Заведена телефонная линия, модем Zyxel 660 стоит бриджом. Заявленная скорость провайдера 8Мбит\с. ПО факту 6.5 Мбит\с. РАньше стоял и просто модем. ПОтом модем в связке с 2-мя разными роутерами. Скорость не резалась. Поставил микротик
На Микротике поднят PPPoE. Авторизация проходит успешно инет работает.Но Speedtest показывет скорость 4-5 Мбит\с. Иногда падает и до 3-х. При попытке скачать какой либо файл скорость закачки 50-100 кбит\с, при обычных 700-800 кбит\с на других роутерах. Онлайн видео соответственно тоже невозможно смотреть.
Менял 3 прошивки, сейчас стоит последняя. ПРобовал менять значения MTU. ИСпользовал стандартные настройки файервола и просто без них. Не могу понять в чем причина низкой скорости.
2 варианта настроек под спойлером.
з.ы. 4 порт выведен в другую подсеть с ограничением скорости по IP адресу. Удалял это правило тоже. Не в нем проблема.
В сети пишут много вариантов, но решений проблемы не нашел.
Думал брак, но подключал к другому интернету (правда оптика) скорость не режется. Все работает
# jan/22/2020 19:56:18 by RouterOS 6.46.2
# software id = ZMWU-VTG9
#
# model = 951G-2HnD
# serial number = 9653095B25CA
/interface bridge
add admin-mac=B8:69:F4:19:AD:3D auto-mac=no comment=defconf name=bridge
/interface wireless
set [ find default-name=wlan1 ] antenna-gain=0 band=2ghz-b/g/n channel-width=\
20/40mhz-XX disabled=no distance=indoors frequency=auto installation=indoor \
mode=ap-bridge ssid=SSID-Wi-Fi wireless-protocol=802.11
/interface ethernet
set [ find default-name=ether4 ] comment="\C2\E8\F2\FF"
/interface pppoe-client
add add-default-route=yes disabled=no interface=ether1 name=pppoe-out1 \
password=PASSWORD use-peer-dns=yes user=LOGIN
/interface list
add comment=defconf name=WAN
add comment=defconf name=LAN
/interface wireless security-profiles
set [ find default=yes ] authentication-types=wpa-psk,wpa2-psk mode=\
dynamic-keys supplicant-identity=MikroTik wpa-pre-shared-key=PASSWORD \
wpa2-pre-shared-key=PASSWORD
/ip pool
add name=dhcp_my_network ranges=192.168.0.100-192.168.0.254
add name=dhcp_vitya ranges=192.168.1.100-192.168.1.254
/ip dhcp-server
add address-pool=dhcp_my_network disabled=no interface=bridge name=my_network
add address-pool=dhcp_vitya disabled=no interface=ether4 name=vitya
/queue type
add kind=pcq name=download-limit-5MB pcq-classifier=dst-address \
pcq-dst-address6-mask=64 pcq-rate=5M pcq-src-address6-mask=64
add kind=pcq name=uplad-limit-384kb pcq-classifier=src-address \
pcq-dst-address6-mask=64 pcq-rate=384 pcq-src-address6-mask=64
/queue simple
add limit-at=384k/384k max-limit=384k/4M name=limit queue=\
uplad-limit-384kb/download-limit-5MB target=192.168.1.251/32
/interface bridge port
add bridge=bridge comment=defconf interface=ether2
add bridge=bridge comment=defconf interface=ether3
add bridge=bridge comment=defconf disabled=yes interface=ether4
add bridge=bridge comment=defconf interface=ether5
add bridge=bridge comment=defconf interface=wlan1
/ip neighbor discovery-settings
set discover-interface-list=LAN
/interface list member
add interface=bridge list=LAN
add interface=ether1 list=WAN
add interface=pppoe-out1 list=WAN
/ip address
add address=192.168.0.2/24 comment=my_network interface=ether2 network=\
192.168.0.0
add address=192.168.1.2/24 comment=vitya interface=ether4 network=192.168.1.0
/ip dhcp-client
add comment=defconf interface=ether1
/ip dhcp-server lease
add address=192.168.0.107 client-id=1:78:24:af:9c:f8:e8 mac-address=\
78:24:AF:9C:F8:E8 server=my_network
/ip dhcp-server network
add address=192.168.0.0/24 comment=my_network gateway=192.168.0.2 netmask=24
add address=192.168.1.0/24 comment=vitya gateway=192.168.1.2 netmask=24
/ip dns
set allow-remote-requests=yes servers=8.8.8.8
/ip dns static
add address=192.168.0.2 comment=defconf name=router.lan
/ip firewall filter
# no interface
add action=drop chain=input dst-port=53 in-interface=pppoe-out1 protocol=udp
# no interface
add action=drop chain=input connection-state="" in-interface=pppoe-out1
add action=accept chain=forward connection-state=established,related
add action=accept chain=input connection-state=established,related
add action=accept chain=input protocol=icmp
add action=accept chain=input comment=\
"defconf: accept to local loopback (for CAPsMAN)" disabled=yes dst-address=\
127.0.0.1
add action=drop chain=input comment="defconf: drop all not coming from LAN" \
disabled=yes in-interface-list=!LAN
add action=accept chain=forward disabled=yes ipsec-policy=in,ipsec
add action=accept chain=forward disabled=yes ipsec-policy=out,ipsec
add action=fasttrack-connection chain=forward connection-state=\
established,related disabled=yes
# no interface
add action=drop chain=forward connection-state=invalid in-interface=pppoe-out1
# no interface
add action=drop chain=forward connection-nat-state=!dstnat connection-state=new \
in-interface=pppoe-out1
/ip firewall nat
# no interface
add action=masquerade chain=srcnat comment="defconf: masquerade" ipsec-policy=\
out,none out-interface=pppoe-out1
/ip service
set telnet disabled=yes
set ftp disabled=yes
set www disabled=yes
set ssh disabled=yes
set api disabled=yes
set api-ssl disabled=yes
/system clock
set time-zone-name=Europe/Samara
/tool mac-server
set allowed-interface-list=LAN
# software id = ZMWU-VTG9
#
# model = 951G-2HnD
# serial number = 9653095B25CA
/interface bridge
add admin-mac=B8:69:F4:19:AD:3D auto-mac=no comment=defconf name=bridge
/interface wireless
set [ find default-name=wlan1 ] antenna-gain=0 band=2ghz-b/g/n channel-width=\
20/40mhz-XX disabled=no distance=indoors frequency=auto installation=indoor \
mode=ap-bridge ssid=SSID-Wi-Fi wireless-protocol=802.11
/interface ethernet
set [ find default-name=ether4 ] comment="\C2\E8\F2\FF"
/interface pppoe-client
add add-default-route=yes disabled=no interface=ether1 name=pppoe-out1 \
password=PASSWORD use-peer-dns=yes user=LOGIN
/interface list
add comment=defconf name=WAN
add comment=defconf name=LAN
/interface wireless security-profiles
set [ find default=yes ] authentication-types=wpa-psk,wpa2-psk mode=\
dynamic-keys supplicant-identity=MikroTik wpa-pre-shared-key=PASSWORD \
wpa2-pre-shared-key=PASSWORD
/ip pool
add name=dhcp_my_network ranges=192.168.0.100-192.168.0.254
add name=dhcp_vitya ranges=192.168.1.100-192.168.1.254
/ip dhcp-server
add address-pool=dhcp_my_network disabled=no interface=bridge name=my_network
add address-pool=dhcp_vitya disabled=no interface=ether4 name=vitya
/queue type
add kind=pcq name=download-limit-5MB pcq-classifier=dst-address \
pcq-dst-address6-mask=64 pcq-rate=5M pcq-src-address6-mask=64
add kind=pcq name=uplad-limit-384kb pcq-classifier=src-address \
pcq-dst-address6-mask=64 pcq-rate=384 pcq-src-address6-mask=64
/queue simple
add limit-at=384k/384k max-limit=384k/4M name=limit queue=\
uplad-limit-384kb/download-limit-5MB target=192.168.1.251/32
/interface bridge port
add bridge=bridge comment=defconf interface=ether2
add bridge=bridge comment=defconf interface=ether3
add bridge=bridge comment=defconf disabled=yes interface=ether4
add bridge=bridge comment=defconf interface=ether5
add bridge=bridge comment=defconf interface=wlan1
/ip neighbor discovery-settings
set discover-interface-list=LAN
/interface list member
add interface=bridge list=LAN
add interface=ether1 list=WAN
add interface=pppoe-out1 list=WAN
/ip address
add address=192.168.0.2/24 comment=my_network interface=ether2 network=\
192.168.0.0
add address=192.168.1.2/24 comment=vitya interface=ether4 network=192.168.1.0
/ip dhcp-client
add comment=defconf interface=ether1
/ip dhcp-server lease
add address=192.168.0.107 client-id=1:78:24:af:9c:f8:e8 mac-address=\
78:24:AF:9C:F8:E8 server=my_network
/ip dhcp-server network
add address=192.168.0.0/24 comment=my_network gateway=192.168.0.2 netmask=24
add address=192.168.1.0/24 comment=vitya gateway=192.168.1.2 netmask=24
/ip dns
set allow-remote-requests=yes servers=8.8.8.8
/ip dns static
add address=192.168.0.2 comment=defconf name=router.lan
/ip firewall filter
# no interface
add action=drop chain=input dst-port=53 in-interface=pppoe-out1 protocol=udp
# no interface
add action=drop chain=input connection-state="" in-interface=pppoe-out1
add action=accept chain=forward connection-state=established,related
add action=accept chain=input connection-state=established,related
add action=accept chain=input protocol=icmp
add action=accept chain=input comment=\
"defconf: accept to local loopback (for CAPsMAN)" disabled=yes dst-address=\
127.0.0.1
add action=drop chain=input comment="defconf: drop all not coming from LAN" \
disabled=yes in-interface-list=!LAN
add action=accept chain=forward disabled=yes ipsec-policy=in,ipsec
add action=accept chain=forward disabled=yes ipsec-policy=out,ipsec
add action=fasttrack-connection chain=forward connection-state=\
established,related disabled=yes
# no interface
add action=drop chain=forward connection-state=invalid in-interface=pppoe-out1
# no interface
add action=drop chain=forward connection-nat-state=!dstnat connection-state=new \
in-interface=pppoe-out1
/ip firewall nat
# no interface
add action=masquerade chain=srcnat comment="defconf: masquerade" ipsec-policy=\
out,none out-interface=pppoe-out1
/ip service
set telnet disabled=yes
set ftp disabled=yes
set www disabled=yes
set ssh disabled=yes
set api disabled=yes
set api-ssl disabled=yes
/system clock
set time-zone-name=Europe/Samara
/tool mac-server
set allowed-interface-list=LAN
# jan/22/2020 19:54:02 by RouterOS 6.46.2
# software id = ZMWU-VTG9
#
# model = 951G-2HnD
# serial number = 9653095B25CA
/interface bridge
add admin-mac=B8:69:F4:19:AD:3D auto-mac=no comment=defconf name=bridge
/interface wireless
set [ find default-name=wlan1 ] antenna-gain=0 band=2ghz-b/g/n channel-width=20/40mhz-XX disabled=no distance=indoors frequency=auto installation=indoor mode=ap-bridge ssid=SSID-Wi-Fi wireless-protocol=802.11
/interface ethernet
set [ find default-name=ether4 ] comment="\C2\E8\F2\FF"
/interface pppoe-client
add add-default-route=yes disabled=no interface=ether1 max-mru=1492 max-mtu=1400 name=pppoe-out1 password=PASSWORD use-peer-dns=yes user=LOGIN
/interface list
add comment=defconf name=WAN
add comment=defconf name=LAN
/interface wireless security-profiles
set [ find default=yes ] authentication-types=wpa-psk,wpa2-psk mode=dynamic-keys supplicant-identity=MikroTik wpa-pre-shared-key=PASSWORD wpa2-pre-shared-key=PASSWORD
/ip pool
add name=dhcp_my_network ranges=192.168.0.100-192.168.0.254
add name=dhcp_vitya ranges=192.168.1.100-192.168.1.254
/ip dhcp-server
add address-pool=dhcp_my_network disabled=no interface=bridge name=my_network
add address-pool=dhcp_vitya disabled=no interface=ether4 name=vitya
/queue type
add kind=pcq name=download-limit-5MB pcq-classifier=dst-address pcq-dst-address6-mask=64 pcq-rate=5M pcq-src-address6-mask=64
add kind=pcq name=uplad-limit-384kb pcq-classifier=src-address pcq-dst-address6-mask=64 pcq-rate=384 pcq-src-address6-mask=64
/queue interface
set ether2 queue=download-limit-5MB
/queue simple
add limit-at=384k/384k max-limit=384k/1M name=limit queue=uplad-limit-384kb/download-limit-5MB target=ether2
/interface bridge port
add bridge=bridge comment=defconf interface=ether2
add bridge=bridge comment=defconf interface=ether3
add bridge=bridge comment=defconf disabled=yes interface=ether4
add bridge=bridge comment=defconf interface=ether5
add bridge=bridge comment=defconf interface=wlan1
/ip neighbor discovery-settings
set discover-interface-list=LAN
/interface list member
add interface=bridge list=LAN
add interface=ether1 list=WAN
add interface=pppoe-out1 list=WAN
/ip address
add address=192.168.0.2/24 comment=my_network interface=ether2 network=192.168.0.0
add address=192.168.1.2/24 comment=vitya interface=ether4 network=192.168.1.0
/ip dhcp-client
add comment=defconf interface=ether1
/ip dhcp-server lease
add address=192.168.0.107 client-id=1:78:24:af:9c:f8:e8 mac-address=78:24:AF:9C:F8:E8 server=my_network
/ip dhcp-server network
add address=192.168.0.0/24 comment=my_network gateway=192.168.0.2 netmask=24
add address=192.168.1.0/24 comment=vitya gateway=192.168.1.2 netmask=24
/ip dns
set allow-remote-requests=yes servers=8.8.8.8
/ip dns static
add address=192.168.0.2 comment=defconf name=router.lan
/ip firewall filter
# no interface
add action=drop chain=input dst-port=53 in-interface=pppoe-out1 protocol=udp
add action=accept chain=forward connection-state=established,related
add action=accept chain=input connection-state=established,related
add action=accept chain=input protocol=icmp
add action=accept chain=input comment="defconf: accept to local loopback (for CAPsMAN)" disabled=yes dst-address=127.0.0.1
add action=drop chain=input comment="defconf: drop all not coming from LAN" disabled=yes in-interface-list=!LAN
add action=accept chain=forward disabled=yes ipsec-policy=in,ipsec
add action=accept chain=forward disabled=yes ipsec-policy=out,ipsec
add action=fasttrack-connection chain=forward connection-state=established,related disabled=yes
# no interface
add action=drop chain=input connection-state="" in-interface=pppoe-out1
# no interface
add action=drop chain=forward connection-state=invalid in-interface=pppoe-out1
# no interface
add action=drop chain=forward connection-nat-state=!dstnat connection-state=new in-interface=pppoe-out1
/ip firewall nat
# no interface
add action=masquerade chain=srcnat comment="defconf: masquerade" ipsec-policy=out,none out-interface=pppoe-out1
/ip service
set telnet disabled=yes
set ftp disabled=yes
set www disabled=yes
set ssh disabled=yes
set api disabled=yes
set api-ssl disabled=yes
/system clock
set time-zone-name=Europe/Samara
/tool mac-server
set allowed-interface-list=LAN
/tool mac-server mac-winbox
set allowed-interface-list=LAN
# software id = ZMWU-VTG9
#
# model = 951G-2HnD
# serial number = 9653095B25CA
/interface bridge
add admin-mac=B8:69:F4:19:AD:3D auto-mac=no comment=defconf name=bridge
/interface wireless
set [ find default-name=wlan1 ] antenna-gain=0 band=2ghz-b/g/n channel-width=20/40mhz-XX disabled=no distance=indoors frequency=auto installation=indoor mode=ap-bridge ssid=SSID-Wi-Fi wireless-protocol=802.11
/interface ethernet
set [ find default-name=ether4 ] comment="\C2\E8\F2\FF"
/interface pppoe-client
add add-default-route=yes disabled=no interface=ether1 max-mru=1492 max-mtu=1400 name=pppoe-out1 password=PASSWORD use-peer-dns=yes user=LOGIN
/interface list
add comment=defconf name=WAN
add comment=defconf name=LAN
/interface wireless security-profiles
set [ find default=yes ] authentication-types=wpa-psk,wpa2-psk mode=dynamic-keys supplicant-identity=MikroTik wpa-pre-shared-key=PASSWORD wpa2-pre-shared-key=PASSWORD
/ip pool
add name=dhcp_my_network ranges=192.168.0.100-192.168.0.254
add name=dhcp_vitya ranges=192.168.1.100-192.168.1.254
/ip dhcp-server
add address-pool=dhcp_my_network disabled=no interface=bridge name=my_network
add address-pool=dhcp_vitya disabled=no interface=ether4 name=vitya
/queue type
add kind=pcq name=download-limit-5MB pcq-classifier=dst-address pcq-dst-address6-mask=64 pcq-rate=5M pcq-src-address6-mask=64
add kind=pcq name=uplad-limit-384kb pcq-classifier=src-address pcq-dst-address6-mask=64 pcq-rate=384 pcq-src-address6-mask=64
/queue interface
set ether2 queue=download-limit-5MB
/queue simple
add limit-at=384k/384k max-limit=384k/1M name=limit queue=uplad-limit-384kb/download-limit-5MB target=ether2
/interface bridge port
add bridge=bridge comment=defconf interface=ether2
add bridge=bridge comment=defconf interface=ether3
add bridge=bridge comment=defconf disabled=yes interface=ether4
add bridge=bridge comment=defconf interface=ether5
add bridge=bridge comment=defconf interface=wlan1
/ip neighbor discovery-settings
set discover-interface-list=LAN
/interface list member
add interface=bridge list=LAN
add interface=ether1 list=WAN
add interface=pppoe-out1 list=WAN
/ip address
add address=192.168.0.2/24 comment=my_network interface=ether2 network=192.168.0.0
add address=192.168.1.2/24 comment=vitya interface=ether4 network=192.168.1.0
/ip dhcp-client
add comment=defconf interface=ether1
/ip dhcp-server lease
add address=192.168.0.107 client-id=1:78:24:af:9c:f8:e8 mac-address=78:24:AF:9C:F8:E8 server=my_network
/ip dhcp-server network
add address=192.168.0.0/24 comment=my_network gateway=192.168.0.2 netmask=24
add address=192.168.1.0/24 comment=vitya gateway=192.168.1.2 netmask=24
/ip dns
set allow-remote-requests=yes servers=8.8.8.8
/ip dns static
add address=192.168.0.2 comment=defconf name=router.lan
/ip firewall filter
# no interface
add action=drop chain=input dst-port=53 in-interface=pppoe-out1 protocol=udp
add action=accept chain=forward connection-state=established,related
add action=accept chain=input connection-state=established,related
add action=accept chain=input protocol=icmp
add action=accept chain=input comment="defconf: accept to local loopback (for CAPsMAN)" disabled=yes dst-address=127.0.0.1
add action=drop chain=input comment="defconf: drop all not coming from LAN" disabled=yes in-interface-list=!LAN
add action=accept chain=forward disabled=yes ipsec-policy=in,ipsec
add action=accept chain=forward disabled=yes ipsec-policy=out,ipsec
add action=fasttrack-connection chain=forward connection-state=established,related disabled=yes
# no interface
add action=drop chain=input connection-state="" in-interface=pppoe-out1
# no interface
add action=drop chain=forward connection-state=invalid in-interface=pppoe-out1
# no interface
add action=drop chain=forward connection-nat-state=!dstnat connection-state=new in-interface=pppoe-out1
/ip firewall nat
# no interface
add action=masquerade chain=srcnat comment="defconf: masquerade" ipsec-policy=out,none out-interface=pppoe-out1
/ip service
set telnet disabled=yes
set ftp disabled=yes
set www disabled=yes
set ssh disabled=yes
set api disabled=yes
set api-ssl disabled=yes
/system clock
set time-zone-name=Europe/Samara
/tool mac-server
set allowed-interface-list=LAN
/tool mac-server mac-winbox
set allowed-interface-list=LAN