Differences between current version and previous revision of RouteBasedTrafficShaping.
Other diffs: Previous Major Revision, Previous Author, or view the Annotated Edit History
Newer page: | version 2 | Last edited on Thursday, November 6, 2008 8:57:05 am | by DanielLawson | |
Older page: | version 1 | Last edited on Wednesday, November 5, 2008 4:24:39 pm | by GreigMcGill | Revert |
@@ -64,9 +64,9 @@
Step 2: Get the routes on the box doing the shaping. In our scenario, we're shaping on a different box to the one we're running our bgpd on. You may not need this setup. Either way, you need to get those routes into a "realm" which you can then shape on. We have an entry in our authorised_keys file on the firewall allowing the client to ONLY run vtysh -c 'sh ip bgp' with no password, so a simple ssh to the firewall results in the list of routes being dumped. With that in mind, here is the script (we run it hourly):
/etc/cron.hourly/getroutes
-<pre
>
+<verbatim
>
#!/bin/bash
#
# This script grabs route prefixes from bgp on the firewall and dumps them into a local route table
# This table can then be used to shape, as anything NOT in the table is international traffic
@@ -99,9 +99,9 @@
# add lookup rule
$ipcmd rule add table $table
exit 0
-</pre
>
+</verbatim
>
Step 3: Shape it! This script creates the queues and sends traffic in realm 2 to the local queue, realm 99 to the national queue, and all other traffic to the international (default) queue.
/usr/local/sbin/traffic