About Me
MikroTik Certified Security Engineer (MTCSE)
1 Introduction to Network Security
1-1 Understanding Network Security
1-2 Importance of Network Security
1-3 Overview of MikroTik Security Solutions
2 Network Security Fundamentals
2-1 Network Threats and Vulnerabilities
2-2 Security Policies and Procedures
2-3 Risk Management and Assessment
2-4 Security Controls and Countermeasures
3 MikroTik RouterOS Basics
3-1 RouterOS Overview
3-2 RouterOS Installation and Configuration
3-3 Basic RouterOS Commands
3-4 User Management and Access Control
4 Firewall and NAT Configuration
4-1 Introduction to Firewalls
4-2 Firewall Rules and Policies
4-3 Network Address Translation (NAT)
4-4 Advanced Firewall Techniques
5 VPN Configuration and Management
5-1 Introduction to VPNs
5-2 Site-to-Site VPN Configuration
5-3 Remote Access VPN Configuration
5-4 VPN Security Best Practices
6 Wireless Security
6-1 Wireless Network Threats
6-2 Wireless Security Protocols
6-3 MikroTik Wireless Security Configuration
6-4 Wireless Intrusion Detection and Prevention
7 Traffic Shaping and QoS
7-1 Introduction to Traffic Shaping
7-2 Quality of Service (QoS) Concepts
7-3 Traffic Shaping and QoS Configuration
7-4 Monitoring and Tuning QoS
8 Intrusion Detection and Prevention
8-1 Introduction to Intrusion Detection Systems (IDS)
8-2 Introduction to Intrusion Prevention Systems (IPS)
8-3 MikroTik IDSIPS Configuration
8-4 Analyzing and Responding to Alerts
9 Security Monitoring and Logging
9-1 Importance of Security Monitoring
9-2 RouterOS Logging Configuration
9-3 Analyzing Logs for Security Incidents
9-4 Log Retention and Management
10 Advanced Security Topics
10-1 Secure Routing Protocols
10-2 Secure DNS Configuration
10-3 Network Segmentation and Isolation
10-4 Security Automation and Scripting
11 Certification Exam Preparation
11-1 Overview of MTCSE Exam
11-2 Exam Format and Structure
11-3 Study Tips and Resources
11-4 Practice Exam and Review
Traffic Shaping and QoS

Traffic Shaping and QoS

Traffic Shaping and Quality of Service (QoS) are essential techniques for managing network traffic to ensure optimal performance and reliability. This page will cover seven key concepts: Traffic Shaping, QoS Models, Classification, Marking, Policing, Queuing, and Scheduling.

1. Traffic Shaping

Traffic Shaping is a technique used to control the rate at which traffic is sent or received over a network. It helps to prevent congestion and ensures that critical applications receive the necessary bandwidth.

For example, a business might use Traffic Shaping to limit the bandwidth used by non-critical applications like file sharing, ensuring that critical applications like VoIP and video conferencing receive sufficient bandwidth.

Think of Traffic Shaping as a traffic cop directing cars to ensure smooth flow on a busy road. By controlling the flow, the cop prevents congestion and ensures that emergency vehicles can pass through quickly.

2. QoS Models

QoS Models define how network resources are allocated to different types of traffic. Common models include Best Effort, Integrated Services (IntServ), and Differentiated Services (DiffServ).

Best Effort is the default model where all traffic is treated equally. IntServ provides guaranteed bandwidth for specific applications, while DiffServ classifies traffic into different priority levels.

Imagine QoS Models as different types of lanes on a highway. Best Effort is like a single lane where all cars move at the same speed. IntServ is like a dedicated lane for VIPs, while DiffServ is like multiple lanes with different speed limits for different types of vehicles.

3. Classification

Classification is the process of identifying and categorizing network traffic based on specific criteria, such as source IP, destination IP, port number, or protocol type.

For example, a network administrator might classify VoIP traffic separately from web browsing traffic to ensure that VoIP receives higher priority.

Think of Classification as sorting mail at a post office. By categorizing mail based on destination, the post office ensures that important packages are delivered first.

4. Marking

Marking involves tagging packets with specific QoS markings, such as DSCP (Differentiated Services Code Point) or 802.1p, to indicate their priority level.

For instance, a network might mark VoIP packets with a high DSCP value to ensure they receive priority treatment in the network.

Think of Marking as labeling packages with priority tags at a shipping company. By marking packages, the company ensures that high-priority items are handled first.

5. Policing

Policing is the process of monitoring and controlling the rate of traffic to ensure it does not exceed a specified limit. It helps to prevent congestion and maintain network performance.

For example, a network might police P2P file sharing traffic to ensure it does not consume more than 10% of the total bandwidth.

Think of Policing as a speed limit on a road. By enforcing the limit, the police ensure that traffic flows smoothly and prevent accidents caused by excessive speed.

6. Queuing

Queuing involves managing the order in which packets are transmitted over the network. Different queuing algorithms, such as FIFO (First In, First Out), PQ (Priority Queuing), and WFQ (Weighted Fair Queuing), can be used to prioritize traffic.

For instance, a network might use PQ to ensure that VoIP packets are transmitted before web browsing packets.

Think of Queuing as a line at a grocery store. By managing the order of customers, the cashier ensures that high-priority customers (like those with a few items) are served first.

7. Scheduling

Scheduling determines when and how packets are transmitted over the network. It involves assigning transmission times to different queues based on their priority.

For example, a network might schedule VoIP packets to be transmitted during periods of low network congestion to ensure high-quality voice calls.

Think of Scheduling as a teacher organizing a class schedule. By assigning specific times for different activities, the teacher ensures that all subjects are covered efficiently.

By mastering these Traffic Shaping and QoS concepts, you will be well-equipped to manage network traffic effectively, ensuring optimal performance and reliability for critical applications.

© 2024 Ahmed Baheeg Khorshid. All rights reserved.