Postado originalmente por
GeraldoTec
Antes leia aqui
http://mum.mikrotik.com/presentation...06-marcony.pdf
Créditos DAVID MARCONY
Manual HTB
http://wiki.mikrotik.com/wiki/Manual...1_:_Usual_case
O primeiro, é preciso classificar o tráfego.
Marcar forma tráfego / para o servidor. A primeira regra que irá marcar a conexão de saída a partir do servidor e com a segunda, todos os pacotes que pertencem a esta conexão (download e upload de pacotes para esta conexão):
/ip firewall mangle> add chain=prerouting src-address=10.1.1.1/32 action=mark-connection \
new-connection-mark=server_con
/ip firewall mangle> add chain=forward connection-mark=server_con action=mark-packet \
new-packet-mark=server
Faça o mesmo para a estação de trabalho também. Combinar todas as conexões de estações de trabalho, marcá-lo com a mesma marca (new-connection-mark = workstation_con) e depois que marca todos os pacotes que pertencem a estes estação de trabalho.
/ip firewall mangle> add chain=prerouting src-address=10.1.1.2
action=mark-connection new-connection-mark=workstation_con
/ip firewall mangle> add chain=prerouting src-address=10.1.1.3
action=mark-connection new-connection-mark=workstation_con
/ip firewall mangle> add chain=prerouting src-address=10.1.1.4
action=mark-connection new-connection-mark=workstation_con
/ip firewall mangle> add chain='''forward''' connection-mark=workstation_con action=mark-packet \
new-packet-mark=workstations
No final criar árvore / fila para upload e download com base na figura 8.8 e figura 8.9.
Árvore fila para carregar limitação é implementado em
ether1 interface.
;;; Queue_A1 creation
/queue tree> add name=Queue_A1 parent='''ether1''' max-limit=2048k
;;; Queue_B1 creation
/queue tree> add name=Queue_B1 parent=Queue_A1 max-limit=2048k limit-at=1024k
;;; Queue_C1 criação
/ Árvore fila> add name = Queue_C1 parent = Queue_A1 max-limit = limite-at = prioridade 2048k 1024k = 7 \
packet-mark = server
;;; Queue_C1 creation
/queue tree> add name=Queue_C1 parent=Queue_A1 max-limit=2048k limit-at=1024k priority=7 \
packet-mark=server
;;; Queue_D1, Queue_E1 and Queue_F1 creation
/queue tree> add name=Queue_D1 parent=Queue_B1 max-limit=2048k limit-at=340k priority=8 \
packet-mark=workstations
/queue tree> add name=Queue_E1 parent=Queue_B1 max-limit=2048k limit-at=340k priority=8 \
packet-mark=workstations
/queue tree> add name=Queue_F1 parent=Queue_B1 max-limit=2048k limit-at=340k priority=8 \
packet-mark=Workstations
Priority value by default is 8 so it is not specified here.
Árvore fila para limitação de download é implementado em
ether2 interface.
;;; Queue_A2 creation
/queue tree> add name=Queue_A2 parent='''ether1''' max-limit=2048k
;;; Queue_B2 creation
/queue tree> add name=Queue_B2 parent=Queue_A2 max-limit=2048k limit-at=1536k
;;; Queue_C creation
/queue tree> add name=Queue_C2 parent=Queue_A2 max-limit=2048k limit-at=512k priority=7 \
packet-mark=server
;;; Queue_D2, Queue_E2 and Queue_F2 creation
/queue tree> add name=Queue_D2 parent=Queue_B2 max-limit=2048k limit-at=512k priority=8 \
packet-mark=workstations
/queue tree> add name=Queue_E2 parent=Queue_B2 max-limit=2048k limit-at=512k priority=8 \
packet-mark=workstations
/queue tree> add name=Queue_F2 parent=Queue_B2 max-limit=2048k limit-at=512k priority=8 \
packet-mark=workstations
queue=default