mirror of
https://github.com/dashpay/dash.git
synced 2024-12-25 20:12:57 +01:00
2da9982e55
aaaaad6ac95b402fe18d019d67897ced6b316ee0 scripted-diff: Bump copyright of files changed in 2019 (MarcoFalke)
Pull request description:
ACKs for top commit:
practicalswift:
ACK aaaaad6ac95b402fe18d019d67897ced6b316ee0
promag:
ACK aaaaad6ac95b402fe18d019d67897ced6b316ee0 🎉
fanquake:
ACK aaaaad6ac95b402fe18d019d67897ced6b316ee0 - going to merge this now because the year is over and conflicts are minimal.
Tree-SHA512: 58cb1f53bc4c1395b2766f36fabc7e2332e213780a802762fff0afd59468dad0c3265f553714d761c7a2c44ff90f7dc250f04458f4b2eb8eef8b94f8c9891321
63 lines
2.6 KiB
Bash
63 lines
2.6 KiB
Bash
#!/usr/bin/env bash
|
|
#
|
|
# Copyright (c) 2017-2019 The Bitcoin Core developers
|
|
# Distributed under the MIT software license, see the accompanying
|
|
# file COPYING or http://www.opensource.org/licenses/mit-license.php.
|
|
|
|
export LC_ALL=C
|
|
#network interface on which to limit traffic
|
|
IF="eth0"
|
|
#limit of the network interface in question
|
|
LINKCEIL="1gbit"
|
|
#limit outbound Dash protocol traffic to this rate
|
|
LIMIT="160kbit"
|
|
#defines the IPv4 address space for which you wish to disable rate limiting
|
|
LOCALNET_V4="192.168.0.0/16"
|
|
#defines the IPv6 address space for which you wish to disable rate limiting
|
|
LOCALNET_V6="fe80::/10"
|
|
|
|
#delete existing rules ('Error: Cannot delete qdisc with handle of zero.' means there weren't any.)
|
|
tc qdisc del dev ${IF} root
|
|
|
|
#add root class
|
|
tc qdisc add dev ${IF} root handle 1: htb default 10
|
|
|
|
#add parent class
|
|
tc class add dev ${IF} parent 1: classid 1:1 htb rate ${LINKCEIL} ceil ${LINKCEIL}
|
|
|
|
#add our two classes. one unlimited, another limited
|
|
tc class add dev ${IF} parent 1:1 classid 1:10 htb rate ${LINKCEIL} ceil ${LINKCEIL} prio 0
|
|
tc class add dev ${IF} parent 1:1 classid 1:11 htb rate ${LIMIT} ceil ${LIMIT} prio 1
|
|
|
|
#add handles to our classes so packets marked with <x> go into the class with "... handle <x> fw ..."
|
|
tc filter add dev ${IF} parent 1: protocol ip prio 1 handle 1 fw classid 1:10
|
|
tc filter add dev ${IF} parent 1: protocol ip prio 2 handle 2 fw classid 1:11
|
|
|
|
if [ -n "${LOCALNET_V6}" ] ; then
|
|
# v6 cannot have the same priority value as v4
|
|
tc filter add dev ${IF} parent 1: protocol ipv6 prio 3 handle 1 fw classid 1:10
|
|
tc filter add dev ${IF} parent 1: protocol ipv6 prio 4 handle 2 fw classid 1:11
|
|
fi
|
|
|
|
#delete any existing rules
|
|
#disable for now
|
|
#ret=0
|
|
#while [ $ret -eq 0 ]; do
|
|
# iptables -t mangle -D OUTPUT 1
|
|
# ret=$?
|
|
#done
|
|
|
|
#limit outgoing traffic to and from port 9999. but not when dealing with a host on the local network
|
|
# (defined by $LOCALNET_V4 and $LOCALNET_V6)
|
|
# --set-mark marks packages matching these criteria with the number "2" (v4)
|
|
# --set-mark marks packages matching these criteria with the number "4" (v6)
|
|
# these packets are filtered by the tc filter with "handle 2"
|
|
# this filter sends the packages into the 1:11 class, and this class is limited to ${LIMIT}
|
|
iptables -t mangle -A OUTPUT -p tcp -m tcp --dport 9999 ! -d ${LOCALNET_V4} -j MARK --set-mark 0x2
|
|
iptables -t mangle -A OUTPUT -p tcp -m tcp --sport 9999 ! -d ${LOCALNET_V4} -j MARK --set-mark 0x2
|
|
|
|
if [ -n "${LOCALNET_V6}" ] ; then
|
|
ip6tables -t mangle -A OUTPUT -p tcp -m tcp --dport 9999 ! -d ${LOCALNET_V6} -j MARK --set-mark 0x4
|
|
ip6tables -t mangle -A OUTPUT -p tcp -m tcp --sport 9999 ! -d ${LOCALNET_V6} -j MARK --set-mark 0x4
|
|
fi
|