Page MenuHomeVyOS Platform

Extended pppoe rate-limiter
Closed, ResolvedPublicFEATURE REQUEST

Description

In pppoe daemon exist rate-limiter mechanism which allow not shape marked packets. Often this feature need for ISP which provide access to some IX or own resources.
As example, if we want provide access to 192.0.2.0/24 without rate limiting, then in this case we need add to pppoe config next

[shaper]
fwmark=222
down-limiter=htb

and set rule for marking packets

iptables -t mangle -I PREROUTING -s 192.0.2.0/24 -j MARK --set-mark 222

We can set fwmark static or configurable via CLI.

Details

Version
-
Is it a breaking change?
Unspecified (possibly destroys the router)
Issue type
Feature (new functionality)

Event Timeline

Unknown Object (User) created this task.Jan 28 2020, 10:11 PM
Unknown Object (User) subscribed.Jan 29 2020, 10:19 AM
erkin set Issue type to Feature (new functionality).Aug 31 2021, 5:49 PM
Viacheslav changed the task status from Open to In progress.Feb 8 2023, 3:40 PM
Viacheslav claimed this task.

PR https://github.com/vyos/vyos-1x/pull/1808

set service pppoe-server authentication local-users username user1 password 'user1'
set service pppoe-server authentication mode 'local'
set service pppoe-server client-ip-pool start '192.0.2.10'
set service pppoe-server client-ip-pool stop '192.0.2.100'
set service pppoe-server gateway-address '192.0.2.1'
set service pppoe-server interface eth1
set service pppoe-server shaper fwmark '223

pppoe conf:

vyos@r14# cat /run/accel-pppd/pppoe.conf | grep "\[shaper" -A 4
[shaper]
verbose=1
fwmark=223
down-limiter=htb