This worked before I put the cameras and work related trees as children of the main inbound/outbound limiters, but now even if I take them back out, recreate, etc. my entire queue tree isn’t working… It like once I put a queue as a child it broke everything from then on…
I can see the packets being marked properly. Sometimes the children dealing with the “cameras” work as long as its not a connection from the expected IP. Example: if I put a camera on that IP and access it from outside, the queue seems to work, if I put a PC there and upload or download a file from outside the queue does not work.
Me and “RouterOS” didn’t have a good relationship from the start and each time I try to go a bit further, it breaks in odd and asinine ways. The only thing that keeps me is the price of the hardware being so cheap.
Here is the entire config (though any personal info has been changed to something else).
# jun/06/2013 12:10:02 by RouterOS 6.0
# software id = AZ4U-8HNR
#
/interface bridge
add arp=proxy-arp l2mtu=1598 name=bridge1 protocol-mode=rstp
/interface wireless
set 0 band=2ghz-b/g/n country="united states" disabled=no frequency=2462 ht-rxchains=0,1 ht-txchains=0,1 l2mtu=2290 \
max-station-count=64 mode=ap-bridge ssid=D4CA6D809CBF wireless-protocol=802.11
/interface pptp-client
add connect-to=192.168.1.1 name=PPTP-Work password=********************************* user=********
/interface wireless security-profiles
set [ find default=yes ] authentication-types=wpa2-psk mode=dynamic-keys supplicant-identity=MikroTik wpa-pre-shared-key=\
somethingelse wpa2-pre-shared-key=somethingelse
/ip hotspot user profile
set [ find default=yes ] idle-timeout=none keepalive-timeout=2m mac-cookie-timeout=3d
/ip pool
add name=dhcp ranges=10.128.0.10-10.128.0.127
/ip dhcp-server
add address-pool=dhcp disabled=no interface=bridge1 lease-time=1d name=LAN-DHCP
/port
set 0 baud-rate=9600 data-bits=8 flow-control=none name=usb1 parity=none stop-bits=1
/interface ppp-client
add keepalive-timeout=0 name=ppp-out1 password=vzw phone=*99***3# port=usb1 user=8145551212@vzw4g.com
/ppp profile
add local-address=10.128.0.1 name=pptp-dhcp remote-address=pptp-pool use-encryption=yes
/queue tree
add comment="Inbound throttle" limit-at=8388608 max-limit=8388608 name=inbound-queue packet-mark=inbound parent=global queue=default
add comment="Outbound Throttle" limit-at=1048576 max-limit=1048576 name=outbound-queue packet-mark=outbound parent=global queue=\
default
add limit-at=786432 max-limit=786432 name=outbound-work packet-mark=outbound-work parent=outbound-queue queue=default
add limit-at=6291456 max-limit=6291456 name=inbound-work packet-mark=inbound-work parent=inbound-queue queue=default
add limit-at=524288 max-limit=524288 name=camera-inbound packet-mark=camera-inbound parent=inbound-queue queue=default
add limit-at=524288 max-limit=524288 name=camera-outbound packet-mark=camera-outbound parent=outbound-queue queue=default
/interface bridge port
add bridge=bridge1 interface=wlan1
add bridge=bridge1 interface=ether2
add bridge=bridge1 interface=ether3
add bridge=bridge1 interface=ether4
add bridge=bridge1 interface=ether5
/interface wireless access-list
add mac-address=E4:CE:8F:46:F4:60
/ip address
add address=10.128.0.1/24 interface=bridge1 network=10.128.0.0
/ip dhcp-client
add dhcp-options=hostname,clientid disabled=no interface=ether1
/ip dhcp-server lease
add address=10.128.0.3 mac-address=D4:CA:6D:25:AA:5C server=LAN-DHCP
add address=10.128.0.5 mac-address=A8:20:66:1E:25:87 server=LAN-DHCP
add address=10.128.0.4 mac-address=E8:AB:FA:02:BD:B7 server=LAN-DHCP
/ip dhcp-server network
add address=10.128.0.0/24 dns-server=10.128.0.1 gateway=10.128.0.1 netmask=24
/ip dns
set allow-remote-requests=yes servers=8.8.8.8,8.8.4.4
/ip firewall address-list
add address=10.128.0.4 list=cameras
/ip firewall filter
add action=drop chain=input dst-port=53 in-interface=ether1 protocol=udp
/ip firewall mangle
add action=mark-packet chain=forward comment="WAN inbound" in-interface=ether1 new-packet-mark=inbound
add action=mark-packet chain=forward comment="WAN outbound" new-packet-mark=outbound out-interface=ether1
add action=mark-packet chain=forward comment="Inbound Work" new-packet-mark=inbound-work src-address=10.0.0.0/24
add action=mark-packet chain=forward comment="Outbound Work" dst-address=10.0.0.0/24 new-packet-mark=outbound-work
add action=mark-packet chain=forward comment="Camera inbound" dst-address-list=cameras new-packet-mark=camera-inbound
add action=mark-packet chain=forward comment="Camera outbound" new-packet-mark=camera-outbound src-address-list=cameras
/ip firewall nat
add action=masquerade chain=srcnat out-interface=ether1
add action=masquerade chain=srcnat out-interface=ppp-out1
add action=masquerade chain=srcnat dst-address=10.0.0.0/24 out-interface=PPTP-Work
/ip route
add distance=1 gateway=ether1
/ip upnp
set allow-disable-external-interface=no enabled=yes
/ip upnp interfaces
add interface=ether1 type=external
add interface=bridge1 type=internal
/system clock
set time-zone-name=America/New_York
/system identity
set name=Zeus
/system leds
set 0 interface=wlan1 leds=user-led type=interface-status
add interface=wlan1 leds=wlan-led type=interface-activity
/system ntp client
set enabled=yes mode=unicast primary-ntp=129.6.15.30 secondary-ntp=206.246.122.250