Hi!

I have a wrt54GS v1.1 and i installed whiterussion rc2 a few days ago. I'm working on ingress filtering by using egress classes at the LAN interface. It is maybe a stupid idea, but it should not hang my device!
The script runs ok, but after a few seconds the device freeze.
I tried it with $LAN= eth0/br0/vlan0. Egress filtering on the ppp0 interface works.

My script:
. /etc/functions.sh

LAN=br0

DOWN_RATE=850

insmod ipt_TOS
insmod ipt_tos
insmod ipt_length
insmod sch_prio
insmod sch_htb
insmod sch_sfq
insmod sch_ingress
insmod cls_tcindex
insmod cls_fw
insmod cls_route
insmod cls_u32

tc qdisc del dev $LAN root
tc qdisc add dev $LAN root handle 1: htb default 40
tc class add dev $LAN parent 1: classid 1:1 htb rate ${DOWN_RATE}kbit burst 15k
tc class add dev $LAN parent 1:1 classid 1:10 htb rate 250kbit ceil ${DOWN_RATE}
tc class add dev $LAN parent 1:1 classid 1:20 htb rate 250kbit ceil ${DOWN_RATE}
tc class add dev $LAN parent 1:1 classid 1:30 htb rate 250kbit ceil ${DOWN_RATE}
tc class add dev $LAN parent 1:1 classid 1:40 htb rate 150kbit ceil ${DOWN_RATE}

tc qdisc add dev $LAN parent 1:10 handle 10: sfq perturb 10
tc qdisc add dev $LAN parent 1:20 handle 20: sfq perturb 10
tc qdisc add dev $LAN parent 1:30 handle 30: sfq perturb 10
tc qdisc add dev $LAN parent 1:40 handle 40: sfq perturb 10

iptables -t mangle -A POSTROUTING -o $LAN -d 192.168.1.50 -j MARK --set-mark 10
tc filter add dev $LAN protocol ip parent 1: prio 1 handle 10 fw classid 1:10

iptables -t mangle -A POSTROUTING -o $LAN -d 192.168.1.51 -j MARK --set-mark 11
tc filter add dev $LAN protocol ip parent 1: prio 1 handle 11 fw classid 1:20

iptables -t mangle -A POSTROUTING -o $LAN -d 192.168.1.52 -j MARK --set-mark 12
tc filter add dev $LAN protocol ip parent 1: prio 1 handle 12 fw classid 1:30

My package list. All from whiterussion rc2!

bridge - 1.0.6-1 - Ethernet bridging tools
busybox - 1.00-2 - Core utilities for embedded Linux systems
dnsmasq - 2.22-1 - A lightweight DNS and DHCP server
dropbear - 0.45-3 - a small SSH 2 server/client designed for small memory environments.
ipkg - 0.99.149-1 - lightweight package management system
iptables - 1.3.1-1 - The netfilter firewalling software for IPv4
iptables-extra - 1.3.1-1 - Extra plugins for iptables
kernel - 2.4.30-brcm-2 -
kmod-brcm-et - 2.4.30-brcm-2 - Proprietary driver for Broadcom Ethernet chipsets
kmod-brcm-wl - 2.4.30-brcm-2 - Proprietary driver for Broadcom Wireless chipsets
kmod-diag - 2.4.30-brcm-2 - Driver for Router LEDs and Buttons
kmod-iptables-extra - 2.4.30-brcm-2 - Extra kernel modules for iptables
kmod-ppp - 2.4.30-brcm-2 - PPP support
kmod-pppoe - 2.4.30-brcm-2 - PPP over Ethernet support
kmod-sched - 2.4.30-brcm-2 - Kernel schedulers for IP traffic
kmod-wlcompat - 2.4.30-brcm-2 - Compatibility module for using the Wireless Extension with broadcom's wl
openwrt-utils - 2 - Basic OpenWrt utilities
ppp - 2.4.3-5 - a PPP (Point-to-Point Protocol) daemon (with MPPE/MPPC support)
ppp-mod-pppoe - 2.4.3-5 - a PPPoE (PPP over Ethernet) plugin for PPP
tc - 2.6.11-050330-1 - iproute2 traffic control utility
wificonf - 2 - Replacement utility for wlconf
wireless-tools - 28.pre7-1 - Tools for setting up WiFi cards using the Wireless Extension
zlib - 1.2.2-2 - an implementation of the deflate compression method (library)

Thanks for any response!
openwrt rules!

(Last edited by nug on 2 Aug 2005, 08:57)

can you check this on an x86 system with linux kernel 2.4.30, to be sure this is not a special OpenWrt problem?

thx

i use very similar scripts to my x86 linux router at my workplace with a lot of stable kernel versions (2.4.26->2.4.31,2.6.12) ) without any problems. Unfortunately i quit a few days ago, so i can not try exactly this script and have too much work to install a vmware host.

So i think it is an openwrt problem.