QoS RouterOS v6 - MUM - MikroTik
QoS RouterOS v6 - MUM - MikroTik
QoS RouterOS v6 - MUM - MikroTik
- No tags were found...
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
<strong>MUM</strong>-‐EU-‐2013 @Zagreb, Croa8a <strong>QoS</strong> <strong>RouterOS</strong> <strong>v6</strong> Valens Riyadi (Citraweb) info@mikro8k.co.id
About Me Valens Riyadi, Citraweb (ID) <strong>MikroTik</strong> Cer8fied Engineer (MTCNA, MTCWE, MTCRE, MTCTCE, MTCUME, MTCINE) <strong>MikroTik</strong> Cer8fied Trainer & Consultant <strong>MikroTik</strong> Academy Coordinator Citra.net.id WISP CEO Manager for IDNIC (Indonesia Na8onal Internet Registry) IT Expert on Disaster Relief Qos pada <strong>RouterOS</strong> <strong>v6</strong> 2
www.mikro8k.co.id distributor Qos pada <strong>RouterOS</strong> <strong>v6</strong> 3
Qos pada <strong>RouterOS</strong> <strong>v6</strong> 4
<strong>MikroTik</strong> Training Center • The first <strong>MikroTik</strong> Training Center in Asia Pasific, has taught at least 1600 par8cipants (94 classes). • Mikro8k Academy Coordinator. Qos pada <strong>RouterOS</strong> <strong>v6</strong> 5
<strong>RouterOS</strong> <strong>v6</strong> Full Release almost ready! now <strong>v6</strong>rc11/12 Qos pada <strong>RouterOS</strong> <strong>v6</strong> 6
<strong>QoS</strong> Some fundamental change on RoS <strong>v6</strong> Qos pada <strong>RouterOS</strong> <strong>v6</strong> 7
<strong>QoS</strong> di v5 • Simple Queue – queue will be done in global-‐in, global-‐out or global-‐total • Queue Tree – queue on interface, or – in global-‐in, global-‐out or global-‐total Qos pada <strong>RouterOS</strong> <strong>v6</strong> 8
Packet Flow! CHAIN PREROUTING CHAIN FORWARD CHAIN POSTROUTING CHAIN INPUT CHAIN OUTPUT INPUT INTERFACE LOCAL PROCESS OUTPUT INTERFACE Qos pada <strong>RouterOS</strong> <strong>v6</strong> 9
Packet Flow and <strong>QoS</strong> v5 CHAIN PREROUTING global in CHAIN FORWARD global out CHAIN POSTROUTING CHAIN INPUT CHAIN OUTPUT HTB interface INPUT INTERFACE LOCAL PROCESS OUTPUT INTERFACE Qos pada <strong>RouterOS</strong> <strong>v6</strong> 10
<strong>QoS</strong> Problem in RoS v5 • No specific queue for traffic to the router, global-‐in will process the traffic into the router and the traffic through the router • Two 8mes queue processing (Global in and global out) for traffic through the router. Qos pada <strong>RouterOS</strong> <strong>v6</strong> 11
<strong>QoS</strong> Problem in RoS v5 • Queue tree – PCQ on parent interface -‐ naged network, queue for uplink traffic does not work perfectly, because PCQ done aher src-nat– src-‐address already changed to router ip address in src-‐nat. – pcq see only one src-‐address Qos pada <strong>RouterOS</strong> <strong>v6</strong> 12
<strong>QoS</strong> RoS <strong>v6</strong> No more global-‐in and global-‐out, replaced by a "global" located aher the "input" and at global-‐out posi8on. Simple queue is a specific process, located aher “global”. Qos pada <strong>RouterOS</strong> <strong>v6</strong> 13
Packet Flow and <strong>QoS</strong> <strong>v6</strong> CHAIN PREROUTING CHAIN FORWARD CHAIN POSTROUTING global HTB INPUT INTERFACE global HTB simple queue CHAIN INPUT LOCAL PROCESS CHAIN OUTPUT OUTPUT INTERFACE simple queue HTB interface Qos pada <strong>RouterOS</strong> <strong>v6</strong> 14
Queue Tree v5 dan <strong>v6</strong> RoS v5 RoS <strong>v6</strong> Qos pada <strong>RouterOS</strong> <strong>v6</strong> 15
Simple Packet Flow v5 FORWARDPREROUTINGROUTING DECISION MANGLE FORWARD OUTPUTFILTER FORWARD POSTROUTINGQUEUE GLOBAL-‐IN ROUTING ADJUSMENT MANGLE POSTROUTING DST-‐NAT INPUTFILTER OUTPUT QUEUE GLOBAL-‐OUT MANGLE PREROUTING MANGLE INPUT MANGLE OUTPUT SRC-‐NAT CONNECTION TRACKING FILTER INPUT CONNECTION TRACKING HTB INTERFACE INPUT INTERFACE LOCAL PROCESS ROUTING DECISION OUTPUT INTERFACE Qos pada <strong>RouterOS</strong> <strong>v6</strong> 16
Simple Packet Flow <strong>v6</strong> FORWARDDST-‐NAT PREROUTINGROUTING DECISION MANGLE INPUT FILTER INPUT INPUTMANGLE FORWARD OUTPUTROUTING ADJUSMENT FILTER OUTPUT FILTER FORWARD MANGLE POSTROUTING SRC-‐NAT POSTROUTINGGLOBAL HTB MANGLE PREROUTING GLOBAL HTB MANGLE OUTPUT SIMPLE QUEUE CONNECTION TRACKING SIMPLE QUEUE CONNECTION TRACKING HTB INTERFACE INPUT INTERFACE LOCAL PROCESS ROUTING DECISION OUTPUT INTERFACE Qos pada <strong>RouterOS</strong> <strong>v6</strong> 17
Mangle – Queue RoS<strong>v6</strong> • Traffic to the router – we can do mangle (packet-‐mark) specifically on chain=input – queue tree with parent=global and packet mark • Contoh /ip firewall mangle add src-‐address=10.1.1.1 chain=input ac8on=mark-‐packet mark-‐packet=p1 /queue tree add packet-‐mark=p1 parent=global max-‐limit=1m Qos pada <strong>RouterOS</strong> <strong>v6</strong> 18
Traffic to the router FORWARDDST-‐NAT PREROUTINGROUTING DECISION MANGLE INPUT FILTER INPUT INPUTMANGLE FORWARD OUTPUTROUTING ADJUSMENT FILTER OUTPUT FILTER FORWARD MANGLE POSTROUTING SRC-‐NAT POSTROUTINGGLOBAL HTB MANGLE PREROUTING GLOBAL HTB MANGLE OUTPUT SIMPLE QUEUE CONNECTION TRACKING SIMPLE QUEUE CONNECTION TRACKING HTB INTERFACE INPUT INTERFACE LOCAL PROCESS ROUTING DECISION OUTPUT INTERFACE Qos pada <strong>RouterOS</strong> <strong>v6</strong> 19
Mangle -‐ Queue • Traffic from the router – same as previous version • Traffic through the router – mangle can be done specifically at chain=forward Qos pada <strong>RouterOS</strong> <strong>v6</strong> 20
Traffic through the router FORWARDDST-‐NAT PREROUTINGROUTING DECISION MANGLE INPUT FILTER INPUT INPUTMANGLE FORWARD OUTPUTROUTING ADJUSMENT FILTER OUTPUT FILTER FORWARD MANGLE POSTROUTING SRC-‐NAT POSTROUTINGGLOBAL HTB MANGLE PREROUTING GLOBAL HTB MANGLE OUTPUT SIMPLE QUEUE CONNECTION TRACKING SIMPLE QUEUE CONNECTION TRACKING HTB INTERFACE INPUT INTERFACE LOCAL PROCESS ROUTING DECISION OUTPUT INTERFACE Qos pada <strong>RouterOS</strong> <strong>v6</strong> 21
Simple Queue di RoSv5 Qos pada <strong>RouterOS</strong> <strong>v6</strong> 22
Simple Queue RoSv5 • There are 2 type of target: target address and interface • Des8na8on use only IP address (not interface) • Same priority parameter for downlink and uplink Qos pada <strong>RouterOS</strong> <strong>v6</strong> 23
Simple Queue at RoS<strong>v6</strong> Qos pada <strong>RouterOS</strong> <strong>v6</strong> 24
Simple Queue <strong>v6</strong> • Target address and interface combined to “target” • dst-‐address changed to “dst”, can take IP address and also interface Qos pada <strong>RouterOS</strong> <strong>v6</strong> 25
Simple Queue in ROS<strong>v6</strong> • Completely new algorithm, build in kernel, faster • S8ll in sequen8al processing • Target parameter is mandatory • If target=0/0 in the first rule, no traffic for others queue Qos pada <strong>RouterOS</strong> <strong>v6</strong> 26
0 simple queue, 100 mbps, RB750G v5.21 Qos pada <strong>RouterOS</strong> <strong>v6</strong> 27
1000 simple queue, 100 mbps, RB750G v5.21 Qos pada <strong>RouterOS</strong> <strong>v6</strong> 28
1000 simple queue, 100 mbps, RB750G <strong>v6</strong>rc2 Qos pada <strong>RouterOS</strong> <strong>v6</strong> 29
Faster at ROS 6.0rc12 Simple queue on mul8ple processors router will 9 8mes faster if there are at least 32 simple queue parents. Qos pada <strong>RouterOS</strong> <strong>v6</strong> 30
Upgrade from RoSv5 Queue tree with global-‐in, global-‐out, and global-‐total as parent at RoS v5. Qos pada <strong>RouterOS</strong> <strong>v6</strong> 31
Upgrade from RoSv5 Queue tree with global-‐in, global-‐out, and global-‐total as parent at RoS v5 become invalid at Ros<strong>v6</strong>. Qos pada <strong>RouterOS</strong> <strong>v6</strong> 32
Simple queue upgrade Qos pada <strong>RouterOS</strong> <strong>v6</strong> 33
Simple queue upgrade (Rosv5) Means: traffic for src-‐address 192.168.0.1 AND on interface bridge-localQos pada <strong>RouterOS</strong> <strong>v6</strong> 34
Simple queue upgrade (Ros<strong>v6</strong>) Means: traffic for src-‐address 192.168.0.1 OR on interface bridge-localQos pada <strong>RouterOS</strong> <strong>v6</strong> 35
PCQ • PCQ was introduced to op8mize massive <strong>QoS</strong> systems, where most of the queues are exactly the same for different sub-‐streams. Qos pada <strong>RouterOS</strong> <strong>v6</strong> 36
PCQ pcq-clasifiersrc-addresssub-queueAlgoritmaRoundRobinSRC-ADDRESS=10.0.0.1SRC-ADDRESS=10.0.0.2Flow 1Flow 2Flow 3Flow 4SRC-ADDRESS=10.0.0.3SRC-ADDRESS=10.0.0.4SRC-ADDRESS=10.0.0.5SRC-ADDRESS=10.0.0.6tointerfaceSRC-ADDRESS=10.0.0.7MTCTCE Qos -‐ Sys-‐DataCom pada <strong>RouterOS</strong> -‐ Citraweb <strong>v6</strong> 37
PCQ in ROS <strong>v6</strong> • Take sub-‐stream parameter from Connec8on Tracking data. • It is strongly advised to enable Connec8on Tracking. • If connec8on tracking disabled, PCQ will calculate sub-‐stream in old way Qos pada <strong>RouterOS</strong> <strong>v6</strong> 38
Double <strong>QoS</strong> • Is <strong>QoS</strong> method to do priori8za8on and client limita8on in 1 ROS hgp://mum.mikro8k.com/presenta8ons/CZ09/<strong>QoS</strong>_Megis.pdf • On RoS <strong>v6</strong>, we can not do double <strong>QoS</strong> with (both) queue tree any more. • But, we s8ll can do: – priori8za8on : queue tree & mangle forward – client limita8on : simple queue with target ip address Qos pada <strong>RouterOS</strong> <strong>v6</strong> 39
Thank you • Comments and sugges8ons: – Valens Riyadi (valens@mikro8k.co.id) This presenta8on was developed and sourced from <strong>RouterOS</strong><strong>v6</strong> Presenta8on by Janis Megis (<strong>MUM</strong>-‐USA-‐2012). This license lets others remix, tweak, and build upon your work even for commercial purposes, as long as they credit you and license their new crea8ons under the iden8cal terms. This license is ohen compared to “copyleh” free and open source sohware licenses. All new works based on yours will carry the same license, so any deriva8ves will also allow commercial use. Qos pada <strong>RouterOS</strong> <strong>v6</strong> 40
Change language