Follow us on...
Follow us on G+ Follow us on Twitter Follow us on Facebook Watch us on YouTube
Register
Results 1 to 10 of 10
  1. #1
    Status
    Offline
    eselonbego's Avatar
    Newbie
    Join Date
    May 2012
    Posts
    28
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0

    Question konfigurasi RB 750; user LAN & hotspot (non login) hanya dpt akses web tertentu

    selamat siang master,

    ane punya akan membangun jaringan speedy dengan topologi sebagai berikut :

    [ISP] -> [MODEM] -> [RB 750] -> ether 2 -> [LAN KABEL (6 PC)] ; ether 3 -> [AP untuk HOTSPOT (30 user)]

    ane pengin di mikrotik ada rule begini gan:
    * untuk 6 PC LAN, 1) 5 PC hanya bisa mengakses situs ymail, gmail, hotmail (situs lain tidak bisa diakses) (b/w full)
    2) 1 PC bisa mengakses seluruh situs (b/w full)
    * untuk akses point (hotspot), 1) user yg TIDAK LOGIN juga hanya bisa mengakses situs yg sama pada LAN (b/w full)
    2) user yang LOGIN, mereka dapat mengakses seluruh situs (b/w dibatasi)

    mohon step-step konfigurasinya gan. ane gak ngerti comand line terminal. ane berharap step pada winbox.

    terima kasih atas pencerahan & sharing ilmunya.

  2. #2
    Status
    Offline
    zdienos's Avatar
    Forum Guru
    Join Date
    Feb 2010
    Location
    ~/makasar
    Posts
    1,252
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    maless nyari???

    tidak ada solusi yang paling tepat untuk pertanyaan/masalah anda...
    yang ada adalah, bagaimana anda memahami masalah yang hampir mirip, dan terus dikembangkan...

    silahkan search2 dulu dah, ntar dimarahi momod




  3. #3
    Status
    Offline
    pakmin's Avatar
    Baru Gabung
    Join Date
    Jun 2009
    Location
    Kota Bandar Lampung, Indonesia
    Posts
    14
    Reviews
    Read 0 Reviews
    Downloads
    4
    Uploads
    0
    Feedback Score
    0
    semuanya ada difirewall mas, monggo sampean semangat² cari dulu.
    budayakan

  4. #4
    Status
    Offline
    triadisantoso's Avatar
    Member
    Join Date
    May 2010
    Location
    Lampung, Indonesia
    Posts
    199
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    ayo gan semangat... upss.. sama2 dari lampung Click here to enlarge

  5. #5
    Status
    Offline
    RendraT's Avatar
    Baru Gabung
    Join Date
    Jun 2012
    Posts
    15
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    ada dua cara gan, bisa langsung mainin di firewall dengan chain=forward atau cara kedua mainin di Proxy (seandainya make Proxy, baik internal maupun external)

    misalnya untuk LAN KAbel ipnya 10.10.10.1-10.10.10.6
    misalnya untuk hotspot ipnya 10.10.20.1-10.10.20.30

    1. kalo make firewall filter
    ip firewall filter add chain=forward src-address=10.10.10.6 action=accept (untuk pc yang bisa akses semua situs)
    ip firewall filter add chain=forward connection-state=established action=accept
    ip firewall filter add chain=forward src-address=10.10.10.1-10.10.10.5 protocol=tcp dst-port=80,443 content=.ymail.com action=accept
    ip firewall filter add chain=forward src-address=10.10.10.1-10.10.10.5 protocol=tcp dst-port=80,443 content=.gmail.com action=accept
    ip firewall filter add chain=forward src-address=10.10.10.1-10.10.10.5 protocol=tcp dst-port=80,443 content=.hotmail.com action=accept
    ip firewall filter add chain=forward src-address=10.10.10.1-10.10.10.5 protocol=tcp dst-port=80,443 action=drop (buat ngeblok situs2 yang lain)
    ip firewall filter add chain=forward connection-state=established action=accept
    ip firewall filter add chain=forward src-address=10.10.10.1-10.10.10.5 action=accept (kali-kali aja user ini mau nge-ping internet atau main messenger)
    ip firewall filter add chain=forward src-address=10.10.20.1-10.10.20.30 action=accept (ini buat yang user hotspot)





    kalo make proxy...ntar gan...gw...istirahat dulu Click here to enlarge
    Last edited by RendraT; 21-06-2012 at 16:41.

  6. #6
    Status
    Offline
    eselonbego's Avatar
    Newbie
    Join Date
    May 2012
    Posts
    28
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by zdienos Click here to enlarge
    maless nyari???

    tidak ada solusi yang paling tepat untuk pertanyaan/masalah anda...
    yang ada adalah, bagaimana anda memahami masalah yang hampir mirip, dan terus dikembangkan...

    silahkan search2 dulu dah, ntar dimarahi momod



    ===============================
    kalo gak ada solusi ya ane juga gak apa-apa gan

    terima kasih gan

  7. #7
    Status
    Offline
    eselonbego's Avatar
    Newbie
    Join Date
    May 2012
    Posts
    28
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    ===============

    terima kasih gan. salam ane nubie gan.

  8. #8
    Status
    Offline
    eselonbego's Avatar
    Newbie
    Join Date
    May 2012
    Posts
    28
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by RendraT Click here to enlarge
    ada dua cara gan, bisa langsung mainin di firewall dengan chain=forward atau cara kedua mainin di Proxy (seandainya make Proxy, baik internal maupun external)

    misalnya untuk LAN KAbel ipnya 10.10.10.1-10.10.10.6
    misalnya untuk hotspot ipnya 10.10.20.1-10.10.20.30

    1. kalo make firewall filter
    ip firewall filter add chain=forward src-address=10.10.10.6 action=accept (untuk pc yang bisa akses semua situs)
    ip firewall filter add chain=forward connection-state=established action=accept
    ip firewall filter add chain=forward src-address=10.10.10.1-10.10.10.5 protocol=tcp dst-port=80,443 content=.ymail.com action=accept
    ip firewall filter add chain=forward src-address=10.10.10.1-10.10.10.5 protocol=tcp dst-port=80,443 content=.gmail.com action=accept
    ip firewall filter add chain=forward src-address=10.10.10.1-10.10.10.5 protocol=tcp dst-port=80,443 content=.hotmail.com action=accept
    ip firewall filter add chain=forward src-address=10.10.10.1-10.10.10.5 protocol=tcp dst-port=80,443 action=drop (buat ngeblok situs2 yang lain)
    ip firewall filter add chain=forward connection-state=established action=accept
    ip firewall filter add chain=forward src-address=10.10.10.1-10.10.10.5 action=accept (kali-kali aja user ini mau nge-ping internet atau main messenger)
    ip firewall filter add chain=forward src-address=10.10.20.1-10.10.20.30 action=accept (ini buat yang user hotspot)





    kalo make proxy...ntar gan...gw...istirahat dulu Click here to enlarge
    ================================================== ==========

    wah, sebelumnya ane sangat berterima kasih atas pencerahan agan rendra.

    namun, ane cukup sulit memahami comand line gan. ane sangat berterima kasih jika ada step winboxnya nya gan Click here to enlarge

  9. #9
    Status
    Offline
    dhopack's Avatar
    Forum Guru
    Join Date
    Dec 2010
    Location
    KUDUS
    Posts
    1,919
    Reviews
    Read 0 Reviews
    Downloads
    2
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by eselonbego Click here to enlarge
    ...
    namun, ane cukup sulit memahami comand line gan. ane sangat berterima kasih jika ada step winboxnya nya gan Click here to enlarge
    sama aja kok om, misal:

    Click here to enlarge Originally Posted by RendraT Click here to enlarge
    ...
    ip firewall filter add chain=forward src-address=10.10.10.6 action=accept (untuk pc yang bisa akses semua situs)
    ...
    jadi di winbox klik ip trs pilih firewall(klik) trs filter(klik) lalu klik add(tanda +) selanjutnya cari sesuai ket diatas misal chain(klik) pilih forward dst..dst..dst..
    mungkin begitu...

  10. #10
    Status
    Offline
    blogi-one's Avatar
    Baru Gabung
    Join Date
    Jul 2012
    Posts
    3
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0

    Thumbs up

    Click here to enlarge Originally Posted by RendraT Click here to enlarge
    ada dua cara gan, bisa langsung mainin di firewall dengan chain=forward atau cara kedua mainin di Proxy (seandainya make Proxy, baik internal maupun external)

    misalnya untuk LAN KAbel ipnya 10.10.10.1-10.10.10.6
    misalnya untuk hotspot ipnya 10.10.20.1-10.10.20.30

    1. kalo make firewall filter
    ip firewall filter add chain=forward src-address=10.10.10.6 action=accept (untuk pc yang bisa akses semua situs)
    ip firewall filter add chain=forward connection-state=established action=accept
    ip firewall filter add chain=forward src-address=10.10.10.1-10.10.10.5 protocol=tcp dst-port=80,443 content=.ymail.com action=accept
    ip firewall filter add chain=forward src-address=10.10.10.1-10.10.10.5 protocol=tcp dst-port=80,443 content=.gmail.com action=accept
    ip firewall filter add chain=forward src-address=10.10.10.1-10.10.10.5 protocol=tcp dst-port=80,443 content=.hotmail.com action=accept
    ip firewall filter add chain=forward src-address=10.10.10.1-10.10.10.5 protocol=tcp dst-port=80,443 action=drop (buat ngeblok situs2 yang lain)
    ip firewall filter add chain=forward connection-state=established action=accept
    ip firewall filter add chain=forward src-address=10.10.10.1-10.10.10.5 action=accept (kali-kali aja user ini mau nge-ping internet atau main messenger)
    ip firewall filter add chain=forward src-address=10.10.20.1-10.10.20.30 action=accept (ini buat yang user hotspot)





    kalo make proxy...ntar gan...gw...istirahat dulu Click here to enlarge
    ================================================== ==================


    wah maksih mas ,,,, dapet tambahan ilmu ... # aseeekkkkkk


    Click here to enlarge Click here to enlarge
    Click here to enlarge





    -----------------------------------------------------------------------------------------------------------------------------
    |||

 

 

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. setting vocher hotspot login hanya bisa akses fb?
    By nurmnh in forum General Networking
    Replies: 23
    Last Post: 29-06-2011, 15:17
  2. Hanya bisa akses website tertentu
    By qq_231 in forum Beginner Basics
    Replies: 3
    Last Post: 01-09-2010, 14:16

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •