RT N66U - Packet shaping and priorities don't work for the guest network?

  • ATTENTION! As of November 1, 2020, you are not able to reply to threads 6 months after the thread is opened if there are more than 500 posts in the thread.
    Threads will not be locked, so posts may still be edited by their authors.
    Just start a new thread on the topic to post if you get an error message when trying to reply to a thread.

yada

New Around Here
Hi there,

I've got the RT N66U as the central router. Connecting to this are two access points. One AP is me the other is someone else. The someone else connects to a guest network on the router. In the QoS rules i've got their IP set to the lowest priority. In the user-defined priorities i've set the lowest priorities to have 0-10% of the bandwidth for both upload and download.

I'm sure it's not working as even when turning everything off and/or monitoring the network usage of the other machines there can still be maximum bandwidth being used as reported by traffic monitor. I can't tell exactly that's it's the guest network as the traffic monitor doesn't show IP addresses, but in the system log it's their IP address that's filling the log leading me to assume that it's the guest network that's using the bandwidth.

So in short, do the priorities and QoS rules affect the guest networks? If i've set this up wrong could someone point me in the correct direction please? Cheers.
 
Last edited:

sinshiva

Very Senior Member
QoS is applied at the outgoing/wan interface, so it should be working just fine for guest networks.

iptables -t mangle -L -nv to verify for yourself
 

yada

New Around Here
Thanks for reply. Could you tell me where to put that command? I tried in terminal but wasn't known.
 

yada

New Around Here
I put the IP address into the URL bar and typed in username and password. I dont know what type of connection that is, HTTP? I'm not savvy with networking, this is like the first one i've ever done i think.
 

enr00ted

Regular Contributor
Enable telnet on router !



Assuming you use windows, open CMD (or command prompt). Enter telnet and the ip adress of the router. It will ask for user and password, the ones you have set for your router.



Then you are good to go and try the input that has been suggested.
 
Last edited:

cHarley

New Around Here
FYI - Another option

As I was never happy with the results using QoS to control my guest network, I went with firewall rules below to regulate maximum guest (vlan) speeds.

Note: running dd-wrt
My guest is on a vlan at 192.168.2.x
In the rules below, the guest subnet is limited to 10Mb down and 1.5 Mb up.

#Limit Guest Network Downstream Bandwidth
TCA="tc class add dev br1"
TFA="tc filter add dev br1"
TQA="tc qdisc add dev br1"
SFQ="sfq perturb 10"
tc qdisc del dev br1 root
tc qdisc add dev br1 root handle 1: htb
tc class add dev br1 parent 1: classid 1:1 htb rate 10000kbit
$TQA parent 1:1 handle 10: $SFQ
$TFA parent 1:0 prio 2 protocol ip handle 10 fw flowid 1:1
iptables -t mangle -A POSTROUTING -d 192.168.2.0/24 -j MARK --set-mark 10

#Limit Guest Network Upstream Bandwidth
TCAU="tc class add dev imq0"
TFAU="tc filter add dev imq0"
TQAU="tc qdisc add dev imq0"
insmod imq
insmod ipt_IMQ
ip link set imq0 up
tc qdisc del dev imq0 root
tc qdisc add dev imq0 root handle 1: htb
tc class add dev imq0 parent 1: classid 1:1 htb rate 1500kbit
$TQAU parent 1:1 handle 10: $SFQ
$TFAU parent 1:0 prio 2 protocol ip handle 10 fw flowid 1:1
iptables -t mangle -A PREROUTING -s 192.168.2.0/24 -j MARK --set-mark 10
iptables -t mangle -A PREROUTING -j IMQ --todev 0
 

yada

New Around Here
Hadn't checked back in a couple of days but thanks for responses. The QoS options i've chosen appear to do nothing. I'm going to give cHarley's settings a go. Cheers all.
 

Adam Siemiginowski

Occasional Visitor
Does this work for the Guest Networks running on wl0.1, wl1.1, and wl1.2? I don't understand the interfaces used here: br1 and imqo.

Also - what is the simplest way to implement this script?

I'm able to do 'tc' commands via Telnet and see them appear via 'tc qdiscs' - but would prefer a more visual approach to upload a custom script file like this - and not kill a router being used in my business. :)

FYI - Another option

As I was never happy with the results using QoS to control my guest network, I went with firewall rules below to regulate maximum guest (vlan) speeds.

Note: running dd-wrt
My guest is on a vlan at 192.168.2.x
In the rules below, the guest subnet is limited to 10Mb down and 1.5 Mb up.

#Limit Guest Network Downstream Bandwidth
TCA="tc class add dev br1"
TFA="tc filter add dev br1"
TQA="tc qdisc add dev br1"
SFQ="sfq perturb 10"
tc qdisc del dev br1 root
tc qdisc add dev br1 root handle 1: htb
tc class add dev br1 parent 1: classid 1:1 htb rate 10000kbit
$TQA parent 1:1 handle 10: $SFQ
$TFA parent 1:0 prio 2 protocol ip handle 10 fw flowid 1:1
iptables -t mangle -A POSTROUTING -d 192.168.2.0/24 -j MARK --set-mark 10

#Limit Guest Network Upstream Bandwidth
TCAU="tc class add dev imq0"
TFAU="tc filter add dev imq0"
TQAU="tc qdisc add dev imq0"
insmod imq
insmod ipt_IMQ
ip link set imq0 up
tc qdisc del dev imq0 root
tc qdisc add dev imq0 root handle 1: htb
tc class add dev imq0 parent 1: classid 1:1 htb rate 1500kbit
$TQAU parent 1:1 handle 10: $SFQ
$TFAU parent 1:0 prio 2 protocol ip handle 10 fw flowid 1:1
iptables -t mangle -A PREROUTING -s 192.168.2.0/24 -j MARK --set-mark 10
iptables -t mangle -A PREROUTING -j IMQ --todev 0
 
Similar threads

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!
Top