</quote> Devera</emphasis>)</ulink>
</para>
</listitem>
<listitem>
<para>
<ulink url="http://tcng.sourceforge.net/">Traffic Control Next
Generation (<command>tcng</command>)</ulink>
</para>
<para>
<ulink url="http://linux-ip.net/gl/tcng/">TCNG manual
(<emphasis>Werner Almesberger</emphasis>)</ulink>
</para>
</listitem>
<listitem>
<para>
<ulink url="ftp://ftp.inr.ac.ru/ip-routing/">iproute2
(<emphasis>Alexey Kuznetsov</emphasis>)</ulink>
</para>
<para>
<ulink url="http://linux-ip.net/gl/ip-cref/"><command>iproute2</command>
manual (<emphasis>Alexey Kuznetsov</emphasis>)</ulink>
</para>
</listitem>
<listitem>
<para>
<ulink url="http://www.docum.org/">Research and documentation on
traffic control under linux (<emphasis>Stef Coene</emphasis>)</ulink>
</para>
</listitem>
<listitem>
<para>
<ulink url="http://lartc.org/howto/">LARTC HOWTO (<emphasis>bert
hubert, et. al.</emphasis>)</ulink>
</para>
</listitem>
<listitem>
<para>
<ulink url="http://linux-ip.net/">guide to IP networking with
linux (<emphasis>Martin A. Brown</emphasis>)</ulink>
</para>
</listitem>
</itemizedlist>
</section>
</article>