Merge branch 'master' of ssh://teastep@shorewall.git.sourceforge.net/gitroot/shorewall

2024-11-22 15:43:30 +01:00 · 2009-05-05 07:51:13 -07:00 · 2009-05-05 07:51:13 -07:00 · 2b4e93164e
commit 2b4e93164e
parent 624c24f2c0 9aa9371509
2 changed files with 58 additions and 8 deletions
--- a/docs/traffic_shaping.xml
+++ b/docs/traffic_shaping.xml
@ -522,6 +522,43 @@ ppp0           6000kbit         500kbit</programlisting>
                role="bold">class</emphasis> per interface.</para>
              </note>
            </listitem>
+
+            <listitem>
+              <para>occurs=<emphasis>number</emphasis> - Typically used with
+              an IPMARK entry in tcrules. Causes the rule to be replicated for
+              a total of <emphasis>number</emphasis> rules. Each rule has a
+              successively class number and mark value.</para>
+
+              <para>When 'occurs' is used:</para>
+
+              <itemizedlist>
+                <listitem>
+                  <para>The associated device may not have the 'classify'
+                  option.</para>
+                </listitem>
+
+                <listitem>
+                  <para>The class may not be the default class.</para>
+                </listitem>
+
+                <listitem>
+                  <para>The class may not have any 'tos=' options (including
+                  'tcp-ack').</para>
+                </listitem>
+
+                <listitem>
+                  <para>The class should not specify a MARK value. If one is
+                  specified, it will be ignored with a warning message.</para>
+                </listitem>
+              </itemizedlist>
+
+              <para>The 'RATE' and 'CEIL' parameters apply to each instance of
+              the class. So the total RATE represented by an entry with
+              'occurs' will be the listed RATE multiplied by
+              <emphasis>number</emphasis>. For additional information, see
+              <ulink url="manpages/shorewall-tcrules.html">tcrules</ulink>
+              (5).</para>
+            </listitem>
          </itemizedlist>
        </listitem>
      </itemizedlist>
--- a/manpages/shorewall-tcclasses.xml
+++ b/manpages/shorewall-tcclasses.xml
@ -113,7 +113,7 @@
    <variablelist>
      <varlistentry>
        <term><emphasis role="bold">INTERFACE</emphasis> -
-        <emphasis>interface</emphasis>[:<emphasis>class</emphasis>]</term>
+        <emphasis>interface</emphasis>[:<emphasis>parent</emphasis>][:<emphasis>class</emphasis>]</term>

        <listitem>
          <para>Name of <emphasis>interface</emphasis>. Each interface may be
@ -121,13 +121,16 @@
          alias (e.g., eth0:0) here; see <ulink
          url="http://www.shorewall.net/FAQ.htm#faq18">http://www.shorewall.net/FAQ.htm#faq18</ulink></para>

-          <para>If you are running Shorewall-perl 4.1.6 or later, you may
-          specify the interface number rather than the interface name. If the
-          <emphasis role="bold">classify</emphasis> option is given for the
-          interface in <ulink
+          <para>You may specify the interface number rather than the interface
+          name. If the <emphasis role="bold">classify</emphasis> option is
+          given for the interface in <ulink
          url="shorewall-tcdevices.html">shorewall-tcdevices</ulink>(5), then
          you must also specify an interface class (an integer that must be
-          unique within classes associated with this interface).</para>
+          unique within classes associated with this interface). If the
+          classify option is not given, you may still specify a
+          <emphasis>class</emphasis> or you may have Shorewall generate a
+          class number from the MARK value. Interface numbers and class
+          numbers are always assumed to be specified in hex.</para>

          <para>You may NOT specify wildcards here, e.g. if you have multiple
          ppp interfaces, you need to put them all in here!</para>
@ -135,7 +138,15 @@
          <para>Please note that you can only use interface names in here that
          have a bandwidth defined in the <ulink
          url="shorewall-tcdevices.html">shorewall-tcdevices</ulink>(5)
-          file</para>
+          file.</para>
+
+          <para>Normally, all classes defined here are sub-classes of a root
+          class that is implicitly defined from the entry in <ulink
+          url="shorewall-tcdevices.html">shorewall-tcdevices</ulink>(5). You
+          can establish a class hierarchy by specifying a
+          <emphasis>parent</emphasis> class -- the number of a class that you
+          have previously defined. The sub-class may borrow unused bandwidth
+          from its parent.</para>
        </listitem>
      </varlistentry>

@ -165,7 +176,9 @@
          <para>The minimum bandwidth this class should get, when the traffic
          load rises. If the sum of the rates in this column exceeds the
          INTERFACE's OUT-BANDWIDTH, then the OUT-BANDWIDTH limit may not be
-          honored.</para>
+          honored. Similarly, if the sum of the rates of sub-classes of a
+          class exceed the CEIL of the parent class, things don't work
+          well.</para>
        </listitem>
      </varlistentry>