Solaris Bandwidth Manager 1.5 Administration Guide

Solaris Bandwidth Manager Modes

Solaris Bandwidth Manager can be used in one of two modes: server mode or IP-transparent mode.

Server Mode

On a host that is a source of IP traffic, run Solaris Bandwidth Manager in server mode. A host is a source of IP traffic if has only one network connection, to either the WAN or the LAN, or because it is a router of traffic.

Figure 2-2 Solaris Bandwidth Manager in Server Mode

Graphic

Figure 2-3 Solaris Bandwidth Manager on a Router in Server Mode

Graphic

When an interface for which bandwidth management is configured is initialized (usually at system startup), the ipqos module is pushed on to the IP stack, between IP and the interface. The Solaris Bandwidth Manager policy agent reads the configuration file and loads the configuration information into the ipqos module. The ipqos module then processes all traffic according to the configured definitions.


Note -

If a firewall is running on the same machine, install Solaris Bandwidth Manager on an interface that is not running encryption software.


IP-Transparent Mode

On a host that is between a LAN and a router, run Solaris Bandwidth Manager in IP-transparent mode.

This mode is called IP-transparent because the host running Solaris Bandwidth Manager is completely transparent to the IP network and is perceived as just another machine connected to the LAN. The LAN and the WAN behave as though they are directly connected through the router only. It is not necessary to modify the routing tables.

Figure 2-4 Network Configuration Without Solaris Bandwidth Manager

Graphic

Figure 2-5 Network Configuration--IP-Transparent Mode

Graphic

Kernel Architecture

The Kernel contains three modules which receive, filter, classify, schedule and forward the packets between the LAN and the router. The logical flow of data in IP-transparent mode is shown by the dashed lines in Figure 2-6.

ipqos1 

implemented into the IP stack by autopush.ba and autopush_usr.ba during system startup. This module monitors the packets arriving at the host from the LAN but only processes packets addressed to the host machine.

ipqos2 

implemented when the policy agent is started. This module monitors the packets arriving at the host from the LAN, and is used to filter and distribute them within the kernel. 

ipqos3 

implemented when the policy agent is started. This module interface monitors the packets arriving at the host from the LAN or WAN and classifies and schedules them. The classes for the configuration file are stored in this module. 

Traffic Flow From the LAN

Traffic from the LAN to the host running Solaris Bandwidth Manager is received by the LAN interface.

If the destination IP address of the packet is the host running Solaris Bandwidth Manager it is dropped by ipqos2 as it will have already been sent up the IP stack by ipqos1.

If the destination IP address of the packet is not the host running Solaris Bandwidth Manager then the packet is forwarded directly to the router in the following cases:

Otherwise, the packet will be classifed and scheduled by ipqos3.

Traffic Flow From the WAN

Traffic from the WAN is forwarded to the LAN via ipqos3 and ipqos2.

Figure 2-6 Traffic Flow in IP-Transparent Mode

Graphic

Only ipqos3 can be configured via the configuration file so any reference to the interface in this file must be the WAN interface. Configure the network device option in the configuration file to reference the LAN interface in one of the following ways:

Non-IP Packets

Non-IP traffic bypasses ipqos if the nonip_mode parameter is set to direct. These packets are not logged in the flow statistics. If set to ipqos, the traffic is sent to the default class, or the root class if no default class is configured.