source: system/generators/traffic_shaping_6.php@ 1

Last change on this file since 1 was 1, checked in by george, 18 years ago

Prvotní import všeho
  • Property svn:executable set to *
File size: 13.1 KB
Line 
1<?
2$Enabled = 1;
3$ClassesEnabled = 1;
4include('global.php');
5include_once('../../html/is/db.php');
6DB_Init('localhost', 'root', '', 'is');
7
8include_once('../../html/finance/include.php');
9NactiMesicniParametry(0);
10
11// Generate traffic shaping rules
12//$TotalMaxSpeedIn = 2048; //$RealMaxSpeed; //1536;
13//$TotalMaxSpeedOut = 2048; //$RealMaxSpeed; //1536;
14//$UsersMaxSpeedIn = 1900; //$MaxSpeed;
15//$UsersMaxSpeedOut = 1900; //$MaxSpeed;
16$InDivider = 1;
17$OutDivider = 1;
18$TotalMaxSpeedIn = round($RealMaxSpeed / $InDivider);
19$TotalMaxSpeedOut = round($RealMaxSpeed / $OutDivider);
20$UsersMaxSpeedIn = round($MaxSpeed / $InDivider);
21$UsersMaxSpeedOut = round($MaxSpeed / $OutDivider);
22$VoipMaxSpeedIn = $TotalMaxSpeedIn - 136;
23$VoipMaxSpeedOut = $TotalMaxSpeedOut - 136;
24$VoipSpeedIn = 100; //$SpeedReserve;
25$VoipSpeedOut = 100; //$SpeedReserve;
26
27
28 $FileClassInfo = fopen('/tmp/ClassInfo.txt', 'w+');
29 $File = fopen('/a/bin/htb.sh', 'w+');
30 fputs($File, "#!/bin/sh\n");
31 exec('iptables -t mangle -F FORWARD');
32 exec('iptables -t mangle -F INPUT');
33 exec('iptables -t mangle -F OUTPUT');
34 exec('iptables -t mangle -F PREROUTING');
35 exec('iptables -t mangle -F POSTROUTING');
36 if($Enabled)
37 {
38 exec('iptables -t mangle -A FORWARD -j MARK --set-mark 0');
39 exec('iptables -t mangle -i eth1 -A FORWARD -j MARK --set-mark 1');
40 exec('iptables -t mangle -o eth1 -A FORWARD -j MARK --set-mark 1');
41 }
42
43 // In going traffic
44 fputs($File, "tc qdisc del dev imq0 root\n");
45 if($Enabled)
46 {
47 fputs($File, "tc qdisc add dev imq0 root handle 1:0 htb default 2\n");
48 fputs($File, "tc class add dev imq0 parent 1:0 classid 1:1 htb rate ".$TotalMaxSpeedIn."kbit quantum 1500\n");
49 fputs($File, "tc class add dev imq0 parent 1:1 classid 1:2 htb rate 32kbit prio 3 quantum 1500\n");
50 fputs($File, "tc qdisc add dev imq0 parent 1:2 handle 2: sfq perturb 10\n");
51 fputs($FileClassInfo, "1:1 Základní tøída\n");
52 fputs($FileClassInfo, "1:2 Internet zdarma\n");
53 }
54 // Out going traffic
55 fputs($File, "tc qdisc del dev imq1 root\n");
56 if($Enabled)
57 {
58 fputs($File, "tc qdisc add dev imq1 root handle 1:0 htb default 2\n");
59 fputs($File, "tc class add dev imq1 parent 1:0 classid 1:1 htb rate ".$TotalMaxSpeedOut."kbit quantum 1500\n");
60 fputs($File, "tc class add dev imq1 parent 1:1 classid 1:2 htb rate 32kbit prio 3 quantum 1500\n");
61 fputs($File, "tc qdisc add dev imq1 parent 1:2 handle 2: sfq perturb 10\n");
62 }
63
64 if(!$Enabled) die("Traffic shaping disabled\n");
65
66 if($ClassesEnabled)
67 {
68 $ClassId = 3;
69
70 // VoIP
71 $VoipClassId = $ClassId;
72 $ClassId = $ClassId + 1;
73 $Prio = 0; // Highest
74
75 // VoIP in going traffic
76 fputs($File, "tc class add dev imq0 parent 1:1 classid 1:".$VoipClassId." htb rate ".$VoipSpeedIn."kbit ceil ".$VoipMaxSpeedIn."kbit quantum 12000 burst 6k cburst 3k prio ".$Prio."\n");
77 fputs($File, "tc qdisc add dev imq0 parent 1:".$VoipClassId." handle ".$VoipClassId.": sfq perturb 10\n");
78 fputs($File, "tc filter add dev imq0 parent 1:0 protocol ip handle ".$VoipClassId." fw flowid 1:".$VoipClassId."\n");
79 // VoIP out going traffic
80 fputs($File, "tc class add dev imq1 parent 1:1 classid 1:".$VoipClassId." htb rate ".$VoipSpeedOut."kbit ceil ".$VoipMaxSpeedOut."kbit quantum 12000 burst 6k cburst 3k prio ".$Prio."\n");
81 fputs($File, "tc qdisc add dev imq1 parent 1:".$VoipClassId." handle ".$VoipClassId.": sfq perturb 10\n");
82 fputs($File, "tc filter add dev imq1 parent 1:0 protocol ip handle ".$VoipClassId." fw flowid 1:".$VoipClassId."\n");
83 fputs($FileClassInfo, '1:'.$VoipClassId." VoIP\n");
84
85
86 // Users hosts
87 //DB_Select('users', 'COUNT(*)', 'inet=1');
88 //$Row = DB_Row();
89 //$InetUserCount = $Row[0];
90 //$SpeedIn = round($UsersMaxSpeedIn / $InetUserCount);
91 //$SpeedOut = round($UsersMaxSpeedOut / $InetUserCount);
92 $Prio = 1;
93
94
95 $AllUsersClassId = $ClassId;
96 $ClassId = $ClassId + 1;
97 fputs($File, "tc class add dev imq0 parent 1:1 classid 1:".$AllUsersClassId." htb rate ".$UsersMaxSpeedIn."kbit prio 1 quantum 1500\n");
98 fputs($File, "tc class add dev imq1 parent 1:1 classid 1:".$AllUsersClassId." htb rate ".$UsersMaxSpeedOut."kbit prio 1 quantum 1500\n");
99 fputs($FileClassInfo, '1:'.$AllUsersClassId." V¹ichni u¾ivatelé\n");
100
101 // Torrent sharing
102 $TorrentClassId = $ClassId;
103 $ClassId = $ClassId + 1;
104 $Prio = 2; // Lowest
105 $TorrentSpeedOut = 4;
106
107 // Torrent out going traffic
108 fputs($File, "tc class add dev imq1 parent 1:".$AllUsersClassId." classid 1:".$TorrentClassId." htb rate ".$TorrentSpeedOut."kbit ceil ".$UsersMaxSpeedOut."kbit prio ".$Prio." quantum 1500\n");
109 fputs($File, "tc qdisc add dev imq1 parent 1:".$TorrentClassId." handle ".$TorrentClassId.":0 sfq perturb 10\n");
110 fputs($File, "tc filter add dev imq1 parent 1:0 protocol ip handle ".$TorrentClassId." fw flowid 1:".$TorrentClassId."\n");
111 fputs($FileClassInfo, '1:'.$TorrentClassId." Torrent\n");
112
113 DB_Select('users', '*', 'inet=1');
114 while($User = DB_Row())
115 {
116 $UserClassId = $ClassId;
117 $ClassId = $ClassId + 1;
118 $SpeedIn = round($Tarify[$User['inet_tarif_now']]['min_speed'] / $InDivider);
119 $SpeedOut = round($Tarify[$User['inet_tarif_now']]['min_speed'] / $OutDivider);
120 $UserMaxSpeedIn = round($Tarify[$User['inet_tarif_now']]['max_speed'] / $InDivider);
121 $UserMaxSpeedOut = round($Tarify[$User['inet_tarif_now']]['max_speed'] / $OutDivider);
122 $Quantum = $Tarify[$User['inet_tarif_now']]['speed_factor'] * 1500;
123
124 DB_Save();
125 fputs($File, "# === ".$User['fullname']." ===\n");
126 fputs($File, "tc class add dev imq0 parent 1:".$AllUsersClassId." classid 1:".$UserClassId." htb rate ".$SpeedIn."bit ceil ".$UserMaxSpeedIn."bit prio 1 quantum ".$Quantum."\n");
127 //fputs($File, "tc qdisc add dev imq0 parent 1:".$UserClassId." handle ".$UserClassId.":0 htb r2q 10\n");
128 //fputs($File, "tc class add dev imq0 parent ".$UserClassId.":0 classid ".$UserClassId.":".$UserClassId." htb rate ".$UserMaxSpeedIn."bit prio 1\n");
129 fputs($File, "tc class add dev imq1 parent 1:".$AllUsersClassId." classid 1:".$UserClassId." htb rate ".$SpeedOut."bit ceil ".$UserMaxSpeedOut."bit prio 1 quantum ".$Quantum."\n");
130 //fputs($File, "tc qdisc add dev imq1 parent 1:".$UserClassId." handle ".$UserClassId.":0 htb r2q 10\n");
131 //fputs($File, "tc class add dev imq1 parent ".$UserClassId.":0 classid ".$UserClassId.":".$UserClassId." htb rate ".$UserMaxSpeedOut."bit prio 1\n");
132 fputs($FileClassInfo, '1:'.$UserClassId.' '.$User['fullname']."\n");
133
134 //echo('User class id: '.$UserClassId."\n");
135
136 DB_Select('hosts', 'COUNT(*)', "block=0 AND MAC!='' AND user=".$User['id']);
137 $Row = DB_Row();
138 $HostCount = $Row[0];
139 $HostSpeedIn = round($SpeedIn / $HostCount);
140 $HostSpeedOut = round($SpeedOut / $HostCount);
141
142 DB_Select('hosts','*',"block=0 AND MAC!='' AND user=".$User['id']);
143 while($Host = DB_Row())
144 //if($Row['name'] != 'WOW')
145 {
146 $HostClassId = $ClassId;
147 $ClassId = $ClassId + 1;
148 fputs($File, "# ".$Host['name']."\n");
149 fputs($FileClassInfo, '1:'.$HostClassId.' '.$Host['name']."\n");
150 //echo(' Host class id: '.$HostClassId."\n");
151 //if($User['inet'] == 1)
152 {
153 $Prio = 1;
154 if($Host['vpn'] == 1)
155 {
156 if ($Host['external_ip'] != '') $Host['IP'] = $Host['external_ip'];
157 else $Host['IP'] = ToVpnIp($Host);
158 }
159
160 //if($Host['name'] == 'TERMINAL') $SpeedDivider = 0.5;
161 //else
162 $SpeedDivider = 1;
163
164 if($Host['name'] == 'CENTRALA')
165 {
166 $Host['IP'] = $Host['external_ip'];
167 $TableOut = 'OUTPUT';
168 $TableIn = 'INPUT';
169 } else
170 {
171 $TableOut = 'FORWARD';
172 $TableIn = 'FORWARD';
173 }
174 //if($Row['name'] == 'TERMINAL2') $Prio = 0;
175 // if($Row['name'] = 'TERMINAL2') $Prio = 0;
176 if($Host['name'] == 'VOIP-HAJDA') $Protocol = ' -p tcp';
177 else $Protocol = '';
178// if($Host['name'] == 'KARLOS') $UserMaxSpeedIn = 128000;
179 if($Host['name'] == 'GAME-SERVER')
180 {
181 exec('iptables -t mangle -F game-server');
182 $TableOut = 'game-server';
183 //$TableIn = 'game-server';
184 }
185
186
187 // In going traffic
188 exec('iptables -t mangle -A '.$TableIn.' -i eth1 -d '.$Host['IP'].$Protocol." -j MARK --set-mark ".$HostClassId);
189 fputs($File, "tc class add dev imq0 parent 1:".$UserClassId." classid 1:".$HostClassId." htb rate ".$HostSpeedIn."bit ceil ".$UserMaxSpeedIn."bit prio ".$Prio." quantum ".$Quantum."\n");
190 fputs($File, "tc qdisc add dev imq0 parent 1:".$HostClassId." handle ".$HostClassId.":0 sfq perturb 10\n");
191 //fputs($File, "tc filter add dev imq0 parent 1:0 protocol ip handle ".$HostClassId." fw flowid 1:".$UserClassId."\n");
192 fputs($File, "tc filter add dev imq0 parent 1:0 protocol ip handle ".$HostClassId." fw flowid 1:".$HostClassId."\n");
193 // Out going traffic
194 exec('iptables -t mangle -A '.$TableOut.' -o eth1 -s '.$Host['IP'].$Protocol." -j MARK --set-mark ".$HostClassId);
195 fputs($File, "tc class add dev imq1 parent 1:".$UserClassId." classid 1:".$HostClassId." htb rate ".$HostSpeedOut."bit ceil ".$UserMaxSpeedOut."bit prio ".$Prio." quantum ".$Quantum."\n");
196 fputs($File, "tc qdisc add dev imq1 parent 1:".$HostClassId." handle ".$HostClassId.":0 sfq perturb 10\n");
197 //fputs($File, "tc filter add dev imq1 parent 1:0 protocol ip handle ".$HostClassId." fw flowid 1:".$UserClassId."\n");
198 fputs($File, "tc filter add dev imq1 parent 1:0 protocol ip handle ".$HostClassId." fw flowid 1:".$HostClassId."\n");
199 //echo($Row['id'].',');
200 }
201 if(($Host['name'] == 'HAJDA-VOIP') || ($Host['name'] == 'NAVRATIL-VOIP'))
202 {
203 exec('iptables -t mangle -A '.$TableIn." -i eth1 -d ".$Host['IP']." -p udp -j MARK --set-mark ".$VoipClassId);
204 exec('iptables -t mangle -A '.$TableOut." -o eth1 -s ".$Host['IP']." -p udp -j MARK --set-mark ".$VoipClassId);
205 } else
206 if($Host['name'] == 'GAME-SERVER')
207 {
208 exec('iptables -t mangle -A FORWARD -o eth1 -s '.$Host['IP']." -j game-server");
209 //exec('iptables -t mangle -A FORWARD -i eth1 -d '.$Host['IP']." -j game-server");
210 exec('iptables -t mangle -A game-server -o eth1 -s '.$Host['IP']." -j MARK --set-mark ".$TorrentClassId);
211 exec('iptables -t mangle -A game-server -i eth1 -d '.$Host['IP']." -j MARK --set-mark ".$TorrentClassId);
212 exec('iptables -t mangle -A game-server -o eth1 -s '.$Host['IP']." -p tcp --sport 44457 -j MARK --set-mark ".$TorrentClassId);
213// default torrents
214 exec('iptables -t mangle -A game-server -i eth1 -d '.$Host['IP']." -p tcp --dport 44457 -j MARK --set-mark ".$TorrentClassId);
215 exec('iptables -t mangle -A game-server -o eth1 -s '.$Host['IP']." -p tcp --sport 3389 -j MARK --set-mark ".$HostClassId);
216 // remote desktop
217 exec('iptables -t mangle -A game-server -i eth1 -d '.$Host['IP']." -p tcp --dport 3389 -j MARK --set-mark ".$HostClassId);
218 exec('iptables -t mangle -A game-server -o eth1 -s '.$Host['IP']." -p tcp --sport 6969 -j MARK --set-mark ".$HostClassId);
219// web torrent
220 exec('iptables -t mangle -A game-server -i eth1 -d '.$Host['IP']." -p tcp --dport 6969 -j MARK --set-mark ".$HostClassId);
221 exec('iptables -t mangle -A game-server -o eth1 -s '.$Host['IP']." -p tcp --sport 80 -j MARK --set-mark ".$HostClassId);
222// web
223 exec('iptables -t mangle -A game-server -i eth1 -d '.$Host['IP']." -p tcp --dport 80 -j MARK --set-mark ".$HostClassId);
224 exec('iptables -t mangle -A game-server -o eth1 -s '.$Host['IP']." -p tcp --sport 21 -j MARK --set-mark ".$HostClassId);
225 // FTP
226 exec('iptables -t mangle -A game-server -i eth1 -d '.$Host['IP']." -p tcp --dport 21 -j MARK --set-mark ".$HostClassId);
227 exec('iptables -t mangle -A game-server -o eth1 -s '.$Host['IP']." -p tcp --sport 8085 -j MARK --set-mark ".$HostClassId);
228// wow game server
229 exec('iptables -t mangle -A game-server -i eth1 -d '.$Host['IP']." -p tcp --dport 8085 -j MARK --set-mark ".$HostClassId);
230 exec('iptables -t mangle -A game-server -o eth1 -s '.$Host['IP']." -p tcp --sport 3724 -j MARK --set-mark ".$HostClassId);
231// wow login server
232 exec('iptables -t mangle -A game-server -i eth1 -d '.$Host['IP']." -p tcp --dport 3724 -j MARK --set-mark ".$HostClassId);
233 exec('iptables -t mangle -A game-server -o eth1 -s '.$Host['IP']." -p tcp --sport 3306 -j MARK --set-mark ".$HostClassId);
234// mysqlr
235 exec('iptables -t mangle -A game-server -i eth1 -d '.$Host['IP']." -p tcp --dport 3306 -j MARK --set-mark ".$HostClassId);
236 }
237
238
239 }
240 DB_Load();
241 }
242 //echo($Row['id'].',');
243
244 }
245
246 // In going traffic
247 // exec('iptables -t mangle -A FORWARD -m mark --mark 1 -j LOG --log-prefix "TRAFFIC " --log-level info');
248 exec('iptables -t mangle -A FORWARD -i eth1 -j IMQ --todev 0');
249 exec('iptables -t mangle -A INPUT -i eth1 -j IMQ --todev 0');
250 // Out going traffic
251 exec('iptables -t mangle -A FORWARD -o eth1 -j IMQ --todev 1');
252 exec('iptables -t mangle -A OUTPUT -o eth1 -j IMQ --todev 1');
253 exec('/sbin/iptables-save >/etc/sysconfig/iptables');
254 fclose($File);
255 fclose($FileClassInfo);
256
257?>
Note: See TracBrowser for help on using the repository browser.