Set queue on incoming rule?



  • I have CBQ setup and working good to mitigate bufferbloat.  I have mulitple internal vlan's and one WAN (150/20).  For my configuration, I have the interface setup for CBQ and 1Gbit/s bandwidth.  I then have a WAN queue that's set to priority 6, codel active, and a bandwidth of 150Mbit/s.  I then have another LAN queue that's priority 7, default queue, and 850 Mbit/s.  Finally, on the "WAN" interface, I have CodelQ selected with 20Mbit/s.

    In the firewall rule for the interface, under queue, I have "WAN".

    Now I'm adding VoIP to my system and currently setting this up.  I'm wondering, do I have to choose a queue on the incoming firewall rule on the WAN side?  Anything special I have to do to prioritize the VoIP traffic?



  • and a bandwidth of 150Mbit/s

    Shouldn't your specified bandwidth be less than your maximum?  I've read guidance that said to take several speed tests at various points in the week, pick the lowest and then go 5% less than that to ensure that your bottleneck isn't farther up the line and beyond your control?

    I'm wondering, do I have to choose a queue on the incoming firewall rule on the WAN side?

    Yes.  You add a floating rule on WAN that puts any traffic to or from your SIP server into the queue you want it to go into, typically the highest priority.  The approach may dbe different depending on how your voip is configured.

    Anything special I have to do to prioritize the VoIP traffic?

    Nothing more than what you do for any other traffic type.  Isolate it by port or by source/destination and then sort into the desired queue.



  • @KOM:

    and a bandwidth of 150Mbit/s

    Shouldn't your specified bandwidth be less than your maximum?  I've read guidance that said to take several speed tests at various points in the week, pick the lowest and then go 5% less than that to ensure that your bottleneck isn't farther up the line and beyond your control?

    Yes, you're right.  While I pay for 150/20, I want to say it's something like 180/25.  Comcast usually bumps it up a bit for reasons unknown…maybe so people don't complain when there's an overloaded node.

    I'm wondering, do I have to choose a queue on the incoming firewall rule on the WAN side?

    Yes.  You add a floating rule on WAN that puts any traffic to or from your SIP server into the queue you want it to go into, typically the highest priority.  The approach may dbe different depending on how your voip is configured.

    OK, I think I might understand this, but not sure.  So for my queues, I'm going to want to add a VoIP queue, then assign a '5' to the WAN, a '6' to the LAN, and a '7' to the VoIP queue?  Was that it for the traffic shaping area?

    Anything special I have to do to prioritize the VoIP traffic?

    Nothing more than what you do for any other traffic type.  Isolate it by port or by source/destination and then sort into the desired queue.

    So for this, I just choose the VoIP queue in the firewall rule?



  • So for my queues, I'm going to want to add a VoIP queue, then assign a '5' to the WAN, a '6' to the LAN, and a '7' to the VoIP queue?  Was that it for the traffic shaping area?

    I'm not a shaping expert and haven't seen your config.  That said, the general idea is to create a voip queue on WAN with the highest priority, then use a floating rule to redirect all voip traffic into that queue.  For example, I use the PRIQ shaper and my voip queue has a priority of 15 which is the highest.  I don't do any shaping between LANs.

    So for this, I just choose the VoIP queue in the firewall rule?

    Pretty much.



  • My understanding is, priorities queues are activated on the egress side of interfaces.



  • @SammyWoo:

    My understanding is, priorities queues are activated on the egress side of interfaces.

    Thank You!  I'm still messing around with traffic shaping and trying to figure this whole thing out.  So far, I haven't wrecked anything yet.  :)


Log in to reply