I just figure it out that layer7 filter is not working, actually is making the whole qos worse.
--l7proto edonkey is catching all udp traffic , including skype.
--lt-proto bittorrent is catching ALL http traffic

so skype and http are being marked as bulk.

if you wanna make a test just do:
iptables -t mangle -F
iptables -t mangle -A PREROUTING -m layer7 --l7proto bittorrent -j MARK --set-mark 0x4
browse some page or download some file
iptables -t mangle -L PREROUTING -v

you will see that the http traffic was marked by the bittorrent rule.

Any help with this ? For now i just disabled layer7 and i am using only ipp2p

Same here (r10697, brcm47xx). I also checked the bittorrent.pat... and it is the same file of the one contained on the lastest patterns update released on sourceforge by l7 project (update dated 20-02-2008). So... the bittorrent protocol pattern is fine... there's a bug somewhere in the l7 filter code... probably in the iptable library (not the kernel module).

i also think so. I can use the same patterns in my linux and it works right. Some wrong with the kernel module.

If layer7 compiles it does not automatically mean a program works at all...

(Last edited by forum2008 on 7 Apr 2008, 20:53)