Basic VLAN based SIP/VOIP QOS/prioritization

davestewart · March 8, 2013, 3:51am

So I am trying to do basic prioritization of VOIP traffic for a customer network that I manage. They have about 70-80 client devices and QOS for VOIP service from Vocalocity has been really bad. I have a 3 port local bridge and 2 WANs with LB/failover (or will soon). I was hoping to post what I have done so far and get some feedback on potential problems with the way I am doing this or simply a better method. I know there is a way to mark the packets on the bridge filter. Maybe this is a better way?

Here is what I have done so far:

Set up VLAN 2 for VOIP - set up DHCP for this VLAN on mik, added VLAN to local bridge interface - all VOIP devices are now on VLAN 2 and get a 10.10.10.0/24 address

Set up all internal switches to prioritize VLAN2 as best I can

Set up the following queues:
/queue tree
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0
max-limit=0 name=IN packet-mark=“” parent=global-in priority=1
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0
max-limit=0 name=OUT packet-mark=“” parent=global-out priority=1
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0
max-limit=0 name=SIP_IN packet-mark=SIP_IN parent=IN priority=2 queue=
default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0
max-limit=0 name=SIP_OUT packet-mark=SIP_OUT parent=OUT priority=2 queue=
default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0
max-limit=0 name=ALL_ELSE_IN packet-mark=ELSE_IN parent=IN priority=8
queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0
max-limit=0 name=ALL_ELSE_OUT packet-mark=ELSE_OUT parent=OUT priority=8
queue=default

Set up the following mangle rules:
/ip firewall mangle
add action=mark-packet chain=prerouting comment=“SIP IN - Charter” disabled=
no dst-address=10.10.10.0/24 new-packet-mark=SIP_IN passthrough=no
add action=mark-packet chain=postrouting comment=“SIP OUT” disabled=no
new-packet-mark=SIP_OUT passthrough=no src-address=10.10.10.0/24
add action=mark-packet chain=postrouting comment=“All NON SIP Traffic OUT”
disabled=no new-packet-mark=ELSE_OUT passthrough=no src-address=
!10.10.10.0/24
add action=mark-packet chain=prerouting comment=“All NON SIP Traffic IN”
disabled=no dst-address=!10.10.10.0/24 new-packet-mark=ELSE_IN
passthrough=no