// L2TPNS Throttle Stuff
-// $Id: throttle.c,v 1.1 2003/12/16 07:07:39 fred_nerk Exp $
+// $Id: throttle.c,v 1.3 2004/05/24 04:29:21 fred_nerk Exp $
#include <stdio.h>
#include <sys/file.h>
#include "l2tpns.h"
#include "util.h"
-extern char *radiussecret;
extern radiust *radius;
extern sessiont *session;
-extern ipt radiusserver[MAXRADSERVER]; // radius servers
extern u32 sessionid;
-extern u8 radiusfree;
-extern int radfd;
-extern u8 numradiusservers;
-extern char debug;
-extern unsigned long rl_rate;
extern tbft *filter_buckets;
+extern struct configt *config;
// Throttle or Unthrottle a session
int throttle_session(sessionidt s, int throttle)
{
- if (!rl_rate) return 0;
+ if (!config->rl_rate) return 0;
if (!*session[s].user)
return 0; // User not logged in
{
// Throttle them
char cmd[2048] = {0};
- log(2, 0, s, session[s].tunnel, "Throttling session %d for user %s\n", s, session[s].user);
if (!session[s].tbf) session[s].tbf = rl_get_tbf();
- snprintf(cmd, 2048, "iptables -t mangle -A throttle -d %s -j MARK --set-mark %d", inet_toa(ntohl(session[s].ip)),
+ if (!session[s].tbf)
+ {
+ log(1, 0, s, session[s].tunnel, "Error creating a filtering bucket for user %s\n", session[s].user);
+ return 0;
+ }
+ log(2, 0, s, session[s].tunnel, "Throttling session %d for user %s (bucket %s)\n", s, session[s].user, filter_buckets[session[s].tbf].handle);
+ snprintf(cmd, 2048, "iptables -t mangle -A throttle -d %s -j MARK --set-mark %d",
+ inet_toa(ntohl(session[s].ip)),
session[s].tbf);
log(4, 0, s, session[s].tunnel, "Running %s\n", cmd);
- system(cmd);
+ if (WEXITSTATUS(system(cmd)) != 0)
+ {
+ log(2, 0, s, session[s].tunnel, "iptables returned an error. Session is not throttled\n");
+ return 0;
+ }
}
else
{
}
}
session[s].throttle = throttle;
- return 0;
+ return session[s].throttle;
}