Which version of QoS to use for gaming

[Adoz]

Most normal web traffic occurs over ports 443 and sometimes 80. The exclamation point says, “prioritize all traffic from this device IP to the Gaming priority, unless it’s port 80 or 443.” Port 80 and 443 traffic will be processed by it’s normal mark, unless it’s also matching another rule.

Also, remember that the order of the iptables rules is important. The last rule in the list to match is the one which determines the final mark (and therefore priority). So your most important rules should be near the bottom.

Ah ok, this makes sense. Thanks for the info! Seems to be working well for me so far

 

[Prodeje79]

QoS and gaming is an interesting one, particularly as broadband speeds continue to increase. We've got an AC86U running Merlin and an AC68U AiMesh node running Merlin and we're on a 200/20 service.

For most of COVID-19 we've been using the stock Adaptive QoS (manual and fq_codel) to see if it would benefit us with two working from home and two others consuming various audio and video related services throughout the day. There are consistently around 15 wireless devices connected and I can't say that I see any difference in performance on my Xbox One over Wi-Fi with or without QoS enabled and I mainly play multiplayer based games as well and without QoS and everyone still watching YouTube, Netflix, Disney+, etc, I have never seen my multiplayer experience degrade.

Gaming traffic size isn't really the issue, as multiplayer traffic isn't very big, it's your latency to the service, so peer to peer host, dedicated server, etc. Can QoS help with that?

I didn't notice until we had one or worse two Disney+ 4k HDR streams, I'll get bufferbloat in my games when no QoS is on, stream and gaming PC wired. Are you using 4k HDR streams?

 

[Prodeje79]

The original Gaming rule from FreshJR would have these definitions:
Local IP/CIDR: 192.168.1.100/30 (unique to your devices)
Remote IP/CIDR: blank
Proto: BOTH
Local Port: blank
Remote Port: !80,443 (note the exclamation point to invert, i.e. NOT port 80 and NOT port 443)
Mark: 000000
Class: Gaming

OK I installed Merlin and installed FlexQoS, I discovered I forgot to enable the JFFS scripts, so I may have to reinstall after my next reboot....

To maximize my gaming experience over everything else, I just need to add this rule and then order these? (Ill never be working and gaming, so I guess work can stay on top)
Work from Home (VOIP)
Gaming
Others
Web Surfing
Video|Audio
File transfer
Learn from Home

Thanks for the help!

 

[Kingp1n]

OK I installed Merlin and installed FlexQoS, I discovered I forgot to enable the JFFS scripts, so I may have to reinstall after my next reboot....

To maximize my gaming experience over everything else, I just need to add this rule and then order these? (Ill never be working and gaming, so I guess work can stay on top)
Work from Home (VOIP)
Gaming
Others
Web Surfing
Video|Audio
File transfer
Learn from Home

Thanks for the help!

Looks good...it might be slightly different than FreshJR QoS script, but for gaming, some folks used to put Others in front of Gaming since 'others' might contain traffic that pertains to gaming! You can experiment with this but overall, everything is looking good!

for Gaming:
Work from Home (VOIP)
Others
Gaming
Web Surfing
Video|Audio
File transfer
Learn from Home

 

[Prodeje79]

Are there are best practices to maximize gaming while still use best security? Thinking about things like AI Protection to Yes, I am curious to check out Skynet without breaking anything I have, full cone nat for those with multiple gamers on same game at same time, firewall on, ddos protection on, SSH brute force protection, , changing port numbers from defaults, not allowing WAN admin via etc..... probably another thread for all of this kind of stuff?

I am getting that "kernel: nf_conntrack: expectation table full", but I think I found a good thread and will try the fix changing to 240.

 

[MarkyPancake]

Are there are best practices to maximize gaming while still use best security? Thinking about things like AI Protection to Yes, I am curious to check out Skynet without breaking anything I have, full cone nat for those with multiple gamers on same game at same time, firewall on, ddos protection on, SSH brute force protection, , changing port numbers from defaults, not allowing WAN admin via etc..... probably another thread for all of this kind of stuff?

As far as I'm aware, you can only get an Open NAT on multiple consoles that need to use the same ports, with symmetric NAT and UPnP enabled. You cannot use port forwarding in this situation, because you can only set up the required ports for one console IP.