Community discussions

 
levicki
just joined
Topic Author
Posts: 10
Joined: Mon Apr 30, 2018 12:22 pm
Location: Belgrade, Serbia
Contact:

Not all RDP traffic seems to be marked in firewall mangle

Wed May 29, 2019 2:58 pm

I have a RDP server on LAN which is forwarded to WAN:
add action=mark-connection chain=prerouting comment="MARK RDP CONNECTIONS" new-connection-mark=rdp-connection-mark passthrough=yes port=3389 protocol=tcp
add action=mark-connection chain=prerouting comment="MARK RDP CONNECTIONS" new-connection-mark=rdp-connection-mark passthrough=yes port=3389 protocol=udp
add action=mark-packet chain=prerouting comment="MARK RDP PACKETS" connection-mark=rdp-connection-mark new-packet-mark=rdp-mark passthrough=yes
If I make a queue on the WAN interface which has rdp-mark as a criterium I see much less traffic than it actually is sent by RDP server (kilobits, instead of few Mbps). Instead this traffic can be observed when I use queue with no-mark.

Could someone please explain why is this so (perhaps fasttrack should be disabled?), and how to mark all RDP traffic so you can rate-limit it?

Who is online

Users browsing this forum: No registered users and 14 guests