]> git.ipfire.org Git - people/mfischer/ipfire-2.x.git/blob - config/qos/makeqosscripts.pl
projects / people / mfischer / ipfire-2.x.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
QoS: Drop support for hardcoded ACK rules
[people/mfischer/ipfire-2.x.git] / config / qos / makeqosscripts.pl
1 #!/usr/bin/perl
2 ###############################################################################
3 # #
4 # IPFire.org - A linux based firewall #
5 # Copyright (C) 2007-2013 IPFire Team <info@ipfire.org> #
6 # #
7 # This program is free software: you can redistribute it and/or modify #
8 # it under the terms of the GNU General Public License as published by #
9 # the Free Software Foundation, either version 3 of the License, or #
10 # (at your option) any later version. #
11 # #
12 # This program is distributed in the hope that it will be useful, #
13 # but WITHOUT ANY WARRANTY; without even the implied warranty of #
14 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the #
15 # GNU General Public License for more details. #
16 # #
17 # You should have received a copy of the GNU General Public License #
18 # along with this program. If not, see <http://www.gnu.org/licenses/>. #
19 # #
20 ###############################################################################
21
22 use strict;
23 # enable only the following on debugging purpose
24 # use warnings;
25
26 require '/var/ipfire/general-functions.pl';
27 require "${General::swroot}/lang.pl";
28 require "${General::swroot}/header.pl";
29
30 my %qossettings = ();
31 my %checked = ();
32 my %netsettings = ();
33 my $message = "";
34 my $errormessage = "";
35 my $c = "";
36 my $direntry = "";
37 my $classentry = "";
38 my $l7ruleentry = "";
39 my $portruleentry = "";
40 my $tosruleentry = "";
41 my @tmp = ();
42 my @classes = ();
43 my @l7rules = ();
44 my @portrules = ();
45 my @tosrules = ();
46 my @tmpline = ();
47 my @classline = ();
48 my @tosruleline = ();
49 my @l7ruleline = ();
50 my @portruleline = ();
51 my @proto = ();
52 my %selected= () ;
53 my $classfile = "/var/ipfire/qos/classes";
54 my $level7file = "/var/ipfire/qos/level7config";
55 my $portfile = "/var/ipfire/qos/portconfig";
56 my $tosfile = "/var/ipfire/qos/tosconfig";
57 my $fqcodel_options = "limit 10240 quantum 1514";
58
59 # Define iptables MARKs
60 my $QOS_INC_MASK = 0x0000ff00;
61 my $QOS_INC_SHIFT = 8;
62 my $QOS_OUT_MASK = 0x000000ff;
63 my $QOS_OUT_SHIFT = 0;
64
65 &General::readhash("${General::swroot}/ethernet/settings", \%netsettings);
66
67 $qossettings{'ENABLED'} = 'off';
68 $qossettings{'EDIT'} = 'no';
69 $qossettings{'OUT_SPD'} = '';
70 $qossettings{'INC_SPD'} = '';
71 $qossettings{'DEF_OUT_SPD'} = '';
72 $qossettings{'DEF_INC_SPD'} = '';
73 $qossettings{'DEFCLASS_INC'} = '';
74 $qossettings{'DEFCLASS_OUT'} = '';
75 $qossettings{'RED_DEV'} = `cat /var/ipfire/red/iface`;
76 $qossettings{'IMQ_DEV'} = 'imq0';
77 $qossettings{'TOS'} = '';
78 $qossettings{'VALID'} = 'yes';
79
80 &General::readhash("${General::swroot}/qos/settings", \%qossettings);
81
82 my $DEF_OUT_MARK = ($qossettings{'DEFCLASS_OUT'} << $QOS_OUT_SHIFT) . "/$QOS_OUT_MASK";
83 my $DEF_INC_MARK = ($qossettings{'DEFCLASS_INC'} << $QOS_INC_SHIFT) . "/$QOS_INC_MASK";
84
85 open( FILE, "< $classfile" ) or die "Unable to read $classfile";
86 @classes = <FILE>;
87 close FILE;
88 open( FILE, "< $level7file" ) or die "Unable to read $level7file";
89 @l7rules = <FILE>;
90 close FILE;
91 open( FILE, "< $portfile" ) or die "Unable to read $portfile";
92 @portrules = <FILE>;
93 close FILE;
94 open( FILE, "< $tosfile" ) or die "Unable to read $tosfile";
95 @tosrules = <FILE>;
96 close FILE;
97
98 ############################################################################################################################
99 ############################################################################################################################
100
101 print <<END
102 #/bin/bash
103 #################################################
104 # This is an autocreated QoS-Script for #
105 # IPFIRE #
106 # Copyright by the IPFire Team (GPLv2) #
107 # www.ipfire.org #
108 #################################################
109
110 ### SYSTEMVARIABLES:
111 # RED INTERFACE: $qossettings{'RED_DEV'}
112 # IMQ DEVICE: $qossettings{'IMQ_DEV'}
113
114 eval \$(/usr/local/bin/readhash /var/ipfire/main/settings)
115 if [ "\$RRDLOG" == "" ]; then
116 RRDLOG=/var/log/rrd
117 fi
118
119 case "\$1" in
120
121 status)
122 case "\$2" in
123 qdisc)
124 echo "[qdisc]"
125 tc -s qdisc show dev $qossettings{'RED_DEV'}
126 tc -s qdisc show dev $qossettings{'IMQ_DEV'}
127 exit 0
128 ;;
129 class)
130 echo "[class]"
131 tc -s class show dev $qossettings{'RED_DEV'}
132 tc -s class show dev $qossettings{'IMQ_DEV'}
133 exit 0
134 ;;
135 filter)
136 echo "[filter]"
137 tc -s filter show dev $qossettings{'RED_DEV'}
138 tc -s filter show dev $qossettings{'IMQ_DEV'}
139 exit 0
140 ;;
141 iptables)
142 echo "[iptables]"
143 iptables -t mangle -n -L QOS-OUT -v -x 2> /dev/null
144 iptables -t mangle -n -L QOS-INC -v -x 2> /dev/null
145 exit 0
146 ;;
147 esac
148 \$0 \$1 qdisc
149 \$0 \$1 class
150 \$0 \$1 filter
151 \$0 \$1 iptables
152 exit 0
153 ;;
154 start)
155 ###
156 ### $qossettings{'RED_DEV'}
157 ###
158
159 ### INIT KERNEL
160 modprobe sch_htb
161
162 ### ADD HTB QDISC FOR $qossettings{'RED_DEV'}
163 tc qdisc del dev $qossettings{'RED_DEV'} root >/dev/null 2>&1
164 tc qdisc add dev $qossettings{'RED_DEV'} root handle 1: htb default $qossettings{'DEFCLASS_OUT'}
165
166 ### MAIN RATE LIMIT
167 tc class add dev $qossettings{'RED_DEV'} parent 1: classid 1:1 htb rate $qossettings{'OUT_SPD'}kbit
168
169 ### CLASSES FOR $qossettings{'RED_DEV'}
170 END
171 ;
172 foreach $classentry (sort @classes)
173 {
174 @classline = split( /\;/, $classentry );
175 if ($qossettings{'RED_DEV'} eq $classline[0]) {
176 $qossettings{'DEVICE'} = $classline[0];
177 $qossettings{'CLASS'} = $classline[1];
178 $qossettings{'PRIO'} = $classline[2];
179 $qossettings{'RATE'} = $classline[3];
180 $qossettings{'CEIL'} = $classline[4];
181 $qossettings{'BURST'} = $classline[5];
182 $qossettings{'CBURST'} = $classline[6];
183 print "\ttc class add dev $qossettings{'DEVICE'} parent 1:1 classid 1:$qossettings{'CLASS'} htb rate $qossettings{'RATE'}kbit ceil $qossettings{'CEIL'}kbit prio $qossettings{'PRIO'} ";
184 if (($qossettings{'BURST'} ne '') && ($qossettings{'BURST'} ne 0)) {
185 print "burst $qossettings{'BURST'}k ";
186 }
187 if (($qossettings{'CBURST'} ne '') && ($qossettings{'CBURST'} ne 0)) {
188 print "cburst $qossettings{'CBURST'}k";
189 }
190 print "\n";
191 }
192 }
193
194 print "\n\t### ATTACH QDISC TO LEAF CLASSES\n";
195 foreach $classentry (sort @classes)
196 {
197 @classline = split( /\;/, $classentry );
198 if ($qossettings{'RED_DEV'} eq $classline[0]) {
199 $qossettings{'DEVICE'} = $classline[0];
200 $qossettings{'CLASS'} = $classline[1];
201 print "\ttc qdisc add dev $qossettings{'DEVICE'} parent 1:$qossettings{'CLASS'} handle $qossettings{'CLASS'}: fq_codel $fqcodel_options\n";
202 }
203 }
204 print "\n\t### FILTER TRAFFIC INTO CLASSES\n";
205 foreach $classentry (sort @classes)
206 {
207 @classline = split( /\;/, $classentry );
208 if ($qossettings{'RED_DEV'} eq $classline[0]) {
209 $qossettings{'DEVICE'} = $classline[0];
210 $qossettings{'CLASS'} = $classline[1];
211 print "\ttc filter add dev $qossettings{'DEVICE'} parent 1:0 prio 0 protocol ip";
212 printf(" u32 match mark 0x%x 0x%x flowid 1:%d\n", ($qossettings{'CLASS'} << $QOS_OUT_SHIFT), $QOS_OUT_MASK, $qossettings{'CLASS'});
213 }
214 }
215
216 print <<END
217
218 ### ADD QOS-OUT CHAIN TO THE MANGLE TABLE IN IPTABLES
219 iptables -t mangle -N QOS-OUT
220 iptables -t mangle -I POSTROUTING -o $qossettings{'RED_DEV'} -j QOS-OUT
221
222 ### Don't change mark on traffic for the ipsec tunnel
223 iptables -t mangle -A QOS-OUT -m mark --mark 50 -j RETURN
224
225 ### SET TOS
226 END
227 ;
228 foreach $tosruleentry (sort @tosrules)
229 {
230 @tosruleline = split( /\;/, $tosruleentry );
231 $qossettings{'CLASS'} = $tosruleline[0];
232 $qossettings{'TOS'} = abs $tosruleline[2] * 2;
233 if ( $tosruleline[1] eq $qossettings{'RED_DEV'} )
234 {
235 print "\tiptables -t mangle -A QOS-OUT -m tos --tos $qossettings{'TOS'} -j MARK --set-xmark " . ($qossettings{'CLASS'} << $QOS_OUT_SHIFT) . "/$QOS_OUT_MASK\n";
236 print "\tiptables -t mangle -A QOS-OUT -m tos --tos $qossettings{'TOS'} -j RETURN\n";
237 }
238 }
239
240 print "\n\t### SET PORT-RULES\n";
241 foreach $portruleentry (sort @portrules)
242 {
243 @portruleline = split( /\;/, $portruleentry );
244 if ( $portruleline[1] eq $qossettings{'RED_DEV'} )
245 {
246 $qossettings{'CLASS'} = $portruleline[0];
247 $qossettings{'DEVICE'} = $portruleline[1];
248 $qossettings{'PPROT'} = $portruleline[2];
249 $qossettings{'QIP'} = $portruleline[3];
250 $qossettings{'QPORT'} = $portruleline[4];
251 $qossettings{'DIP'} = $portruleline[5];
252 $qossettings{'DPORT'} = $portruleline[6];
253 print "\tiptables -t mangle -A QOS-OUT ";
254 if ($qossettings{'QIP'} ne ''){
255 print "-s $qossettings{'QIP'} ";
256 }
257 if ($qossettings{'DIP'} ne ''){
258 print "-d $qossettings{'DIP'} ";
259 }
260 print "-p $qossettings{'PPROT'} ";
261 # if (($qossettings{'QPORT'} ne '') || ($qossettings{'DPORT'} ne '')){
262 # print "-m multiport ";
263 # }
264 if ($qossettings{'QPORT'} ne ''){
265 print "--sport $qossettings{'QPORT'} ";
266 }
267 if ($qossettings{'DPORT'} ne ''){
268 print "--dport $qossettings{'DPORT'} ";
269 }
270 print "-j MARK --set-xmark " . ($qossettings{'CLASS'} << $QOS_OUT_SHIFT) . "/$QOS_OUT_MASK\n";
271 print "\tiptables -t mangle -A QOS-OUT ";
272 if ($qossettings{'QIP'} ne ''){
273 print "-s $qossettings{'QIP'} ";
274 }
275 if ($qossettings{'DIP'} ne ''){
276 print "-d $qossettings{'DIP'} ";
277 }
278 print "-p $qossettings{'PPROT'} ";
279 # if (($qossettings{'QPORT'} ne '') || ($qossettings{'DPORT'} ne '')){
280 # print "-m multiport ";
281 # }
282 if ($qossettings{'QPORT'} ne ''){
283 print "--sport $qossettings{'QPORT'} ";
284 }
285 if ($qossettings{'DPORT'} ne ''){
286 print "--dport $qossettings{'DPORT'} ";
287 }
288 print "-j RETURN\n\n";
289 }
290 }
291
292 print <<END
293
294 ### SET LEVEL7-RULES
295 END
296 ;
297 foreach $l7ruleentry (sort @l7rules)
298 {
299 @l7ruleline = split( /\;/, $l7ruleentry );
300 if ( $l7ruleline[1] eq $qossettings{'RED_DEV'} )
301 {
302 $qossettings{'CLASS'} = $l7ruleline[0];
303 $qossettings{'DEVICE'} = $l7ruleline[1];
304 $qossettings{'L7PROT'} = $l7ruleline[2];
305 $qossettings{'QIP'} = $l7ruleline[3];
306 $qossettings{'DIP'} = $l7ruleline[4];
307 print "\tiptables -t mangle -A QOS-OUT ";
308 if ($qossettings{'QIP'} ne ''){
309 print "-s $qossettings{'QIP'} ";
310 }
311 if ($qossettings{'DIP'} ne ''){
312 print "-d $qossettings{'DIP'} ";
313 }
314 print "-m layer7 --l7dir /etc/l7-protocols/protocols --l7proto $qossettings{'L7PROT'} -j MARK --set-xmark " . $qossettings{'CLASS'} << $QOS_OUT_SHIFT . "/$QOS_OUT_MASK\n";
315 print "\tiptables -t mangle -A QOS-OUT ";
316 if ($qossettings{'QIP'} ne ''){
317 print "-s $qossettings{'QIP'} ";
318 }
319 if ($qossettings{'DIP'} ne ''){
320 print "-d $qossettings{'DIP'} ";
321 }
322 print "-m layer7 --l7dir /etc/l7-protocols/protocols --l7proto $qossettings{'L7PROT'} -j RETURN\n";
323 }
324 }
325
326 print <<END
327
328 ### REDUNDANT: SET ALL NONMARKED PACKETS TO DEFAULT CLASS
329 iptables -t mangle -A QOS-OUT -m mark --mark 0/$QOS_OUT_MASK -j MARK --set-xmark $DEF_OUT_MARK
330
331 ###
332 ### $qossettings{'IMQ_DEV'}
333 ###
334
335 tc qdisc del dev $qossettings{'RED_DEV'} ingress >/dev/null 2>&1
336 tc qdisc add dev $qossettings{'RED_DEV'} handle ffff: ingress
337
338 ### BRING UP $qossettings{'IMQ_DEV'}
339 if [ ! -d "/sys/class/net/$qossettings{'IMQ_DEV'}" ]; then
340 ip link add name $qossettings{'IMQ_DEV'} type ifb
341 fi
342
343 ip link set $qossettings{'IMQ_DEV'} up
344
345 tc filter add dev $qossettings{'RED_DEV'} parent ffff: protocol all u32 match u32 0 0 \\
346 action mirred egress redirect dev $qossettings{'IMQ_DEV'}
347
348 ### ADD HTB QDISC FOR $qossettings{'IMQ_DEV'}
349 tc qdisc del dev $qossettings{'IMQ_DEV'} root >/dev/null 2>&1
350 tc qdisc add dev $qossettings{'IMQ_DEV'} root handle 2: htb default $qossettings{'DEFCLASS_INC'}
351
352 ### MAIN RATE LIMIT
353 tc class add dev $qossettings{'IMQ_DEV'} parent 2: classid 2:1 htb rate $qossettings{'INC_SPD'}kbit
354
355 ### CLASSES FOR $qossettings{'IMQ_DEV'}
356 END
357 ;
358 foreach $classentry (sort @classes)
359 {
360 @classline = split( /\;/, $classentry );
361 if ($qossettings{'IMQ_DEV'} eq $classline[0]) {
362 $qossettings{'DEVICE'} = $classline[0];
363 $qossettings{'CLASS'} = $classline[1];
364 $qossettings{'PRIO'} = $classline[2];
365 $qossettings{'RATE'} = $classline[3];
366 $qossettings{'CEIL'} = $classline[4];
367 $qossettings{'BURST'} = $classline[5];
368 $qossettings{'CBURST'} = $classline[6];
369 print "\ttc class add dev $qossettings{'DEVICE'} parent 2:1 classid 2:$qossettings{'CLASS'} htb rate $qossettings{'RATE'}kbit ceil $qossettings{'CEIL'}kbit prio $qossettings{'PRIO'} ";
370 if (($qossettings{'BURST'} ne '') && ($qossettings{'BURST'} ne 0)) {
371 print "burst $qossettings{'BURST'}k ";
372 }
373 if (($qossettings{'CBURST'} ne '') && ($qossettings{'CBURST'} ne 0)) {
374 print "cburst $qossettings{'CBURST'}k";
375 }
376 print "\n";
377 }
378 }
379
380 print "\n\t### ATTACH QDISC TO LEAF CLASSES\n";
381 foreach $classentry (sort @classes)
382 {
383 @classline = split( /\;/, $classentry );
384 if ($qossettings{'IMQ_DEV'} eq $classline[0]) {
385 $qossettings{'DEVICE'} = $classline[0];
386 $qossettings{'CLASS'} = $classline[1];
387 print "\ttc qdisc add dev $qossettings{'DEVICE'} parent 2:$qossettings{'CLASS'} handle $qossettings{'CLASS'}: fq_codel $fqcodel_options\n";
388 }
389 }
390 print "\n\t### FILTER TRAFFIC INTO CLASSES\n";
391 foreach $classentry (sort @classes)
392 {
393 @classline = split( /\;/, $classentry );
394 if ($qossettings{'IMQ_DEV'} eq $classline[0]) {
395 $qossettings{'DEVICE'} = $classline[0];
396 $qossettings{'CLASS'} = $classline[1];
397 print "\ttc filter add dev $qossettings{'DEVICE'} parent 2:0 prio 0 protocol ip";
398 printf(" u32 match mark 0x%x 0x%x flowid 2:%d\n", ($qossettings{'CLASS'} << $QOS_INC_SHIFT), $QOS_INC_MASK, $qossettings{'CLASS'});
399 }
400 }
401 print <<END
402
403 ### ADD QOS-INC CHAIN TO THE MANGLE TABLE IN IPTABLES
404 iptables -t mangle -N QOS-INC
405 iptables -t mangle -A PREROUTING -i $qossettings{'RED_DEV'} -j QOS-INC
406
407 # If the packet is already marked, then skip the processing
408 iptables -t mangle -A QOS-INC -m mark ! --mark 0/$QOS_INC_MASK -j RETURN
409
410 ### SET TOS
411 END
412 ;
413 foreach $tosruleentry (sort @tosrules)
414 {
415 @tosruleline = split( /\;/, $tosruleentry );
416 $qossettings{'CLASS'} = $tosruleline[0];
417 $qossettings{'TOS'} = abs $tosruleline[2] * 2;
418 if ( $tosruleline[1] eq $qossettings{'IMQ_DEV'} )
419 {
420 print "\tiptables -t mangle -A QOS-INC -m tos --tos $qossettings{'TOS'} -j MARK --set-xmark " . ($qossettings{'CLASS'} << $QOS_INC_SHIFT) . "/$QOS_INC_MASK\n";
421 }
422
423 }
424
425 print "\n\t### SET PORT-RULES\n";
426 foreach $portruleentry (sort @portrules)
427 {
428 @portruleline = split( /\;/, $portruleentry );
429 if ( $portruleline[1] eq $qossettings{'IMQ_DEV'} )
430 {
431 $qossettings{'CLASS'} = $portruleline[0];
432 $qossettings{'DEVICE'} = $portruleline[1];
433 $qossettings{'PPROT'} = $portruleline[2];
434 $qossettings{'QIP'} = $portruleline[3];
435 $qossettings{'QPORT'} = $portruleline[4];
436 $qossettings{'DIP'} = $portruleline[5];
437 $qossettings{'DPORT'} = $portruleline[6];
438 print "\tiptables -t mangle -A QOS-INC -m mark --mark 0/$QOS_INC_MASK ";
439 if ($qossettings{'QIP'} ne ''){
440 print "-s $qossettings{'QIP'} ";
441 }
442 if ($qossettings{'DIP'} ne ''){
443 print "-d $qossettings{'DIP'} ";
444 }
445 print "-p $qossettings{'PPROT'} ";
446 # if (($qossettings{'QPORT'} ne '') || ($qossettings{'DPORT'} ne '')){
447 # print "-m multiport ";
448 # }
449 if ($qossettings{'QPORT'} ne ''){
450 print "--sport $qossettings{'QPORT'} ";
451 }
452 if ($qossettings{'DPORT'} ne ''){
453 print "--dport $qossettings{'DPORT'} ";
454 }
455 print "-j MARK --set-xmark " . ($qossettings{'CLASS'} << $QOS_INC_SHIFT) . "/$QOS_INC_MASK\n";
456 }
457 }
458
459 print <<END
460
461 ### SET LEVEL7-RULES
462 END
463 ;
464 foreach $l7ruleentry (sort @l7rules)
465 {
466 @l7ruleline = split( /\;/, $l7ruleentry );
467 if ( $l7ruleline[1] eq $qossettings{'IMQ_DEV'} )
468 {
469 $qossettings{'CLASS'} = $l7ruleline[0];
470 $qossettings{'DEVICE'} = $l7ruleline[1];
471 $qossettings{'L7PROT'} = $l7ruleline[2];
472 $qossettings{'QIP'} = $l7ruleline[3];
473 $qossettings{'DIP'} = $l7ruleline[4];
474 print "\tiptables -t mangle -A QOS-INC -m mark --mark 0/$QOS_INC_MASK ";
475 if ($qossettings{'QIP'} ne ''){
476 print "-s $qossettings{'QIP'} ";
477 }
478 if ($qossettings{'DIP'} ne ''){
479 print "-d $qossettings{'DIP'} ";
480 }
481 print "-m layer7 --l7dir /etc/l7-protocols/protocols --l7proto $qossettings{'L7PROT'} -j MARK --set-xmark " . ($qossettings{'CLASS'} << $QOS_INC_SHIFT) . "/$QOS_INC_MASK\n";
482 }
483 }
484
485 print <<END
486 ### REDUNDANT: SET ALL NONMARKED PACKETS TO DEFAULT CLASS
487 iptables -t mangle -A QOS-INC -m mark --mark 0/$QOS_INC_MASK -m layer7 ! --l7proto unset -j MARK --set-xmark $DEF_INC_MARK
488
489 # Save mark in connection tracking
490 iptables -t mangle -A QOS-INC -m mark --mark 0/$QOS_INC_MASK -j CONNMARK --save-mark
491
492 ## STARTING COLLECTOR
493 /usr/local/bin/qosd $qossettings{'RED_DEV'} >/dev/null 2>&1
494 /usr/local/bin/qosd $qossettings{'IMQ_DEV'} >/dev/null 2>&1
495
496 for i in \$(ls \$RRDLOG/class_*.rrd); do
497 rrdtool update \$i \$(date +%s): 2>/dev/null
498 done
499
500 echo "Quality of Service was successfully started!"
501 exit 0
502 ;;
503 clear|stop)
504 ### RESET EVERYTHING TO A KNOWN STATE
505 killall qosd >/dev/null 2>&1
506
507 # DELETE QDISCS
508 tc qdisc del dev $qossettings{'RED_DEV'} root >/dev/null 2>&1
509 tc qdisc del dev $qossettings{'RED_DEV'} ingress >/dev/null 2>&1
510 tc qdisc add root dev $qossettings{'RED_DEV'} fq_codel >/dev/null 2>&1
511 tc qdisc del dev $qossettings{'IMQ_DEV'} root >/dev/null 2>&1
512 tc qdisc del dev $qossettings{'IMQ_DEV'} ingress >/dev/null 2>&1
513 tc qdisc add root dev $qossettings{'IMQ_DEV'} fq_codel >/dev/null 2>&1
514 # STOP IMQ-DEVICE
515 ip link set $qossettings{'IMQ_DEV'} down >/dev/null 2>&1
516 ip link del $qossettings{'IMQ_DEV'} >/dev/null 2>&1
517
518 # REMOVE & FLUSH CHAINS
519 iptables -t mangle --delete POSTROUTING -o $qossettings{'RED_DEV'} -j QOS-OUT >/dev/null 2>&1
520 iptables -t mangle --delete PREROUTING -i $qossettings{'RED_DEV'} -j QOS-INC >/dev/null 2>&1
521 iptables -t mangle --flush QOS-OUT >/dev/null 2>&1
522 iptables -t mangle --delete-chain QOS-OUT >/dev/null 2>&1
523 iptables -t mangle --flush QOS-INC >/dev/null 2>&1
524 iptables -t mangle --delete-chain QOS-INC >/dev/null 2>&1
525
526 rmmod sch_htb >/dev/null 2>&1
527
528 for i in \$(ls \$RRDLOG/class_*.rrd); do
529 rrdtool update \$i \$(date +%s):
530 done
531
532 echo "Quality of Service was successfully cleared!"
533 ;;
534 gen|generate)
535 echo -n "Generating the QoS-Scripts..."
536 /usr/bin/perl /var/ipfire/qos/bin/makeqosscripts.pl > /var/ipfire/qos/bin/qos.sh
537 echo ".Done!"
538 exit 0
539 ;;
540 restart)
541 ### FIRST CLEAR EVERYTHING
542 \$0 clear
543
544 ### THEN START
545 \$0 start
546 ;;
547 esac
548 ### EOF
549 END
550 ;
551
552 ############################################################################################################################
553 ############################################################################################################################
Matthias' tree of IPFire 2.x