Community discussions

 
erhtun
just joined
Topic Author
Posts: 3
Joined: Thu May 31, 2018 12:34 am

How to mark http video streams with firewall mangle rules

Tue Jan 08, 2019 6:04 pm

Hi

I want to mark http video streams with firewall mangle rules. I can mark youtube videos with Layer 7 rule below.
/ip firewall layer7-protocol add name=streaming regexp=videoplayback|video

But this doesn't work some web sites like below.
https://www.cnet.com/how-to/videos/
https://video.eurosport.co.uk/football/ ... ideo.shtml

How can I mark this video streams.
 
User avatar
sebastia
Forum Guru
Forum Guru
Posts: 1275
Joined: Tue Oct 12, 2010 3:23 am
Location: Antwerp, BE

Re: How to mark http video streams with firewall mangle rules

Wed Jan 09, 2019 8:51 pm

Hi

The sites you've referred to are over ssl: you won't be able to see theirs content.
You mentioned that youtube "works", but as it also over ssl i would be surprised if it did.
 
User avatar
pcunite
Forum Veteran
Forum Veteran
Posts: 905
Joined: Sat May 25, 2013 5:13 am
Location: USA

Re: How to mark http video streams with firewall mangle rules

Wed Jan 09, 2019 9:16 pm

The way to mark video streams is to look for connection rates and bytes. You'll flag a big file download too, but that is probably okay. Thus something like this:

/ip firewall mangle
add action=mark-connection chain=prerouting connection-bytes=500000-0 connection-mark=HTTP connection-rate=200k-100M new-connection-mark=HTTP_BIG passthrough=yes protocol=tcp

You can read more about this technique in my signature on QoS. Someday, I'll make it easier to read.
 
pegasus123
Frequent Visitor
Frequent Visitor
Posts: 52
Joined: Tue Jul 24, 2018 7:02 am

Re: How to mark http video streams with firewall mangle rules

Fri Jan 11, 2019 7:03 pm

one way to match a https site is to read the SNI afaik. you can use tls-host. there were few examples in the forum as well.

Who is online

Users browsing this forum: No registered users and 17 guests