dscp marking

Question

Hello; 
&nbsp;  
&nbsp; I want to mark dscp bit of the traffic originating from virtual server? How can i do that? Wtih an irule or on GUI?

hoolio · Answer

Hi Ozgur, 
&nbsp;  
&nbsp; I don't believe there is a way to set this flag on a packet.  You could contact F5 Support to confirm this and/or request an enhancement. 
&nbsp;  
&nbsp; Aaron

fred_wittenberg · Answer

Realize this is quite dated but I just had to do this for a customer.  To set the value to say CS2 you would perform the following:&nbsp;
iptables -t mangle -A OUTPUT  -j DSCP --set-dscp-class CS2&nbsp;
NOTE: This change will not persist through reboots. you will need to run iptables-save or use a iptables config such as this&nbsp;
*mangle
:PREROUTING ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]&nbsp;
Add CS2 Marker
-A OUTPUT -j DSCP --set-dscp-class CS2
COMMIT
*nat
:PREROUTING ACCEPT [0:0]
:POSTROUTING ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
COMMIT&nbsp;

Forum Discussion

dscp marking

2 Replies

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

iRules for recreation: HTTP Protocol Parser implemented using BIG-IP iRule(unfinished)

F5 BIG-IP DNS/Audit Logs — Structured Format for SIEM Ingestion

GIS app loading very slow through F5 LTM

F5 Device Management Certificate renewal

Recommendation for Adv. Lab

Related Content

Load balance base on QoS marking or DSCP value (ie. AF21)

HTTPS Monitor: receive string with quotation mark

Remove Quotation marks

Mark Server Down on Excessive Errors

Mark your calendars for the next F5 SLEDFest tour stop in Austin, Texas on September 13th

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS