IP, port, address-list priority or filtering seems no longer effective nowadays.
I mean, they changes everyday! also TLS? no way.
How to solve this? AQM!
Thanks to Mikrotik for the new FQ_Codel & CAKE!
But, TC Qdisc locking on HTB also a big problem.
With new kernel introduced on ROS v7, it might be a good idea to dig all its capability, especially QoS.
LibreQoS was a good example to start with.
With XDP-CPUMAP-TC integration, they managed to get rid of Qdisc locking problem.
As its descripted on LibreQoS project:
Code: Select all
XDP-CPUMAP-TC integration greatly improves throughput, allows many more IPv4 clients, and lowers CPU use. Latency reduced by half on networks previously limited by single-CPU / TC QDisc locking problem in v.0.8.