Does my MK have enough power for this?

Hello all,

I am a small WISP with some clients who are trying to run streaming video, both live and non. I have 2 T1s for access. during peak times it has gotten to 2.7Mbps peak. For the most part, my load hovers around 1.5.

Clients always complain about constant stopping and buffering.

I am currently testing it on a LAN pc. It is doing the same thing but not as often.

My MK services my internal network (about 8 machines) and my wireless clients. It is a Celeron 600 with 384MB. Basic firewall rules. Processor load rarely goes over 10%. Running 3.19.

I have found, however, that the video seems to do better with the firewall virus checking disabled.

Do I just need more horsepower to do this? Why wouldn’t the CPU load be higher?

How can I make this work better? I will provide any extra info if needed.

what does www.speednest.net show?

I used the nearest server to me: (from my workstation)

1.1Mbps down
.27 up
26 ms ping

I was trying to stream a 20 minute show from Hulu. Like I said, it did some better with the Firewall virus check off.

what’s in your ‘virus checking’?

I have a lot of stuff disabled for experimentation: Here is my complete firewall filter print:


0 ;;; Drop Invalid connections
chain=forward action=drop connection-state=invalid

1 ;;; Allow Established connections
chain=forward action=accept connection-state=established

2 ;;; Allow related connections
chain=forward action=accept connection-state=related

3 X ;;; Jump to virus port scan
chain=forward action=jump jump-target=Virus

4 ;;; Allow related connections
chain=input action=accept connection-state=related

5 ;;; Allow established connections
chain=input action=accept connection-state=established

6 ;;; Drop invalid connections
chain=input action=drop connection-state=invalid

7 chain=input action=accept src-address=x.y.z.0/24

8 chain=input action=accept src-address=a.b.c.0/24

9 X chain=input action=accept src-address=a.d.f.0/25

10 X chain=input action=accept protocol=udp src-port=161

11 X chain=forward action=accept protocol=udp src-port=161

12 X ;;; Jump to virus port scan
chain=input action=jump jump-target=Virus

13 ;;; block all other access
chain=input action=drop

14 ;;; port block warning
chain=Virus action=drop protocol=tcp dst-port=1434

15 chain=Virus action=drop protocol=udp dst-port=1434

16 chain=Virus action=drop protocol=udp dst-port=2745

17 chain=Virus action=drop protocol=tcp dst-port=6344-6381

18 chain=Virus action=drop protocol=udp dst-port=6344-6381

19 X ;;; MyDoom - leave disabled for Canopy!
chain=Virus action=drop protocol=tcp dst-port=1080

20 chain=Virus action=drop protocol=tcp dst-port=1214

21 X chain=Virus action=drop protocol=tcp dst-port=593

22 chain=Virus action=drop protocol=tcp dst-port=1024-1030

23 ;;; Blaster Worm
chain=Virus action=drop protocol=tcp dst-port=135-139

24 ;;; Messenger Worm
chain=Virus action=drop protocol=udp dst-port=135-139

25 ;;; Blaster Worm
chain=Virus action=drop protocol=tcp dst-port=445

26 ;;; Blaster Worm
chain=Virus action=drop protocol=udp dst-port=445

27 X ;;; ndm requester
chain=Virus action=drop protocol=tcp dst-port=1363

28 ;;; ndm server
chain=Virus action=drop protocol=tcp dst-port=1364

29 ;;; screen cast
chain=Virus action=drop protocol=tcp dst-port=1368

30 ;;; hromgrafx
chain=Virus action=drop protocol=tcp dst-port=1373

31 ;;; cichlid
chain=Virus action=drop protocol=tcp dst-port=1377

32 ;;; Worm
chain=Virus action=drop protocol=tcp dst-port=1433-1434

33 ;;; Bagle Virus
chain=Virus action=drop protocol=tcp dst-port=2745

34 ;;; Drop Dumaru.Y
chain=Virus action=drop protocol=tcp dst-port=2283
35 X ;;; Drop Beagle
chain=Virus action=drop protocol=tcp dst-port=2235

36 X ;;; Drop Beagle.C-K
chain=Virus action=drop protocol=tcp dst-port=2745

37 ;;; Drop MyDoom
chain=Virus action=drop protocol=tcp dst-port=3127-3128

38 ;;; Drop Backdoor OptixPro
chain=Virus action=drop protocol=tcp dst-port=3410

39 X ;;; Worm
chain=Virus action=drop protocol=tcp dst-port=4444

40 ;;; Worm
chain=Virus action=drop protocol=udp dst-port=4444

41 X ;;; Drop Sasser
chain=Virus action=drop protocol=tcp dst-port=5554

42 ;;; Drop Beagle.B
chain=Virus action=drop protocol=tcp dst-port=8866

43 X ;;; Drop Dabber.A-B
chain=Virus action=drop protocol=tcp dst-port=9898

44 ;;; Drop Dumaru.Y
chain=Virus action=drop protocol=tcp dst-port=10000

45 ;;; Drop MyDoom.B
chain=Virus action=drop protocol=tcp dst-port=10080

46 X ;;; Drop NetBus
chain=Virus action=drop protocol=tcp dst-port=12345

47 ;;; Drop Kuang2
chain=Virus action=drop protocol=tcp dst-port=17300

48 X ;;; Drop PhatBot, Agobot, Gaobot
chain=Virus action=drop protocol=tcp dst-port=65506

49 ;;; Drop SubSeven
chain=Virus action=drop protocol=tcp dst-port=27374

50 X ;;; block bogon
chain=forward action=drop src-address=127.0.0.0/8
51 X chain=forward action=drop dst-address=127.0.0.0/8

52 X chain=forward action=drop src-address=224.0.0.0/3

53 X chain=forward action=drop dst-address=224.0.0.0/3

54 ;;; Drop telnet attempts
chain=input action=drop protocol=tcp dst-port=23

55 chain=input action=accept protocol=udp dst-port=1080

56 X ;;; Log everything else
chain=input action=log log-prefix=“DROP INPUT”

One other note: I use Winbox most of the time for management. It does sometimes show the CPU to be 90-100% - it jumps around. However, I can close Winbox and reopen, and it goes back down to normal.

Can anyone out there please help me on this or forward me to some information about optimizing Mikrotik and its firewall?