Hello all,
I’m trying to do routing based on DSCP, but its didnt work well, lets me explain.
I have a SquidProxy making does marks in packets to pot 80(DSCP 56).
In the RouterOS, I create a rule that identify this mark(DSCP56).
/ip firewall mangle add chain=prerouting dscp=56 action=log log-prefix=dscp
this is what appers on my log:
10:23:12 firewall,info dscp prerouting: in:eth3/Interno out:(none), src-mac 00:13:72:65:71:72, proto TCP (ACK), 172.1.1.2:48668->74.125.214.83:80, len 64
10:23:12 firewall,info dscp prerouting: in:eth3/Interno out:(none), src-mac 00:13:72:65:71:72, proto TCP (ACK), 172.1.1.2:19251->173.194.29.200:80, len 80
10:23:12 firewall,info dscp prerouting: in:eth3/Interno out:(none), src-mac 00:13:72:65:71:72, proto TCP (ACK), 172.1.1.2:37568->173.194.60.116:80, len 72
10:23:12 firewall,info dscp prerouting: in:eth3/Interno out:(none), src-mac 00:13:72:65:71:72, proto TCP (ACK), 172.1.1.2:19135->173.194.29.86:80, len 80
Until thats its OK, seens like is working does marks(DSCP56). So I decide to take this connections and redirect to another gateway that I have(and Im not using this gateway).
So I make another rule
/ip firewall mangle add action=mark-connection chain=prerouting comment="DSCP 56" disabled=no dscp=56 new-connection-mark=dscp56_conn passthrough=yes
add action=mark-routing chain=prerouting connection-mark=dscp56_conn disabled=no new-routing-mark=link3 passthrough=no
And when I do that the traffic simple stops. So I thought thats the problem whas the rule, so I make the rule to my computer that is in the same network. But I add the rule to change my DSCP=56.
I tried differnt ways to do that, but its simply dont work. I losing my hopes to make this happen. But I believe thats someone has mucj more knowledge than me can do such thing.
So anyone know how to make this work?
thanks.