Search
BerandaResume FMI
spot_imgspot_img
Resume FMIWarnet

Load Balance 2 Line Speedy + external Proxy

boled
by boled
Advertisements

Terima kasih sebesar-besar nya kepada FMI dan tengkurizal yg sudah meng-approve publikasi di web saya. Script sudah mengalami perubahan dikarenakan di sesuaikan dengan kebutuhan Jaringan kami. jadi bagi para Pengunjung yang ingin menerapkan silahkan d sesuaikan dengan kebutuhan jaringan agan.

 

Berikut script :

Set Interface disesuiakan Gan:
/ip adrress

– 192.168.4.1/24 interface proxy
– 192.168.1.1/24 interface lokal
– 192.168.2.1/24  interface modem1
– 192.168.3.1/24  interface modem2


/interface pppoe-client
add ac-name="" add-default-route=no allow=pap,chap,mschap1,mschap2 comment=""
dial-on-demand=no disabled=no interface=modem1 max-mru=1480 max-mtu=1480
mrru=disabled name="spedaku" user="******@telkom.net" password="***" profile=default
service-name="" use-peer-dns=no

add ac-name="" add-default-route=no allow=pap,chap,mschap1,mschap2 comment=""
dial-on-demand=no disabled=no interface=modem2 max-mru=1480 max-mtu=1480
mrru=disabled name="spedamu" user="******@telkom.net" password="***" profile=default
service-name="" use-peer-dns=no


/ip firewall mangle

add action=mark-packet chain=prerouting comment=proxy-hit disabled=no dscp=12
new-packet-mark=proxy-hit passthrough=yes
/queue tree
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0
max-limit=0 name=HIT packet-mark=proxy-hit parent=global-out priority=1
queue=default


## mangel
/ip firewall mangle
add action=mark-connection chain=input comment=
"PCC RULE ---- MARK ALL PPPoE CONN" connection-state=new disabled=no
in-interface=pppoe_1 new-connection-mark=pppoe1_conn passthrough=yes

add action=mark-connection chain=input comment="" connection-state=new
disabled=no in-interface=pppoe_2 new-connection-mark=pppoe2_conn
passthrough=yes

add action=mark-connection chain=prerouting comment="" connection-state=
established disabled=no in-interface=pppoe_1 new-connection-mark=
pppoe1_conn passthrough=yes

add action=mark-connection chain=prerouting comment="" connection-state=
established disabled=no in-interface=pppoe_2 new-connection-mark=
pppoe2_conn passthrough=yes

add action=mark-connection chain=prerouting comment="" connection-state=
related disabled=no in-interface=pppoe_1 new-connection-mark=pppoe1_conn
passthrough=yes

add action=mark-connection chain=prerouting comment="" connection-state=
related disabled=no in-interface=pppoe_2 new-connection-mark=pppoe2_conn
passthrough=yes

add action=mark-routing chain=output comment="" connection-mark=pppoe1_conn
disabled=no new-routing-mark=pppoe_1 passthrough=no

add action=mark-routing chain=output comment="" connection-mark=pppoe2_conn
disabled=no new-routing-mark=pppoe_2 passthrough=no

/ip firewall mangle

add action=mark-connection chain=prerouting comment=
"PCC RULE MARK HTTP CONN" connection-state=established disabled=no
dst-address-type=!local dst-port=80 in-interface=proxy
new-connection-mark=http_pppoe_1 passthrough=yes
per-connection-classifier=both-addresses-and-ports:2/0 protocol=tcp

add action=mark-connection chain=prerouting comment="" connection-state=
established disabled=no dst-address-type=!local dst-port=80 in-interface=
proxy new-connection-mark=http_pppoe_2 passthrough=yes
per-connection-classifier=both-addresses-and-ports:2/1 protocol=tcp

add action=mark-connection chain=prerouting comment="" connection-state=
related disabled=no dst-address-type=!local dst-port=80 in-interface=
proxy new-connection-mark=http_pppoe_1 passthrough=yes
per-connection-classifier=both-addresses-and-ports:2/0 protocol=tcp

add action=mark-connection chain=prerouting comment="" connection-state=
related disabled=no dst-address-type=!local dst-port=80 in-interface=
proxy new-connection-mark=http_pppoe_2 passthrough=yes
per-connection-classifier=both-addresses-and-ports:2/1 protocol=tcp
/ip firewall mangle

add action=mark-connection chain=prerouting comment=
"PCC RULE ---- MARK - NON -HTTP CONN" connection-state=established
disabled=no dst-address-type=!local dst-port=!80 in-interface=lokal
new-connection-mark=non.http_pppoe_1 passthrough=yes
per-connection-classifier=both-addresses-and-ports:2/0 protocol=tcp

add action=mark-connection chain=prerouting comment="" connection-state=
established disabled=no dst-address-type=!local dst-port=!80
in-interface=lokal new-connection-mark=non.http_pppoe_2 passthrough=yes
per-connection-classifier=both-addresses-and-ports:2/1 protocol=tcp

add action=mark-connection chain=prerouting comment="" connection-state=
related disabled=no dst-address-type=!local dst-port=!80 in-interface=lokal
new-connection-mark=non.http_pppoe_1 passthrough=yes
per-connection-classifier=both-addresses-and-ports:2/0 protocol=tcp

add action=mark-connection chain=prerouting comment="" connection-state=
related disabled=no dst-address-type=!local dst-port=!80 in-interface=lokal
new-connection-mark=non.http_pppoe_2 passthrough=yes
per-connection-classifier=both-addresses-and-ports:2/1 protocol=tcp

add action=mark-connection chain=prerouting comment="" connection-state=
established disabled=no dst-address-type=!local in-interface=lokal
new-connection-mark=non.http_pppoe_1 passthrough=yes
per-connection-classifier=both-addresses-and-ports:2/0 protocol=udp

add action=mark-connection chain=prerouting comment="" connection-state=
established disabled=no dst-address-type=!local in-interface=lokal
new-connection-mark=non.http_pppoe_2 passthrough=yes
per-connection-classifier=both-addresses-and-ports:2/1 protocol=udp

add action=mark-connection chain=prerouting comment="" connection-state=
related disabled=no dst-address-type=!local in-interface=lokal
new-connection-mark=non.http_pppoe_1 passthrough=yes
per-connection-classifier=both-addresses-and-ports:2/0 protocol=udp

add action=mark-connection chain=prerouting comment="" connection-state=
related disabled=no dst-address-type=!local in-interface=lokal
new-connection-mark=non.http_pppoe_2 passthrough=yes
per-connection-classifier=both-addresses-and-ports:2/1 protocol=udp

 

/ip firewall mangle

add action=mark-routing chain=prerouting comment=
"PCC RULE ---- MARK - HTTP ROUTE" connection-mark=http_pppoe_1 disabled=
no new-routing-mark=pppoe_1 passthrough=yes

add action=mark-routing chain=prerouting comment="" connection-mark=
http_pppoe_2 disabled=no new-routing-mark=pppoe_2 passthrough=yes

add action=mark-routing chain=prerouting comment=
"PCC RULE  MARK NON HTTP ROUTE" connection-mark=non.http_pppoe_1
disabled=no new-routing-mark=pppoe_1 passthrough=yes

add action=mark-routing chain=prerouting comment="" connection-mark=
non.http_pppoe_2 disabled=no new-routing-mark=pppoe_2 passthrough=yes
#Nat
/ip firewall nat
add action=masquerade chain=srcnat comment=MASQUERADE1 disabled=no
out-interface=spedaku

add action=masquerade chain=srcnat comment=MASQUERADE2 disabled=no
out-interface=spedamu

add action=masquerade chain=srcnat comment=MASQUERADE3 disabled=no
out-interface=proxy

add action=dst-nat chain=dstnat comment=TRANSPARENT-DNS disabled=no dst-port=
53 in-interface=lokal protocol=udp to-ports=53

add action=dst-nat chain=dstnat comment="" disabled=no dst-port=53
in-interface=lokal protocol=tcp to-ports=53

add action=dst-nat chain=dstnat comment="" disabled=no dst-port=53
in-interface=proxy protocol=udp to-ports=53

add action=dst-nat chain=dstnat comment="" disabled=no dst-port=53
in-interface=proxy protocol=tcp to-ports=53

add action=dst-nat chain=dstnat comment=TRANSPARENT-proxy disabled=no
dst-address-list=!proxyNET dst-port=80,8080,3128 in-interface=lokal
protocol=tcp to-addresses=192.168.4.2 to-ports=3128

add action=dst-nat chain=dstnat comment="REMOTE PROXY" disabled=no
dst-address=118.96.40.xxx dst-port=22 protocol=tcp to-addresses=
192.168.4.2 to-ports=22

 

#Addres List

/ip firewall address-list
add address=192.168.1.0/24 comment="" disabled=no list=lanNET
add address=192.168.4.0/24 comment="" disabled=no list=proxyNET

#Routing
/ip route
add check-gateway=ping disabled=no distance=1 dst-address=0.0.0.0/0 gateway=
spedaku routing-mark=pppoe_1 scope=30 target-scope=10
add check-gateway=ping disabled=no distance=1 dst-address=0.0.0.0/0 gateway=
spedamu routing-mark=pppoe_2 scope=30 target-scope=10
add check-gateway=ping comment=Default-Route-pppoe1-Distance-1 disabled=no
distance=1 dst-address=0.0.0.0/0 gateway=spedaku scope=30 target-scope=10
add check-gateway=ping comment=Default-Route-pppoe2-Distance-2 disabled=no
distance=2 dst-address=0.0.0.0/0 gateway=spedamu scope=30 target-scope=10

Catatan tambahan :

Di Edisi Berikutnya sy tambahkan Rule untuk Optimalisasi pada Game Online dan POker Untuk Optimal dan Terbebas dari LAG…

Rule untuk game online dan Poker masih di evaluasi lebih lanjut.. jadi mohon sabar yaaaa.. 🙂

Load Balance 2 Line Speedy + external Proxy Suport Game Online dan Poker

 

Tanks buat FMI

Artikulli paraprak
Detail Paket Hosting Standart
Artikulli tjetër
Paket DVD Virtual Proxy Untuk Game Online dan Warnet
boled
boledhttp://abyfine.com
Agun Nurul Widiyanto A.K.A Boled , adalah seorang yang biasa saja tidak kaya, tidak ganteng tidak suka orang ALLAY, LEBE dll. Masih seneng belajar dari mana saja. Senang dan Hobi menjadi Praktisi Implementasi JIBAS Server Online, Mikrotik Networking, Linux Server, dan SMS getway Temukan Saya di Facebook , Twitter, Google+

Get in Touch

  1. add action=dst-nat chain=dstnat comment=”REMOTE PROXY” disabled=no
    dst-address=118.96.40.xxx dst-port=22 protocol=tcp to-addresses=
    192.168.4.2 to-ports=22

    isi dst-address nya itu IP apa mas?

    • itu untuk remote SSH proxy dari luar jaringan .
      di baca sbb:
      semua ip yng menuju ip Publik Wrnet agan dan port 22 akan d pindahkan ke ip komputer proxy 192.168.4.2 port 22 (SSH port)
      NAT diatas di sesuaikan dengan IP publik dan Komputer Proxy di tempat agan.

  2. Salam Kenal mas

    Mas Kalau script managemen bandwith nya gimana ya mas….
    soalnya kan ada 2 Line untuk internetnya…

    Sekalian mas tolong tambahkan rule untuk optimalisasi game online nya terutama game Point Blank biar bebas dari Nge Lag…

    Mohon dibantu ya mas…

    • Untuk Antisipasi Bandwith yang berlebih Dari Interface Proxy (port 80,8080, dll yg ternat ke proxy di /ip fi nat)

      /ip fi ma
      add action=mark-connection chain=forward comment=DownloadfromProxy-1 connection-bytes=\
      0 disabled=no in-interface=speedy1 \
      new-connection-mark=DownProxy-1 out-interface=proxy passthrough=yes protocol=tcp
      add action=mark-packet chain=forward comment="" connection-mark=DownProxy-1 \
      disabled=no in-interface=speedy1 new-packet-mark=DownloadProxy-1\
      out-interface=proxy passthrough=no protocol=tcp

      /ip fi ma
      add action=mark-connection chain=forward comment=DownloadfromProxy-2 connection-bytes=\
      0 disabled=no in-interface=speedy2 \
      new-connection-mark=DownProxy-2 out-interface=proxy passthrough=yes protocol=tcp
      add action=mark-packet chain=forward comment="" connection-mark=DownProxy-2 \
      disabled=no in-interface=speedy2 new-packet-mark=DownloadProxy-2\
      out-interface=proxy passthrough=no protocol=tcp

      /que ty
      add kind=pcq name=Download pcq-classifier=dst-address pcq-limit=50 pcq-rate=\
      512000 pcq-total-limit=2000

      /que tr
      add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
      max-limit=1024000 name=LimitDownloadfromProxy-1 packet-mark=DownloadProxy-1 parent=global-out priority=8 \
      queue=Download

      /que tr
      add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
      max-limit=1024000 name=LimitDownloadfromProxy-2 packet-mark=DownloadProxy-2 parent=global-out priority=8 \
      queue=Download

  4. Mas boleh tanya gak..???
    /ip firewall mangle
    add action=mark-connection chain=input comment=
    “PCC RULE —- MARK ALL PPPoE CONN” connection-state=new disabled=no
    in-interface=pppoe_1 new-connection-mark=pppoe1_conn passthrough=yes

    itu in-interface nya dr mana yang pppoe_1 ??? Apa harus dibuat dulu ataw mengikut kepada spedamu…! Mohon pencerahan nya ya mas soalnya saya masih tergolong baru tentang mikrotik… Sekian dulu ya Mas dan terima kasih sebelumnya. (Y)

    • in-interface=pppoe_1 new-connection-mark=pppoe1_conn passthrough=yes
      pada bagian interface disebutkan ppoe_1 —> ini menunjukan bahwa interface ini berasal dari interface dial ppoe. di buat dari ppp untuk akses ke Speedy.
      nama ppoe_1 ini di sesuaikan dengan nama interface dial yg di buat oleh agan reds_ryan saat membuat interface dial up ppp nya..

  5. kalo proxy juga di NAT,pas tail access log yg terbaca jadi ip ether yg ke proxy
    gmn ngatasinnya? sementara NAT ke proxy tak disabled

TINGGALKAN KOMENTAR

Silakan masukkan komentar anda!
Silakan masukkan nama Anda di sini

 

Related Articles

Get in Touch

14,000FansSuka
1,323PengikutMengikuti
3,121PengikutMengikuti
4,000PengikutMengikuti
0PelangganBerlangganan

Post Pilihan

Behavior

Prevention

Strategy

Network

Stay in touch

To be updated with all the latest news, offers and special announcements.

WhatsApp chat