gfx wrote:
小弟猜你的nas應該也有vpn的功能,然後您rb450g也有開upnp
如果是的那就對了,關掉nas的vpn再試試.
小弟將NAS上VPN及UPNP全關了
還將RB450G回復原始買來時的設定
RB450G的VPN還是無法連線
請問還有什麼地方要注意的嗎??
deanma wrote:
抓取RB450G--ip--firewall--connection
關掉NAS上原本指定的DNS IP,
還是出現這麼多8.8.8.8真的有夠納悶
eavictor wrote:
這是BT client向DNS查詢域名反解析造成的
在peers那邊可以看到類似「xxx-xxx-xxx-xxx.dynamic.hinet.net」這種格式的domain就是反解析查詢的結果
雖然eavictor大這麼說,但看了討厭,
所以透過腳本....
:foreach i in=[/ip firewall connection find dst-address="8.8.8.8:53" \
&& (timeout<2m)] do={/ip firewall connection remove $i}
把Timeout時間縮短為1m ,這樣既不影響NAS BT下載,Connection表也順眼的多
同樣是下載google doc的檔案,
ie全速在下載(9mb/s)、firefox不知為啥降到一半速度(4mb/s),但是都還有辦法mark到流量,
偏偏chrome完全沒有動靜,chrome下載時不知道走的是什麼協定
add action=mark-connection chain=forward comment="=OpenSpeed \\AB\\CA\\A5]=" \
dst-address-list=OpenSpeed in-interface=pppoe-out_F new-connection-mark=\
CONN_IN_VIP protocol=tcp
add action=mark-packet chain=prerouting connection-mark=CONN_IN_VIP \
new-packet-mark=PG_IN_VIP passthrough=no
add action=mark-connection chain=forward new-connection-mark=CONN_OUT_VIP \
out-interface=pppoe-out_F protocol=tcp src-address-list=OpenSpeed
add action=mark-packet chain=postrouting connection-mark=CONN_OUT_VIP \
new-packet-mark=PG_OUT_VIP passthrough=no
deanma wrote:
說也奇怪,今天在比較...(恕刪)
mark-connection與mark-routing應該對同個chain做處理,
怎麼forward又是prerouting ,forward又是postrouting?
這三種chain標記的意義位置是不同的.
add action=mark-connection chain=prerouting \
comment="=OpenSpeed \\AB\\CA\\A5]=" dst-address-list=OpenSpeed \
in-interface=pppoe-out_F new-connection-mark=CONN_IN_VIP protocol=tcp
add action=mark-packet chain=prerouting \
connection-mark=CONN_IN_VIP new-packet-mark=PG_IN_VIP passthrough=no
add action=mark-connection chain=postrouting \
new-connection-mark=CONN_OUT_VIP out-interface=pppoe-out_F \
protocol=tcp src-address-list=OpenSpeed
add action=mark-packet chain=postrouting \
connection-mark=CONN_OUT_VIP new-packet-mark=PG_OUT_VIP passthrough=no
內文搜尋
從 APP 打開
X