FTP server behind mikrotik rate limit problem

farazhamzaa · May 2, 2012, 6:34pm

respected Seniors.

i have configured mikrotik router os with hotspot. and i setup my ftp server behind mikrotik router os. by giving below rules.

mikrotik server
—————-
Enterface1= WAN (192.168.11.8/24)
Enterface2=LAN (192.168.200.1/24) Hotspot and DHCP
Enterface3=Ftp (192.168.250.1/24)

FTP server
———
Enterface1=
ip address=192.168.250.2
subnetmask=255.255.255.0
prefered DNS=192.168.250.1

/ip firewall mangle add chain=prerouting src-address=192.168.200.1/24 dst-address=192.168.250.0/24 action=mark-packet new-packet-mark=ftp-up

/ip firewall mangle add chain=postrouting dst-address=192.168.200.1/24 src-address=192.168.250.0/24 action=mark-packet new-packet-mark=ftp-down

/queue type add name=ftp-exempt kind=sfq

/queue tree add name=ftp-up parent=global-in packet-mark=ftp-up queue=ftp-exempt max-limit=1G

/queue tree add name=ftp-down parent=global-out packet-mark=ftp-down queue=ftp-exempt max-limit=1G

i have tried this with hotspot. but its not working well. hotspot users getting same speed limit as define in profile.

hotspot is working fine. and giving the speed limit as defined inside profile speed limit on internet trafic. after adding ftp server. i have aded above mangle and quee rules. but i m getting these 2 errors.

1= when i try to open \server its not respond and when i type \192.168.250.2 then ftp server goes open. why its not opening with name of the computer instead of the ip?

2= rate limit as defined in hotspot profile is still applying on the ftp trafic. even i have aded the quee rulles as you mentioned above.. but still the same.

Kindly trouble shoot about this scenario

jandafields · May 2, 2012, 6:37pm

The computer names are not going to travel across a routed network. That’s how windows works. You have to manually add them to dns or use a seperate wins server.

2= rate limit as defined in hotspot profile is still applying on the ftp trafic. even i have aded the quee rulles as you mentioned above.. but still the same.

You need to rearrange some rules so your ftp rules get hit before the main hotspot rules.

farazhamzaa · May 3, 2012, 7:53pm

But Sir in above method there is only quees there is not other choice.

kindly guide me if there is another method to that the same?

some1 else have an idea???

jandafields · May 3, 2012, 9:10pm

you are rate-limiting in the hotspot profile? that is seperate from the queues.

farazhamzaa · May 4, 2012, 7:01am

YEa i have create multi profiles in hotspot for limiting the rate.

and when i try to access the ftp then the same rate limit is applied also for that ftp trafic. i want to exempt the rate limit for ftp server trafic. and want to assign a new rate limit for that trafic goes to ftp server.

farazhamzaa · May 5, 2012, 9:47am

still waiting for som1s guidance

aacable · May 7, 2012, 8:08am

Mark traffic for FTP server’s IP.
then create queue rule to allocate unlimited bandwidth for these marked packets.
You can get some basic ideas from below URL (Its for pppoe , but you can use the same logic for hostspot users)

_http://aacable.wordpress.com/2011/08/04/howto-exempt-rate-limit-for-ftp-server-behind-mt-dmz-in-placment-of-dynamic-queues/_

farazhamzaa · May 8, 2012, 11:05am

i have tried a lot i also try to create pcq queue

everything is working fine.but still failed to control limit via quee..

always rate limit is applied as define in hotspot profile

farazhamzaa · May 10, 2012, 8:09pm

Iz There Any solution???

kindly guide me..

still waiting for your replies Sir,

if my method is wrong then please send me again complete procedure with hotspot.

farazhamzaa · June 10, 2013, 8:04am

i have done the Above Senario and i successfully can open ftp server via \ip address and also i m able to exempt rate limit of hotspot.

but now im faceing a problem. i can connect only one session at a time.

mean to say. from a client-1 pc i open \ server and if i m coping a file from ftp server behind Mikrotik then on the same time i open \server from another client-2 pc then it breaks prevoius session and file copying gives error “there is a problem accessing \server”

how can i troubleshot it???

Chupaka · June 11, 2013, 9:15am

do you have any NAT rules?

farazhamzaa · June 11, 2013, 7:28pm

No i didnt create any NAT rule for FTP trafic.

Kindly Guide Me. What NAT rule i have to Added so that FTP server can open from multi Client computers

Chupaka · June 12, 2013, 10:51am

I meant, wrong NAT could break things.

can you ping the server when problem occurs?

p.s. \server is not FTP. it’s CIFS

farazhamzaa · June 12, 2013, 9:01pm

ping to server ip 192.168.150.2 is continuly ok without any request time out on both pc

but when i try to copy a file from \server on client one it start downloading. and when i try to open server from 2nd pc. then one pc 1 its gives me error “there is an error in assessing \server”

one Thing more. when hotspot clients are not active then i feel its opens on both pcs and when more then 50 hotspot clients comes online its act as i said. one connection limit. its i feel so but not sure.

Chupaka · June 13, 2013, 10:22pm

do you have some limiting firewall rules?..

farazhamzaa · June 14, 2013, 5:40am

Nop There are only those rules in firewall which is created by Hotspot

i just few drom rules to block mac address.

if my this senario is not able to resolved then kindly view this one

http://forum.mikrotik.com/t/2-mikrotic-on-same-network/67034/1

Both ways i try to use just to control file server bandwidth but both ways make me in trouble. read the above post

farazhamzaa · June 17, 2013, 8:54am

Bump…