LARTC
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [LARTC][RESOLVED] Layer7 module doesn't detect nothing on my bridge

from [Sébastien CRAMATTE] [Permanent Link][Original]
To: lartc@mailman.ds9a.nl
Subject: Re: [LARTC][RESOLVED] Layer7 module doesn't detect nothing on my bridge with a 2.6.18.3 kernel
From: Sébastien CRAMATTE <s.cramatte@wanadoo.fr>
Date: Thu, 14 Dec 2006 02:35:08 +0100
Delivered-to: sp-com-lists@consult.net
Delivered-to: lartc-list@securepoint.com
Delivered-to: lartc@outpost.ds9a.nl
List-archive: <http://mailman.ds9a.nl/pipermail/lartc>
List-help: <mailto:lartc-request@mailman.ds9a.nl?subject=help>
List-id: "Mailinglist of the Linux Advanced Routing &amp; Traffic Control project" <lartc.mailman.ds9a.nl>
List-post: <mailto:lartc@mailman.ds9a.nl>
List-subscribe: <http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc>, <mailto:lartc-request@mailman.ds9a.nl?subject=subscribe>
List-unsubscribe: <http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc>, <mailto:lartc-request@mailman.ds9a.nl?subject=unsubscribe>
Organization: Zen Soluciones
Sender: lartc-bounces@mailman.ds9a.nl
User-agent: Thunderbird 1.5.0.8 (Windows/20061025) 
Hello,

loading conntrack resolve my problem ...
layer 7 have got a dependency with conntrack but doesn't load it
automaticaly...
so module is loaded  but no packets match with  l7-protocols ...

reported as a bug
http://sourceforge.net/tracker/index.php?func=detail&aid=1596065&group_id=80085&atid=558668



regards



ArcosCom Linux User a écrit :
> With:
>    linux-2.6.18.5
>    iptables-1.3.7
>    layer7-2.7
>
> Is working fine (normal and SMP configs), with linux-2.6.19.x not.
>
> See:
>
> Chain PREROUTING (policy ACCEPT 174K packets, 91M bytes)
> num   pkts bytes target     prot opt in     out     source              
> destination
> 1    13957 1482K            0    --  *      *       0.0.0.0/0           
> 0.0.0.0/0           ipp2p v0.8.2 --ipp2p
> 2    81516   66M            0    --  *      *       0.0.0.0/0           
> 0.0.0.0/0           LAYER7 l7proto edonkey
>
> Regards
>
> El Mar, 12 de Diciembre de 2006, 11:27, Sébastien CRAMATTE escribió:
>   
>> Hello
>>
>> I've setuped a QOS bridge under debian 3.1 using 2.6.18.3 kernel +
>> iptables 1.3.6
>>
>> I've patched the kernel an Iptables with esfq+layer7 without problems.
>>
>>
>> This simple script doesn't log nothing ...  And I'm sure to have  eMule
>> traffic  (I've checked with tcpdump )
>> If   I remove  " -m layer7 --l7proto edonkey \"  line  I can  see
>> iptables log in  /var/log/kern.log
>> I've test with other protocols like skype or messenger ... layer7 filter
>> seems to be simply ignored ...
>>
>> Syslog or kern.log still empty ...
>>
>> #!/bin/sh
>>
>> DEV=eth0
>> BR=br0
>> SHAPPER=CPE
>>
>> iptables -t mangle -N ${SHAPPER}
>> iptables -t mangle -A POSTROUTING -o ${BR}
>> -m physdev --physdev-out ${DEV}
>> \-j ${SHAPPER}
>>
>> iptables -t mangle -A ${SHAPPER} \
>> -m layer7 --l7proto edonkey \
>> -j LOG --log-prefix eMule
>>
>> As you can see below my eth0 and eth1  interface are not in PROMISC mode
>> because
>> I use physdev module and user iptables chain to redirect all traffic
>>
>> #ifconfig
>>
>> br0 Link encap:Ethernet HWaddr 00:30:48:87:99:28
>> inet addr:xxx.xxx.xxx.xxx Bcast: xxx.xxx.xxx.xxx Mask:255.255.255.0
>> UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
>> RX packets:146572 errors:0 dropped:0 overruns:0 frame:0
>> TX packets:14813 errors:0 dropped:0 overruns:0 carrier:0
>> collisions:0 txqueuelen:0
>> RX bytes:13160188 (12.5 MiB) TX bytes:2391735 (2.2 MiB)
>>
>> eth0 Link encap:Ethernet HWaddr 00:30:48:87:99:28
>> UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
>> RX packets:588665 errors:0 dropped:0 overruns:0 frame:0
>> TX packets:226155 errors:0 dropped:0 overruns:0 carrier:0
>> collisions:0 txqueuelen:100
>> RX bytes:170415971 (162.5 MiB) TX bytes:138342082 (131.9 MiB)
>> Base address:0xc000 Memory:f2000000-f2020000
>>
>> eth1 Link encap:Ethernet HWaddr 00:30:48:87:99:29
>> UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
>> RX packets:211410 errors:0 dropped:0 overruns:0 frame:0
>> TX packets:566435 errors:0 dropped:0 overruns:0 carrier:0
>> collisions:0 txqueuelen:100
>> RX bytes:135919959 (129.6 MiB) TX bytes:162558207 (155.0 MiB)
>> Base address:0xd100 Memory:f1000000-f1020000
>>
>> # lsmod
>> Module                  Size  Used by
>> ipt_ipp2p               6400  0
>> ipt_LOG                 5248  2
>> xt_multiport            2176  4
>> ipt_layer7              8840  14
>> cls_u32                 5636  6
>> sch_esfq                4736  10
>> xt_CLASSIFY             1024  28
>> xt_limit                1280  0
>> ipt_TOS                 1152  0
>> xt_length               1152  6
>> ipt_tos                  896  2
>> sch_htb                12544  2
>> xt_physdev              1808  2
>> floppy                 44580  0
>> e1000                 100032  0
>> ehci_hcd               22152  0
>> uhci_hcd               16012  0
>> usbcore                86148  3 ehci_hcd,uhci_hcd
>> i82875p_edac            3332  0
>> dm_mod                 34488  5
>> rtc                     6708  0
>>
>>
>>
>> Any Ideas
>> Thanks for your help
>>
>> Regards
>>
>> Sébastien
>>
>> _______________________________________________
>> LARTC mailing list
>> LARTC@mailman.ds9a.nl
>> http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
>>
>>     
>
>
>
>
>   


ArcosCom Linux User a écrit :
> With:
>    linux-2.6.18.5
>    iptables-1.3.7
>    layer7-2.7
>
> Is working fine (normal and SMP configs), with linux-2.6.19.x not.
>
> See:
>
> Chain PREROUTING (policy ACCEPT 174K packets, 91M bytes)
> num   pkts bytes target     prot opt in     out     source              
> destination
> 1    13957 1482K            0    --  *      *       0.0.0.0/0           
> 0.0.0.0/0           ipp2p v0.8.2 --ipp2p
> 2    81516   66M            0    --  *      *       0.0.0.0/0           
> 0.0.0.0/0           LAYER7 l7proto edonkey
>
> Regards
>
> El Mar, 12 de Diciembre de 2006, 11:27, Sébastien CRAMATTE escribió:
>   
>> Hello
>>
>> I've setuped a QOS bridge under debian 3.1 using 2.6.18.3 kernel +
>> iptables 1.3.6
>>
>> I've patched the kernel an Iptables with esfq+layer7 without problems.
>>
>>
>> This simple script doesn't log nothing ...  And I'm sure to have  eMule
>> traffic  (I've checked with tcpdump )
>> If   I remove  " -m layer7 --l7proto edonkey \"  line  I can  see
>> iptables log in  /var/log/kern.log
>> I've test with other protocols like skype or messenger ... layer7 filter
>> seems to be simply ignored ...
>>
>> Syslog or kern.log still empty ...
>>
>> #!/bin/sh
>>
>> DEV=eth0
>> BR=br0
>> SHAPPER=CPE
>>
>> iptables -t mangle -N ${SHAPPER}
>> iptables -t mangle -A POSTROUTING -o ${BR}
>> -m physdev --physdev-out ${DEV}
>> \-j ${SHAPPER}
>>
>> iptables -t mangle -A ${SHAPPER} \
>> -m layer7 --l7proto edonkey \
>> -j LOG --log-prefix eMule
>>
>> As you can see below my eth0 and eth1  interface are not in PROMISC mode
>> because
>> I use physdev module and user iptables chain to redirect all traffic
>>
>> #ifconfig
>>
>> br0 Link encap:Ethernet HWaddr 00:30:48:87:99:28
>> inet addr:xxx.xxx.xxx.xxx Bcast: xxx.xxx.xxx.xxx Mask:255.255.255.0
>> UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
>> RX packets:146572 errors:0 dropped:0 overruns:0 frame:0
>> TX packets:14813 errors:0 dropped:0 overruns:0 carrier:0
>> collisions:0 txqueuelen:0
>> RX bytes:13160188 (12.5 MiB) TX bytes:2391735 (2.2 MiB)
>>
>> eth0 Link encap:Ethernet HWaddr 00:30:48:87:99:28
>> UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
>> RX packets:588665 errors:0 dropped:0 overruns:0 frame:0
>> TX packets:226155 errors:0 dropped:0 overruns:0 carrier:0
>> collisions:0 txqueuelen:100
>> RX bytes:170415971 (162.5 MiB) TX bytes:138342082 (131.9 MiB)
>> Base address:0xc000 Memory:f2000000-f2020000
>>
>> eth1 Link encap:Ethernet HWaddr 00:30:48:87:99:29
>> UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
>> RX packets:211410 errors:0 dropped:0 overruns:0 frame:0
>> TX packets:566435 errors:0 dropped:0 overruns:0 carrier:0
>> collisions:0 txqueuelen:100
>> RX bytes:135919959 (129.6 MiB) TX bytes:162558207 (155.0 MiB)
>> Base address:0xd100 Memory:f1000000-f1020000
>>
>> # lsmod
>> Module                  Size  Used by
>> ipt_ipp2p               6400  0
>> ipt_LOG                 5248  2
>> xt_multiport            2176  4
>> ipt_layer7              8840  14
>> cls_u32                 5636  6
>> sch_esfq                4736  10
>> xt_CLASSIFY             1024  28
>> xt_limit                1280  0
>> ipt_TOS                 1152  0
>> xt_length               1152  6
>> ipt_tos                  896  2
>> sch_htb                12544  2
>> xt_physdev              1808  2
>> floppy                 44580  0
>> e1000                 100032  0
>> ehci_hcd               22152  0
>> uhci_hcd               16012  0
>> usbcore                86148  3 ehci_hcd,uhci_hcd
>> i82875p_edac            3332  0
>> dm_mod                 34488  5
>> rtc                     6708  0
>>
>>
>>
>> Any Ideas
>> Thanks for your help
>>
>> Regards
>>
>> Sébastien
>>
>> _______________________________________________
>> LARTC mailing list
>> LARTC@mailman.ds9a.nl
>> http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
>>
>>     
>
>
>
>
>   

_______________________________________________
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
  • Re: [LARTC][RESOLVED] Layer7 module doesn't detect nothing on my bridge with a 2.6.18.3 kernel, Sébastien CRAMATTE <=
Previous by Date:  Re: [LARTC] Layer7 module doesn't detect nothing on my bridge with a 2.6.18.3 kernel, ArcosCom Linux User
Next by Date:  Re: [LARTC] SIP, NAT, and load balancing problems, François Delawarde
Previous by Thread:  [LARTC] load balancing, Charlie Meyer
Next by Thread:  [LARTC] blocking traffic on the FORWARD chain using physdev, William Bohannan
Indexes:  [Date] [Thread] [Top] [All Lists]