SKFREE

Mikrotik™ Scripts&Software - Skype - QOS
rado3105 - 27.09.2010 - 21:15
Post subject: Skype - QOS
Teraz som nasiel zaujimavy sposob ako markovat skype komunikaciu. Zdroj:
http://forum.mikrotik.com/viewtopic.php?f=9&t=45209

Zaujimalo by ma ako upravit ten skript aby to fungovalo len na jednu verejnu ip: 213.x.x.x. A pre ake verzie ros to je urcene, ci len pre 4? alebo aj starsie.
rado3105 - 28.09.2010 - 10:22
Post subject:
Takto som si to upravil aby to fungovalo mne:
Toto pridat do terminalu:
Code: › /ip firewall layer7-protocol add name=skypenack regexp="[\\\\|\\xd5]"

l7 na rozpoznanie nack packetu, treba dat prve cislo vasej verejnej ip, tento algoritmus funguje na verejne ip zacinajuce 213.x.x.x a 92.x.x.x.

Toto pridat do firewall/mangle:

1.
Code: › chain=forward action=add-src-to-address-list protocol=udp
     address-list=skype address-list-timeout=1h layer7-protocol=skypenack
     packet-size=39

toto pravidlo zachytava NACK packet, ktory skype pouziva na naviazanie komunikacie, na zaklade toho medzi akymi ip adresami v internete prebehne vymena tohto packetu, tieto ip adresy hodi do address listu a oznaci ich ako skype(tie tam ostavaju hodinu a potom sa vymazu).

2.
Code: › chain=prerouting action=mark-connection
     new-connection-mark=conn_skype_in passthrough=yes protocol=udp
     src-address-list=skype connection-rate=0-50k


Code: › chain=prerouting action=mark-packet new-packet-mark=skype_in
     passthrough=no connection-mark=conn_skype_in


Code: › chain=postrouting action=mark-connection
     new-connection-mark=conn_skype_out passthrough=yes protocol=udp
     dst-address-list=skype connection-rate=0-50k


Code: ›  chain=postrouting action=mark-packet new-packet-mark=skype_out
     passthrough=no connection-mark=conn_skype_out

tieto pravidla oznacia spojenie a pakety a nasledne sa vyuziju v queue tree, cim velkost paketu 50k vyradi zo znacenia posielanie suborov cez skype
3. queue tree:

Code: › name="voip_in" parent=IN packet-mark=skype_in limit-at=256k
     queue=pcq-download priority=2 max-limit=2M burst-limit=0
     burst-threshold=0 burst-time=0s

Code: › name="voip_out" parent=OUT packet-mark=skype_out limit-at=256k
     queue=pcq-upload priority=2 max-limit=2M burst-limit=0 burst-threshold=0
     burst-time=0s


Testujem na ros 4.10, zatial vyzera ze funguje velmi dobre. Neodchytava inu komunikaciu(ako skype l7 - ktory odchytaval torenty a ftp).

Tu je konverter HEX-DEC: http://www.parkenet.com/apl/HexDecConverter.html ale nechapem presne ako sa to hadze do l7(ako vytvorit l7 pravidlo na zaklade prveho cisla mojej verejnej ip).
zelmar - 28.09.2010 - 11:52
Post subject:
Nechapem co na tom nechapes? Ved to tam je vysvetlene ako keby to bolo pisane pre ewewa kua.
edusko - 28.09.2010 - 12:42
Post subject:
nechapem na co niekdo chce znackovat skype?
rado3105 - 28.09.2010 - 12:52
Post subject:
Prioritizacia, ci myslis ze to je taky dokonaly protokol a nepotrebuje to? Alebo celkovo odpisujes QOS?
kotol - 28.09.2010 - 17:24
Post subject:
ja qos neriesim.. skor riesim siet ked je niekde uzke hdrlo musi sa to vyriesit...

najlepsie QOS je ping od uzivatela do sixu za 1ms Wink
eXplorer - 28.09.2010 - 19:28
Post subject:
kotol wrote: ›najlepsie QOS je ping od uzivatela do sixu za 1ms Wink


no yo, vlastne vlakna (alebo prenajate nenasvietene) do SIXu maju svoje caro Very Happy
All times are GMT
Powered by PNphpBB2 © 2003-2005 The PNphpBB Group
Credits