[Bloat] Possible Companion Software for Cake and SQM

Jonathan Morton chromatix99 at gmail.com
Fri Jun 3 00:20:34 EDT 2016

> On 3 Jun, 2016, at 02:39, Noah Causin <n0manletter at gmail.com> wrote:
> I found this netfilter module that could be useful for traffic shaping with Cake or SQM.
> https://github.com/betolj/ndpi-netfilter
> It uses an open source deep packet inspection engine to determine what application a flow is, and it works with iptables.  My idea is that this could be used to apply diffserv markings to traffic like Netflix, so that they can be placed into the appropriate classes.
> iptables -t mangle -A FORWARD -o eth2 -m ndpi --netflix -j DSCP --set-dscp-class cs2
> What do you think?

I think this has the potential to be a major CPU hog.  That’s a problem on consumer-grade routers.

It’s also not a general solution which can be deployed by ISPs subject to Net Neutrality regulations - because it explicitly works by identifying applications and marking them for discriminatory treatment, which is precisely what Net Neutrality outlaws.

A secondary problem is that iptables currently gets applied *after* the ingress qdisc has finished with the packet.  This limits the utility.

 - Jonathan Morton

