Not all Internet traffic is equal. Streaming HD video or having a stutter-free Skype call is probably more important to you than downloading a big file. The Quality of Service feature on your router lets you prioritize the things you care about, so they happen faster than the things you don’t. What Exactly Is Quality of Service?DLAN powerline 550. The $225 dLAN 550 lets you use your home’s power cables to create a home network. It’s simple to set up. And while the resulting speeds won’t be quite as fast as a typical cabled connection, they’ll likely produce faster service than your in-home Wi-Fi by a noticeable margin. Avoid buffering, slowdowns or drop-offs with your home Internet with these easy fixes. Quality of Service is an excellent and underutilized tool that allows you to train your router to divvy up your available bandwidth between applications. With good QoS rules, you can ensure that your streaming video doesn’t stutter because a big file is downloading at the same time, or that your work laptop isn’t sluggish when you’re trying to meet that last minute deadline while your kids are playing games online. It may help to think about Quality of Service like this: Let’s pretend, for a moment, that your Internet connection is a hospital where the available bandwidth is the number of doctors available to treat patients. The patients are the different applications, and the triage nurse is the router. On a normal network, the triage nurse is indifferent to the condition of the incoming patients and simply assigns them to any available doctors, progressively spreading the staff of the hospital thinner and thinner with no regard for the severity of the patient’s situation. Accidentally shot your hand with a nail gun during a DIY project? You get a doctor immediately. Someone just got run over by a truck? They get a doctor immediately too. Somebody else shows up with a broken arm? They get a doctor too (but if it’s getting really busy pretty soon people are sharing doctors and nobody is getting particularly speedy care). You can see how, in short order, the hospital would be a bogged down mess and high-priority patients wouldn’t be getting high-priority care. The same thing happens on your network at home–bandwidth is given out as needed, without much regard for what each application is doing. This means if you’re on a Skype conference call with your boss and your kids start watching Netflix, the quality of your Skype call can drop. The router is doing its best to share the available bandwidth between the two services, not really considering which is “more important”. Quality of Service, to return to our hospital analogy, is like a very competent triage nurse who directs patients to the right doctor in the most efficient way: the guy who just got run over by the truck will get multiple doctors and the guy sitting there with the nail stuck in his hand from the bird-house-project-gone-wrong will wait a moment and get a single doctor when he’s seen. Networks with a Quality of Service model applied will prioritize, as you tell it, certain applications, services, and/or users over others so the important things (Netflix, Skype calls, your Xbox Live connect, etc.) have the most bandwidth and the best ping time. How to Enable Quality of Service on Your RouterThere are hundreds of different routers out there with wildly different firmware and capabilities. Some routers have Quality of Service settings that are as simplistic as allowing you to prioritize the traffic from one computer over another. Some have you specify what kind of services you want to prioritize (e.g. streaming video over web browsing), and others offer granular control over nearly every aspect of the process. RELATED:Turn Your Home Router Into a Super-Powered Router with DD-WRT While we can’t walk you through your exact router setup, we can highlight the key considerations that go into configuring Quality of Service rules. For demonstration purposes, we will be enabling Quality of Service rules on a router flashed to run the versatile DD-WRT third-party firmware. You’ll need to log into your own router’s administration page to see which–if any–of these features are available to you. Before proceeding, we highly recommend checking the online documentation for your router on the manufacturer’s website to determine what kind of QoS settings your router supports as well as how to access them. Step One: Establish Your GoalBefore you even open your admin page, think about your goals. What are you attempting to accomplish with quality of service rules? Do you want to ensure that your home office computer always has priority over all the other devices in the house (e.g. all your work traffic should always be more important than entertainment and gaming on the other devices)? Do you want to prioritize traffic from a block of IP addresses you’ve assigned to your home media server and Minecraft server to ensure speedy access from outside your home network? Do you want to prioritize Netflix so your streaming video is always smooth? For residential use, QoS rules should be selective and as minimal as possible. Don’t go crazy and set a dozen different rules right out of the gate. Creating lots of different quality of service rules can cause more headaches than they solve, we’d encourage you to start with the biggest issue(s) and create a rule for dealing with it. If that resolves your network issues, then stop there. If not, you can continue with another rule. Step Two: Determine Your Connection SpeedOnce you’ve established your goals for your QoS setup, it’s time to dive into getting it up and running. Save for the most simple of QoS systems, nearly every QoS setup will ask about your upload and download speed to set the limits on how much bandwidth users and services can gobble up. Absolutely do not rely on the advertised speed your ISP says your account has. Test it yourself to get a true measurement. First, stop all high-bandwidth activities on your network: stop large downloads, stop streaming Netflix, and so on. You want an accurate picture of your real available upload and download bandwidth. Next, visit speedtest.net and click the “Begin Test” button. Ideally, you should run this test while your computer is hooked up with an Ethernet cable, or at the very least a fast Wi-Fi connection (using modern wireless technologies like Wireless N or Wireless AC). Old Wi-Fi network gear can bottleneck your network test, and you won’t get accurate results (e.g. your Wi-Fi gear can only handle 40 Mbps transfer but your connection is actually capable of 75mpbs). Once you have your results, convert the numbers from Mbps to Kbps (as the QoS control setup usually asks for these values in kilobits and not megabits). You can do so by multiplying each value by 1000. Thus, in our above example, we achieved 42,900 Kbps for our download bandwidth, and 3,980 Kbps for our upload bandwidth. Step Three: Enable QoS on Your RouterAgain, for emphasis, we are using DD-WRT for demonstration purposes (because it has a robust QoS system); you’ll need to apply the general principles as applicable. First, open your router’s admin page. Open your web browser and type the IP address of your router into the address bar (Usually something like 192.168.1.1 or 10.0.0.1, though you may need to check your router’s manual). Log in with your username and password when prompted (again, if you don’t know what yours is, it may still be the default one listed in your manual). Once logged in, select the NAT/QoS tab, then the QoS tab. First, select “Enable” next to “Start QoS”. Leave the port set to WAN. Leave the Packet Scheduler and Queuing Discipline set to the default state (it should be set automatically based on the router hardware). Finally, fill in the downlink and uplink values. The values you fill in should be 80-95% the value you got with your speed test. Multiply both values by 0.8 or 0.95 to get the reduced Kbps amount. Why use a reduced value? Quality of service rules only work if the router and the quality of service algorithm can create an artificial bottleneck to redirect traffic as the QoS handler sees fit. If you use values equal to or larger than the maximum capacity of your connection then you give the QoS handler no wiggle room and the system becomes significantly less effective. How to Prioritize Your TrafficOnce you’ve turned the Quality of Service on, it’s time to create basic traffic prioritization rules. Some newer routers have dead-simple QoS options, where you just select the services you want to prioritize them (or drag-and-drop them on a list). Here, for example, is a screenshot from a newer ASUS router we have: If that’s all you want, and your router has that feature, try it and see what works. But if you want more fine-grained control–or you have an older router that doesn’t have such simple setup–here are some more detailed instructions for setting up QoS. Let’s look at the different ways you can do so, and which ones you should use. DD-WRT uses a “priority” system, letting you tell it which services or devices are most important. The priority values are:
These values determine the amount of bandwidth allocated to a given application or device. For example, if you set a service to “Maximum”, you are saying “I want this service to have at least 60% of the bandwidth, even when the network is busy, and 100% when it is not.”. If you set a service to “Bulk” you’re saying “I don’t care if this service uses a lot of bandwidth when the network is idle, but when things are busy it only gets 1% of the available bandwidth”. As we emphasized above, be judicious in your application of quality of service rules. Prioritize by ServiceIf you want every device on your network to have priority access to a certain app or service, then you can creative a network wide service priority rule. Let’s say, for the sake of example, you want to ensure that Netflix gets priority over less bandwidth sensitive things like general web browsing. You would first select the service from the drop-down menu, as shown below, and then click “Add”. Once the service is listed, select the priority you wish to use for it. Prioritize by InterfaceIn networking lingo, an “interface” is the method by which your device is connected to the network. You can prioritize your local Ethernet network, you can prioritize wireless connections, or you can even set rules that makes guest network traffic a low priority. Let’s look at how we can make guest network traffic a low priority. From the drop down menu we’ll select “wl0.1” which, in network shorthand, is Wireless LAN #0 Virtual Network 1. Click “Add”. Once you’ve added the interface, you can specify the max upload/download speed and even prioritize services on the specific connection, as seen in the screenshot below. Interface priority is, because of the requisite knowledge of the arcane network naming schemes, one of the more difficult priority systems to use. If you’re unclear which network interface is which, we’d recommend just leaving this section alone. You can read up on network interfaces in the DD-WRT wiki here. Prioritize by Device with IP AddressesRELATED:How to Set Static IP Addresses On Your Router Say you want to give a specific device–like your work computer–priority at all times. If you use static IP addresses or DHCP reservations on your network, you can prioritize traffic on certain computers and devices using their IP address. Many routers allow for this, and DD-WRT goes a step further, allowing you to prioritize a group of IP addresses with a “netmask”. Let’s say, for example, that you want your home server, located at the static IP address of 10.0.0.200, to have the highest priority access to your network. You would input the address in the Netmask Priority section and append the end with 32, as seen below. The 32 element is the netmask. Detailed discussion of netmask usage is a bit beyond the scope of this tutorial, but suffice to say that a /32 mask is netmask shorthand for “only resolve this single IP address”. Any other smaller number will allow for the mask to encompass a higher number of addresses in a given block (e.g. 10.0.0.200/24 would cause the quality of service rule to apply to all 254 potential addresses in the 10.0.0.* block). You can refer to this netmask quick reference guide to select a number that works for the section and size of the address block you wish to prioritize. If you find the netmask system to be a bit confusing (it’s not exactly intuitive), it’s best to just stick to /32 and manually input each IP address. Once you click “Add”, you can assign priority access to the address, like in the previous section. Prioritize by Device with MAC AddressesRELATED:How to Find Any Device’s IP Address, MAC Address, and Other Network Connection Details If you don’t use static IP addresses on your network, you can still prioritize certain computers and devices with their MAC address. Refer to this guide for information on finding the MAC address of your devices–it’ll either be on a physical label attached to the device, or somewhere in its software settings. With the MAC address in hand, simply enter it into the MAC priority section, click Add, and then assign a priority to the device as we’ve done in the previous sections. Now regardless of what IP address your router assigns, say, you can ensure your work laptop it will always get priority. Finally: Test and EvaluateRELATED:Clone Your Current Router for a Headache-Free Router Upgrade The best thing you can do to minimize frustration with your QoS setup experience is, as we emphasized above, to take it slow. Set a rule for a big ticket item and then just use your network as your normally would. Does everything run smoother? Great! You’re done! Things still need a little fine tuning? Return to the QoS control panel. Double check your settings, adjust the way you’ve allocated bandwidth, and, if necessary, create a new QoS rule. When you find the Goldilocks configuration that keeps your network humming along smooth and trouble free, by all means make note of the settings you used and take some screenshots (even better yet, back up your router configuration if your router supports it). Keeping track of your router settings isn’t just good for migrating to a new router it’s great for setting things up quickly if you need to hard reset your router in the future. Setting up Quality of Service rules isn’t exactly as simple as just plugging your router in and slapping a new Wi-Fi password on it, but the payoff for configuring QoS rules is a much smoother internet experience. Some even READ NEXT
Though more router manufacturers are making routers easier to set up and configure—even via handy little apps instead of annoying web-based interfaces—most people probably don’t tweak many options after purchasing a new router. They log in, change the name and passwords for their wifi networks, and call it a day. While that gets you up and running with (hopefully) speedy wireless connectivity, and the odds are decent that your neighbor or some random evil Internet person isn’t trying to hack into your router, there’s still a lot more you can do to boost the security of your router (and home network). Advertisement Before we get into our tips, one quick caveat: Wireless routers all have different interfaces, different ways they name their settings, and different settings you can adjust. For this article, I’ll be poking around the interface of a TP-Link Archer C7. You’ll want to explore around your router’s web-based configuration screen (or app) to make sure you’ve adjusted all the right settings, but it’s possible you won’t be able to do everything we’ve detailed below. Accessing your router’s settingsIf your router doesn’t have an easy-to-use app for configuring its settings—like what you typically encounter when buying a mesh-networking system—you’ll probably access its settings by pulling up a web browser (on a device that’s connected to your router) and typing in your router’s IP address:
Advertisement Step One: Update your firmwareSome routers bury firmware updates deep in their settings menus; some might even notify you about a new firmware update the moment you log into their apps or web-based user interfaces. However you find the option, you’re going to want to make sure that your router is running the most up-to-date firmware. If you’re lucky, your router will be able to download new firmware updates directly from its manufacturer. You might have to click on a button (or two) to start this process, or this might happen automatically—routers that do the latter are great, because most people don’t really think about “checking to see if my favorite tech gear has updated firmware” on a regular basis, if ever. Advertisement It’s also possible that your router will require you to upload new firmware yourself. If so, you’ll have to download the right firmware from the router’s manufacturer—likely on a support page for your router—and manually update the router by browsing for this firmware file and starting the update process yourself. You’ll have to do this each time you want to update your router with new firmware, which means you’ll have to check for new firmware fairly regularly, perhaps a few times a year. It’s a laborious process that’s easily forgotten, but it’s also important if you want to keep your router protected from external threats. Change your router login and passwordIf you’re still using “admin / admin,” “admin / password,” or some variant of generic words to log into your router, change that. Even if your router manufacturer has given you a quirkier password that presumably differs for everybody, it’s important to use a login and password that’s tough to guess or brute-force. Advertisement Even if you’re stuck using “admin” as a user name to log in, make your password something complex, not something anyone can look up via a quick web search. Use WPA2 to secure your wireless networkIt almost goes without saying, but don’t use WEP when you’re setting up a password for your wifi network. Passwords “protected” with the WEP encryption are a lot easier to brute-force attack than those encrypted with WPA2. Even though you probably don’t have someone hanging out on your street corner, wardriving everyone’s wireless networks, there’s no reason to not use the stronger WPA2 protocol—unless you have an old device that simply can’t handle WPA2, which is unlikely. And whatever you do, don’t run an open (password-free) wifi network. My god. Advertisement Turn off WPSOn paper, WPS—or Wi-Fi Protected Setup—sounds great. Instead of having to type in a long, reasonably complex wifi password on a device, you can just type in a smaller PIN number, likely printed directly on your router. Advertisement Guess what? These PIN numbers are much easier to brute-force attack than a more complicated password or passphrase. While a number of routers will time out an attacker after they botch a certain number of password attempts, that hasn’t stopped more ingenious WPS attacks from surfacing. The easiest way to prevent these kinds of shenanigans is to just disable WPS entirely. Yes, you’ll have to type in your password. Yes, it’ll be annoying. It’s an extra minute of your life. You’ll be fine. Or, if you truly cannot handle this process, check to see if your router allows you to use push-button WPS instead of PIN-based WPS. That way, you’ll have to physically press buttons on your router and any devices you want to connect, which will make it a lot trickier for someone to exploit WPS and break into your network. Advertisement Use a better DNSBrowse the web a little bit faster by switching away from your ISP’s DNS and using a service like Google DNS, Cloudflare, or OpenDNS. As an added bonus, you’ll also increase the likelihood that you actually make it to the websites you’re trying to visit without any man-in-the-middle attacks, popups, redirects, interstitials, or annoying “you made a typo in your web address so we’re going to redirect you to a webpage filled with spam and ads” that your ISP might use. If you want to get really crafty, you can drop a service like OpenDNS on your kid’s laptop, enable parental controls to keep them off time-sucking websites like Tumblr and Reddit, and give yourself a different DNS provider (like Google DNS) to browse the web without any restrictions. Your child will hate you, but at least they’ll turn out to be a rocket scientist with 27 inventions instead of a Twitch streamer with 3 followers. Advertisement Consider using MAC filtering, annoying as it might getWhile it’s easy for an attacker to spoof a MAC address, you can at least give yourself a little extra security by setting up your router to only allow devices to connect that appear on a whitelist. This filtering is based on each device’s MAC address—a long string of letters and numbers that looks something like “00-11-22-33-44-55.” Advertisement While this means that you’ll need to go in and add any new devices you purchase whenever you want them to be able to connect to your router, it also means that devices you don’t authorize won’t be able to do squat. Like I said, though, MAC addresses are easy to spoof, so if this tip gets more annoying than practical, feel free to disable MAC filtering. You’ll be OK. Consider scheduling your wifiIf you work a pretty normal schedule during the week and you have no reason to remotely connect to your home devices, consider using your router’s scheduling mechanism—if it has one—to just turn off your wifi when you aren’t home. Advertisement This isn’t the most practical tip if you have a bunch of smarthome devices that need the Internet, like if you want to be able to turn the lights on and off to piss off your cat or you want to be able to watch a delivery driver drop off the expensive package you ordered. If you live a relatively simple life—no harm there—and nothing really needs Internet connectivity when you aren’t around, then why power up your wifi for no reason? It’s hard to hack into a network that doesn’t exist. Disable potentially sketchy servicesYou probably don’t need to mess with your router’s settings when you aren’t actively connected to your wireless network. If your router has some kind of an option for “remote management” or “remote administration” make sure it’s disabled. Dungeon maker cheat engine. If you found the value like discribed above, change the value and choose 'freeze' normal. (nothing will change visually). After that play 1-2 stages were you recieve additional gold. Get the latest cheats, codes, unlockables, hints, Easter eggs, glitches, tips, tricks, hacks, downloads, hints, guides, FAQs, and walkthroughs for Dungeon Maker. The biggest tips & tricks library, search for hack and cheat codes for top mobile games and apps. About Dungeon Maker - Selected as 1 of Top 10 android games in Google Indie Mobile game Festival 2018! Advertisement You should also consider disabling UPnP on your router, although this might give you a little grief when you’re gaming or running BitTorrent—to name two examples. Still, when an entire website is dedicated to the various ways one can exploit UPnP for nefarious purposes .. maybe it’s time to go back to manually forwarding ports, if needed. Some routers also let you set up an FTP server so you can transfer files in and out of your network. However, we live in an era when it’s easy to use any number of cloud storage providers—or file-uploading services—to share your files. You probably don’t need to run an FTP at home, and it’s a lot safer to disable this feature entirely (if your router supports it). Advertisement You also likely don’t need to access your router over SSH or Telnet—turn either off, if offered—nor do you probably need to access any USB-connected printers or storage when you aren’t at home. In short, if your router lets you do something from afar, consider turning the feature off (if you can). The fewer ways you can access your home network when you aren’t in it, the harder it’ll be for someone else to take advantage of a vulnerability and access your router (or your home network). If you can, consider disabling your router’s cloud functionality as well. While it might be useful to be able to edit your router’s settings by logging into the manufacturer’s cloud service, it’s just one more open door that an attacker could use to compromise your router (or network). While you have no choice with some routers—typically mesh routers—it’s always better, and safer, to log into a router’s web-based UI manually from a device that’s connected to your home network, even though it’s a lot less convenient. Consider a separate wifi network for guests and smart-home devicesI’ve been playing, testing, and reviewing routers for more than a decade, and I still have yet to meet someone who uses their router’s guest network feature. Heck, I don’t think I’ve ever even connected to a friend’s “guest network” in their home or apartment. Advertisement Still, the premise of a guest network is great, security-wise: Your router automatically sets up a second SSID for friends to use, and any device connecting to it is walled off from other devices on your primary network, either plugged into your router directly or connected wirelessly. (Most routers let you adjust whether you want guests to see everything, each other, or nothing, if you need to customize your setup a bit.) A guest network comes with an added bonus, too; you can use it for all of your less-secure smart-home devices. If someone takes advantage of a vulnerability in your smart lightbulb and breaks into your network, there will still be a layer of protection between your hacked device and your desktop PC, smartphone, and laptop—to name a few examples. While you can also get crazy and segment off your network with separate SSIDs and VLANs, if your router supports it, this is an easier method that won’t give you a weekend’s worth of headaches (if you don’t know what you’re doing). Advertisement
0 Comments
Leave a Reply. |