From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org)
	by finch.gentoo.org with esmtp (Exim 4.60)
	(envelope-from <gentoo-server+bounces-2937-garchives=archives.gentoo.org@gentoo.org>)
	id 1IcILK-0007Qg-SH
	for garchives@archives.gentoo.org; Mon, 01 Oct 2007 10:17:39 +0000
Received: from robin.gentoo.org (localhost [127.0.0.1])
	by robin.gentoo.org (8.14.1/8.14.0) with SMTP id l91A8EsP025640;
	Mon, 1 Oct 2007 10:08:14 GMT
Received: from an-out-0708.google.com (an-out-0708.google.com [209.85.132.241])
	by robin.gentoo.org (8.14.1/8.14.0) with ESMTP id l91A6JNj023272
	for <gentoo-server@lists.gentoo.org>; Mon, 1 Oct 2007 10:06:20 GMT
Received: by an-out-0708.google.com with SMTP id c8so523205ana
        for <gentoo-server@lists.gentoo.org>; Mon, 01 Oct 2007 03:06:19 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=beta;
        h=domainkey-signature:received:received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references;
        bh=VIEhQ4XOo8cx+TzftH+2XtQZit5FBF9OzBVimLOsy2U=;
        b=eyszgl7QMBl8SFfhdlnVkfcejTzX7OACjVxS2jzWdGxgRHk+ymlKRMBiB83g6LGm6lDKDDUtIGJmXEahNTiqNQ8McBKgjqkPPHVcT9YrJUG7c9N891hmtF+Ktwx2e9J7025D9MGwqT3ijIQfjjygdpPaL6psAtLZMQv7N054PRM=
DomainKey-Signature: a=rsa-sha1; c=nofws;
        d=gmail.com; s=beta;
        h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references;
        b=fQiIN/3IZ3oT8niPajB/Vydza/LW8tG/177uKxhSszrv1wn5AQ+Yq90QDA/+gjspUy8y8nXb4/chXcUMPw1Ypj3C0W5MGg51vwPFGRR5fBNz7oHKlMhIt5BH7dILfPubiVQBxaPqiSiXoecn5G1KgGqxHsoWKY9vcOfsdIWq/Ls=
Received: by 10.114.196.1 with SMTP id t1mr262817waf.1191233178066;
        Mon, 01 Oct 2007 03:06:18 -0700 (PDT)
Received: by 10.114.191.19 with HTTP; Mon, 1 Oct 2007 03:06:17 -0700 (PDT)
Message-ID: <279fbba40710010306n4f2f0e96k91be890da4451d8d@mail.gmail.com>
Date: Mon, 1 Oct 2007 11:06:17 +0100
From: "Kerin Millar" <kerframil@gmail.com>
To: gentoo-server@lists.gentoo.org
Subject: Re: [gentoo-server] How to manage bandwidth for outgoing mails
In-Reply-To: <5dc6fd9e0709302236h45318d66wdf684cfe71563914@mail.gmail.com>
Precedence: bulk
List-Post: <mailto:gentoo-server@lists.gentoo.org>
List-Help: <mailto:gentoo-server+help@gentoo.org>
List-Unsubscribe: <mailto:gentoo-server+unsubscribe@gentoo.org>
List-Subscribe: <mailto:gentoo-server+subscribe@gentoo.org>
List-Id: Gentoo Linux mail <gentoo-server.gentoo.org>
X-BeenThere: gentoo-server@gentoo.org
Reply-to: gentoo-server@lists.gentoo.org
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
References: <cb9528810709302143o790f1586w51875bb0172979d1@mail.gmail.com>
	 <470085B2.30405@gentoo.org>
	 <5dc6fd9e0709302236h45318d66wdf684cfe71563914@mail.gmail.com>
X-Archives-Salt: dabecc24-7e53-4479-9caf-cdd0f202f487
X-Archives-Hash: dec35b13610c37a9149c92b3f5570736

On 01/10/2007, Hex Star <hexstar@gmail.com> wrote:
> throttled (when compiled from source on linux) can take care of this:
> http://www.intrarts.com/throttledcli.html
>

A very nice find. But Linux support was removed in July 2005,
according to its README.txt to "clean up the codebase". I find myself
not in the least surprised.

My opinion - for what it's worth - is that, great though Linux is, the
packet filtering and shaping/queuing implementation(s) in the various
*BSD distributions are so well implemented, easy to understand and
properly documented that I would not even consider using Linux for
this sort of thing. It really is the one aspect of using Linux that I
found singularly unpleasant.

For example, take a look at
http://www.openbsd.org/faq/pf/queueing.html then try to figure out how
to implement the same policies described in Linux with the guidance of
the increasingly creaky LARTC guide - it really is an exercise in
pure, undiluted pain. Even figuring out how to prioritise outgoing TCP
packets with the ACK flag set - a really important process for betting
the best out of an asymmetric connection - is non-trivial in Linux.
The Wonder Shaper script has not been updated since 2002 and is
symptomatic of the problem ... that netfilter/iptables/iproute/QoS are
so complex in Linux that bespoke wrapper scripts that yield
unpredictable results are a dozen a dime, as the saying goes.

Personally, I would be looking at using OpenBSD/pf or pfSense, a good
"firewall distro" with a friendly web interface that's based on
FreeBSD and its port of pf (and, like OpenBSD, ALTQ). It also features
a traffic shaping wizard which is useful for defining a good set of
default rules for further tweaking.

Just my 2 pence, anyway.

Regards,

--Kerin
-- 
gentoo-server@gentoo.org mailing list