You can find a link to a fixed script in my bug ticket. You need to pass it the upload, download, upstream interface, upstream interface's MTU, and the number of the imq device to use (ie. 0) in that order.
http://svn.dd-wrt.com:8000/dd-wrt/ticket/1095 _________________ Read the forum announcements thoroughly! Be cautious if you're inexperienced.
Available for paid consulting. (Don't PM about complicated setups otherwise)
Looking for bricks and spare routers to expand my collection. (not interested in G spec models)
The script is just a replacement for the broken script that sets up the TC queues. You should be able to just configure the GUI the way you want but set it to still use HTB to avoid the bugged script, then run my corrected HFSC script from a firewall script. _________________ Read the forum announcements thoroughly! Be cautious if you're inexperienced.
Available for paid consulting. (Don't PM about complicated setups otherwise)
Looking for bricks and spare routers to expand my collection. (not interested in G spec models)
The script is just a replacement for the broken script that sets up the TC queues. You should be able to just configure the GUI the way you want but set it to still use HTB to avoid the bugged script, then run my corrected HFSC script from a firewall script.
When i use the GUI to set some L7 filters or custom ports, the rules are not appearing in iptables -t mangle -v -L -n.
Chain SVQOS_IN (1 references)
pkts bytes target prot opt in out source destination
4392 2356K CONNMARK 0 -- * * 0.0.0.0/0 0.0.0.0/0 CONNMARK restore
0 0 RETURN 0 -- * * 0.0.0.0/0 0.0.0.0/0 MARK match !0x0
4388 2356K CONNMARK 0 -- * * 0.0.0.0/0 0.0.0.0/0 CONNMARK restore
0 0 RETURN 0 -- * * 0.0.0.0/0 0.0.0.0/0 MARK match !0x0
3781 2295K MARK tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpts:1024:65535 MARK match 0x0 MARK set 0x28
559 56200 MARK tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp spts:1024:65535 MARK match 0x0 MARK set 0x28
0 0 MARK tcp -- * * 0.0.0.0/0 0.0.0.0/0 MARK match 0x0 ipp2p v0.8.2 --bit MARK set 0x28
0 0 MARK tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpts:1024:65535 MARK match 0x0 MARK set 0x28
0 0 MARK tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp spts:1024:65535 MARK match 0x0 MARK set 0x28
0 0 MARK tcp -- * * 0.0.0.0/0 0.0.0.0/0 MARK match 0x0 ipp2p v0.8.2 --bit MARK set 0x28
Chain SVQOS_OUT (1 references)
pkts bytes target prot opt in out source destination
2995 321K CONNMARK 0 -- * * 0.0.0.0/0 0.0.0.0/0 CONNMARK restore
0 0 RETURN 0 -- * * 0.0.0.0/0 0.0.0.0/0 MARK match !0x0
2991 320K CONNMARK 0 -- * * 0.0.0.0/0 0.0.0.0/0 CONNMARK restore
0 0 RETURN 0 -- * * 0.0.0.0/0 0.0.0.0/0 MARK match !0x0
2943 317K MARK tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpts:1024:65535 MARK match 0x0 MARK set 0x28
0 0 MARK tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp spts:1024:65535 MARK match 0x0 MARK set 0x28
0 0 MARK tcp -- * * 0.0.0.0/0 0.0.0.0/0 MARK match 0x0 ipp2p v0.8.2 --bit MARK set 0x28
0 0 MARK tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpts:1024:65535 MARK match 0x0 MARK set 0x28
0 0 MARK tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp spts:1024:65535 MARK match 0x0 MARK set 0x28
0 0 MARK tcp -- * * 0.0.0.0/0 0.0.0.0/0 MARK match 0x0 ipp2p v0.8.2 --bit MARK set 0x28
The same rule (1024:65535) is being repeated four times per chain, no L7 rules, an ipp2p rule instead and no http rule. I've used both HTB@WAN 800/8000 and HTB@Lan&WLAN 100Mbps/100Mbps
Reboot the router. The QoS chains get messy when you change settings without rebooting. _________________ Read the forum announcements thoroughly! Be cautious if you're inexperienced.
Available for paid consulting. (Don't PM about complicated setups otherwise)
Looking for bricks and spare routers to expand my collection. (not interested in G spec models)
Reboot the router. The QoS chains get messy when you change settings without rebooting.
OK i deleted all the rules, disabled qos, then enabled again, passed the rules one by one, apllied and reboot. Now things are not messed up and all the rules are present but im having another problem.
Packets are not being marked, i'm testing with some downloads and i have 128Mbytes download and 11Mbytes upload and only a few bytes where marked.
Chain SVQOS_IN (1 references)
pkts bytes target prot opt in out source destination
94056 128M CONNMARK 0 -- * * 0.0.0.0/0 0.0.0.0/0 CONNMARK restore
93775 128M RETURN 0 -- * * 0.0.0.0/0 0.0.0.0/0 MARK match !0x0
0 0 MARK tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:80 MARK match 0x0 MARK set 0x14
0 0 MARK tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp spt:80 MARK match 0x0 MARK set 0x14
0 0 MARK 0 -- * * 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto http MARK match 0x0 MARK set 0x14
0 0 MARK 0 -- * * 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto ftp MARK match 0x0 MARK set 0x1e
0 0 MARK 0 -- * * 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto msnmessenger MARK match 0x0 MARK set 0x1e
0 0 MARK 0 -- * * 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto msn-filetransfer MARK match 0x0 MARK set 0x1e
80 5270 MARK tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpts:1024:65535 MARK match 0x0 MARK set 0x28
0 0 MARK tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp spts:1024:65535 MARK match 0x0 MARK set 0x28
0 0 MARK tcp -- * * 0.0.0.0/0 0.0.0.0/0 MARK match 0x0 ipp2p v0.8.2 --bit MARK set 0x28
37 3510 MARK 0 -- * * 0.0.0.0/0 0.0.0.0/0 MARK match 0x0 length 0:550 LAYER7 l7proto bt MARK set 0x28
0 0 MARK 0 -- * * 0.0.0.0/0 0.0.0.0/0 MARK match 0x0 LAYER7 l7proto bt1 MARK set 0x28
0 0 MARK 0 -- * * 0.0.0.0/0 0.0.0.0/0 MARK match 0x0 LAYER7 l7proto bt2 MARK set 0x28
0 0 MARK tcp -- * * 0.0.0.0/0 0.0.0.0/0 MARK match 0x0 ipp2p v0.8.2 --edk MARK set 0x28
275 24460 CONNMARK 0 -- * * 0.0.0.0/0 0.0.0.0/0 CONNMARK save
275 24460 RETURN 0 -- * * 0.0.0.0/0 0.0.0.0/0
Chain SVQOS_OUT (1 references)
pkts bytes target prot opt in out source destination
58934 11M CONNMARK 0 -- * * 0.0.0.0/0 0.0.0.0/0 CONNMARK restore
58092 11M RETURN 0 -- * * 0.0.0.0/0 0.0.0.0/0 MARK match !0x0
340 21288 MARK tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:80 MARK match 0x0 MARK set 0x14
0 0 MARK tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp spt:80 MARK match 0x0 MARK set 0x14
0 0 MARK 0 -- * * 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto http MARK match 0x0 MARK set 0x14
0 0 MARK 0 -- * * 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto ftp MARK match 0x0 MARK set 0x1e
0 0 MARK 0 -- * * 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto msnmessenger MARK match 0x0 MARK set 0x1e
0 0 MARK 0 -- * * 0.0.0.0/0 0.0.0.0/0 LAYER7 l7proto msn-filetransfer MARK match 0x0 MARK set 0x1e
337 22093 MARK tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpts:1024:65535 MARK match 0x0 MARK set 0x28
0 0 MARK tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp spts:1024:65535 MARK match 0x0 MARK set 0x28
0 0 MARK tcp -- * * 0.0.0.0/0 0.0.0.0/0 MARK match 0x0 ipp2p v0.8.2 --bit MARK set 0x28
0 0 MARK 0 -- * * 0.0.0.0/0 0.0.0.0/0 MARK match 0x0 length 0:550 LAYER7 l7proto bt MARK set 0x28
0 0 MARK 0 -- * * 0.0.0.0/0 0.0.0.0/0 MARK match 0x0 LAYER7 l7proto bt1 MARK set 0x28
0 0 MARK 0 -- * * 0.0.0.0/0 0.0.0.0/0 MARK match 0x0 LAYER7 l7proto bt2 MARK set 0x28
0 0 MARK tcp -- * * 0.0.0.0/0 0.0.0.0/0 MARK match 0x0 ipp2p v0.8.2 --edk MARK set 0x28
829 53837 CONNMARK 0 -- * * 0.0.0.0/0 0.0.0.0/0 CONNMARK save
829 53837 RETURN 0 -- * * 0.0.0.0/0 0.0.0.0/0
Is vlan2 device correct? Thats my WAN interface but i'm using PPPoE, i've seen some configurations using br0 (LAN) for downstream and ppp0 for upstream but i don't know if this is correct in the current set up.
I understand that the L7 or ipp2p filters may not catch traffic but having zero at HTTP and 1024:65535 is very strange. _________________ WRT320N converted to E2000 : DD-WRT v24-sp2 (11/21/10) std-usb-nas - build 15778
Only unmarked connections match the MARK rules. Once they've been marked then they get their connection mark restored and return to the previous chain.
You should use ppp0 which is your logical WAN interface instead of vlan2 which is the physical WAN interface. The difference doesn't usually matter much but it prevents 'local' traffic on the physical WAN port from hitting the queues. _________________ Read the forum announcements thoroughly! Be cautious if you're inexperienced.
Available for paid consulting. (Don't PM about complicated setups otherwise)
Looking for bricks and spare routers to expand my collection. (not interested in G spec models)
Thank you, your script works great.
I had some hard time adding rules through the web interface so i added them to nvram svqos_svcs= directly, rebooted and everything works fine _________________ WRT320N converted to E2000 : DD-WRT v24-sp2 (11/21/10) std-usb-nas - build 15778
to see if this a timing problem but again the router uses the preconfigured /usr/sbin/svqos script for HTB. I added an .ipup script thats uses the /jffs/svqos.hfsc 800 8000 ppp0 1492 0 and it works. I don't know if this is the optimal setting but normally firewall restart will have an effect only in mangle iptables and not to the HFSC script. _________________ WRT320N converted to E2000 : DD-WRT v24-sp2 (11/21/10) std-usb-nas - build 15778
since this has been fixed in the latest firmware, is it save to use hfsc in the gui without any firewall script in the administration>commands part of the web gui?
since this has been fixed in the latest firmware, is it save to use hfsc in the gui without any firewall script in the administration>commands part of the web gui?
If you have build 14390 or higher.
http://www.dd-wrt.com/wiki/index.php/Quality_of_Service#Initial_Setup _________________ Read the forum announcements thoroughly! Be cautious if you're inexperienced.
Available for paid consulting. (Don't PM about complicated setups otherwise)
Looking for bricks and spare routers to expand my collection. (not interested in G spec models)