to de poin cekidot
diketahui :
Di Mikrotik
ip ke modem = 192.168.2.2
ip ke lan = 192.168.1.1
ip ke proxy = 192.168.3.3
Di proxy ip cop
ip green = 192.168.3.1
gateway = 192.168.3.3
port = 800
ngertikan topologi nya seperti apa bila diketahui seperti diatas
1. address list
add list=net60 address=192.168.1.2
add list=net60 address=192.168.1.3
add list=net60 address=192.168.1.4
add list=net60 address=192.168.1.5
add list=net60 address=192.168.1.6
add list=net60 address=192.168.1.7
add list=proxy address=192.168.3.1
2. NAT
add chain=dstnat action=dst-nat to-ports=53
protocol=udp in-interface=Lan dst-port=53
add chain=dstnat action=dst-nat to-ports=53
protocol=tcp in-interface=Lan dst-port=53
add chain=dstnat action=dst-nat to-ports=53
protocol=tcp in-interface=Proxy dst-port=53
add chain=dstnat action=dst-nat to-ports=53
protocol=udp in-interface=Proxy dst-port=53
add chain=dstnat action=dst-nat to-addresses=192.168.3.1
to-ports=800 protocol=tcp src-address-list=!proxy
in-interface=Lan dst-port=80,8080,3128,800
add chain=srcnat action=masquerade out-interface=Modem
3. MANGLE
proxy hit
add chain=forward action=mark-packet new-packet-mark=hit_12 passthrough=no dscp=12
tandai paket yg keluar masuk
add chain=prerouting action=mark-connection new-connection-mark=all_pre_con
passthrough=yes dst-address-list=!net60 in-interface=Lan
add chain=prerouting action=mark-connection new-connection-mark=all_pre_con
passthrough=yes dst-address-list=!net60 in-interface=Lan
add chain=forward action=mark-connection new-connection-mark=all_post_con
passthrough=yes src-address-list=!net60 out-interface=Lan
add chain=forward action=mark-packet new-packet-mark=all_post_pkt
passthrough=yes connection-mark=all_post_con
game.... masukin port" game yg sering dimaikan diwarnet mu
add chain=prerouting action=mark-connection new-connection-mark=games_conn
passthrough=yes protocol=tcp dst-address=203.89.146.0/23
dst-port=39190 connection-mark=all_pre_con
add chain=prerouting action=mark-connection new-connection-mark=games_conn
passthrough=yes protocol=udp dst-address=203.89.146.0/23
dst-port=40000-40010 connection-mark=all_pre_con
add chain=prerouting action=mark-connection new-connection-mark=games_conn
passthrough=yes protocol=tcp dst-address=203.89.147.12 dst-port=4300
add chain=prerouting action=mark-packet new-packet-mark=games_pkt
passthrough=no connection-mark=games_conn
http user
add chain=prerouting action=mark-connection
new-connection-mark=browsing_conn passthrough=yes tcp-flags=ack
protocol=tcp connection-mark=all_pre_con packet-size=0-64
add chain=prerouting action=mark-connection new-connection-mark=browsing_conn
passthrough=yes protocol=tcp dst-port=80,443
connection-mark=all_pre_con
add chain=forward action=mark-packet new-packet-mark=browsing_pkt
passthrough=no protocol=tcp connection-mark=browsing_conn
connection-bytes=0-131072
http proxy
add chain=prerouting action=mark-connection new-connection-mark=proxy_conn
passthrough=yes protocol=tcp src-address-list=net60
dst-address-list=!net60 dst-port=80,443
add chain=forward action=mark-packet new-packet-mark=proxy_pkt passthrough=no
connection-mark=proxy_conn
tranfer file
add chain=prerouting action=mark-connection
new-connection-mark=communication_conn passthrough=yes protocol=tcp
dst-port=20,21,23 connection-mark=all_pre_con
chain=forward action=mark-packet new-packet-mark=communication_pkt
passthrough=no connection-mark=trans_conn
normal traffik
add chain=prerouting action=mark-connection new-connection-mark=normal_conn
passthrough=yes dst-address-list=!proxy connection-mark=all_pre_con
add chain=forward action=mark-packet new-packet-mark=normal_pkt
passthrough=no connection-mark=normal_conn
DOWNLOAD TIAP USER
add chain=forward action=mark-packet new-packet-mark=bil_pkt passthrough=no
protocol=tcp dst-address=192.168.1.2 connection-mark=all_post_con
connection-bytes=200000-4294967295
add chain=forward action=mark-packet new-packet-mark=net1_pkt passthrough=no
protocol=tcp dst-address=192.168.1.3 connection-mark=all_post_con
connection-bytes=200000-4294967295
add chain=forward action=mark-packet new-packet-mark=net2_pkt passthrough=no
protocol=tcp dst-address=192.168.1.4 connection-mark=all_post_con
connection-bytes=200000-4294967295
add chain=forward action=mark-packet new-packet-mark=net3_pkt passthrough=no
protocol=tcp dst-address=192.168.1.5 connection-mark=all_post_con
connection-bytes=200000-4294967295
add chain=forward action=mark-packet new-packet-mark=net4_pkt passthrough=no
protocol=tcp dst-address=192.168.1.6 connection-mark=all_post_con
connection-bytes=200000-4294967295
add chain=forward action=mark-packet new-packet-mark=net5_pkt passthrough=no
protocol=tcp dst-address=192.168.1.7 connection-mark=all_post_con
connection-bytes=200000-4294967295
4. firewall
cari sendiri dah, di blog ini jg ada
5 query type
6.queue tree
ntar ditrusin deh, lagi malezzz
This entry was posted
on 14.03
and is filed under
Mikrotik
.
You can leleave a response
and llow any responses to this entry through the
Langganan:
Posting Komentar (Atom)
.
Categories
- All about Blogspot (3)
- Freebsd (4)
- FreeNas (3)
- Game Online (1)
- HOT SPOT (2)
- Hotspot (1)
- Internet (1)
- IPCOP (3)
- Mikrotik (8)
- Printer (1)
- Software Tools (5)
- Tip Trik Net60 (1)
- TOKO ONLINE (1)
- Ubuntu (2)
- visual basic 6 (1)
- Windows (1)
0 komentar