Follow us on...
Follow us on G+ Follow us on Twitter Follow us on Facebook Watch us on YouTube
Register
Results 1 to 3 of 3
  1. #1
    Status
    Offline
    b46on6's Avatar
    Baru Gabung
    Join Date
    Jun 2010
    Location
    sum-sel
    Posts
    16
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0

    ip client hotspot tidak terdeksi dengan baik

     
    Click here to enlarge

     
    Code:
    [admin@MikroTik] > ip address print
    Flags: X - disabled, I - invalid, D - dynamic 
     #   ADDRESS            NETWORK         BROADCAST       INTERFACE               
     0   10.10.10.2/24      10.10.10.0      10.10.10.255    speedy                  
     1   192.168.1.1/24     192.168.1.1     192.168.1.1     LAN                     
     2   192.168.2.1/24     192.168.2.0     192.168.2.255   proxy                   
     3   ;;; hotspot network
         192.168.3.2/24     192.168.3.0     192.168.3.255   hotspot                 
     4 D 180.242.../32   180.242...    0.0.0.0         pppoe-speedy


     
    Code:
    [admin@MikroTik] > ip firewall nat print
    Flags: X - disabled, I - invalid, D - dynamic 
     0   chain=srcnat action=masquerade out-interface=pppoe-speedy 
    
     1   ;;; place hotspot rules here
         chain=unused-hs-chain action=passthrough 
    
     2   ;;; Transparent-Proxy-Hotspot
         chain=dstnat action=dst-nat to-addresses=192.168.1.101 to-ports=3128 
         protocol=tcp src-address=192.168.3.0/24 dst-address-list=!proxy 
         in-interface=hotspot dst-port=80 
    
     3   ;;; www-proxy
         chain=dstnat action=dst-nat to-addresses=192.168.1.101 to-ports=80 
         protocol=tcp in-interface=pppoe-speedy dst-port=80


     
    Code:
    #server_http11 on
    
    http_port 192.168.1.101:3128 transparent
    
    acl no_cache_hosts url_regex -i "/var/ipcop/proxy/advanced/acls/dst_nocache_url.acl"
    cache deny no_cache_hosts
    
    cache_effective_user squid
    cache_effective_group squid
    umask 023
    
    pid_filename /var/run/squid.pid
    
    cache_mem 128 MB
    memory_replacement_policy heap GDSF
    cache_replacement_policy heap LFUDA
    
    cache_dir aufs /var/log/cache 20480 16 256
    
    error_directory /usr/lib/squid/advproxy/errors.ipcop/English
    
    access_log /var/log/squid/access.log
    cache_log /var/log/squid/cache.log
    cache_store_log none
    icon_directory /usr/lib/squid/advproxy/icons
    
    log_mime_hdrs off
    forwarded_for off
    via off
    
    acl within_timeframe time MTWHFAS 00:00-24:00
    
    acl all src 0.0.0.0/0.0.0.0
    acl localhost src 127.0.0.1/255.255.255.255
    acl SSL_ports port 443 # https
    acl SSL_ports port 563 # snews
    acl Safe_ports port 80 # http
    acl Safe_ports port 21 # ftp
    acl Safe_ports port 443 # https
    acl Safe_ports port 563 # snews
    acl Safe_ports port 70 # gopher
    acl Safe_ports port 210 # wais
    acl Safe_ports port 1025-65535 # unregistered ports
    acl Safe_ports port 280 # http-mgmt
    acl Safe_ports port 488 # gss-http
    acl Safe_ports port 591 # filemaker
    acl Safe_ports port 777 # multiling http
    acl Safe_ports port 3128 # Squids port (for icons)
    
    acl IPCop_http  port 81
    acl IPCop_https port 445
    acl IPCop_ips              dst 192.168.1.101
    acl IPCop_networks         src "/var/ipcop/proxy/advanced/acls/src_subnets.acl"
    acl IPCop_servers          dst "/var/ipcop/proxy/advanced/acls/src_subnets.acl"
    acl IPCop_green_network    src 192.168.1.0/255.255.255.0
    acl IPCop_green_servers    dst 192.168.1.0/255.255.255.0
    acl CONNECT method CONNECT
    #Start of custom includes
    
    #_________________________________
    # Modify by Heddy_JoE AT nDasJoWo
    #^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
    acl store_rewrite_list urlpath_regex \/(get_video\?|videodownload\?|videoplayback.?ip|videoplayback.?id|videoplayback.*ip|vi$
    acl store_rewrite_list_web url_regex ^http:\/\/([A-Za-z-]+[0-9]+)*\.[A-Za-z]*\.[A-Za-z]*
    acl store_rewrite_list urlpath_regex \/(get_video\?|videodownload\?|videoplayback.?ip|videoplayback.?id|videoplayback.*ip|vi$
    acl store_rewrite_list_web url_regex ^http:\/\/([A-Za-z-]+[0-9]+)*\.[A-Za-z]*\.[A-Za-z]*
    acl store_rewrite_list_web url_regex (([a-z]{1,2}[0-9]{1,3})|([0-9]{1,3}[a-z]{1,2}))\.[a-z]*[0-9]?\.[a-z]{3}
    acl store_rewrite_list_path urlpath_regex \.(jp(e?g|e|2)|gif|png|tiff?|bmp|ico|flv|avc|swf|zip|rar|mk(a|v)|wmv|mpg|mp(3|4)|3$
    acl store_rewrite_list_web_CDN url_regex ^http:\/\/[a-z]+[0-9]\.google\.com doubleclick\.net
    acl store_rewrite_list_web_CDN url_regex \.rapidshare\.com.*\/[0-9]*\/.*\/[^\/]* ^http:\/\/(www\.ziddu\.com.*\.[^\/]{3,4})\/$
    acl store_rewrite_list_web_CDN url_regex ^http:\/\/[.a-z0-9]*\.photobucket\.com.*\.[a-z]{3}$ quantserve\.com
    acl store_rewrite_list_web_CDN url_regex ^http:\/\/[a-z]+[0-9]\.google\.co(m|\.id)
    acl store_rewrite_list_web_CDN url_regex ^http:\/\/\.www[0-9][0-9]\.indowebster\.com\/(.*)(rar|zip|flv|wm(a|v)|3gp|mp(4|3)|e$
    acl store_rewrite_list_web_CDN url_regex ^http:\/\/v.okezone.com\/get_video\/([A-Za-z]+[0-9].)
    acl store_rewrite_list_mbah_ggl dstdomain .mt.google.com .mt0.google.com .mt1.google.com .mt2.google.com .mt3.google.com
    acl store_rewrite_list_mbah_ggl dstdomain .kh.google.com .kh0.google.com .kh1.google.com .kh2.google.com .kh3.google.com
    acl store_rewrite_list_mbah_ggl dstdomain .khm0.google.com .khm1.google.com .khm2.google.com .khm3.google.com
    acl store_rewrite_list_mbah_ggl dstdomain .kh.google.com.au .kh0.google.com.au .kh1.google.com.au
    acl store_rewrite_list_mbah_ggl dstdomain .kh2.google.com.au .khc3.google.com.au
    acl store_rewrite_list_mbah_ggl dstdomain *.wikimedia.org
    acl dontrewrite url_regex redbot\.org \.php
    cache allow store_rewrite_list store_rewrite_list_web store_rewrite_list_path store_rewrite_list_web_CDN store_rewrite_list_$
    storeurl_access deny dontrewrite
    storeurl_access allow store_rewrite_list
    storeurl_access allow store_rewrite_list_web_CDN
    storeurl_access allow store_rewrite_list_web store_rewrite_list_path
    storeurl_access allow store_rewrite_list_mbah_ggl
    storeurl_access deny all
    cache deny dontrewrite
    storeurl_rewrite_program /etc/squid/StorE_LuscA.pl
    storeurl_rewrite_children 5
    storeurl_rewrite_concurrency 99
    #--------------------------------------------------------------------
    refresh_pattern \.(ini|ui|cmd)\? 0 0% 0
    refresh_pattern \.(ini|ui|cmd) 0 0% 0
    #====================================================================
    # 1 year = 525600 mins, 1 month = 43800 mins
    refresh_pattern porn.*\.flv                             161280 100% 0           ignore-auth ignore-no-cache ignore-no-store $
    refresh_pattern imeem.*\.flv                            161280 100% 0   override-lastmod override-expire store-stale
    refresh_pattern \.rapidshare.*\/[0-9]*\/.*\/[^\/]*      161280 100% 161280      ignore-reload store-stale ignore-auth ignore$
    refresh_pattern (get_video\?|videoplayback\?|videodownload\?|\.flv?)                                    129600 999999% 12960$
    refresh_pattern (get_video\?|videoplayback.?ip|videoplayback.?id|videoplayback.*ip|videoplayback.*id|videodownload\?|\.flv?)$
    refresh_pattern \.(ico|video-stats)
    refresh_pattern (get_video\?|videoplayback.?ip|videoplayback.?id|videoplayback.*ip|videoplayback.*id|videodownload\?|\.flv?)$
    refresh_pattern \.(ico|video-stats)                                                                     129600 999999% 12960$
    refresh_pattern \.etology\?                                                                                     129600 99999$
    refresh_pattern galleries\.video(\?|sz)                                                                 129600 999999% 12960$
    refresh_pattern brazzers\?                                                                                      129600 99999$
    refresh_pattern \.adtology\?                                                                            129600 999999% 12960$
    refresh_pattern ^.*(utm\.gif|ads\?|rmxads\.com|ad\.z5x\.net|bh\.contextweb\.com|bstats\.adbrite\.com|a1\.interclick\.com|ad\$
    refresh_pattern ^.*safebrowsing.*google  129600 999999% 129600 override-expire ignore-reload ignore-no-cache ignore-private $
    refresh_pattern ^http://((cbk|mt|kh|khm|mlt)[0-9]?)\.google\.co(m|\.au|\.uk)                    129600 999999% 129600 overri$
    refresh_pattern ytimg\.com.*\.jpg                                                                       129600 999999% 12960$
    refresh_pattern images\.friendster\.com.*\.(png|gif)                                                    129600 999999% 12960$
    refresh_pattern garena\.com                                                                             129600 999999% 12960$
    refresh_pattern photobucket.*\.(jp(e?g|e|2)|tiff?|bmp|gif|png)                                          129600 999999% 12960$
    refresh_pattern vid\.akm\.dailymotion\.com.*\.on2\?                                                     129600 999999% 12960$
    refresh_pattern mediafire.com\/images.*\.(jp(e?g|e|2)|tiff?|bmp|gif|png)                                129600 999999% 12960$
    refresh_pattern ^http:\/\/images|pics|thumbs[0-9]|porn[0-9][0-9][0-9]|media[0-9][0-9]\.         129600 999999% 129600 reload$
    refresh_pattern ^http:\/\/www.onemanga.com.*\/                                                          129600 999999% 12960$
    #refresh_pattern ^http:\/\/\.media[0-9][0-9]\.ord\.tube8\.com\/(.*)(flv|swf|wmv|mpg|mpeg|3gp)   43200 99999% 129600 reload-i$
    refresh_pattern ^http:\/\/v.okezone.com\/get_video\/([A-Za-z]+[0-9].)                           43200 99999% 43200 reload-in$
    # ANTI VIRUS
    refresh_pattern guru.avg.com/.*\.(bin)                                  43200 999999% 43200 ignore-no-cache ignore-no-store $
    refresh_pattern (avgate|avira).*(idx|gz)$                               43200 999999% 43200 ignore-no-cache ignore-no-store $
    refresh_pattern kaspersky.*\.(avc|kdc)$                               43200 999999% 43200 ignore-no-cache ignore-no-store ig$
    refresh_pattern kaspersky                                               43200 999999% 43200 ignore-no-cache ignore-no-store $
    refresh_pattern update.nai.com/.*\.(gem|zip|mcs)                        43200 999999% 43200 ignore-no-cache ignore-no-store $
    refresh_pattern ^http:\/\/liveupdate.symantecliveupdate.com.*\(zip)     43200 999999% 43200 ignore-no-cache ignore-no-store $
    
    refresh_pattern windowsupdate.com/.*\.(cab|exe)                         43200  999999%  129600 ignore-no-cache ignore-no-sto$
    refresh_pattern update.microsoft.com/.*\.(cab|exe)                      43200  999999%  129600 ignore-no-cache ignore-no-sto$
    refresh_pattern download.microsoft.com/.*\.(cab|exe)                    43200  999999%  129600 ignore-no-cache ignore-no-sto$
    
    #images facebook
    refresh_pattern ((facebook.com)|(69.63.181.11|69.63.181.12|69.63.189.11|69.63.189.16)).*\.(jpg|png|gif|swf|mp3|mp4|mpg|3gp|f$
    refresh_pattern -i \.fbcdn.net.*\.(jpg|gif|png|swf|mp3|wav|mp4|mpg|3gp|flv|swf|wmv|zip|rar)             129600 999999% 12960$
    refresh_pattern -i \.zynga.com.*\.(jpg|gif|png|swf|mp3|wav|mp4|mpg|3gp|flv|swf|wmv)             129600 999999% 129600   igno$
    refresh_pattern -i \.crowdstar.com.*\.(jpg|gif|png|swf|mp3|wav|mp4|mpg|3gp|flv|swf|wmv)         129600 999999% 129600   igno$
    refresh_pattern ^http:\/\/\static\.ak\.fbcdn\.net*\.(jpg|gif|pngmp4|mpg|3gp|flv|swf|wmv)                129600 999999% 12960$
    refresh_pattern ^http:\/\/\videoxl\.l[0-9]\.facebook.com\/(.*)(mp4|mpg|3gp|flv|swf|wmv) 129600 999999% 129600   ignore-reloa$
    refresh_pattern ^http:\/\/\*.channel\.facebook\.com\/(.*)(js|css|swf|jpg|gif|png|mp3)   129600 999999% 129600   ignore-reloa$
    
    #End of custom includes
    
    #Access to squid:
    #local machine, no restriction
    http_access allow         localhost
    
    #GUI admin if local machine connects
    http_access allow         IPCop_ips IPCop_networks IPCop_http
    http_access allow CONNECT IPCop_ips IPCop_networks IPCop_https
    
    #Deny not web services
    http_access deny          !Safe_ports
    http_access deny  CONNECT !SSL_ports
    
    #Set download throttling
    delay_pools 1
    delay_class 1 3
    delay_parameters 1 -1/-1 -1/-1 25000/50000
    delay_access 1 deny  IPCop_ips
    delay_parameters 1 -1/-1 -1/-1 25000/50000
    delay_access 1 deny  IPCop_ips
    delay_access 1 allow all
    delay_initial_bucket_level 100
    
    #Set custom configured ACLs
    http_access allow IPCop_networks within_timeframe
    http_access deny  all
    
    #Strip HTTP Header
    header_access X-Forwarded-For deny all
    header_access Via deny all
    
    httpd_suppress_version_string on
    
    maximum_object_size 101376 KB
    minimum_object_size 512 bytes
    logfile_rotate 1
    request_body_max_size 0 allow all
    reply_body_max_size 0 deny all
    
    visible_hostname deadlyattack.ascorp
    
    url_rewrite_program /usr/sbin/squidGuard
    url_rewrite_children 5


    permasalahannya :
    kenapa bukan ip client hotspot yang terdetek di ipcop malah ip gateway mikrotiknya
     
    Click here to enlarge

    tapi di firewall.log ipcopnya dah keliatan
     
    Click here to enlarge


    saya sudah coba trid yang ini tapi masih Click here to enlarge
    sudikah kiranya agan" membantu saya Click here to enlarge
    Last edited by b46on6; 15-03-2011 at 23:15. Reason: [ASK]

  2. #2
    Status
    Offline
    b46on6's Avatar
    Baru Gabung
    Join Date
    Jun 2010
    Location
    sum-sel
    Posts
    16
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    lom ada yang kasih solusi ne!!!Click here to enlargeClick here to enlarge
    Last edited by b46on6; 15-03-2011 at 01:33.

  3. #3
    Status
    Offline
    gery_kuya's Avatar
    Baru Gabung
    Join Date
    Jul 2008
    Posts
    13
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    gbr-ny mana om...

 

 

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. User Manager tidak konek dengan hotspot
    By bherz in forum HotSpot, The Dude & User Manager
    Replies: 4
    Last Post: 19-05-2013, 10:14
  2. PingMop.com | Bandwidth Murah dengan Kualitas Baik
    By Mivo.TV in forum ISP / Network Link
    Replies: 13
    Last Post: 16-04-2011, 12:37
  3. (ask) setting mikrotik hotspot yg benar dan baik ISP speedy..
    By vinc4bitzboyz in forum Beginner Basics
    Replies: 9
    Last Post: 08-11-2010, 15:51
  4. Ask : login hotspot tidak keluar apabila client reconnect
    By ketombe in forum Beginner Basics
    Replies: 14
    Last Post: 07-06-2010, 17:06
  5. koneksi client dengan hotspot keputus...
    By aiki in forum Wireless Networking
    Replies: 7
    Last Post: 24-07-2008, 11:03

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •