Página 1 de 3 123 ÚltimoÚltimo
+ Responder ao Tópico



  1. Bom dia amigos, to com uma dúvida aki. Tenho um Mikrotik com 5 interfaces publicas (conectadas diretamente à Internet) e uma local, fazendo load balance, tudo certinho.
    Porem eu gostaria de fazer um Qos, priorizar certos trafegos... com uma interface publica e uma local ja fiz .. porem como fazer com mais de uma interface publica?
    Desde ja grato.

    Att.
    Gabriel Siena

  2. tenho 2 links fibra to usando qos e nao tem problema, pelo contrario funciona melhor que o load
    cara faz assim

    /ip firewall mangle
    add action=mark-connection chain=prerouting comment="CONTROLE NAVEGACAO" \
    disabled=no dst-port=443 new-connection-mark=Navegacao-Conexao \
    passthrough=yes protocol=tcp
    add action=mark-connection chain=prerouting comment="" disabled=no dst-port=\
    3528 new-connection-mark=Navegacao-Conexao passthrough=yes protocol=tcp
    add action=mark-connection chain=prerouting comment="" disabled=no dst-port=\
    80 new-connection-mark=Navegacao-Conexao passthrough=yes protocol=tcp
    add action=mark-connection chain=prerouting comment="" disabled=no dst-port=\
    53 new-connection-mark=Navegacao-Conexao passthrough=yes protocol=tcp
    add action=mark-connection chain=prerouting comment="" disabled=no dst-port=\
    53 new-connection-mark=Navegacao-Conexao passthrough=yes protocol=udp
    add action=mark-connection chain=prerouting comment="" disabled=no dst-port=\
    21 new-connection-mark=Navegacao-Conexao passthrough=yes protocol=tcp
    add action=mark-packet chain=prerouting comment="" connection-mark=\
    Navegacao-Conexao disabled=no new-packet-mark=Navegacao-Pacotes \
    passthrough=no
    add action=mark-connection chain=prerouting comment="CONTROLE E-MAIL" \
    disabled=no dst-port=110 new-connection-mark=E-mail-Conexao passthrough=\
    yes protocol=tcp
    add action=mark-connection chain=prerouting comment="" disabled=no dst-port=\
    25 new-connection-mark=E-mail-Conexao passthrough=yes protocol=tcp
    add action=mark-connection chain=prerouting comment="" disabled=no dst-port=\
    25 new-connection-mark=E-mail-Conexao passthrough=yes protocol=udp
    add action=mark-packet chain=prerouting comment="" connection-mark=\
    E-mail-Conexao disabled=no new-packet-mark=E-mail-Pacotes passthrough=no
    add action=mark-connection chain=prerouting comment="CONTROLE MESSENGER" \
    disabled=no dst-port=1863 new-connection-mark=Messenger-Conexao \
    passthrough=yes protocol=tcp
    add action=mark-connection chain=prerouting comment="" disabled=no dst-port=\
    1863 new-connection-mark=Messenger-Conexao passthrough=yes protocol=udp
    add action=mark-connection chain=prerouting comment="" disabled=no dst-port=\
    6891-6901 new-connection-mark=Messenger-Conexao passthrough=yes protocol=\
    tcp
    add action=mark-connection chain=prerouting comment="" disabled=no dst-port=\
    6891-6901 new-connection-mark=Messenger-Conexao passthrough=yes protocol=\
    udp
    add action=mark-connection chain=prerouting comment="" disabled=no dst-port=\
    5190 new-connection-mark=Messenger-Conexao passthrough=yes protocol=udp
    add action=mark-packet chain=prerouting comment="" connection-mark=\
    Messenger-Conexao disabled=no new-packet-mark=Messenger-Pacotes \
    passthrough=no
    add action=mark-connection chain=prerouting comment="CONTROLE P2P" disabled=\
    no new-connection-mark=P2P-Conexao-Limite p2p=all-p2p passthrough=yes \
    protocol=tcp
    add action=mark-packet chain=prerouting comment="" connection-mark=\
    P2P-Conexao-Limite disabled=no new-packet-mark=P2P-Pacotes passthrough=no
    add action=mark-connection chain=prerouting comment="CONTROLE ICMP" disabled=\
    no new-connection-mark=ICMP-Conexao passthrough=yes protocol=icmp
    add action=mark-packet chain=prerouting comment="" connection-mark=\
    ICMP-Conexao disabled=no new-packet-mark=ICMP-Pacotes passthrough=no
    add action=mark-connection chain=prerouting comment="CONTROLE ACESSO REMOTO" \
    disabled=no dst-port=22 new-connection-mark=Acesso-Remoto-Conexao \
    passthrough=yes protocol=tcp
    add action=mark-connection chain=prerouting comment="" disabled=no dst-port=\
    23 new-connection-mark=Acesso-Remoto-Conexao passthrough=yes protocol=tcp
    add action=mark-connection chain=prerouting comment="Terminal Server" \
    disabled=no dst-port=3389 new-connection-mark=Acesso-Remoto-Conexao \
    passthrough=yes protocol=tcp
    add action=mark-connection chain=prerouting comment=VNC disabled=no dst-port=\
    5800 new-connection-mark=Acesso-Remoto-Conexao passthrough=yes protocol=\
    tcp
    add action=mark-connection chain=prerouting comment="" disabled=no dst-port=\
    5900 new-connection-mark=Acesso-Remoto-Conexao passthrough=yes protocol=\
    tcp
    add action=mark-connection chain=prerouting comment=Winbox disabled=no \
    dst-port=8291 new-connection-mark=Acesso-Remoto-Conexao passthrough=yes \
    protocol=tcp
    add action=mark-packet chain=prerouting comment="" connection-mark=\
    Acesso-Remoto-Conexao disabled=no new-packet-mark=Acesso-Remoto-Pacotes \
    passthrough=no
    add action=mark-connection chain=prerouting comment=\
    "CONTROLE BANCO DE DADOS - SQL" disabled=no dst-port=3306 \
    new-connection-mark=Banco-Dados-Conexao passthrough=yes protocol=tcp
    add action=mark-connection chain=prerouting comment=Oracle disabled=no \
    dst-port=1521 new-connection-mark=Banco-Dados-Conexao passthrough=yes \
    protocol=tcp
    add action=mark-connection chain=prerouting comment="Microsoft SQL Server" \
    disabled=no dst-port=1433-1434 new-connection-mark=Banco-Dados-Conexao \
    passthrough=yes protocol=tcp
    add action=mark-packet chain=prerouting comment="" connection-mark=\
    Banco-Dados-Conexao disabled=no new-packet-mark=Banco-Dados-Pacotes \
    passthrough=no
    add action=mark-connection chain=prerouting comment="CONTROLE JOGOS" \
    disabled=no dst-port=7171 new-connection-mark=Jogos-Conexao passthrough=\
    yes protocol=tcp
    add action=mark-connection chain=prerouting comment="" disabled=no dst-port=\
    27015 new-connection-mark=Jogos-Conexao passthrough=yes protocol=tcp
    add action=mark-connection chain=prerouting comment="Mu Online" disabled=no \
    dst-port=55905 new-connection-mark=Jogos-Conexao passthrough=yes \
    protocol=tcp
    add action=mark-connection chain=prerouting comment="" disabled=no dst-port=\
    55905 new-connection-mark=Jogos-Conexao passthrough=yes protocol=udp
    add action=mark-connection chain=prerouting comment="Line Age" disabled=no \
    dst-port=4376 new-connection-mark=Jogos-Conexao passthrough=yes protocol=\
    tcp
    add action=mark-connection chain=prerouting comment="" disabled=no dst-port=\
    4376 new-connection-mark=Jogos-Conexao passthrough=yes protocol=udp
    add action=mark-connection chain=prerouting comment=WarCraft disabled=no \
    dst-port=6112 new-connection-mark=Jogos-Conexao passthrough=yes protocol=\
    tcp
    add action=mark-connection chain=prerouting comment="" disabled=no dst-port=\
    6112 new-connection-mark=Jogos-Conexao passthrough=yes protocol=udp
    add action=mark-connection chain=prerouting comment="" disabled=no dst-port=\
    4500 new-connection-mark=Jogos-Conexao passthrough=yes protocol=tcp
    add action=mark-connection chain=prerouting comment="" disabled=no dst-port=\
    4500 new-connection-mark=Jogos-Conexao passthrough=yes protocol=udp
    add action=mark-connection chain=prerouting comment="" disabled=no dst-port=\
    6900 new-connection-mark=Jogos-Conexao passthrough=yes protocol=tcp
    add action=mark-connection chain=prerouting comment="" disabled=no dst-port=\
    6900 new-connection-mark=Jogos-Conexao passthrough=yes protocol=udp
    add action=mark-connection chain=prerouting comment="" disabled=no dst-port=\
    5000 new-connection-mark=Jogos-Conexao passthrough=yes protocol=tcp
    add action=mark-connection chain=prerouting comment="" disabled=no dst-port=\
    5000 new-connection-mark=Jogos-Conexao passthrough=yes protocol=udp
    add action=mark-connection chain=prerouting comment="Counter Strike" \
    disabled=no dst-port=27018 new-connection-mark=Jogos-Conexao passthrough=\
    yes protocol=tcp



  3. add action=mark-connection chain=prerouting comment="" disabled=no dst-port=\
    27018 new-connection-mark=Jogos-Conexao passthrough=yes protocol=udp
    add action=mark-connection chain=prerouting comment="" disabled=no dst-port=\
    27015 new-connection-mark=Jogos-Conexao passthrough=yes protocol=tcp
    add action=mark-connection chain=prerouting comment="" disabled=no dst-port=\
    27015 new-connection-mark=Jogos-Conexao passthrough=yes protocol=udp
    add action=mark-connection chain=prerouting comment="" disabled=no dst-port=\
    27016 new-connection-mark=Jogos-Conexao passthrough=yes protocol=tcp
    add action=mark-connection chain=prerouting comment="" disabled=no dst-port=\
    27016 new-connection-mark=Jogos-Conexao passthrough=yes protocol=udp
    add action=mark-connection chain=prerouting comment="" disabled=no dst-port=\
    27020 new-connection-mark=Jogos-Conexao passthrough=yes protocol=tcp
    add action=mark-connection chain=prerouting comment="" disabled=no dst-port=\
    27020 new-connection-mark=Jogos-Conexao passthrough=yes protocol=udp
    add action=mark-connection chain=prerouting comment="" disabled=no dst-port=\
    27019 new-connection-mark=Jogos-Conexao passthrough=yes protocol=tcp
    add action=mark-connection chain=prerouting comment="" disabled=no dst-port=\
    27019 new-connection-mark=Jogos-Conexao passthrough=yes protocol=udp
    add action=mark-connection chain=prerouting comment="" disabled=no dst-port=\
    27013 new-connection-mark=Jogos-Conexao passthrough=yes protocol=tcp
    add action=mark-connection chain=prerouting comment="" disabled=no dst-port=\
    27013 new-connection-mark=Jogos-Conexao passthrough=yes protocol=udp
    add action=mark-packet chain=prerouting comment="" connection-mark=\
    Jogos-Conexao disabled=no new-packet-mark=Jogos-Pacotes passthrough=no
    add action=mark-connection chain=prerouting comment="CONTROLE UDP" disabled=\
    no new-connection-mark=UDP-Conexao passthrough=yes protocol=udp
    add action=mark-packet chain=prerouting comment="" connection-mark=\
    UDP-Conexao disabled=no new-packet-mark=UDP-Pacotes passthrough=no
    add action=mark-connection chain=prerouting comment=\
    "CONTROLE SERVICOS NAO IDENTIFICADOS" disabled=no new-connection-mark=\
    Outros-Conexao passthrough=yes
    add action=mark-packet chain=prerouting comment="" connection-mark=\
    Outros-Conexao disabled=no new-packet-mark=Outros-Pacotes passthrough=no
    /queue tree
    add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
    max-limit=100M name=QOS packet-mark="" parent=global-total priority=8 \
    queue=default
    add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=100M \
    max-limit=100M name="1 - Navegacao" packet-mark=Navegacao-Pacotes parent=\
    QOS priority=1 queue=default
    add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=512k \
    max-limit=1M name="2 - Messenger" packet-mark=Messenger-Pacotes parent=\
    QOS priority=2 queue=default
    add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=512k \
    max-limit=1M name="2 - E-mail" packet-mark=E-mail-Pacotes parent=QOS \
    priority=3 queue=default
    add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
    max-limit=512k name="8 - P2P" packet-mark=P2P-Pacotes parent=QOS \
    priority=8 queue=default
    add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=256k \
    max-limit=1M name="4 - Acesso-Remoto" packet-mark=Acesso-Remoto-Pacotes \
    parent=QOS priority=2 queue=default
    add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=256k \
    max-limit=512k name="5 - ICMP" packet-mark=ICMP-Pacotes parent=QOS \
    priority=1 queue=default
    add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=2M \
    max-limit=4M name="6 - UDP" packet-mark=UDP-Pacotes parent=QOS priority=3 \
    queue=default
    add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
    max-limit=10M name="7 - Outros" packet-mark=Outros-Pacotes parent=QOS \
    priority=8 queue=default
    add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=256k \
    max-limit=512k name="3 - Banco-Dados" packet-mark=Banco-Dados-Pacotes \
    parent=QOS priority=3 queue=default
    add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=512k \
    max-limit=1M name="3 - Jogos" packet-mark=Jogos-Pacotes parent=QOS \
    priority=3 queue=default
    /ip route
    add comment="" disabled=no distance=1 dst-address=0.0.0.0/0 gateway=\
    GATEWAY 1 ,GATEWAY 1 ,GATEWAY 2,GATEWAY 2 ,GATEWAY 2,GATEWAY 3 \
    scope=255 target-scope=10
    NO EXEMPLO DE 3 LINKS
    LINK 1 = 2 MB GATEWAY 192.192.192.192
    LINK 2= 3MB GATEWAY 192.192.192.193
    LINK 3= 1 MB GATEWAY 172.168.29.1
    NO CASSO FICARIA ASSIM
    /ip route
    add comment="" disabled=no distance=1 dst-address=0.0.0.0/0 gateway=\
    192.192.192.192 ,192.192.192.192 ,192.192.192.193,192.192.192.193 ,192.192.192.193,172.168.29.1 \
    scope=255 target-scope=10
    OU SEJA PRA CADA 1 MB DE LINK ADICIONA 1 GATEWAY E TODOS OS GATEWAYS EM UMA MSM ROUTE OU SEJA ESSE É O LOAD PRA QOS
    QUALQUER COISA POSTA AKI

  4. Ok amigo, muito obrigado pelas regras, vou fazer testes e posto os resultados.



  5. SO PRA LEMBRAR ESSAS REGRA SO FUNCINAM NA VERSAO 3.X






Tópicos Similares

  1. Configurando Squid pra mais de uma Placa de Rede
    Por tianguapontocom no fórum Servidores de Rede
    Respostas: 8
    Último Post: 04-08-2005, 00:47
  2. Mais conexao de mais de uma maquina
    Por andrebvs no fórum Servidores de Rede
    Respostas: 2
    Último Post: 31-01-2005, 17:16
  3. Usar o Prerouting para mais de uma origem.
    Por cristianmr no fórum Servidores de Rede
    Respostas: 3
    Último Post: 28-12-2004, 22:19
  4. Respostas: 2
    Último Post: 10-10-2003, 05:02
  5. Respostas: 20
    Último Post: 29-01-2003, 12:44

Visite: BR-Linux ·  VivaOLinux ·  Dicas-L