Repeat the steps for the download packets but this time, select your LAN interface as the out interface and leave the in interface blank. Click on action and select “mark packet” and enter a name for the packet mark. Set chain to forward, select your LAN interface as the in interface, click on advance and choose the address-list created in step 2 as your source address-list. To create a mangle rule for upload packets, go to IP>firewall>mangle>add. Step 3: Mikrotik mangle ruleĬreate two mangle rules to mark download and upload packets for users in the address-list created in step 2 above. Repeat the steps for each ip, making sure that the same address-list is chosen for every IP address entered. Enter a name for your address-list and add an IP address. To creat an address-list, go to ip>firewall>address-list>add. Step 2: Create an address-listĬreate an address-list for top users (users whose IP address leases were made static in step 1 above. Repeat the steps for all the IP addresses you want added to the top users group. After identifying the IP addresses go to dhcp lease, click on the IP and click on make static. In an organization where all devices are named, they can easily be identified in the dhcp lease list. As stated above, this can be done by finding out from their devices. Identify those you want to add to the top users group and get their IP addresses. You also like: How to permit l2tp ipsec vpn through Mikrotik firewall Step 1: Identify IP addresses to be added to group Finally, we will create queues for packets that match the rules created above as well as every other packets. Next, we will create and address-list and add their IP addresses to that address-list, then use the Mikrotik mangle rule to mark their download and upload packets. Having identified the ip addresses, we will make their lease static, ensuring that their IP addresses will always remain thesame. What we need to do to achive this: we will identify addresses assigned to members of the top users group either by checking on their devices or by going through the dhcp lease list, for those that can easily be identified. However, if no user from the top users group is active on the network, the entire 5mbps becomes available for use by everyone else. For example if the subscribed bandwidth is 5mbps, we will allocate 3mbps to the top users group and 2 to everyone else. Our queue will be configured with priority values to ensure that the total subscribed bandwidth becomes available for use if no one from the top users group is on the network. Our objective in this lab is to identify and group our top users together and allocate bandwidth to them from the available bandwidth and let the remaining users make use of the remaining bandwith.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |