[Cialug] Bandwidth Shapers
David Champion
dchampion at visionary.com
Mon Dec 17 13:32:05 CST 2007
Some of you may recall the LUG presentation by the developer of the
Linux Bandwidth Arbitrator some time ago:
http://www.bandwidtharbitrator.com/
They sell an appliance that does some nifty traffic shaping, QoS and
stuff. The core feature is the Bandwidth Arbitrator - it does dynamic
shaping on demand in real-time. It may not meet all of your demands, but
I think this is a better approach for most environments than static name
based or IP traffic shaping.
-dc
David Bierce wrote:
> Wrote this before lunch and forget to hit send.
>
>
> In terms of appliances, I think Packeteer and Sandvine have appliances
> that shape very well in the way you are describing. Pulling the HOST
> out of the HTTP and throttling back *.facebook.com regardless of IP
> address. However, shaping by IP address is a lot of work for HTTPS
> and is a lot more problematic. Currently, most rich media websites
> don't use HTTPS for serving up their heavy files. Additionally,
> throttling by IP for media rich websites can be an issue because an IP
> fro Akami or Cachefly may service Facebook.com, Yahoo.com,
> MySpace.com, Revision3.com, and FAFSA.gov leading to some unexpected
> throttling, which isn't that big of a deal unless you're blocking.
>
>
>
> On Dec 17, 2007, at 11:41 AM, Jeffrey Ollie wrote:
>
>> On 12/17/07, Matthew Nuzum <newz at bearfruit.org> wrote:
>>>
>>> That implies, as far as I can tell, that some proxy server would
>>> have to be
>>> used in order to shape HTTPS traffic since I know of no other way
>>> besides IP
>>> based rules, which you didn't want to do. Meaning without the client
>>> configured to use a proxy server you can't shape the https stuff
>>> (that I
>>> know of, and even them some types of proxying, like transparent
>>> proxying,
>>> don't work afaik).
>>
>> I'm OK with shaping by IP address, I just don't want to maintain the
>> list of IP addresses myself - I'd rather pay to have someone else
>> maintain the list. I just want to click a checkbox next to something
>> that says "limit facebook to 5Mb/s" and have it "just work" without me
>> having to run a sniffer and figure out what IP addresses facebook's
>> servers run from. Same deal for myspace, youtube, etc.
>>
>> Jeff
>> _______________________________________________
>> Cialug mailing list
>> Cialug at cialug.org
>> http://cialug.org/mailman/listinfo/cialug
>
> _______________________________________________
> Cialug mailing list
> Cialug at cialug.org
> http://cialug.org/mailman/listinfo/cialug
>
More information about the Cialug
mailing list