Forum Index | Search | Register (New User) | Login (Existing User) | Who's Online | FAQ | Main Site

Technical Discussion
  >> Technical Issues Previous thread View all threads Next thread


Register (or login) on our website and you will not see this ad.


These posts have been archived and can no longer be replied to or modified.
  Print Thread
Standard User planetf1
(committed) Fri 21-Aug-09 10:22:12
Print Post

Speedtouch & IPQOS configuration assistance


[link to this post] 		 
Hi,
I have a speedtouch 585v7 on O2 running with 7.4.20.3 firmware. It has some default IP QOS rules built in which work quite nicely to help realtime VoIP traffic (for example) from being comprimized when a large download is underway.

I'm now trying to add a rule to help with my VPN (work) traffic -- to prioritizae this ABOVE non-work traffic to help with
* "competition" when my kids are using the network connection but I'm working at home
* VoIP since I also need to send voip traffic over the VPN direct from my work laptop. (I will have to add additional rules on that machine itself to prioritize above downloads etc)

The endpoint of the VPN is at 95.212.17.201 port 8889 typically using UDP

So far I have tried by adding 2 new rules -- one for the ip, one for the service & experimented with using both

[ label.ini ]
add name=vpn
modify name=vpn classification=increase defclass=9 ackclass=9 bidirectional=enabled inheritance=enabled
[ expr.ini ]
add name=private type=ip addr=172.[16-31].*.* mask=0
add name=vpn type=ip addr=195.212.17.201 mask=32
add name=vpnport type=serv proto=udp dstport=8889
add name=vpnport type=serv proto=udp srcport=8889
add name=vpnport type=serv proto=tcp srcport=8889
add name=vpnport type=serv proto=tcp dstport=8889
[ labelrule.ini ]
rule add chain=qos_user_labels index=1 name=vpn serv=vpnport log=disabled state=enabled label=vpn

However when I check the chain stats, it doesn't appear any traffic is being picked up by my rule (actually just 1 or 2 packets)
"wireshark" (on the pc) confirms my choice of port/ip is correct.

Here's an example in one direction
No. Time Source Destination Protocol Info
419 21.409186 192.168.1.68 195.212.17.201 UDP Source port: 37000 Destination port: ddi-udp-2

Frame 419 (91 bytes on wire, 91 bytes captured)
Ethernet II, Src: IntelCor_29:d1:81 (00:13:02:29:d1:81), Dst: ThomsonT_15:37:7c (00:1f:9f:15:37:7c)
Internet Protocol, Src: 192.168.1.68 (192.168.1.68), Dst: 195.212.17.201 (195.212.17.201)
Version: 4
Header length: 20 bytes
Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00)
Total Length: 77
Identification: 0x0000 (0)
Flags: 0x04 (Don't Fragment)
Fragment offset: 0
Time to live: 64
Protocol: UDP (0x11)
Header checksum: 0xa316 [correct]
Source: 192.168.1.68 (192.168.1.68)
Destination: 195.212.17.201 (195.212.17.201)
User Datagram Protocol, Src Port: 37000 (37000), Dst Port: ddi-udp-2 (8889)
Source port: 37000 (37000)
Destination port: ddi-udp-2 (8889)
Length: 57
Checksum: 0x23b0 [validation disabled]
Data (49 bytes)


Where have I gone wrong?
Note the definitions above are the delta on top of the standard OOTB config

Thanks!
  Print Thread

Previous thread View all threads Next thread
Jump to