|
|
- #!/bin/sh
- #
- # Copyright (C) 2018 rosysong@rosinson.com
- #
-
- . /lib/nft-qos/core.sh
-
- # append rule for static qos
- qosdef_append_rule_sta() { # <section> <operator> <default-unit> <default-rate>
- local ipaddr unit rate
- local operator=$2
-
- config_get ipaddr $1 ipaddr
- config_get unit $1 unit $3
- config_get rate $1 rate $4
-
- [ -z "$ipaddr" ] && return
-
- qosdef_append_rule_ip_limit $ipaddr $operator $unit $rate
- }
-
- # append chain for static qos
- qosdef_append_chain_sta() { # <hook> <name> <section> <unit> <rate>
- local hook=$1 name=$2
- local config=$3 operator
-
- case "$name" in
- download) operator="daddr";;
- upload) operator="saddr";;
- esac
-
- qosdef_appendx "\tchain $name {\n"
- qosdef_append_chain_def filter $hook 0 accept
- qosdef_append_rule_limit_whitelist $name
- config_foreach qosdef_append_rule_sta $config $operator $4 $5
- qosdef_appendx "\t}\n"
- }
-
- qosdef_flush_static() {
- qosdef_flush_table "$NFT_QOS_INET_FAMILY" nft-qos-static
- }
-
- # static limit rate init
- qosdef_init_static() {
- local unit_dl unit_ul rate_dl rate_ul
- local limit_enable limit_type hook_ul="prerouting" hook_dl="postrouting"
-
- uci_validate_section nft-qos default default \
- 'limit_enable:bool:0' \
- 'limit_type:maxlength(8)' \
- 'static_unit_dl:string:kbytes' \
- 'static_unit_ul:string:kbytes' \
- 'static_rate_dl:uinteger:50' \
- 'static_rate_ul:uinteger:50'
-
- [ $? -ne 0 ] && {
- logger -t nft-qos-static "validation failed"
- return 1
- }
-
- [ $limit_enable -eq 0 -o \
- $limit_type = "dynamic" ] && return 1
-
- [ -z "$NFT_QOS_HAS_BRIDGE" ] && {
- hook_ul="postrouting"
- hook_dl="prerouting"
- }
-
- qosdef_appendx "table $NFT_QOS_INET_FAMILY nft-qos-static {\n"
- qosdef_append_chain_sta $hook_ul upload upload $unit_ul $rate_ul
- qosdef_append_chain_sta $hook_dl download download $unit_dl $rate_dl
- qosdef_appendx "}\n"
- }
|