SASA DESIGN

Open Your mind, Open Your Source Code!

Как да: MikroTiK QoS.

18 август, 2008 – 6:54 pm
Първото нещо, което трябва да направите е да отворите своя MikroTik winbox и да влезете в машинката си.Отваряте New Terminal и пишете следното:

/queue tree
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=[Скорост уплоуд] name=upload_ext_int packet-mark=”“ parent=global-out \
priority=8 queue=ethernet-default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=0 name=winbox_down packet-mark=winbox_in parent=global-in \
priority=1 queue=ethernet-default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=0 name=winbox_up packet-mark=winbox_out parent=global-out \
priority=1 queue=ethernet-default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=0 name=dns_down packet-mark=dns_in parent=global-in priority=2 \
queue=ethernet-default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=0 name=dns_up packet-mark=dns_out parent=global-out priority=2 \
queue=ethernet-default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=0 name=www_up packet-mark=www_out parent=upload_ext_int priority=3 \
queue=ethernet-default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=0 name=ssl_up packet-mark=ssl_out parent=upload_ext_int priority=1 \
queue=ethernet-default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=0 name=p2p_up packet-mark=p2p_out parent=upload_ext_int priority=8 \
queue=ethernet-default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=0 name=udp_up packet-mark=udp_out parent=upload_ext_int priority=4 \
queue=ethernet-default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=0 name=tcp_up packet-mark=tcp_out parent=upload_ext_int priority=6 \
queue=ethernet-default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=0 name=other_up packet-mark=other_out parent=upload_ext_int \
priority=4 queue=ethernet-default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=[Скорост ДЛ] name=download_ext_int packet-mark=”“ parent=global-in \
priority=8 queue=ethernet-default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=0 name=www_down packet-mark=www_in parent=download_ext_int \
priority=3 queue=ethernet-default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=0 name=ssl_down packet-mark=ssl_in parent=download_ext_int \
priority=1 queue=ethernet-default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=0 name=p2p_down packet-mark=p2p_in parent=download_ext_int \
priority=8 queue=ethernet-default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=0 name=udp_down packet-mark=udp_in parent=download_ext_int \
priority=4 queue=ethernet-default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=0 name=tcp_down packet-mark=tcp_in parent=download_ext_int \
priority=6 queue=ethernet-default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=0 name=other packet-mark=other_in parent=download_ext_int \
priority=4 queue=ethernet-default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=0 name=pop3_down packet-mark=pop3_in parent=download_ext_int \
priority=2 queue=ethernet-default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=0 name=smtp_down packet-mark=smtp_in parent=download_ext_int \
priority=2 queue=ethernet-default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=0 name=smtp_out packet-mark=smtp_out parent=upload_ext_int \
priority=2 queue=ethernet-default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=0 name=pop3_up packet-mark=pop3_out parent=upload_ext_int \
priority=2 queue=ethernet-default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=0 name=SNMP-IN packet-mark=SNMP-IN parent=global-in priority=3 \
queue=ethernet-default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=0 name=SNMP-OUT packet-mark=SNMP-OUT parent=global-out \
priority=3 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=0 name=icmp-up packet-mark=icmp_out parent=global-out priority=\
1 queue=ethernet-default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=0 name=icmp-down packet-mark=icmp_in parent=global-in priority=\
1 queue=ethernet-default

И така …след като сте добавили успешно дървото с QoS правилата остава да направите маркиране на пакетите, които ще шейпвате.

Ето ги и правилата:

/ip firewall mangle
add action=mark-packet chain=prerouting comment=icmp disabled=no \
in-interface=ext_int new-packet-mark=icmp_in passthrough=no protocol=icmp
add action=mark-packet chain=postrouting comment=”“ disabled=no \
new-packet-mark=icmp_out out-interface=ext_int passthrough=no protocol=icmp
add action=mark-packet chain=prerouting comment=SNMP disabled=no \
in-interface=ext_int new-packet-mark=SNMP-IN passthrough=no protocol=udp \
src-port=161
add action=mark-packet chain=postrouting comment=”“ disabled=no dst-port=161 \
new-packet-mark=SNMP-OUT out-interface=ext_int passthrough=no protocol=udp
add action=mark-packet chain=prerouting comment=p2p disabled=no in-interface=\
ext_int new-packet-mark=p2p_in p2p=all-p2p passthrough=no
add action=mark-packet chain=postrouting comment=”“ disabled=no \
new-packet-mark=p2p_out out-interface=ext_int p2p=all-p2p passthrough=no
add action=mark-packet chain=prerouting comment=pop3 disabled=no \
in-interface=ext_int new-packet-mark=pop3_in passthrough=no protocol=tcp \
src-port=110
add action=mark-packet chain=postrouting comment=”“ disabled=no dst-port=110 \
new-packet-mark=pop3_out out-interface=ext_int passthrough=no protocol=tcp
add action=mark-packet chain=prerouting comment=smtp disabled=no \
in-interface=ext_int new-packet-mark=smtp_in passthrough=no protocol=tcp \
src-port=25
add action=mark-packet chain=postrouting comment=”“ disabled=no dst-port=25 \
new-packet-mark=smtp_out out-interface=ext_int passthrough=no protocol=tcp
add action=mark-packet chain=prerouting comment=winbox disabled=no dst-port=\
8291 in-interface=ext_int new-packet-mark=winbox_in passthrough=no protocol=\
tcp
add action=mark-packet chain=postrouting comment=”“ disabled=no \
new-packet-mark=winbox_out out-interface=ext_int passthrough=no protocol=tcp \
src-port=8291
add action=mark-packet chain=prerouting comment=dns disabled=no in-interface=\
ext_int new-packet-mark=dns_in passthrough=no protocol=udp src-port=53
add action=mark-packet chain=postrouting comment=”“ disabled=no dst-port=53 \
new-packet-mark=dns_out out-interface=ext_int passthrough=no protocol=udp
add action=mark-packet chain=prerouting comment=www disabled=no in-interface=\
ext_int new-packet-mark=www_in passthrough=no protocol=tcp src-port=80
add action=mark-packet chain=postrouting comment=”“ disabled=no dst-port=80 \
new-packet-mark=www_out out-interface=ext_int passthrough=no protocol=tcp
add action=mark-packet chain=prerouting comment=ssl disabled=no in-interface=\
ext_int new-packet-mark=ssl_in passthrough=no protocol=tcp src-port=443
add action=mark-packet chain=postrouting comment=”“ disabled=no dst-port=443 \
new-packet-mark=ssl_out out-interface=ext_int passthrough=no protocol=tcp
add action=mark-packet chain=prerouting comment=udp disabled=no in-interface=\
ext_int new-packet-mark=udp_in passthrough=no protocol=udp
add action=mark-packet chain=postrouting comment=”“ disabled=no \
new-packet-mark=udp_out out-interface=ext_int passthrough=no protocol=udp
add action=mark-packet chain=prerouting comment=tcp disabled=no in-interface=\
ext_int new-packet-mark=tcp_in passthrough=no protocol=tcp
add action=mark-packet chain=postrouting comment=”“ disabled=no \
new-packet-mark=tcp_out out-interface=ext_int passthrough=no protocol=tcp
add action=mark-packet chain=prerouting comment=other disabled=no \
in-interface=ext_int new-packet-mark=other_in passthrough=no
add action=mark-packet chain=postrouting comment=”“ disabled=no \
new-packet-mark=other_out out-interface=ext_int passthrough=no

Заменяте само “ext_int” с вашия външен интерфейс и ги стартирате.

Ако имате други въпроси – Питайте!

Източник: Добромир Добрев

Напиши коментар

SASA DESIGN is proudly powered by WordPress 20 queries. 0,632 seconds.