Follow us on...
Follow us on G+ Follow us on Twitter Follow us on Facebook Watch us on YouTube
Register
Results 1 to 10 of 10
  1. #1
    Status
    Offline
    awanbiru2007's Avatar
    Calon Member
    Join Date
    Jan 2010
    Posts
    73
    Reviews
    Read 0 Reviews
    Downloads
    3
    Uploads
    0
    Feedback Score
    0

    [ASK]Cara membelokkan trafik HIT proxy di HOTSPOT

    Maaf gan mau tanya, saya punya setting mangle seperti ini
    Code:
    / ip firewall mangle 
    add chain=prerouting protocol=icmp action=mark-connection \
        new-connection-mark=icmp-con passthrough=yes comment="PROXY HITS" \
        disabled=no 
    add chain=prerouting protocol=icmp connection-mark=icmp-con action=mark-packet \
        new-packet-mark=icmp-pkt passthrough=no comment="" disabled=no 
    add chain=prerouting action=mark-connection new-connection-mark=con-up \
        passthrough=yes comment="" disabled=no 
    add chain=prerouting connection-mark=con-up action=mark-packet \
        new-packet-mark=all-pkt passthrough=no comment="" disabled=no 
    add chain=output content="X-Cache: HIT" action=mark-connection \
        new-connection-mark=proxy-con passthrough=yes comment="" disabled=no 
    add chain=output connection-mark=proxy-con action=mark-packet \
        new-packet-mark=proxy-pkt passthrough=no comment="" disabled=no 
    add chain=forward action=mark-connection new-connection-mark=direct-con \
        passthrough=yes comment="" disabled=no 
    add chain=forward protocol=tcp connection-mark=direct-con action=mark-packet \
        new-packet-mark=all-pkt passthrough=no comment="" disabled=no 
    add chain=output protocol=tcp connection-mark=direct-con action=mark-packet \
        new-packet-mark=all-pkt passthrough=no comment="" disabled=no
    kalo diliat dari counter nya dah jalan.Cuma bingung kalo nerapin nya di hotspot,karena ane pake IP nya DHCP jadi bingun cara membuat queue nya ngarah ke proxy internal. Dari setting diatas ane pernah gunain ke setting IP nya static dan sukses. Trafik HIT nya ngarah ke proxy.Kira-kira mangle setting diatas bisa gak di pake di hotspot

  2. #2
    Status
    Offline
    karaeng's Avatar
    VIP Member
    Join Date
    Jun 2010
    Posts
    958
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by awanbiru2007 Click here to enlarge
    Maaf gan mau tanya, saya punya setting mangle seperti ini
    Code:
    / ip firewall mangle 
    add chain=prerouting protocol=icmp action=mark-connection \
        new-connection-mark=icmp-con passthrough=yes comment="PROXY HITS" \
        disabled=no 
    add chain=prerouting protocol=icmp connection-mark=icmp-con action=mark-packet \
        new-packet-mark=icmp-pkt passthrough=no comment="" disabled=no 
    add chain=prerouting action=mark-connection new-connection-mark=con-up \
        passthrough=yes comment="" disabled=no 
    add chain=prerouting connection-mark=con-up action=mark-packet \
        new-packet-mark=all-pkt passthrough=no comment="" disabled=no 
    add chain=output content="X-Cache: HIT" action=mark-connection \
        new-connection-mark=proxy-con passthrough=yes comment="" disabled=no 
    add chain=output connection-mark=proxy-con action=mark-packet \
        new-packet-mark=proxy-pkt passthrough=no comment="" disabled=no 
    add chain=forward action=mark-connection new-connection-mark=direct-con \
        passthrough=yes comment="" disabled=no 
    add chain=forward protocol=tcp connection-mark=direct-con action=mark-packet \
        new-packet-mark=all-pkt passthrough=no comment="" disabled=no 
    add chain=output protocol=tcp connection-mark=direct-con action=mark-packet \
        new-packet-mark=all-pkt passthrough=no comment="" disabled=no
    kalo diliat dari counter nya dah jalan.Cuma bingung kalo nerapin nya di hotspot,karena ane pake IP nya DHCP jadi bingun cara membuat queue nya ngarah ke proxy internal. Dari setting diatas ane pernah gunain ke setting IP nya static dan sukses. Trafik HIT nya ngarah ke proxy.Kira-kira mangle setting diatas bisa gak di pake di hotspot
    maksudnya gimana nih gan... ? membelokkan aja
    atau proxy HITnya doank
    interface Hostpot dan lokal beda nga?

  3. #3
    Status
    Offline
    awanbiru2007's Avatar
    Calon Member
    Join Date
    Jan 2010
    Posts
    73
    Reviews
    Read 0 Reviews
    Downloads
    3
    Uploads
    0
    Feedback Score
    0
    maksud nya gini, dari setting mangel di atas ane dah bisa belokkan trafik HIT nya ke proxy internal. jadi seluruh arus yang HIT lari nya ke proxy. Nah kalo untuk hotspot bisa gak?

  4. #4
    Status
    Offline
    karaeng's Avatar
    VIP Member
    Join Date
    Jun 2010
    Posts
    958
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by awanbiru2007 Click here to enlarge
    maksud nya gini, dari setting mangel di atas ane dah bisa belokkan trafik HIT nya ke proxy internal. jadi seluruh arus yang HIT lari nya ke proxy. Nah kalo untuk hotspot bisa gak?
    bisa gan...

  5. #5
    Status
    Offline
    awanbiru2007's Avatar
    Calon Member
    Join Date
    Jan 2010
    Posts
    73
    Reviews
    Read 0 Reviews
    Downloads
    3
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by karaeng Click here to enlarge
    bisa gan...
    o bisa ya,ok setelah ane masukin ke setting mangle nya counter nya berhasil gan dan jalan terus untuk bikin queue nya gimana

    Click here to enlarge

  6. #6
    Status
    Offline
    karaeng's Avatar
    VIP Member
    Join Date
    Jun 2010
    Posts
    958
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by awanbiru2007 Click here to enlarge
    o bisa ya,ok setelah ane masukin ke setting mangle nya counter nya berhasil gan dan jalan terus untuk bikin queue nya gimana

    Click here to enlarge
    banyak di forum gan.... search lagi dah.. pasti ktemu Click here to enlarge

  7. #7
    Status
    Offline
    singkong77's Avatar
    Member
    Join Date
    Jan 2010
    Posts
    266
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    yang ini punya ane om . Click here to enlarge

    tapi ko queue nya ga kelimit yah downloadnya om... kira kira rule proxy externalnya udah bener belom yah om

    ip proxy 192.168.1.2


    Click here to enlarge


    Code:
    Flags: X - disabled, I - invalid, D - dynamic
     0   ;;; PROXY HITS
         chain=prerouting action=mark-connection new-connection-mark=icmp-con
         passthrough=yes protocol=icmp
    
     1   chain=prerouting action=mark-packet new-packet-mark=icmp-pkt
         passthrough=no protocol=icmp connection-mark=icmp-con
    
     2   chain=prerouting action=mark-connection new-connection-mark=con-up
         passthrough=yes
    
     3   chain=prerouting action=mark-packet new-packet-mark=all-pkt passthrough=n>
         connection-mark=con-up
    
     4   chain=output action=mark-connection new-connection-mark=proxy-con
         passthrough=yes content=X-Cache: HIT
    
     5   chain=output action=mark-packet new-packet-mark=proxy-pkt passthrough=no
         connection-mark=proxy-con
    
     6   chain=forward action=mark-connection new-connection-mark=direct-con
         passthrough=yes
    
     7   chain=forward action=mark-packet new-packet-mark=all-pkt passthrough=no
         protocol=tcp connection-mark=direct-con
    
     8   chain=output action=mark-packet new-packet-mark=all-pkt passthrough=no
         protocol=tcp connection-mark=direct-con
    
     9   ;;; fb-packet
         chain=forward action=mark-connection new-connection-mark=fb-packet
         passthrough=yes protocol=tcp dst-address-list=fb-list dst-port=80
    
    10   chain=forward action=mark-connection new-connection-mark=direct-con
         passthrough=yes
    
    11   chain=forward action=mark-packet new-packet-mark=all-pkt passthrough=no
         protocol=tcp connection-mark=direct-con
    
    12   ;;; iix-lan
         chain=prerouting action=mark-packet new-packet-mark=packet-iix
         passthrough=no connection-mark=con-iix
    
    13   ;;; iix >< intl
         chain=prerouting action=mark-connection new-connection-mark=con-iix
         passthrough=yes dst-address-list=nice in-interface=lan
    
    14   ;;; int-lan
         chain=prerouting action=mark-packet new-packet-mark=packet-intl
         passthrough=no
    
    15   chain=forward action=mark-packet new-packet-mark=fb passthrough=no
         src-address-list=fb-list connection-mark=fb-packet
    
    16   ;;; yahoo
         chain=forward action=mark-connection new-connection-mark=yahoo-cm
         passthrough=yes protocol=tcp dst-address-list=yahoo-list dst-port=80
    
    17   chain=forward action=mark-packet new-packet-mark=yahoo-pm passthrough=no
         src-address-list=yahoo-list connection-mark=yahoo-cm
    
    18   ;;; pb-packet
         chain=forward action=mark-connection new-connection-mark=pb-iix
         passthrough=yes protocol=tcp dst-address=203.89.146.0/23 dst-port=39190
    
    19   chain=forward action=mark-connection new-connection-mark=pb-iix
         passthrough=yes protocol=udp dst-address=203.89.146.0/23
         dst-port=40000-40010
    
    20   chain=forward action=mark-packet new-packet-mark=pb-pm passthrough=no
         connection-mark=pb-iix
    ini punya ane om.. ada yg salah ga yah ,

    queue

    Code:
     0    name="iix" dst-address=0.0.0.0/0 interface=all parent=none packet-marks=packet-iix direction=both priority=8
          queue=default-small/default-small limit-at=0/0 max-limit=512k/512k burst-limit=0/0 burst-threshold=0/0
          burst-time=0s/0s total-queue=default-small
    
     1    name="intl" dst-address=0.0.0.0/0 interface=all parent=none packet-marks=packet-intl direction=both priority=8
          queue=default-small/default-small limit-at=0/0 max-limit=512k/512k burst-limit=1M/1M burst-threshold=1M/1M
          burst-time=35s/35s total-queue=default-small
    
     2    name="PC3-intl" target-addresses=192.168.1.13/32 dst-address=0.0.0.0/0 interface=all parent=intl
          packet-marks=packet-intl direction=both priority=8 queue=default-small/default-small limit-at=0/0
          max-limit=256k/256k burst-limit=512k/512k burst-threshold=512k/512k burst-time=35s/35s total-queue=default-small
    
     3    name="PC1-intl" target-addresses=192.168.1.11/32 dst-address=0.0.0.0/0 interface=all parent=intl
          packet-marks=packet-intl direction=both priority=8 queue=default-small/default-small limit-at=0/0
          max-limit=256k/256k burst-limit=512k/512k burst-threshold=512k/512k burst-time=35s/35s total-queue=default-small
    
     4    name="PC3-iix" target-addresses=192.168.1.13/32 dst-address=0.0.0.0/0 interface=all parent=iix packet-marks=packet-ii>
          direction=both priority=8 queue=default-small/default-small limit-at=0/0 max-limit=256k/256k burst-limit=512k/512k
          burst-threshold=512k/512k burst-time=35s/35s total-queue=default-small time=0s-1d,sun,mon,tue,wed,thu,fri,sat
    
     5    name="Biling-intl" target-addresses=192.168.1.10/32 dst-address=0.0.0.0/0 interface=all parent=intl
          packet-marks=packet-intl direction=both priority=8 queue=default-small/default-small limit-at=0/0
          max-limit=512k/512k burst-limit=0/0 burst-threshold=0/0 burst-time=35s/35s total-queue=default-small
    
     6    name="PC2-iix" target-addresses=192.168.1.12/32 dst-address=0.0.0.0/0 interface=all parent=iix packet-marks=packet-ii>
          direction=both priority=8 queue=default-small/default-small limit-at=0/0 max-limit=256k/256k burst-limit=512k/512k
          burst-threshold=512k/512k burst-time=35s/35s total-queue=default-small
    
     7    name="PC5-intl" target-addresses=192.168.1.15/32 dst-address=0.0.0.0/0 interface=all parent=intl
          packet-marks=packet-intl direction=both priority=8 queue=default-small/default-small limit-at=0/0
          max-limit=256k/256k burst-limit=512k/512k burst-threshold=512k/512k burst-time=35s/35s total-queue=default-small
    
     8    name="PC4-intl" target-addresses=192.168.1.14/32 dst-address=0.0.0.0/0 interface=all parent=intl
          packet-marks=packet-intl direction=both priority=8 queue=default-small/default-small limit-at=0/0
          max-limit=256k/256k burst-limit=512k/512k burst-threshold=512k/512k burst-time=35s/35s total-queue=default-small
    
     9    name="PC4-iix" target-addresses=192.168.1.14/32 dst-address=0.0.0.0/0 interface=all parent=iix packet-marks=packet-ii>
          direction=both priority=8 queue=default-small/default-small limit-at=0/0 max-limit=256k/256k burst-limit=512k/512k
          burst-threshold=512k/512k burst-time=35s/35s total-queue=default-small
    mohon pencerahannya om Click here to enlarge

  8. #8
    Status
    Offline
    putra_maiwa's Avatar
    Forum Guru
    Join Date
    Sep 2009
    Posts
    1,298
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by singkong77 Click here to enlarge
    yang ini punya ane om . Click here to enlarge

    tapi ko queue nya ga kelimit yah downloadnya om... kira kira rule proxy externalnya udah bener belom yah om

    ip proxy 192.168.1.2
    coba copas /ip firewal nat nya...

  9. #9
    Status
    Offline
    karaeng's Avatar
    VIP Member
    Join Date
    Jun 2010
    Posts
    958
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by singkong77 Click here to enlarge
    yang ini punya ane om . Click here to enlarge

    tapi ko queue nya ga kelimit yah downloadnya om... kira kira rule proxy externalnya udah bener belom yah om

    ip proxy 192.168.1.2


    Click here to enlarge


    Code:
    Flags: X - disabled, I - invalid, D - dynamic
     0   ;;; PROXY HITS
         chain=prerouting action=mark-connection new-connection-mark=icmp-con
         passthrough=yes protocol=icmp
    
     1   chain=prerouting action=mark-packet new-packet-mark=icmp-pkt
         passthrough=no protocol=icmp connection-mark=icmp-con
    
     2   chain=prerouting action=mark-connection new-connection-mark=con-up
         passthrough=yes
    
     3   chain=prerouting action=mark-packet new-packet-mark=all-pkt passthrough=n>
         connection-mark=con-up
    
     4   chain=output action=mark-connection new-connection-mark=proxy-con
         passthrough=yes content=X-Cache: HIT
    
     5   chain=output action=mark-packet new-packet-mark=proxy-pkt passthrough=no
         connection-mark=proxy-con
    
     6   chain=forward action=mark-connection new-connection-mark=direct-con
         passthrough=yes
    
     7   chain=forward action=mark-packet new-packet-mark=all-pkt passthrough=no
         protocol=tcp connection-mark=direct-con
    
     8   chain=output action=mark-packet new-packet-mark=all-pkt passthrough=no
         protocol=tcp connection-mark=direct-con
    
     9   ;;; fb-packet
         chain=forward action=mark-connection new-connection-mark=fb-packet
         passthrough=yes protocol=tcp dst-address-list=fb-list dst-port=80
    
    10   chain=forward action=mark-connection new-connection-mark=direct-con
         passthrough=yes
    
    11   chain=forward action=mark-packet new-packet-mark=all-pkt passthrough=no
         protocol=tcp connection-mark=direct-con
    
    12   ;;; iix-lan
         chain=prerouting action=mark-packet new-packet-mark=packet-iix
         passthrough=no connection-mark=con-iix
    
    13   ;;; iix >< intl
         chain=prerouting action=mark-connection new-connection-mark=con-iix
         passthrough=yes dst-address-list=nice in-interface=lan
    
    14   ;;; int-lan
         chain=prerouting action=mark-packet new-packet-mark=packet-intl
         passthrough=no
    
    15   chain=forward action=mark-packet new-packet-mark=fb passthrough=no
         src-address-list=fb-list connection-mark=fb-packet
    
    16   ;;; yahoo
         chain=forward action=mark-connection new-connection-mark=yahoo-cm
         passthrough=yes protocol=tcp dst-address-list=yahoo-list dst-port=80
    
    17   chain=forward action=mark-packet new-packet-mark=yahoo-pm passthrough=no
         src-address-list=yahoo-list connection-mark=yahoo-cm
    
    18   ;;; pb-packet
         chain=forward action=mark-connection new-connection-mark=pb-iix
         passthrough=yes protocol=tcp dst-address=203.89.146.0/23 dst-port=39190
    
    19   chain=forward action=mark-connection new-connection-mark=pb-iix
         passthrough=yes protocol=udp dst-address=203.89.146.0/23
         dst-port=40000-40010
    
    20   chain=forward action=mark-packet new-packet-mark=pb-pm passthrough=no
         connection-mark=pb-iix
    ini punya ane om.. ada yg salah ga yah ,

    queue

    Code:
     0    name="iix" dst-address=0.0.0.0/0 interface=all parent=none packet-marks=packet-iix direction=both priority=8
          queue=default-small/default-small limit-at=0/0 max-limit=512k/512k burst-limit=0/0 burst-threshold=0/0
          burst-time=0s/0s total-queue=default-small
    
     1    name="intl" dst-address=0.0.0.0/0 interface=all parent=none packet-marks=packet-intl direction=both priority=8
          queue=default-small/default-small limit-at=0/0 max-limit=512k/512k burst-limit=1M/1M burst-threshold=1M/1M
          burst-time=35s/35s total-queue=default-small
    
     2    name="PC3-intl" target-addresses=192.168.1.13/32 dst-address=0.0.0.0/0 interface=all parent=intl
          packet-marks=packet-intl direction=both priority=8 queue=default-small/default-small limit-at=0/0
          max-limit=256k/256k burst-limit=512k/512k burst-threshold=512k/512k burst-time=35s/35s total-queue=default-small
    
     3    name="PC1-intl" target-addresses=192.168.1.11/32 dst-address=0.0.0.0/0 interface=all parent=intl
          packet-marks=packet-intl direction=both priority=8 queue=default-small/default-small limit-at=0/0
          max-limit=256k/256k burst-limit=512k/512k burst-threshold=512k/512k burst-time=35s/35s total-queue=default-small
    
     4    name="PC3-iix" target-addresses=192.168.1.13/32 dst-address=0.0.0.0/0 interface=all parent=iix packet-marks=packet-ii>
          direction=both priority=8 queue=default-small/default-small limit-at=0/0 max-limit=256k/256k burst-limit=512k/512k
          burst-threshold=512k/512k burst-time=35s/35s total-queue=default-small time=0s-1d,sun,mon,tue,wed,thu,fri,sat
    
     5    name="Biling-intl" target-addresses=192.168.1.10/32 dst-address=0.0.0.0/0 interface=all parent=intl
          packet-marks=packet-intl direction=both priority=8 queue=default-small/default-small limit-at=0/0
          max-limit=512k/512k burst-limit=0/0 burst-threshold=0/0 burst-time=35s/35s total-queue=default-small
    
     6    name="PC2-iix" target-addresses=192.168.1.12/32 dst-address=0.0.0.0/0 interface=all parent=iix packet-marks=packet-ii>
          direction=both priority=8 queue=default-small/default-small limit-at=0/0 max-limit=256k/256k burst-limit=512k/512k
          burst-threshold=512k/512k burst-time=35s/35s total-queue=default-small
    
     7    name="PC5-intl" target-addresses=192.168.1.15/32 dst-address=0.0.0.0/0 interface=all parent=intl
          packet-marks=packet-intl direction=both priority=8 queue=default-small/default-small limit-at=0/0
          max-limit=256k/256k burst-limit=512k/512k burst-threshold=512k/512k burst-time=35s/35s total-queue=default-small
    
     8    name="PC4-intl" target-addresses=192.168.1.14/32 dst-address=0.0.0.0/0 interface=all parent=intl
          packet-marks=packet-intl direction=both priority=8 queue=default-small/default-small limit-at=0/0
          max-limit=256k/256k burst-limit=512k/512k burst-threshold=512k/512k burst-time=35s/35s total-queue=default-small
    
     9    name="PC4-iix" target-addresses=192.168.1.14/32 dst-address=0.0.0.0/0 interface=all parent=iix packet-marks=packet-ii>
          direction=both priority=8 queue=default-small/default-small limit-at=0/0 max-limit=256k/256k burst-limit=512k/512k
          burst-threshold=512k/512k burst-time=35s/35s total-queue=default-small
    mohon pencerahannya om Click here to enlarge
    ini menggunakan external proxy yah...?
    hit paket masih menggunakan content yah...?

  10. #10
    Status
    Offline
    antonyp's Avatar
    Newbie
    Join Date
    Apr 2009
    Posts
    30
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    cara paling gampang centang transparent proxy diuser profile
    trus bikin mangle output interfacenya hotspot,queuenya pake tree

 

 

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. hotspot dan bukan hotspot dalam satu router gmna cara na
    By cyber_gaptek in forum Beginner Basics
    Replies: 26
    Last Post: 01-10-2012, 22:52
  2. [ ASK ] Mengatur aliran trafik
    By -dunia- in forum Beginner Basics
    Replies: 3
    Last Post: 04-08-2011, 21:09
  3. Replies: 21
    Last Post: 25-11-2009, 02:35
  4. tanya cara blok, biar proxy saya ga jadi open proxy
    By yephta in forum Beginner Basics
    Replies: 5
    Last Post: 11-08-2009, 20:45

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •