Borage
February 22, 2006, 7:52am
1
I think that the mangle example in the manual is not correct. The example queue tree will not work if you follow the mangle example.
http://www.mikrotik.com/docs/ros/2.9/ip/mangle
[admin@MikroTik] > /ip firewall mangle print
Flags: X - disabled, I - invalid, D - dynamic
0 chain=forward p2p=all-p2p action=mark-connection new-connection-mark=p2p_conn
1 chain=forward connection-mark=p2p_conn action=mark-packet new-packet-mark=p2p
2 chain=forward packet-mark=!p2p_conn action=mark-packet new-packet-mark=other
Here is what I think is correct.
[admin@MikroTik] > /ip firewall mangle print
Flags: X - disabled, I - invalid, D - dynamic
0 chain=forward connection-mark=p2p_conn action=mark-packet new-packet-mark=p2p
1 chain=forward p2p=all-p2p action=mark-connection new-connection-mark=p2p_conn
2 chain=forward connection-mark=!p2p_conn action=mark-packet new-packet-mark=other
What was the problem with the first one??? From my point of view both examples work the same except the first packages
I by myself would use this setup - it takes less processing
[admin@MikroTik] ip firewall mangle> pr
1 chain=prerouting connection-mark=p2p_conn action=mark-packet new-packet-mark=p2p_packet passthrough=no
2 chain=prerouting action=mark-connection new-connection-mark=other_conn passthrough=yes
3 chain=prerouting connection-mark=other_conn action=mark-packet new-packet-mark=other_packet passthrough=no
Borage
February 22, 2006, 8:59am
3
I think I found the problem, passthrough is not set default to yes as the manual said.
passthrough > (yes | no; default: > yes > ) - whether to let the packet to pass further (like action > passthrough > ) after marking it with a given mark (property only valid if action is mark packet, connection or routing mark)