Help for Sky Wifi+Openwrt+ Settings Gaming Pc(MAP-T)

Hi everyone, I'm a professional player on call of duty and I need help to perfectly configure my router.
This is what we have available:
1)Isp Sky wifi 1gbs download and 300mb upload (ITA) with ont
2)Sky HUB router Isp
3)Netgear Xr500 with Openwrt
4)Protocol used Map-T(This is the problem)

I tried various settings, the first was to connect xr500 directly to the ont but with the basic version of xr500 I got a maximum of 200 megs and the cpu was always at 100% so I switched to the Nss build of ACwifidude but it didn't have the Map- t in its Kmods so I tried Nss build of apccv but sqm doesn't work in this version.
So I changed the configuration (the one I currently use) and connected the ISP router to the ONT and then xr500 my router with ACwifidude's Openwrt Nss so as to use sqm.

What have I done :

1)Connected the ISP router to the ONT so as to manage the Map-T (it reaches 880MB, I lose 60MB but it's not a problem) I deactivated Wifi and everything that could be deactivated and I set a DMZ on the IP 192.168.0.2 because the address of the router is 192.168.0.1 with to automatically switch from map-t 1:16 to map-t 1:1. Up to this point everything seems correct to me but I don't know if I should disable the firewall on the ISP router if it is active on the second one to avoid double nat. I don't know if the dmz works correctly.

2)I set xr500 with static IP in the Wan via WLAN 0.2 eth (IPv4 gateway 192.168.0.1 / IPv4 address 192.168.0.2/ Use default gateway Yes/ firewall WanWan6). Then I set up the Wan6 with dhcp6 and eth0.2 then I delegated ipv6 and used the default gateway then since the ISP router does not delegate ipv6 I used Nd-Proxy via relay mode on RA-Service, DHCPv6-Service, NDP -Proxies. And here another doubt arises, even if I have the firewall on openwrt, do I have to leave the ipv6 firewall active on the ISP router or can I deactivate it?
Then I deleted the IPv6 ULA-Prefix and set the Lan with device br-lan (ip 192.168.1.1 Force link yes IPv6 assignment length 64 IPv6 assignment hint to IPv6 suffix ::1 ipv6 relay mode as in wan 6.

3)Gaming settings.
On the PC I set a static IP so as to always have the same address and I set the PC in Static Leases via IPV4 address because IPV6 does not give me the duid as in the ont-Xr500 configuration. Afterwards I activated sqm and set the download to 261mb in dw and also in upload, it gives me a perfect bufferbloat even with 700mb but with 300ms max ping every now and then so 261mb is better with a variation of 5/10 ms all on eth 0.2 then I went into the advanced settings and set fq_codel and nss-rk. qos then on Latency target (ingress)(egress) at 4ms and Qdisc options (ingress)(egress) with interval 50ms quantum 304 I don't know how to check if it's really working but on putty it tells me that everything is configured. Squash DSCP (input) SQUASH and Ignore DSCP (input) Ignore because it shouldn't work anyway.

Firewall settings Openwrt

Enable SYN-flood protection Yes
Lan-Wan all accepted
Wan reject (INPUT REJECT)(Output ACCEPT)(Forward REJECT)Masquerading YES

PORT FOWARD I set it towards the PC at port 192.168.1.180

Setting 1:
Name Code 1
Restrict to address family automatic
UDP protocol
Source zone WAN WAN6
External port 3074
Destination LAN zones
Internal IP address 192.168.1.180(PC gaming)
Internal port 3074


Setting 2:
Name Code 2
Restrict to address family automatic
UDP protocol
Source zone WAN WAN6
External port 30000-45000
Destination LAN zones
Internal IP address 192.168.1.180(PC gaming)
Internal port 3074

Setting3:
Name Code3
Restrict to address family automatic
UDP protocol
Source zone WAN WAN6
External port 3074
Destination LAN zones
Internal IP address 192.168.1.180(PC gaming)
Internal port 30000-45000

and so on
I think it's correct so you tell me.
regarding traffic rules do I have to accept the forward? if so how?
I tried like this

Name Accept traficc
UDP Protocol
Source zone WanWan6
Source address none
Source port 3074 30000-45000
Destination zone Lan
Destination address 192.168.1.180(PC Gaming)
Destination port 3074 30000-45000
Action accept

and then out

Name traficc
UDP Protocol
Source zone Lan
Source address 192.168.1.180(PC Gaming)
Source port 3074 30000-45000
Destination zone Wan Wan6
Destination address 192.168.1.180(PC Gaming)
Destination port 3074 30000-45000
Action accept

Thanks everyone for the help

I recommend you to reformat the post a bit....it's very difficult for others to read.

So BTW, is your setup working now? If it's already working then you probably don't need to do anything.

However one thing I am not sure about MAP-T/MAP-E is, IPv4 traffic is being sent as tunneled traffic so I believe the speed of IPv4 traffic should be slower than IPv6 by default (IPv6 doesn't even need NAT), and I don't know if those bufferfloat test will help in such case.

I don't know how to share my configuration via putty, on purpose I wrote everything manually. Yes the configuration works but I don't know if everything is working correctly port forward the traffic rules etc. We gamers attack every minute of it, especially since I'm far from the game servers. the question is whether I should disable the firewall on the first router.

I think enabling firewall for the first one has almost no impact to your network, right?

And for config sharing the editor as lots of way for you to quote text properly.

the nat in the game is open, but I don't know if the traffic is slowed down. I want my PC to have priority and the ports to be open for Call of Duty. Because if I lose it must be my fault, not because a shot didn't go in. I edited the post now it seems tidier

The easiest way out would probably to relegate the xr500 to mere AP duties, while offloading the routing and sqm/cake functionality to a small 4-port (wired-only) N95/ N100 x86_64 mini-PC (price range around 130-250 EUR). sqm/cake is a heavy burden for your router and ~190 MBit/s is within expectations for that (NSS only comes with an offloaded fq_codel implementation).

If you are fine with the performance of the NSS based community builds -aside from the missing MAP-T support- you should be able to build OpenWrt from source, using the community builds as a basis and enabling the additional packages you need for MAP-T to work. Building OpenWrt that way should be less than half an hour's worth of effort, to be repeated whenever you want/ need an update, not great, but an option.

…but the easiest option remains to use routing hardware with enough raw performance to do its tasks without batting an eye (x86_64, RPi4, rockchip, etc. - yes, all of those are effectively wired-only, but they have the performance and you already have a great wifi5 AP in your xr500).

You should have a native IPv6 connection so the obvious answer is to as much as possible, game via IPv6.

Otherwise it is like @slh said, throw more CPU at it.

Yes, if I could only use ipv6 it was perfect but still few sites support ipv6 and the games only run in ipv4 especially the apps that launch the games. Without map-t I definitely had faster speeds

Thanks for the advice, yes I was aware of this. The only solution without spending was this one that I'm currently using, or creating Nss Build from 0 (it was the best choice but I'm not able), a guy added the map-t in his build NSS but sqm didn't work so I discarded that one option. As for mini PCs like the RPI 4, I wasn't convinced by the fact that additional gadgets like USB/Eth had to be added, I wouldn't want to create disturbances and lose MS. However, I had found a nice router with a 2.2 GHz processor and 4 interesting cores (DynalinkDL-WRX36) but I didn't understand if it was fully supported and flashing seemed quite complicated. Do you have information about this device? Can you use the version original of openwrt and get to 1gb stable?

yes.

without sqm, yes.
with sqm, doubtful - I wouldn't risk it.

I didn't mean an RPi, I meant an x86_64 mini-PC with four Intel Alder Lake-N N95/ N100 efficiency cores, >= 4GB RAM, a small SSD and four onboard network cards, the size of a small cigar box with an external PSU, needing 5-10 watts idle. These do have the performance, are supported by OpenWrt and just work.

This topic was automatically closed 10 days after the last reply. New replies are no longer allowed.