On Fri, September 10, 2010 13:20, Emmanuel Noobadmin wrote: > On 9/10/10, John R Pierce <pierce at hogranch.com> wrote: >> On 09/09/10 8:51 PM, Emmanuel Noobadmin wrote: >>> So I'm wondering is tc the current and recommended method for traffic >>> shaping on CentOS or is there some newer method that has superceded >>> it? >> >> welcome to the truly absymal state of linux documentation. the TLDP >> site should be slammed off the net entirely and nuked, 12 year old >> HOWTO's talking about patches to 2.3.test aren't doing anyone any >> favors. > > To be fair, what's on it still works, at least as far as I could tell. > Just that I get quite uncomfortable not knowing what/why am I seeing > errors when I use tc to display the qdisc stats and I don't know if > just doing a filter match on dport 80 is enough or should I use the > often found method of marking in iptables and filtering on the mark. > >> put a pfsense based router on your network border, and use that to do >> the shaping :deal: > > Actually using pfsense was my original intention after reading up on > some past discussion here. Except I didn't realize I couldn't run > pfsense on top of a normal CentOS distribution and I don't have the > option of putting another machine in that particular setup for a > dedicated router/firewall box. > _______________________________________________ Note that you will only be able to control the flow of outgoing traffic to your system if you place the bandwidth control on the server endpoint. Incoming traffic needs an in-line box to so that you can access the other interface and control it's outgoing traffic (your servers incoming traffic).