source: system/generators/traffic_shaping_7.php@ 1

Last change on this file since 1 was 1, checked in by george, 17 years ago

Prvotní import všeho
  • Property svn:executable set to *
File size: 13.4 KB
Line 
1<?
2$Enabled = 1;
3$ClassesEnabled = 1;
4include('global.php');
5include_once('../../html/is/db.php');
6DB_Init('localhost', 'root', '', 'is');
7
8include_once('../../html/finance/include.php');
9NactiMesicniParametry(0);
10
11// Generate traffic shaping rules
12//$TotalMaxSpeedIn = 2048; //$RealMaxSpeed; //1536;
13//$TotalMaxSpeedOut = 2048; //$RealMaxSpeed; //1536;
14//$UsersMaxSpeedIn = 1900; //$MaxSpeed;
15//$UsersMaxSpeedOut = 1900; //$MaxSpeed;
16$InDivider = 1;
17$OutDivider = 1;
18$TotalMaxSpeedIn = round($RealMaxSpeed / $InDivider);
19$TotalMaxSpeedOut = round($RealMaxSpeed / $OutDivider);
20$UsersMaxSpeedIn = round($MaxSpeed / $InDivider);
21$UsersMaxSpeedOut = round($MaxSpeed / $OutDivider);
22$VoipMaxSpeedIn = $TotalMaxSpeedIn - 136;
23$VoipMaxSpeedOut = $TotalMaxSpeedOut - 136;
24$VoipSpeedIn = 100; //$SpeedReserve;
25$VoipSpeedOut = 100; //$SpeedReserve;
26
27
28 $FileClassInfo = fopen('/tmp/ClassInfo.txt', 'w+');
29 $File = fopen('/a/bin/htb.sh', 'w+');
30 fputs($File, "#!/bin/sh\n");
31 exec('iptables -t mangle -F FORWARD');
32 if($Enabled)
33 {
34 exec('iptables -t mangle -A PREROUTING -j MARK --set-mark 0');
35 exec('iptables -t mangle -A POSTROUTING -j MARK --set-mark 0');
36 exec('iptables -t mangle -i eth1 -A PREROUTING -j MARK --set-mark 1');
37 exec('iptables -t mangle -o eth1 -A POSTROUTING -j MARK --set-mark 1');
38 }
39 exec('iptables -t mangle -F INPUT');
40 exec('iptables -t mangle -F OUTPUT');
41 exec('iptables -t mangle -F PREROUTING');
42 exec('iptables -t mangle -F POSTROUTING');
43
44 // In going traffic
45 fputs($File, "tc qdisc del dev imq0 root\n");
46 if($Enabled)
47 {
48 fputs($File, "tc qdisc add dev imq0 root handle 1:0 htb default 2\n");
49 fputs($File, "tc class add dev imq0 parent 1:0 classid 1:1 htb rate ".$TotalMaxSpeedIn."kbit quantum 1500\n");
50 fputs($File, "tc class add dev imq0 parent 1:1 classid 1:2 htb rate 32kbit prio 3 quantum 1500\n");
51 fputs($File, "tc qdisc add dev imq0 parent 1:2 handle 2: sfq perturb 10\n");
52 fputs($FileClassInfo, "1:1 Základní tøída\n");
53 fputs($FileClassInfo, "1:2 Internet zdarma\n");
54 }
55 // Out going traffic
56 fputs($File, "tc qdisc del dev imq1 root\n");
57 if($Enabled)
58 {
59 fputs($File, "tc qdisc add dev imq1 root handle 1:0 htb default 2\n");
60 fputs($File, "tc class add dev imq1 parent 1:0 classid 1:1 htb rate ".$TotalMaxSpeedOut."kbit quantum 1500\n");
61 fputs($File, "tc class add dev imq1 parent 1:1 classid 1:2 htb rate 32kbit prio 3 quantum 1500\n");
62 fputs($File, "tc qdisc add dev imq1 parent 1:2 handle 2: sfq perturb 10\n");
63 }
64
65 if(!$Enabled) die("Traffic shaping disabled\n");
66
67 if($ClassesEnabled)
68 {
69 $ClassId = 3;
70
71 // VoIP
72 $VoipClassId = $ClassId;
73 $ClassId = $ClassId + 1;
74 $Prio = 0; // Highest
75
76 // VoIP in going traffic
77 fputs($File, "tc class add dev imq0 parent 1:1 classid 1:".$VoipClassId." htb rate ".$VoipSpeedIn."kbit ceil ".$VoipMaxSpeedIn."kbit quantum 12000 burst 6k cburst 3k prio ".$Prio."\n");
78 fputs($File, "tc qdisc add dev imq0 parent 1:".$VoipClassId." handle ".$VoipClassId.": sfq perturb 10\n");
79 fputs($File, "tc filter add dev imq0 parent 1:0 protocol ip handle ".$VoipClassId." fw flowid 1:".$VoipClassId."\n");
80 // VoIP out going traffic
81 fputs($File, "tc class add dev imq1 parent 1:1 classid 1:".$VoipClassId." htb rate ".$VoipSpeedOut."kbit ceil ".$VoipMaxSpeedOut."kbit quantum 12000 burst 6k cburst 3k prio ".$Prio."\n");
82 fputs($File, "tc qdisc add dev imq1 parent 1:".$VoipClassId." handle ".$VoipClassId.": sfq perturb 10\n");
83 fputs($File, "tc filter add dev imq1 parent 1:0 protocol ip handle ".$VoipClassId." fw flowid 1:".$VoipClassId."\n");
84 fputs($FileClassInfo, '1:'.$VoipClassId." VoIP\n");
85
86
87 // Users hosts
88 //DB_Select('users', 'COUNT(*)', 'inet=1');
89 //$Row = DB_Row();
90 //$InetUserCount = $Row[0];
91 //$SpeedIn = round($UsersMaxSpeedIn / $InetUserCount);
92 //$SpeedOut = round($UsersMaxSpeedOut / $InetUserCount);
93 $Prio = 1;
94
95
96 $AllUsersClassId = $ClassId;
97 $ClassId = $ClassId + 1;
98 fputs($File, "tc class add dev imq0 parent 1:1 classid 1:".$AllUsersClassId." htb rate ".$UsersMaxSpeedIn."kbit prio 1 quantum 1500\n");
99 fputs($File, "tc class add dev imq1 parent 1:1 classid 1:".$AllUsersClassId." htb rate ".$UsersMaxSpeedOut."kbit prio 1 quantum 1500\n");
100 fputs($FileClassInfo, '1:'.$AllUsersClassId." V¹ichni u¾ivatelé\n");
101
102 // Torrent sharing
103 $TorrentClassId = $ClassId;
104 $ClassId = $ClassId + 1;
105 $Prio = 2; // Lowest
106 $TorrentSpeedOut = 4;
107
108 // Torrent out going traffic
109 fputs($File, "tc class add dev imq1 parent 1:".$AllUsersClassId." classid 1:".$TorrentClassId." htb rate ".$TorrentSpeedOut."kbit ceil ".$UsersMaxSpeedOut."kbit prio ".$Prio." quantum 1500\n");
110 fputs($File, "tc qdisc add dev imq1 parent 1:".$TorrentClassId." handle ".$TorrentClassId.":0 sfq perturb 10\n");
111 fputs($File, "tc filter add dev imq1 parent 1:0 protocol ip handle ".$TorrentClassId." fw flowid 1:".$TorrentClassId."\n");
112 fputs($FileClassInfo, '1:'.$TorrentClassId." Torrent\n");
113
114 DB_Select('users', '*', 'inet=1');
115 while($User = DB_Row())
116 {
117 $UserClassId = $ClassId;
118 $ClassId = $ClassId + 1;
119 $SpeedIn = round($Tarify[$User['inet_tarif_now']]['min_speed'] / $InDivider);
120 $SpeedOut = round($Tarify[$User['inet_tarif_now']]['min_speed'] / $OutDivider);
121 $UserMaxSpeedIn = round($Tarify[$User['inet_tarif_now']]['max_speed'] / $InDivider);
122 $UserMaxSpeedOut = round($Tarify[$User['inet_tarif_now']]['max_speed'] / $OutDivider);
123 $Quantum = $Tarify[$User['inet_tarif_now']]['speed_factor'] * 1500;
124
125 DB_Save();
126 fputs($File, "# === ".$User['fullname']." ===\n");
127 fputs($File, "tc class add dev imq0 parent 1:".$AllUsersClassId." classid 1:".$UserClassId." htb rate ".$SpeedIn."bit ceil ".$UserMaxSpeedIn."bit prio 1 quantum ".$Quantum."\n");
128 //fputs($File, "tc qdisc add dev imq0 parent 1:".$UserClassId." handle ".$UserClassId.":0 htb r2q 10\n");
129 //fputs($File, "tc class add dev imq0 parent ".$UserClassId.":0 classid ".$UserClassId.":".$UserClassId." htb rate ".$UserMaxSpeedIn."bit prio 1\n");
130 fputs($File, "tc class add dev imq1 parent 1:".$AllUsersClassId." classid 1:".$UserClassId." htb rate ".$SpeedOut."bit ceil ".$UserMaxSpeedOut."bit prio 1 quantum ".$Quantum."\n");
131 //fputs($File, "tc qdisc add dev imq1 parent 1:".$UserClassId." handle ".$UserClassId.":0 htb r2q 10\n");
132 //fputs($File, "tc class add dev imq1 parent ".$UserClassId.":0 classid ".$UserClassId.":".$UserClassId." htb rate ".$UserMaxSpeedOut."bit prio 1\n");
133 fputs($FileClassInfo, '1:'.$UserClassId.' '.$User['fullname']."\n");
134
135 //echo('User class id: '.$UserClassId."\n");
136
137 DB_Select('hosts', 'COUNT(*)', "block=0 AND MAC!='' AND user=".$User['id']);
138 $Row = DB_Row();
139 $HostCount = $Row[0];
140 $HostSpeedIn = round($SpeedIn / $HostCount);
141 $HostSpeedOut = round($SpeedOut / $HostCount);
142
143 DB_Select('hosts','*',"block=0 AND MAC!='' AND user=".$User['id']);
144 while($Host = DB_Row())
145 //if($Row['name'] != 'WOW')
146 {
147 $HostClassId = $ClassId;
148 $ClassId = $ClassId + 1;
149 fputs($File, "# ".$Host['name']."\n");
150 fputs($FileClassInfo, '1:'.$HostClassId.' '.$Host['name']."\n");
151 //echo(' Host class id: '.$HostClassId."\n");
152 //if($User['inet'] == 1)
153 {
154 $Prio = 1;
155 //if($Host['vpn'] == 1)
156 {
157 //if ($Host['vpn'] == 1)
158 {
159 if($Host['external_ip'] != '') $Host['IP'] = $Host['external_ip'];
160 else if($Host['vpn'] == 1) $Host['IP'] = ToVpnIp($Host);
161// else $Host['
162 }
163 }
164
165 //if($Host['name'] == 'TERMINAL') $SpeedDivider = 0.5;
166 //else
167 $SpeedDivider = 1;
168
169 if($Host['name'] == 'CENTRALA')
170 {
171 $Host['IP'] = $Host['external_ip'];
172 $TableOut = 'POSTROUTING';
173 $TableIn = 'PREROUTING';
174 } else
175 {
176 $TableOut = 'POSTROUTING';
177 $TableIn = 'PREROUTING';
178 }
179 //if($Row['name'] == 'TERMINAL2') $Prio = 0;
180 // if($Row['name'] = 'TERMINAL2') $Prio = 0;
181 if($Host['name'] == 'VOIP-HAJDA') $Protocol = ' -p tcp';
182 else $Protocol = '';
183// if($Host['name'] == 'KARLOS') $UserMaxSpeedIn = 128000;
184 if($Host['name'] == 'GAME-SERVER')
185 {
186 exec('iptables -t mangle -F game-server');
187 $TableOut = 'game-server';
188 //$TableIn = 'game-server';
189 }
190
191
192 // In going traffic
193 exec('iptables -t mangle -A '.$TableIn.' -i eth1 -d '.$Host['IP'].$Protocol." -j MARK --set-mark ".$HostClassId);
194 fputs($File, "tc class add dev imq0 parent 1:".$UserClassId." classid 1:".$HostClassId." htb rate ".$HostSpeedIn."bit ceil ".$UserMaxSpeedIn."bit prio ".$Prio." quantum ".$Quantum."\n");
195 fputs($File, "tc qdisc add dev imq0 parent 1:".$HostClassId." handle ".$HostClassId.":0 sfq perturb 10\n");
196 //fputs($File, "tc filter add dev imq0 parent 1:0 protocol ip handle ".$HostClassId." fw flowid 1:".$UserClassId."\n");
197 fputs($File, "tc filter add dev imq0 parent 1:0 protocol ip handle ".$HostClassId." fw flowid 1:".$HostClassId."\n");
198 // Out going traffic
199 exec('iptables -t mangle -A '.$TableOut.' -o eth1 -s '.$Host['IP'].$Protocol." -j MARK --set-mark ".$HostClassId);
200 fputs($File, "tc class add dev imq1 parent 1:".$UserClassId." classid 1:".$HostClassId." htb rate ".$HostSpeedOut."bit ceil ".$UserMaxSpeedOut."bit prio ".$Prio." quantum ".$Quantum."\n");
201 fputs($File, "tc qdisc add dev imq1 parent 1:".$HostClassId." handle ".$HostClassId.":0 sfq perturb 10\n");
202 //fputs($File, "tc filter add dev imq1 parent 1:0 protocol ip handle ".$HostClassId." fw flowid 1:".$UserClassId."\n");
203 fputs($File, "tc filter add dev imq1 parent 1:0 protocol ip handle ".$HostClassId." fw flowid 1:".$HostClassId."\n");
204 //echo($Row['id'].',');
205 }
206 if(($Host['name'] == 'HAJDA-VOIP') || ($Host['name'] == 'NAVRATIL-VOIP'))
207 {
208 exec('iptables -t mangle -A '.$TableIn." -i eth1 -d ".$Host['IP']." -p udp -j MARK --set-mark ".$VoipClassId);
209 exec('iptables -t mangle -A '.$TableOut." -o eth1 -s ".$Host['IP']." -p udp -j MARK --set-mark ".$VoipClassId);
210 } else
211 if($Host['name'] == 'GAME-SERVER')
212 {
213 exec('iptables -t mangle -A POSTROUTING -o eth1 -s '.$Host['IP']." -j game-server");
214 //exec('iptables -t mangle -A FORWARD -i eth1 -d '.$Host['IP']." -j game-server");
215 exec('iptables -t mangle -A game-server -o eth1 -s '.$Host['IP']." -j MARK --set-mark ".$TorrentClassId);
216 exec('iptables -t mangle -A game-server -i eth1 -d '.$Host['IP']." -j MARK --set-mark ".$TorrentClassId);
217 exec('iptables -t mangle -A game-server -o eth1 -s '.$Host['IP']." -p tcp --sport 44457 -j MARK --set-mark ".$TorrentClassId);
218// default torrents
219 exec('iptables -t mangle -A game-server -i eth1 -d '.$Host['IP']." -p tcp --dport 44457 -j MARK --set-mark ".$TorrentClassId);
220 exec('iptables -t mangle -A game-server -o eth1 -s '.$Host['IP']." -p tcp --sport 3389 -j MARK --set-mark ".$HostClassId);
221 // remote desktop
222 exec('iptables -t mangle -A game-server -i eth1 -d '.$Host['IP']." -p tcp --dport 3389 -j MARK --set-mark ".$HostClassId);
223 exec('iptables -t mangle -A game-server -o eth1 -s '.$Host['IP']." -p tcp --sport 6969 -j MARK --set-mark ".$HostClassId);
224// web torrent
225 exec('iptables -t mangle -A game-server -i eth1 -d '.$Host['IP']." -p tcp --dport 6969 -j MARK --set-mark ".$HostClassId);
226 exec('iptables -t mangle -A game-server -o eth1 -s '.$Host['IP']." -p tcp --sport 80 -j MARK --set-mark ".$HostClassId);
227// web
228 exec('iptables -t mangle -A game-server -i eth1 -d '.$Host['IP']." -p tcp --dport 80 -j MARK --set-mark ".$HostClassId);
229 exec('iptables -t mangle -A game-server -o eth1 -s '.$Host['IP']." -p tcp --sport 21 -j MARK --set-mark ".$HostClassId);
230 // FTP
231 exec('iptables -t mangle -A game-server -i eth1 -d '.$Host['IP']." -p tcp --dport 21 -j MARK --set-mark ".$HostClassId);
232 exec('iptables -t mangle -A game-server -o eth1 -s '.$Host['IP']." -p tcp --sport 8085 -j MARK --set-mark ".$HostClassId);
233// wow game server
234 exec('iptables -t mangle -A game-server -i eth1 -d '.$Host['IP']." -p tcp --dport 8085 -j MARK --set-mark ".$HostClassId);
235 exec('iptables -t mangle -A game-server -o eth1 -s '.$Host['IP']." -p tcp --sport 3724 -j MARK --set-mark ".$HostClassId);
236// wow login server
237 exec('iptables -t mangle -A game-server -i eth1 -d '.$Host['IP']." -p tcp --dport 3724 -j MARK --set-mark ".$HostClassId);
238 exec('iptables -t mangle -A game-server -o eth1 -s '.$Host['IP']." -p tcp --sport 3306 -j MARK --set-mark ".$HostClassId);
239// mysqlr
240 exec('iptables -t mangle -A game-server -i eth1 -d '.$Host['IP']." -p tcp --dport 3306 -j MARK --set-mark ".$HostClassId);
241 }
242
243
244 }
245 DB_Load();
246 }
247 //echo($Row['id'].',');
248
249 }
250
251 // In going traffic
252 // exec('iptables -t mangle -A FORWARD -m mark --mark 1 -j LOG --log-prefix "TRAFFIC " --log-level info');
253 exec('iptables -t mangle -A PREROUTING -i eth1 -j IMQ --todev 0');
254// exec('iptables -t mangle -A FORWARD -i eth1 -j IMQ --todev 0');
255// exec('iptables -t mangle -A INPUT -i eth1 -j IMQ --todev 0');
256 // Out going traffic
257 exec('iptables -t mangle -A POSTROUTING -o eth1 -j IMQ --todev 1');
258// exec('iptables -t mangle -A FORWARD -o eth1 -j IMQ --todev 1');
259// exec('iptables -t mangle -A OUTPUT -o eth1 -j IMQ --todev 1');
260 exec('/sbin/iptables-save >/etc/sysconfig/iptables');
261 fclose($File);
262 fclose($FileClassInfo);
263
264?>
Note: See TracBrowser for help on using the repository browser.