Network Setup:
here is test
Experts waiting for your attention ?
npero
November 14, 2014, 11:05am
3
No one can help you without more details. Export you config. Also consider update to version 6.xx because some thing are more optimized in 6.xx.
jarda
November 14, 2014, 5:03pm
4
Dns and firewalling. Looks like some attack that is not handled correctly. Maybe…
instead of dropping packets, try tarpit. It does the same thing but with less CPU.
Already tested on 6.1 issue is same
/ip firewall mangle
add action=mark-connection chain=input in-interface=pppoe-out1 new-connection-mark=wan1_conn
add action=mark-connection chain=input in-interface=pppoe-out2 new-connection-mark=wan2_conn
add action=mark-connection chain=input in-interface=pppoe-out3 new-connection-mark=wan3_conn
add action=mark-connection chain=input in-interface=pppoe-out4 new-connection-mark=wan4_conn
add action=mark-connection chain=input in-interface=pppoe-out5 new-connection-mark=wan5_conn
add action=mark-connection chain=input in-interface=pppoe-out6 new-connection-mark=wan6_conn
add action=mark-connection chain=input in-interface=pppoe-out7 new-connection-mark=wan7_conn
add action=mark-routing chain=output connection-mark=wan1_conn new-routing-mark=to_wan1
add action=mark-routing chain=output connection-mark=wan2_conn new-routing-mark=to_wan2
add action=mark-routing chain=output connection-mark=wan3_conn new-routing-mark=to_wan3
add action=mark-routing chain=output connection-mark=wan4_conn new-routing-mark=to_wan4
add action=mark-routing chain=output connection-mark=wan5_conn new-routing-mark=to_wan5
add action=mark-routing chain=output connection-mark=wan6_conn new-routing-mark=to_wan6
add action=mark-routing chain=output connection-mark=wan7_conn new-routing-mark=to_wan7
add action=mark-connection chain=prerouting dst-address-type=!local in-interface=Local new-connection-mark=wan1_conn \
per-connection-classifier=both-addresses-and-ports:7/0
add action=mark-connection chain=prerouting dst-address-type=!local in-interface=Local new-connection-mark=wan2_conn \
per-connection-classifier=both-addresses-and-ports:7/1
add action=mark-connection chain=prerouting dst-address-type=!local in-interface=Local new-connection-mark=wan3_conn \
per-connection-classifier=both-addresses-and-ports:7/2
add action=mark-connection chain=prerouting dst-address-type=!local in-interface=Local new-connection-mark=wan4_conn \
per-connection-classifier=both-addresses-and-ports:7/3
add action=mark-connection chain=prerouting dst-address-type=!local in-interface=Local new-connection-mark=wan5_conn \
per-connection-classifier=both-addresses-and-ports:7/4
add action=mark-connection chain=prerouting dst-address-type=!local in-interface=Local new-connection-mark=wan6_conn \
per-connection-classifier=both-addresses-and-ports:7/5
add action=mark-connection chain=prerouting dst-address-type=!local in-interface=Local new-connection-mark=wan7_conn \
per-connection-classifier=both-addresses-and-ports:7/6
add action=mark-routing chain=prerouting connection-mark=wan1_conn in-interface=Local new-routing-mark=to_wan1
add action=mark-routing chain=prerouting connection-mark=wan2_conn in-interface=Local new-routing-mark=to_wan2
add action=mark-routing chain=prerouting connection-mark=wan3_conn in-interface=Local new-routing-mark=to_wan3
add action=mark-routing chain=prerouting connection-mark=wan4_conn in-interface=Local new-routing-mark=to_wan4
add action=mark-routing chain=prerouting connection-mark=wan5_conn in-interface=Local new-routing-mark=to_wan5
add action=mark-routing chain=prerouting connection-mark=wan6_conn in-interface=Local new-routing-mark=to_wan6
add action=mark-routing chain=prerouting connection-mark=wan7_conn in-interface=Local new-routing-mark=to_wan7
jarda
November 17, 2014, 8:13am
7
Try some newer version. 6.1 is really old…