tiuman
Junior Member | Редактировать | Профиль | Сообщение | Цитировать | Сообщить модератору
Почему не работают приоритеты??
в чем не прав??
Mangle + queue tree (PCQ)
правила должны работать на интерфейсе rostelecom
исключение address-list="blitz 1,2"
/ip firewall address-list
add address=192.167.167.0/24 comment="" disabled=no list="blitz 1, 2"
add address=192.168.5.0/24 comment="" disabled=no list="blitz 1, 2"
add address=192.168.6.0/24 comment="" disabled=no list="blitz 1, 2"
/ip firewall mangle
add action=mark-connection chain=prerouting comment="icmp MC" disabled=yes new-connection-mark=icmp passthrough=yes protocol=icmp src-address-list="!blitz 1, 2"
add action=mark-packet chain=prerouting comment="icmp MP" connection-mark=icmp disabled=yes new-packet-mark=icmp passthrough=yes
add action=mark-connection chain=prerouting comment="winbox MC" disabled=yes dst-port=8291 new-connection-mark=winbox passthrough=yes protocol=tcp src-address-list="!blitz 1, 2"
add action=mark-packet chain=postrouting comment="winbox MP" connection-mark=winbox disabled=yes new-packet-mark=wibnox passthrough=yes
add action=mark-connection chain=prerouting comment="web MC" connection-bytes=0-500000 disabled=yes dst-port=80,445 new-connection-mark=web passthrough=yes protocol=tcp \
src-address-list="!blitz 1, 2"
add action=mark-packet chain=prerouting comment="web MP" connection-mark=web disabled=yes new-packet-mark=web passthrough=yes
add action=mark-connection chain=prerouting comment="web d MC" connection-bytes=500000-0 disabled=yes dst-port=80,445 new-connection-mark="web d" passthrough=yes protocol=tcp \
src-address-list="!blitz 1, 2"
add action=mark-packet chain=prerouting comment="web d MP" connection-bytes=500000-0 connection-mark="web d" disabled=yes new-packet-mark="web d" passthrough=yes
add action=mark-connection chain=prerouting comment="dns MC" disabled=yes dst-port=53 new-connection-mark=dns passthrough=yes protocol=udp src-address-list="!blitz 1, 2"
add action=mark-packet chain=prerouting comment="dns MP" connection-mark=dns disabled=yes new-packet-mark=dns passthrough=yes
add action=mark-connection chain=prerouting comment="other MC" disabled=yes new-connection-mark=other passthrough=yes src-address-list="!blitz 1, 2"
add action=mark-packet chain=prerouting comment="other MP" connection-mark=other disabled=yes new-packet-mark=other passthrough=yes
/queue type
set default kind=pfifo name=default pfifo-limit=50
set ethernet-default kind=pfifo name=ethernet-default pfifo-limit=50
set wireless-default kind=sfq name=wireless-default sfq-allot=1514 sfq-perturb=5
set synchronous-default kind=red name=synchronous-default red-avg-packet=1000 red-burst=20 red-limit=60 red-max-threshold=50 red-min-threshold=10
set hotspot-default kind=sfq name=hotspot-default sfq-allot=1514 sfq-perturb=5
add kind=pcq name=down pcq-classifier=dst-address pcq-limit=1500 pcq-rate=0 pcq-total-limit=150000000
add kind=pcq name=upload pcq-classifier=src-address pcq-limit=1500 pcq-rate=0 pcq-total-limit=150000
set default-small kind=pfifo name=default-small pfifo-limit=10
/queue tree
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=yes limit-at=0 max-limit=0 name="total download" parent=local priority=1
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=yes limit-at=0 max-limit=0 name="1 icmp" packet-mark=icmp parent="total download" priority=1 queue=down
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=yes limit-at=0 max-limit=0 name="2 winbox" packet-mark=wibnox parent="total download" priority=2 queue=down
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=yes limit-at=0 max-limit=0 name="4 web" packet-mark=web parent="total download" priority=3 queue=down
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=yes limit-at=0 max-limit=0 name="5 web d" packet-mark="web d" parent="total download" priority=5 queue=down
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=yes limit-at=0 max-limit=0 name="3 dns" packet-mark=dns parent="total download" priority=3 queue=down
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=yes limit-at=0 max-limit=0 name="6 other" packet-mark=other parent="total download" priority=6 queue=down
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=yes limit-at=0 max-limit=0 name="total upload" parent=rostel priority=8
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=yes limit-at=0 max-limit=0 name="1 icmp up" packet-mark=icmp parent="total upload" priority=1 queue=upload
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=yes limit-at=0 max-limit=0 name="2 winbox up" packet-mark=wibnox parent="total upload" priority=2 queue=upload
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=yes limit-at=0 max-limit=0 name="4 web up" packet-mark=web parent="total upload" priority=4 queue=upload
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=yes limit-at=0 max-limit=0 name="5 web d up" packet-mark="web d" parent="total upload" priority=5 queue=upload
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=yes limit-at=0 max-limit=0 name="3 dns up" packet-mark=dns parent="total upload" priority=3 queue=upload
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=yes limit-at=0 max-limit=0 name="6 other up" packet-mark=other parent="total upload" priority=6 queue=upload
|
Всего записей: 39 | Зарегистр. 02-11-2007 | Отправлено: 10:42 23-03-2011 | Исправлено: tiuman, 10:54 23-03-2011 |
|
