Manualshelf

Setup guide

ManualsBrandsD-Link ManualsComputer equipmentDWL-500 - 11Mb Wireless LAN PCI Network Card
211212213214215216217218219220
NAT rules and queuing.
Additional arrows from IPsec boxes shows the processing of encrypted packets (they need to be
encrypted / decrypted first and then processed as usual, id est from the point an ordinal packet
enters the router).
If the packet is bridged one, the 'Routing Decision' changes to 'Bridge Forwarding Decision'. In case
the bridge is forwarding non-IP packets, all things regarding IP protocol are not applicable
('Universal Client', 'Conntrack', 'Mangle', et cetera).
Firewall Rules
ip firewall rule <chain name>
Description
A rule is an expression in a definite form that tells the router what to do with a particular packet.
The rule consists of two logical parts: the matcher set and the action set. For each packet you need
to define a rule with appropriate match and action.
Management of the firewall rules can be accessed by selecting the desired chain. If you use the
WinBox console, select the desired chain and then press the List button on the toolbar to open the
window with the rules.
Peer-to-Peer Traffic Filtering
Wandy RouterOS provides a way to filter traffic from most popular peer-to-peer programs that
uses different P2P protocols.
Type of Service
Internet paths vary in quality of service they provide. They can differ in cost, reliability, delay and
throughput. This situation imposes some tradeoffs, exempli gratia the path with the lowest delay
may be among the slowest. Therefore, the "optimal" path for a packet to follow through the Internet
may depend on the needs of the application and its user.
Because the network itself has no knowledge on how to optimize path choosing for a particular
application or user, the IP protocol provides a facility for upper layer protocols to convey hints to
the Internet Layer about how the tradeoffs should be made for the particular packet. This facility is
called the "Type of Service" facility.
The fundamental rule is that if a host makes appropriate use of the TOS facility, its network service
should be at least as good as it would have been if the host had not used this facility.
The TOS can be one of five types, each of them is an instruction to:
low-cost - minimize monetary cost
low-delay - minimize delay
normal - normal service
max-reliability - maximize reliability
max-throughput - maximize throughput
Property Description
action (accept | drop | jump | passthrough | reject | return; default: accept) - ation to undertake if