[Release] FreshJR Adaptive QOS (Improvements / Custom Rules / and Inner workings)

[CriticJay]

I don't know the definitive IP range for the Trend Micro servers, so I went with the /24 of the IP I currently see the wred process talking to. I also had to exclude port 80 from the VPNFix rule to avoid overriding my desired mark (I had also previously added 853 to this exclusion for DoT):

iptables -D OUTPUT -t mangle -o $wan -p tcp -m multiport ! --dports 53,123,853,80 -j MARK --set-mark ${Downloads_mark_up} &> /dev/null                                  #VPN Fix -              (Fixes upload traffic not detected when the router is acting as a VPN Client)

Not sure if this is really going to do any good, but in the spirit of not wanting anything to inhibit speedy websurfing, I thought I would bring this up to see if anyone else has thought about it before and if there is any value in doing this.

Not answering your question directly - but is it necessary for those of us using DNS-over-TLS (i.e. firmwares 384.11 onwards) in conjunction with this script - to add port 853 to the rule above?

BTW isn't port 53 and 123, regular DNS and ntp respectively? But aren't they UDP, not TCP?

 

[dave14305]

Not answering your question directly - but is it necessary for those of us using DNS-over-TLS (i.e. firmwares 384.11 onwards) in conjunction with this script - to add port 853 to the rule above?

BTW isn't port 53 and 123, regular DNS and ntp respectively? But aren't they UDP, not TCP?

@FreshJR mentions it will be part of the next release in this post: [Release] FreshJR Adaptive QOS (Improvements / Custom Rules / and Inner workings)

There is another rule in the script for udp for dns and ntp, but since it can also traverse tcp, both are included. I only played with the tcp variant because DoT and http are TCP only.

 

[dave14305]

After belatedly consulting my favorite iptables flowchart, I realize that the POSTROUTING table would still process the packets, so I CAN enter this via the GUI as a simple rule with a Remote IP/CIDR of 23.47.79.0/24 and Remote Port of 80.

I like this better in the OUTPUT chain because I saw my iPhone also triggering this rule, so it's too permissive in the POSTROUTING chain, probably since I'm using the whole /24 from Akamai.

 

[CriticJay]

FreshJR mentions it will be part of the next release in this post: [Release] FreshJR Adaptive QOS (Improvements / Custom Rules / and Inner workings)

There is another rule in the script for udp for dns and ntp, but since it can also traverse tcp, both are included. I only played with the tcp variant because DoT and http are TCP only.

Understood that it will be part of next release - but while I'm waiting, I thought I would try some script-tweaking by myself.

I used grep to find 4 lines in the script which referenced "--dports 53,123"
I changed all 4 lines to also include port 853: "--dports 53,123,853"

Do you foresee any issues with that? Everything appears fine for me, for the past 12 hours, but I haven't really stressed my connection very much yet...

 

[dave14305]

Understood that it will be part of next release - but while I'm waiting, I thought I would try some script-tweaking by myself.

I used grep to find 4 lines in the script which referenced "--dports 53,123"
I changed all 4 lines to also include port 853: "--dports 53,123,853"

Do you foresee any issues with that? Everything appears fine for me, for the past 12 hours, but I haven't really stressed my connection very much yet...

It should be fine. Did you restart QOS afterward? Verify with

iptables -t mangle -L OUTPUT -n -v

and see if your counters on that line are stable as you send DoT requests, since it's meant to exclude those ports from the mark.

 

[CriticJay]

It should be fine. Did you restart QOS afterward? Verify with

iptables -t mangle -L OUTPUT -n -v

and see if your counters on that line are stable as you send DoT requests, since it's meant to exclude those ports from the mark.

Yup it seems to be working fine. By that I mean, the "pkts" and "bytes" in the output remained constant even as I tried to surf to about 20 websites I've never browsed to before, and in foreign languages, so there was no reason they should already be in the router's DNS cache.

 

[Ian72]

Could anyone be kind enough to explain how I make sure computers on my network get all gaming traffic.

They've all got static ips not sure how I add them though,my main issue seems to be if someone in the house is watching Youtube Netflix etc that seems to hog the connection.

I know this qos will help but adding the ips means it won't miss any games if it's not already in gaming?

If not it would go into others?

Also I'm only using my Dsl ac68u as a router and I'm connected via ethernet wan ppoe so in the qos settings do I ppoe vdsl?

And what about the box to the right and Atm?

 

[FadgewackeR]

Could anyone be kind enough to explain how I make sure computers on my network get all gaming traffic.

They've all got static ips not sure how I add them though,my main issue seems to be if someone in the house is watching Youtube Netflix etc that seems to hog the connection.

I know this qos will help but adding the ips means it won't miss any games if it's not already in gaming?

If not it would go into others?

Also I'm only using my Dsl ac68u as a router and I'm connected via ethernet wan ppoe so in the qos settings do I ppoe vdsl?

And what about the box to the right and Atm?

Is that AVFC_Ian “is in the menu”, or another Ian? Had to ask!


Sent from my iPhone using Tapatalk

 

[QuikSilver]

Could anyone be kind enough to explain how I make sure computers on my network get all gaming traffic.

They've all got static ips not sure how I add them though,my main issue seems to be if someone in the house is watching Youtube Netflix etc that seems to hog the connection.

I know this qos will help but adding the ips means it won't miss any games if it's not already in gaming?

If not it would go into others?

Also I'm only using my Dsl ac68u as a router and I'm connected via ethernet wan ppoe so in the qos settings do I ppoe vdsl?

And what about the box to the right and Atm?

Start at this post....similar setup to what your trying to accomplish. Read it all and then ask if something doesn't compute.

https://www.snbforums.com/threads/r...and-inner-workings.36836/page-166#post-493492

 

[Ian72]

Start at this post....similar setup to what your trying to accomplish. Read it all and then ask if something doesn't compute.

https://www.snbforums.com/threads/r...and-inner-workings.36836/page-166#post-493492

Thanks,but thinking about it becuase everyone in the house is mainly using pc to game would it be better to add ports for the games played to the gaming list?

Am I right in saying adding the ips would make gaming the constant priority when they're used for lots of differnt things not just gaming,such as youtube.

If so how do I add ports please ? I gather it's the ports you would look up to port forward ?

Such as 2 games we play are- Rocket league

• 7000 – 9000 UDP (For Game Servers)
• 80 TCP (HTTP Connections)
• 443 TCP (HTTPS Connections)

and Dota 2 which the ports are those listed for Steam

• HTTP (TCP remote port 80) and HTTPS (443)
• UDP remote port 27015--27030
• TCP remote port 27015--27030

Steam Client

• UDP remote port 27000--27100: Game traffic
• UDP local port 27031 and 27036: In-Home Streaming
• TCP local port 27036 and 27037: In-Home Streaming
• UDP remote port 4380

Dedicated or Listen Servers

• TCP local port 27015 (default): SRCDS Rcon port
• UDP local port 27015 (default): gameplay traffic

Steamworks P2P Networking and Steam Voice Chat

• UDP remote port 3478
• UDP remote port 4379
• UDP remote port 4380

 

[Vexira]

Thanks,but thinking about it becuase everyone in the house is mainly using pc to game would it be better to add ports for the games played to the gaming list?

Am I right in saying adding the ips would make gaming the constant priority when they're used for lots of differnt things not just gaming,such as youtube.

If so how do I add ports please ? I gather it's the ports you would look up to port forward ?

Such as 2 games we play are- Rocket league

• 7000 – 9000 UDP (For Game Servers)
• 80 TCP (HTTP Connections)
• 443 TCP (HTTPS Connections)

and Dota 2 which the ports are those listed for Steam

• HTTP (TCP remote port 80) and HTTPS (443)
• UDP remote port 27015--27030
• TCP remote port 27015--27030

Steam Client

• UDP remote port 27000--27100: Game traffic
• UDP local port 27031 and 27036: In-Home Streaming
• TCP local port 27036 and 27037: In-Home Streaming
• UDP remote port 4380

Dedicated or Listen Servers

• TCP local port 27015 (default): SRCDS Rcon port
• UDP local port 27015 (default): gameplay traffic

Steamworks P2P Networking and Steam Voice Chat

• UDP remote port 3478
• UDP remote port 4379
• UDP remote port 4380

Just use upnp to open the ports, I think also that you are looking for the gaming rules to set a device by IP as gaming, also read the first post it has instructions and a great deal of explanation.

 

[QuikSilver]

Thanks,but thinking about it becuase everyone in the house is mainly using pc to game would it be better to add ports for the games played to the gaming list?

Am I right in saying adding the ips would make gaming the constant priority when they're used for lots of differnt things not just gaming,such as youtube.

Your correct in thinking that doing IPs would make everything on those PCs high priority than just gaming but I dont think you'd be able to add that many ports with the limited number of fields provided.

 

[Ian72]

My Draytek modem is connected to the router via ethernet wan.

What wan packet overhead do I select?

Oh and My Isp is Bt PPPoe vdsl 2 vlan tag 101 in the router settings

 

[L&LD]

My Draytek modem is connected to the router via ethernet wan.

What wan packet overhead do I select?

Oh and My Isp is Bt PPPoe vdsl 2 vlan tag 101 in the router settings

Shouldn't matter. You'll only end up adjusting the percentage to account for it.

Leave it blank and zero in on the optimum up/down settings instead.

 

[Vexira]

My Draytek modem is connected to the router via ethernet wan.

What wan packet overhead do I select?

Oh and My Isp is Bt PPPoe vdsl 2 vlan tag 101 in the router settings

Pppoe VDSL 2 overhead which I think is 27

 

[Ian72]

So far I've changed the up/down slightly above and below 90% but never get the same speed test twice,even with several tests before I change the up/down.

bufferbloat sometimes b sometimes c

 

[L&LD]

So far I've changed the up/down slightly above and below 90% but never get the same speed test twice,even with several tests before I change the up/down.

bufferbloat sometimes b sometimes c

You're not changing it enough.

 

[CriticJay]

You're not changing it enough.

To add further to what L&LD said, to @Ian72 I would say: try 80% of your up/down speeds. If that doesn't help, try 70%. And so forth...

 

[Ian72]

Dsl reports stil the best site to use?

Once I know the ip I want to add to the ip table for the gaming rule what do I fill in ?

Just the ip protocol BOTH and class set to gaming?

Can anything be done about untracked?

The first one I checked the ip was for Valve so should be gaming,I'm guessing they can't be added?

 

[CriticJay]

Dsl reports stil the best site to use?

also try FAST.COM and see what is the latency in the LOADED LATENCY field.