Scribd
Upload
60 views

Qos Mangle Queue Tree

This document contains configuration rules for classifying and marking network traffic. It defines rules for marking connections and packets based on protocol, port numbers, and other criteria. Connections and packets are marked and classified for services like DNS, FTP, games, HTTP and more. Markings will determine priority treatment of different traffic types.

Uploaded by

aryamoist
Copyright
© © All Rights Reserved
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
60 views

Qos Mangle Queue Tree

This document contains configuration rules for classifying and marking network traffic. It defines rules for marking connections and packets based on protocol, port numbers, and other criteria. Connections and packets are marked and classified for services like DNS, FTP, games, HTTP and more. Markings will determine priority treatment of different traffic types.

Uploaded by

aryamoist
Copyright
© © All Rights Reserved
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
You are on page 1/ 5

add action=jump chain=forward comment="SERVICE CLASSIFIER" jump-target=services-

classifier protocol=tcp
add action=jump chain=forward jump-target=services-classifier protocol=udp
add action=jump chain=forward jump-target=services-classifier protocol=!ospf
add action=mark-connection chain=services-classifier comment=ICMP new-connection-
mark=cm_icmp protocol=icmp
add action=mark-packet chain=services-classifier connection-mark=cm_icmp new-
packet-mark=pm_icmp passthrough=no
add action=mark-packet chain=services-classifier comment=TS2 dst-port=8770 new-
packet-mark=pm_game passthrough=no protocol=udp
add action=mark-packet chain=services-classifier dst-port=40002,40040-
40500,1293,1479 new-packet-mark=pm_game passthrough=no protocol=udp
add action=mark-packet chain=services-classifier comment=#GEMSCOOL dst-
port=39100,39110,39220,39190,49100,19101,19000,4300,15152 new-packet-mark=pm_game \
passthrough=no protocol=tcp
add action=mark-packet chain=services-classifier dst-port=40000-40010 new-packet-
mark=pm_game passthrough=no protocol=udp
add action=mark-packet chain=services-classifier comment=#Poker dst-port=843,9339
new-packet-mark=pm_game passthrough=no protocol=tcp
add action=mark-packet chain=services-classifier comment=#MEGAXUS dst-port=5340-
5352,18901-18909,7777 new-packet-mark=pm_game passthrough=no protocol=tcp
add action=mark-packet chain=services-classifier comment=#LYTO dst-
port=1818,2001,9600-9602,13413,10009,29000,15000-15002,22100 new-packet-
mark=pm_game \
passthrough=no protocol=tcp
add action=mark-packet chain=services-classifier dst-port=12010-13080 new-packet-
mark=pm_game passthrough=no protocol=udp
add action=mark-packet chain=services-classifier comment=#RF-ALL dst-port=27780
new-packet-mark=pm_game passthrough=no protocol=tcp
add action=mark-packet chain=services-classifier comment="#Grand Chase" dst-
port=9300,9400,9700 new-packet-mark=pm_game passthrough=no protocol=tcp
add action=mark-packet chain=services-classifier dst-port=9401,9600 new-packet-
mark=pm_game passthrough=no protocol=udp
add action=mark-packet chain=services-classifier comment="#Just RF" dst-port=27781
new-packet-mark=pm_game passthrough=no protocol=tcp
add action=mark-packet chain=services-classifier comment="#Zeus RO" dst-port=5121
new-packet-mark=pm_game passthrough=no protocol=tcp
add action=mark-packet chain=services-classifier comment="# AVA" dst-
address=206.82.213.0/24 dst-port=28004,10205 new-packet-mark=pm_game passthrough=no
protocol=\
tcp
add action=mark-packet chain=services-classifier comment="#WOW AMPM" dst-port=8085
new-packet-mark=pm_game passthrough=no protocol=tcp
add action=mark-packet chain=services-classifier comment="#Drift City" dst-
port=11011-11041 new-packet-mark=pm_game passthrough=no protocol=tcp
add action=mark-packet chain=services-classifier comment=#DRAGONICA dst-
port=12009,14004 new-packet-mark=pm_game passthrough=no protocol=tcp
add action=mark-packet chain=services-classifier comment=#FIFA dst-
address=202.158.252.131-202.158.252.133 dst-port=6215,6217,6316 new-packet-
mark=pm_game \
passthrough=no protocol=tcp
add action=mark-packet chain=services-classifier dst-
port=40021,44765,52903,52904,61097,61098,61101,61104 new-packet-mark=pm_game
passthrough=no protocol=udp
add action=mark-packet chain=services-classifier comment=#Dota dst-port=6000-6300
new-packet-mark=pm_game passthrough=no protocol=tcp
add action=mark-packet chain=services-classifier comment=#Dota dst-port=4029 new-
packet-mark=pm_game passthrough=no protocol=tcp
add action=mark-packet chain=services-classifier comment=#Cabal dst-port=63124 new-
packet-mark=pm_game passthrough=no protocol=tcp
add action=mark-packet chain=services-classifier comment="#Fast black" dst-
port=6000-6001 new-packet-mark=pm_game passthrough=no protocol=tcp
add action=mark-packet chain=services-classifier comment="#ROSE ONLINE" dst-
port=29200 new-packet-mark=pm_game passthrough=no protocol=tcp
add action=mark-packet chain=services-classifier comment=#ROM dst-port=16402-16502
new-packet-mark=pm_game passthrough=no protocol=tcp
add action=mark-packet chain=services-classifier comment=#MOPS disabled=yes dst-
address=103.14.108.0/24 dst-port=600-699,3000,2110 new-packet-mark=pm_game \
passthrough=no protocol=tcp
add action=mark-packet chain=services-classifier comment=#MOPS disabled=yes dst-
address=103.14.108.0/24 dst-port=600-699,3000,2110 new-packet-mark=pm_game \
passthrough=no protocol=tcp
add action=mark-packet chain=services-classifier comment=#ROW dst-port=10402 new-
packet-mark=pm_game passthrough=no protocol=tcp
add action=mark-packet chain=services-classifier comment=#HON dst-port=11031 new-
packet-mark=pm_game passthrough=no protocol=tcp
add action=mark-packet chain=services-classifier dst-port=11100-11125,11440-11460
new-packet-mark=pm_game passthrough=no protocol=udp
add action=mark-packet chain=services-classifier comment=#X-Shot dst-port=7341-
7350,7451 new-packet-mark=pm_game passthrough=no protocol=tcp
add action=mark-packet chain=services-classifier dst-port=7777-7977,30000 new-
packet-mark=pm_game passthrough=no protocol=udp
add action=mark-packet chain=services-classifier dst-address=74.209.240.154 dst-
port=28700-28899 new-packet-mark=pm_game passthrough=no protocol=udp
add action=mark-packet chain=services-classifier comment=3Kingdoms dst-port=42051-
42060 new-packet-mark=pm_game passthrough=no protocol=udp
add action=mark-packet chain=services-classifier comment=#Tantra dst-port=3001 new-
packet-mark=pm_game passthrough=no protocol=tcp
add action=mark-packet chain=services-classifier comment=COD4 dst-port=28960 new-
packet-mark=pm_game passthrough=no protocol=tcp
add action=mark-packet chain=services-classifier comment=NFS dst-
port=5222,5223,12683 new-packet-mark=pm_game passthrough=no protocol=tcp
add action=mark-packet chain=services-classifier dst-port=31928,5222,5223 new-
packet-mark=pm_game passthrough=no protocol=udp
add action=mark-packet chain=services-classifier comment=Gokong dst-
port=40002,49100 new-packet-mark=pm_game passthrough=no protocol=tcp
add action=mark-packet chain=services-classifier comment="Lost Saga" dst-
port=14009-14010 new-packet-mark=pm_game passthrough=no protocol=tcp
add action=mark-packet chain=services-classifier dst-port=14009-14010 new-packet-
mark=pm_game passthrough=no protocol=udp
add action=mark-packet chain=services-classifier comment=FreeStyle dst-port=10001-
10011,40000 new-packet-mark=pm_game passthrough=no protocol=tcp
add action=mark-packet chain=services-classifier comment=CS dst-port=27017 new-
packet-mark=pm_game passthrough=no protocol=udp
add action=mark-packet chain=services-classifier comment=Ayopay dst-
address=202.146.224.115 new-packet-mark=pm_game passthrough=no protocol=tcp
add action=mark-connection chain=services-classifier comment=DNS dst-port=53 new-
connection-mark=cm_dns protocol=tcp
add action=mark-connection chain=services-classifier new-connection-mark=cm_dns
protocol=tcp src-port=53
add action=mark-packet chain=services-classifier connection-mark=cm_dns new-packet-
mark=pm_dns passthrough=no
add action=mark-connection chain=services-classifier comment=PROXMOX dst-port=8006
new-connection-mark=cm_proxmox protocol=tcp
add action=mark-connection chain=services-classifier new-connection-mark=cm_proxmox
protocol=tcp src-port=8006
add action=mark-packet chain=services-classifier connection-mark=cm_proxmox new-
packet-mark=pm_proxmox passthrough=no
add action=mark-connection chain=services-classifier comment=FTP dst-port=21 new-
connection-mark=cm_ftp protocol=tcp
add action=mark-packet chain=services-classifier connection-mark=cm_ftp new-packet-
mark=pm_ftp passthrough=no
add action=mark-connection chain=services-classifier comment=SSH dst-port=22 new-
connection-mark=cm_ssh protocol=tcp
add action=mark-connection chain=services-classifier new-connection-mark=cm_ssh
protocol=tcp src-port=22
add action=mark-packet chain=services-classifier connection-mark=cm_ftp new-packet-
mark=pm_ssh passthrough=no
add action=mark-connection chain=services-classifier comment="THE DUDE" dst-
port=2210,2211 new-connection-mark=cm_dude protocol=tcp
add action=mark-connection chain=services-classifier new-connection-mark=cm_dude
protocol=tcp src-port=2210,2211
add action=mark-packet chain=services-classifier connection-mark=cm_dude new-
packet-mark=pm_dude passthrough=no
add action=mark-connection chain=services-classifier comment=HTTP dst-
port=80,3128,8080 new-connection-mark=cm_http protocol=tcp
add action=mark-connection chain=services-classifier new-connection-mark=cm_http
protocol=tcp src-port=80,3128,8080
add action=mark-packet chain=services-classifier comment="HTTP PRIO #3" connection-
bytes=0-128000 connection-mark=cm_http new-packet-mark=pm_http_prio3 \
passthrough=no protocol=tcp
add action=mark-packet chain=services-classifier comment="HTTP PRIO #5" connection-
bytes=128001-4096000 connection-mark=cm_http new-packet-mark=pm_http_prio5 \
passthrough=no protocol=tcp
add action=mark-packet chain=services-classifier comment="HTTP PRIO #6" connection-
bytes=4096001-20480000 connection-mark=cm_http new-packet-mark=pm_http_prio6 \
passthrough=no protocol=tcp
add action=mark-packet chain=services-classifier comment="HTTP PRIO #7" connection-
bytes=20480001-51200000 connection-mark=cm_http new-packet-mark=pm_http_prio7 \
passthrough=no protocol=tcp
add action=mark-packet chain=services-classifier comment="HTTP PRIO #8" connection-
bytes=51200001-0 connection-mark=cm_http new-packet-mark=pm_http_prio8 \
passthrough=no protocol=tcp
add action=mark-connection chain=services-classifier comment=HTTPS dst-port=443
new-connection-mark=cm_https protocol=tcp
add action=mark-connection chain=services-classifier new-connection-mark=cm_https
protocol=tcp src-port=443
add action=mark-packet chain=services-classifier connection-mark=cm_https new-
packet-mark=pm_https passthrough=no
add action=mark-connection chain=services-classifier comment=EMAIL dst-
port=25,110,143,465,585,993,995 new-connection-mark=cm_email protocol=tcp
add action=mark-connection chain=services-classifier new-connection-mark=cm_email
protocol=tcp src-port=25,110,143,465,585,993,995
add action=mark-packet chain=services-classifier connection-mark=cm_email new-
packet-mark=pm_email passthrough=no
add action=mark-connection chain=services-classifier comment=WINBOX dst-port=8291
new-connection-mark=cm_winbox protocol=tcp
add action=mark-connection chain=services-classifier new-connection-mark=cm_winbox
protocol=tcp src-port=8291
add action=mark-packet chain=services-classifier connection-mark=cm_winbox new-
packet-mark=pm_winbox passthrough=no
add action=mark-connection chain=services-classifier comment=VNC dst-port=5900-5950
new-connection-mark=cm_vnc protocol=tcp
add action=mark-connection chain=services-classifier new-connection-mark=cm_vnc
protocol=tcp src-port=5900-5950
add action=mark-packet chain=services-classifier connection-mark=cm_vnc new-packet-
mark=pm_vnc passthrough=no
add action=mark-connection chain=services-classifier comment="P2P TORRENT" new-
connection-mark=cm_p2p p2p=all-p2p
add action=mark-packet chain=services-classifier connection-mark=cm_p2p new-packet-
mark=pm_p2p passthrough=no
add action=mark-connection chain=services-classifier comment="OTHER TCP" new-
connection-mark=cm_other-tcp protocol=tcp
add action=mark-packet chain=services-classifier connection-mark=cm_other-tcp new-
packet-mark=pm_other-tcp passthrough=no
add action=mark-connection chain=services-classifier comment=DNS dst-port=53 new-
connection-mark=cm_dns protocol=udp
add action=mark-connection chain=services-classifier new-connection-mark=cm_dns
protocol=udp src-port=53
add action=mark-packet chain=services-classifier connection-mark=cm_dns new-packet-
mark=pm_dns passthrough=no
add action=mark-connection chain=services-classifier comment=NTP dst-port=123 new-
connection-mark=cm_ntp protocol=udp
add action=mark-packet chain=services-classifier connection-mark=cm_ntp new-packet-
mark=pm_ntp passthrough=no
add action=mark-connection chain=services-classifier comment=SKYPE dst-port=1024-
65535 new-connection-mark=cm_skype protocol=udp src-port=36725
add action=mark-packet chain=services-classifier connection-mark=cm_skype new-
packet-mark=pm_skype passthrough=no
add action=mark-connection chain=services-classifier comment=SNMP dst-port=161,162
new-connection-mark=cm_snmp protocol=udp
add action=mark-connection chain=services-classifier new-connection-mark=cm_snmp
protocol=udp src-port=161,162
add action=mark-packet chain=services-classifier connection-mark=cm_snmp new-
packet-mark=pm_snmp passthrough=no
add action=mark-connection chain=services-classifier comment="OTHER UDP" new-
connection-mark=cm_other-udp protocol=udp
add action=mark-packet chain=services-classifier comment=0-63 connection-
mark=cm_other-udp new-packet-mark=pm_udp0 packet-size=0-63 passthrough=no
add action=mark-packet chain=services-classifier comment=64-127 connection-
mark=cm_other-udp new-packet-mark=pm_udp64 packet-size=64-127 passthrough=no
add action=mark-packet chain=services-classifier comment=128-511 connection-
mark=cm_other-udp new-packet-mark=pm_udp128 packet-size=128-511 passthrough=no
add action=mark-packet chain=services-classifier comment="OTHER UDP" connection-
mark=cm_other-udp new-packet-mark=pm_other-udp passthrough=no
add action=return chain=services-classifier

/queue tree
add max-limit=16M name=INTERNET parent=global-out priority=3
add limit-at=3M max-limit=10M name=PRIO#1 parent=INTERNET priority=1
add limit-at=1M max-limit=4M name=PRIO#2 parent=INTERNET priority=2
add limit-at=4M max-limit=16M name=PRIO#3 parent=INTERNET priority=3
add limit-at=2M max-limit=14M name=PRIO#4 parent=INTERNET priority=4
add limit-at=2M max-limit=14M name=PRIO#5 parent=INTERNET priority=5
add limit-at=2M max-limit=13M name=PRIO#6 parent=INTERNET priority=6
add limit-at=1M max-limit=12M name=PRIO#7 parent=INTERNET priority=7
add limit-at=1M max-limit=10M name=PRIO#8 parent=INTERNET
add name=icmp packet-mark=pm_icmp parent=PRIO#1 priority=1
add name=dns packet-mark=pm_dns parent=PRIO#2 priority=2
add name=ssh packet-mark=pm_ssh parent=PRIO#1 priority=1
add name=vnc packet-mark=pm_vnc parent=PRIO#2 priority=2
add name=winbox packet-mark=pm_winbox parent=PRIO#2 priority=2
add name=ntp packet-mark=pm_ntp parent=PRIO#2 priority=2
add name=skype packet-mark=pm_skype parent=PRIO#2 priority=2
add name=email packet-mark=pm_email parent=PRIO#3 priority=3
add name=https packet-mark=pm_https parent=PRIO#4 priority=4
add name=http_small packet-mark=pm_http_prio3 parent=PRIO#3 priority=3
add name=ftp packet-mark=pm_ftp parent=PRIO#4 priority=4
add name=http_medium packet-mark=pm_http_prio5 parent=PRIO#5 priority=5
add name=other-tcp packet-mark=pm_other-tcp parent=PRIO#8
add name=other-udp packet-mark=pm_other-udp parent=PRIO#8
add name=http_large packet-mark=pm_http_prio6 parent=PRIO#6 priority=6
add name=pve-mgmnt packet-mark=pm_proxmox parent=PRIO#2 priority=2
add name=snmp packet-mark=pm_snmp parent=PRIO#2 priority=2
add name=thedude packet-mark=pm_dude parent=PRIO#2 priority=2
add name=http_infinite packet-mark=pm_http_prio8 parent=PRIO#8
add name=p2p-torrent packet-mark=pm_p2p parent=PRIO#8
add name=game packet-mark=pm_game parent=PRIO#1 priority=1
add name=udp0 packet-mark=pm_udp0 parent=PRIO#1 priority=1
add name=udp64 packet-mark=pm_udp64 parent=PRIO#2 priority=2
add name=udp128 packet-mark=pm_udp128 parent=PRIO#4 priority=4
add name=http_heavy packet-mark=pm_http_prio7 parent=PRIO#7 priority=7

You might also like