Note that not all packets in a connection can be fasttracked, so it is IPv4 FastTrack handler supports NAT (SNAT, DNAT or both).
Currently only TCP and UDP connections can be actuallyįasttracked (even though any connection can be marked for fasttrack). Use firewall action "fasttrack-connection" to mark connections forįasttrack.
IPv4 FastTrack handler is automatically used for marked connections. It's mentioned very clearly in the documentation. "defconf: drop all from WAN not DSTNATed" connection-nat-state=!dstnat \Īdd action=masquerade chain=srcnat comment="defconf: masquerade" out-interface=\Īdd action=masquerade chain=srcnat comment="masquerade hotspot netĭisable any fasttrack rules on your firewall.įasttrack will bypass pretty much the whole stack - including the queues. Set allow-remote-requests=yes servers=4.2.2.4Īdd chain=input comment="defconf: accept ICMP" protocol=icmpĪdd chain=input comment="defconf: accept established,related" connection-state=\Īdd action=drop chain=input comment="defconf: drop all from WAN" in-interface=\Īdd action=fasttrack-connection chain=forward comment="defconf: fasttrack" \Īdd chain=forward comment="defconf: accept established,related" \Īdd action=drop chain=forward comment="defconf: drop invalid" connection-state=\ Name=uprof1 open-status-page=http-login transparent-proxy=yesĪdd limit-at=30k/30k max-limit=30k/30k name=queue1 queue=default/default \Īdd bridge=bridge comment=defconf interface=ether2-masterĪdd auto-isolate=yes bridge=bridge interface=wlan1Īdd address=192.168.88.1/24 comment=defconf interface=bridge network=\Īdd address=10.5.50.1/24 comment="hotspot network" interface=ether2-master \Īdd comment=defconf dhcp-options=hostname,clientid disabled=no interface=ether1Īdd address=10.5.50.0/24 comment="hotspot network" gateway=10.5.50.1Īdd address=192.168.88.0/24 comment=defconf gateway=192.168.88.1 Set authentication-types=wpa-psk,wpa2-psk mode=\ĭynamic-keys wpa-pre-shared-key=noor3664 wpa2-pre-shared-key=noor3664Īdd dns-name=so.zzz hotspot-address=10.5.50.1 login-by=http-pap name=hsprof1 \Īdd name=dhcp ranges=192.168.88.10-192.168.88.254Īdd name=hs-pool-2 ranges=10.5.50.2-10.5.50.254Īdd address-pool=dhcp authoritative=after-10sec-delay disabled=no interface=\Īdd address-pool=hs-pool-2 interface=ether2-master lease-time=1h name=dhcp1Īdd address-pool=hs-pool-2 addresses-per-mac=1 interface=ether2-master name=\Īdd address-pool=hs-pool-2 advertise=yes advertise-interval="" advertise-url="" \ Set band=2ghz-b/g/n channel-width=20/40mhz-Ce \ĭisabled=no distance=indoors frequency=auto mode=ap-bridge ssid=PNG1 \
I create a queue for target = wlan and set the limit downloa and upload = 64k, but when i test it, this seems not working correctly!Īdd admin-mac=E4:8D:8C:46:C7:0F auto-mac=no comment=defconf name=bridge I have a mikrotik router and i want to limit the speed of wlan users.
0 kommentar(er)
