I am probably mistaken or misunderstanding, but I was under the impression that Tailscale is simply a preconfigured version of WireGuard. perhaps even a branded one.
Tonally deferent
I am probably mistaken or misunderstanding, but I was under the impression that Tailscale is simply a preconfigured version of WireGuard. perhaps even a branded one.
Tailscale is some "magic DNS" thing that allows computers connected to it's special subnet to communicate with eachother even from outside LAN.
I cannot use Tailscale to connect to my VPN providers WireGuard server.
My VPN provider provide me with WireGuard config files. I don't know how we got on to this, it's off topic and nothing to do with whether or not Cake QoS can work with VPN'd traffic.No, Tailscale produces individual connections between end points that are coordinated by central servers. Wireguard is hub and spoke.
Why do you need to use WireGuard?
My VPN provider provide me with WireGuard config files. I don't know how we got on to this, it's off topic and nothing to do with whether or not Cake QoS can work with VPN'd traffic.
Not off topic as I'm looking for a solution to your issue. The issue is your VPN provider and/or VPN can't handle the load. Try a deferent one. QOS will not fix a bad VPN provider. You could avoid using a VPN for the video source you are using though that might have a cost as dose a decent VPN provider.
DL speed is 120mb down solid with in built WG client on or off, the issue exist(ed?) In the router somewhere. After installing Cake I wasn't too sure how to see if it was doing anything, and was still able to get a video stream to stutter applying load via speed test websites from my Android phone - albeit it wasn't as bad.
FlexQoS shows for sure traffic being sorted into categories and shaped in the stats page and I am unable to get a video to stutter with SkyQ box playing a Netflx stream, Android phone hammering speed tests and qBittorrent on seeding at a couple mb/s so I've answered my own question it seems.
Which VPN and which protocol I'm using never factored in, IMHO. The stutter only happened when applying load from elsewhere, and that is what I understand QoS fixes.
I'm the one who nudged things onto this path, looking for distinction between wireguard and tailscale. apologies for starting that whirlwindMy VPN provider provide me with WireGuard config files. I don't know how we got on to this, it's off topic and nothing to do with whether or not Cake QoS can work with VPN'd traffic.
Are we certain it's not a Cake overhead and/or network MTU settings creating the issues?Not off topic as I'm looking for a solution to your issue. The issue is your VPN provider and/or VPN can't handle the load. Try a deferent one. QOS will not fix a bad VPN provider. You could avoid using a VPN for the video source you are using though that might have a cost as dose a decent VPN provider.
I run MTU default and was told to do so by another user in another thread. WG sets it to 1420 internally and the router stays at 1500. Windows 10 laptop is at 1500 also ... is this wrong?Are we certain it's not a Cake overhead and/or network MTU settings creating the issues?
It used to be they could at best use only Level 1 - CTF (Cut Through Forwarding) with Adaptive - https://www.speedguide.net/faq/what-is-nat-acceleration-495 , and not Flow Acceleration. But with newer models using Archer I don't know, I'm out of date.Strange, I didn't notice Adaptive turning those options off.
Isn't the egress default dual-srchost that incorporates flows superior?Wireguard can maintain “flow separation” on the outbound path, so you could get some degree of fairness by appendingflows
to your egress options if you are using the add on.
Not when they're already encrypted by WG. Search for forum for "cake wireguard" posts by @Lynx. He did a lot of research into making Cake work with WG.Isn't the egress default dual-srchost that incorporates flows superior?
Should I be using his external scripts?Not when they're already encrypted by WG. Search for forum for "cake wireguard" posts by @Lynx. He did a lot of research into making Cake work with WG.
flows nonat
.flows nonat
.I saw that post yes. The GUI does allow for custom parameters - I assume I just add them in to the upload box right there?@dave14305 does the Asus Merlin QoS GUI enable custom upload options for cake?
If so, then perhaps the easiest way to make cake work with WireGuard VPN(s) would be to override the custom upload options for cake to specify:flows nonat
.
@privacyguy123 those custom upload options for cake are necessary for cake to distinguish the encrypted flows at the wan interface.
Alternatively, I outlined the steps that I think would make this work on Asus Merlin in this post:
CakeQOS - CakeQoS-Merlin v2.1.1
I wonder if this QOS can handle data parcels in such a way that it can send gaming packages to WAN Interface and the rest to VPN? It might not be able to do it out of the box, but can such a feature be implemented? ping @ttgaperswww.snbforums.com
So rather than rely on the Asus Merlin QoS GUI to set up cake, you instead set cake up using that override script, and leverage that to tweak the cake options to include 'flows nonat'.
None of those other options need tweaked? I haven't got it up and running just yet, was hoping to get my head around it beforehand.I guess try setting 'flows nonat' in 'custom upload parameters' and then login using ssh and run 'tc qdisc ls' and paste the output here.
tc qdisc ls
Welcome To SNBForums
SNBForums is a community for anyone who wants to learn about or discuss the latest in wireless routers, network storage and the ins and outs of building and maintaining a small network.
If you'd like to post a question, simply register and have at it!
While you're at it, please check out SmallNetBuilder for product reviews and our famous Router Charts, Ranker and plenty more!