Follow us on...
Follow us on G+ Follow us on Twitter Follow us on Facebook Watch us on YouTube
Register
Results 1 to 14 of 14
  1. #1
    Status
    Offline
    firlando's Avatar
    Calon Member
    Join Date
    Aug 2007
    Posts
    74
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0

    [Ask] Load Balance + Failover, Pemisah BW IIX + IX, BW Management, SMTP Mail Trouble

    Dear All

    setelah beberapa hari utak atik sendiri dan baca2 tutorial ternyata susah juga yah mikrotik Click here to enlarge

    begini ceritanya saya punya 2 Line Speedy dan 1 Buah ISP lokal

    Code:
    Flags: X - disabled, D - dynamic, R - running 
     #    NAME                         TYPE             RX-RATE    TX-RATE    MTU  
     0  R Lokal                        ether            0          0          1500 
     1  R Laxo                         ether            0          0          1500 
     2  R Speedy                       ether            0          0          1500 
     3  R Speedy2                      ether            0          0          1500
    IP Address
    Code:
    Flags: X - disabled, I - invalid, D - dynamic 
     #   ADDRESS            NETWORK         BROADCAST       INTERFACE
     0   119.2.xxx.xxx/29    119.2.xxx.xxx    119.2.xxx.xxx    Laxo     
     1   192.168.250.2/30   192.168.250.0   192.168.250.3   Speedy   
     2   192.168.0.1/24     192.168.0.0     192.168.0.255   Lokal    
     3   192.168.251.2/24   192.168.251.0   192.168.251.255 Speedy2
    Dengan routing seperti ini

    Code:
     #     DST-ADDRESS        PREF-SRC        G GATEWAY         DISTANCE INTERFACE
     0 ADC 119.2.xxx.xxx/29    119.2.xxx.xxx                               Laxo     
     1 ADC 192.168.0.0/24     192.168.0.1                                Lokal    
     2 ADC 192.168.250.0/30   192.168.250.2                              Speedy   
     3 ADC 192.168.251.0/24   192.168.251.2                              Speedy2  
     4 A S 0.0.0.0/0                          r 192.168.250.1            Speedy   
     5 A S 0.0.0.0/0                          r 119.2.xxx.xxx             Laxo     
     6 A S ;;; Gateway Itself
           0.0.0.0/0                          r 119.2.xxx.xxx             Laxo     
     7 A S 0.0.0.0/0                          r 192.168.251.1            Speedy2
    dan setting NAT seperti ini

    Code:
     0   ;;; Speedy
         chain=srcnat connection-mark=odd src-address-list=Pelanggan 
         action=src-nat to-addresses=192.168.250.2 to-ports=0-65535 
    
     1   ;;; Laxo
         chain=srcnat connection-mark=even src-address-list=Pelanggan 
         action=src-nat to-addresses=119.2.42.163 to-ports=0-65535 
    
     2   ;;; Speedy2
         chain=srcnat connection-mark=old src-address-list=Pelanggan 
         action=src-nat to-addresses=192.168.251.2 to-ports=0-65535
    Pada bagian Mangle seperti ini
    Code:
     0   ;;;  Load Balancing
         chain=prerouting in-interface=Lokal connection-state=new nth=2,3,0 
         action=mark-connection new-connection-mark=odd passthrough=yes 
    
     1   ;;; Load Balancing
         chain=prerouting in-interface=Lokal connection-mark=odd 
         action=mark-routing new-routing-mark=odd passthrough=no 
    
     2   ;;; Load Balancing
         chain=prerouting in-interface=Lokal connection-state=new nth=2,3,2 
         action=mark-connection new-connection-mark=even passthrough=yes 
    
     3   ;;; Load Balancing
         chain=prerouting in-interface=Lokal connection-mark=even 
         action=mark-routing new-routing-mark=even passthrough=no 
    
     4   ;;;  Load Balancing
         chain=prerouting in-interface=Lokal connection-state=new nth=2,3,1 
         action=mark-connection new-connection-mark=old passthrough=yes 
    
     5   ;;; Load Balancing
         chain=prerouting in-interface=Lokal connection-mark=old 
         action=mark-routing new-routing-mark=old passthrough=no

    Untuk load balancing dan failover [ping gateway] sudah jalan dan download menggunakan IDM sudah mencapai 170KB/s an saat ini.

    Note : Berhubung untuk Speedy saya Hanya butuh BW internationalnya saja jadi semua akses ke address list "nice" mau saya arahkan ke ISP lokal [Laxo]

    Pertanyaannya :
    1 . Bagaimana agar BW international [Speedy, Speedy2, LAXO] bisa di pisahkan dengan BW IIX dari [LAXO]

    Jadi nanti untuk BW international yang di gunakan adalah [Speedy, Speedy2, LAXO]

    Untuk Akses IIX maka hanya masuk ke [LAXO]

    2. Mohon Bantuan para sesepuh untuk Mangle dan NAT pemecah BW international dan IIX agar bisa di gunakan di simple queue

    3. Berhubung di kantor menggunakan email dari LAXO bagaimana agar email client masuknya ke koneksi [LAXO] karena SMTP tidak bisa di gunakan jika dapat line dari Speedy.

    Mohon bantuannya para sesepuh sudah mentok nih, kadang2 BW limit jalan tapi load balancing macet, dan yang paling sering Email ngadat.Click here to enlarge


    Terimakasih atas bantuannya


    Note : bukan saya males nyari dan belajar, dikejar deadline nih karena di omelin ma karyawan lain internet gak bener2 hiks hiks sedihnya...

  2. #2
    Status
    Offline
    d3v4's Avatar
    Forum Guru
    Join Date
    Jul 2007
    Location
    di alam baka
    Posts
    1,015
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    ini dia kasus antik.. wakakakakakaka. coba gambar topologi beserta posisi email server nya dan ip2 nya. ga bagus2 amat jg ga papa yang penting jelas.


    Click here to enlarge

  3. #3
    Status
    Offline
    adeldian's Avatar
    Member Senior
    Join Date
    Nov 2007
    Posts
    411
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    2 (100%)
    coba bantu dikit kalo bisa kasih semangat ya:
    no. 1 & no. 2:
    0 ;;; khusus yang ke nice ke arah laxo
    chain=prerouting in-interface=Lokal connection-state=new
    action=mark-connection new-connection-mark=local passthrough=yes
    dst-address-list=nice

    1 ;;; Routing local
    chain=prerouting in-interface=Lokal connection-mark=local
    action=mark-routing new-routing-mark=odd passthrough=no

    2 ;;; Paket Local
    chain=forward in-interface=Lokal connection-mark=even
    action=mark-packet new-packet-mark=local passthrough=no

    3 ;;; Load Balancing
    chain=prerouting in-interface=Lokal connection-state=new nth=2,3,0
    action=mark-connection new-connection-mark=odd passthrough=yes
    dst-address-list=!nice

    4 ;;; Load Balancing
    chain=prerouting in-interface=Lokal connection-mark=odd
    action=mark-routing new-routing-mark=odd passthrough=no

    5 ;;; Paket Load
    chain=forward in-interface=Lokal connection-mark=odd
    action=mark-packet new-packet-mark=int passthrough=no

    6 ;;; Load Balancing
    chain=prerouting in-interface=Lokal connection-state=new nth=2,3,2
    action=mark-connection new-connection-mark=even passthrough=yes
    dst-address-list=!nice

    7 ;;; Load Balancing
    chain=prerouting in-interface=Lokal connection-mark=even
    action=mark-routing new-routing-mark=even passthrough=no

    8 ;;; Paket Load
    chain=forward in-interface=Lokal connection-mark=even
    action=mark-packet new-packet-mark=int passthrough=no

    9 ;;; Load Balancing
    chain=prerouting in-interface=Lokal connection-state=new nth=2,3,1
    action=mark-connection new-connection-mark=old passthrough=yes
    dst-address-list=!nice

    10 ;;; Load Balancing
    chain=prerouting in-interface=Lokal connection-mark=old
    action=mark-routing new-routing-mark=old passthrough=no

    11 ;;; Paket Load
    chain=forward in-interface=Lokal connection-mark=old
    action=mark-packet new-packet-mark=int passthrough=no
    untuk bandwith limit, simple queue terus dibagian paket tab advance pilih paket int/local dan dilimit sesuai dengan kebutuhan.

    No 3.
    email client nggak bisanya dalam "mengirimkan" jadi yang dimaskud adalah port smtp non secure (port 25) kalo yang secure apa laxo punya?
    jadi jika ada request port 25 akan di forward ke ip smtp - nya laxo

    /ip nat
    add chain=dstnat dst-port=25 protocols=tcp action=dst-nat to-addresses=ip_smtp_laxo to-ports=25
    *sebentar nih email client mengarah kemana kok kalo dpt yang speedy tidak bisa? soalnya smtpnya speedy dan smtpnya laxo berbeda. kalo pakai cara diatas pokoknya yang pakai port 25 akan mengarah ke laxo .... hihihih Click here to enlarge
    mohon koreksinya

    semoga membantu
    terima kasih
    Last edited by adeldian; 24-07-2008 at 17:19.

  4. The Following User Says Thank You to adeldian For This Useful Post:


  5. #4
    Status
    Offline
    firlando's Avatar
    Calon Member
    Join Date
    Aug 2007
    Posts
    74
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    ini bro kurang lebih topologynya... Mikrotik menggunakan 4 NIC dg spesifikasi Duron 900, HDD20GB, Memory 256MB.

    Click here to enlarge

    Maaf gambar darurat Click here to enlarge

  6. #5
    Status
    Offline
    firlando's Avatar
    Calon Member
    Join Date
    Aug 2007
    Posts
    74
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by adeldian Click here to enlarge
    coba bantu dikit kalo bisa kasih semangat ya:
    no. 1 & no. 2:


    untuk bandwith limit, simple queue terus dibagian paket tab advance pilih paket int/local dan dilimit sesuai dengan kebutuhan.

    No 3.
    email client nggak bisanya dalam "mengirimkan" jadi yang dimaskud adalah port smtp non secure (port 25) kalo yang secure apa laxo punya?
    jadi jika ada request port 25 akan di forward ke ip smtp - nya laxo


    *sebentar nih email client mengarah kemana kok kalo dpt yang speedy tidak bisa? soalnya smtpnya speedy dan smtpnya laxo berbeda. kalo pakai cara diatas pokoknya yang pakai port 25 akan mengarah ke laxo .... hihihih Click here to enlarge
    mohon koreksinya

    semoga membantu
    terima kasih
    sebentar saya coba in nih, semoga suksesssss dah pusing 2 hari ngadat salah satu terus gak pernah bisa jalan sesuai

    BTW makasih mas atas bantuannya


    Note : Macet mas mesinnya.. gak bisa browsing kalo di simple queuenya di mark local/int tapi kalo gak di mark jalan cuma sayang kelimit semua :-(


    masalahnya ada di sini ======= dst-address-list=!nice ======= jika di hilangkan bisa jalan, kalo ada itu gak bisa browse ke IIX bisanya IX doang tapi berat banget ya browsing
    Last edited by firlando; 24-07-2008 at 18:11.

  7. #6
    Status
    Offline
    Akangage's Avatar
    Administrator
    Join Date
    Aug 2007
    Location
    Daerah Khusus Ibukota Jakarta, Indonesia
    Posts
    4,195
    Reviews
    Read 0 Reviews
    Downloads
    210
    Uploads
    87
    Feedback Score
    0
    Just some little advice untuk analisa aja, begini, itu 3 Line Internet di LB jadi 1, terus di pisah IIX dan Internasional, kemudian di simple queue di kasih paket-mark dari Mangle IIX & Internasional..... nah kalo sudah bisa dan jalan baru di lebih modifikasi sesuai kebutuhan si boz!!

    Pasalnya Akang LB 3 line + Pisah IIX & Intl berjalan lancar dengan simple queue, nah dengan begini kita bisa ambil kesimpulan untuk tahapan selanjutnya begitu, pelan-pelan aja boz!! berurutan biar enak Click here to enlarge

  8. #7
    Status
    Offline
    sherayusuf's Avatar
    Member
    Join Date
    Sep 2007
    Location
    bekasi-jakarta bolak balik
    Posts
    188
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    om firlando, klo smtpnya ada masalah , emang beberapa hari ini saya lagi tweak ulang
    dan beberapa hari ini emang lagi maintenance

  9. #8
    Status
    Offline
    adeldian's Avatar
    Member Senior
    Join Date
    Nov 2007
    Posts
    411
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    2 (100%)
    bos firlando harap mengesport file nice.rsc dahulu dari situsnya
    soalnya kalo belum ada nice.rsc yang berisikan alamat-alamat ip local ya nggak akan jalan load balancingnya

    kan pembatasan IIX diarahkan ke laxo, jadinya semua trafik yang ke iix diarahkan ke ip gatewaynya laxo, makanya yang load balancing cuman internationalnya saja.

    semoga membantu
    terima kasih

  10. #9
    Status
    Offline
    firlando's Avatar
    Calon Member
    Join Date
    Aug 2007
    Posts
    74
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by adeldian Click here to enlarge
    bos firlando harap mengesport file nice.rsc dahulu dari situsnya
    soalnya kalo belum ada nice.rsc yang berisikan alamat-alamat ip local ya nggak akan jalan load balancingnya

    kan pembatasan IIX diarahkan ke laxo, jadinya semua trafik yang ke iix diarahkan ke ip gatewaynya laxo, makanya yang load balancing cuman internationalnya saja.

    semoga membantu
    terima kasih
    Udah ada mas nice nya kok, tapi tetep macet kalo di pisah mangle nya seperti tutorialnya, saya lagi cari2 soalnya ada beberapa rule yg byte recieve nya 0


    salam

  11. #10
    Status
    Offline
    adeldian's Avatar
    Member Senior
    Join Date
    Nov 2007
    Posts
    411
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    2 (100%)
    yang no 0 tuh musti nggak ada nthnya.
    oh sorry yang manggle no 1 routing-marknya diganti even hihihihi solanya saya kemaren copy paste terus rubah eh tahunya ketinggalan tuh
    jadi yang no 1 kan routing-marknya odd diganti even diarahkan ke laxo.

    semoga membantu
    terima kasih

  12. #11
    Status
    Offline
    firlando's Avatar
    Calon Member
    Join Date
    Aug 2007
    Posts
    74
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by adeldian Click here to enlarge
    yang no 0 tuh musti nggak ada nthnya.
    oh sorry yang manggle no 1 routing-marknya diganti even hihihihi solanya saya kemaren copy paste terus rubah eh tahunya ketinggalan tuh
    jadi yang no 1 kan routing-marknya odd diganti even diarahkan ke laxo.

    semoga membantu
    terima kasih
    uhmm kok masih gak bisa jalan yah browse ke lokal? kalo sudah di pisahin per BW di simple queue ini mangle nya mas mohon di koreksi kalo ada yg miss, butek saya liat sebanyak itu manglenya.
    Code:
    Flags: X - disabled, I - invalid, D - dynamic 
     0   ;;;  Load Balancing
         chain=prerouting in-interface=Lokal connection-state=new nth=2,3,0 
         dst-address-list=!nice action=mark-connection new-connection-mark=odd 
         passthrough=yes 
    
     1   ;;; Load Balancing
         chain=prerouting in-interface=Lokal connection-mark=odd 
         action=mark-routing new-routing-mark=odd passthrough=no 
    
     2   ;;; Load Balancing
         chain=prerouting in-interface=Lokal connection-state=new nth=2,3,2 
         dst-address-list=!nice action=mark-connection new-connection-mark=even 
         passthrough=yes 
    
     3   ;;; Load Balancing
         chain=prerouting in-interface=Lokal connection-mark=even 
         action=mark-routing new-routing-mark=even passthrough=no 
    
     4   ;;;  Load Balancing
         chain=prerouting in-interface=Lokal connection-state=new nth=2,3,1 
         dst-address-list=!nice action=mark-connection new-connection-mark=old 
         passthrough=yes 
    
     5   ;;; Load Balancing
         chain=prerouting in-interface=Lokal connection-mark=old 
         action=mark-routing new-routing-mark=old passthrough=no 
    
     6   ;;; Khusus Nice Ke LAXO
         chain=prerouting in-interface=Lokal connection-state=new 
         dst-address-list=nice action=mark-connection new-connection-mark=local 
         passthrough=yes 
    
     7   chain=prerouting in-interface=Lokal connection-mark=local 
         action=mark-routing new-routing-mark=even passthrough=no 
    
     8   ;;; Paket Load
         chain=forward in-interface=Lokal connection-mark=even action=mark-packet 
         new-packet-mark=local passthrough=no 
    
     9   chain=forward in-interface=Lokal connection-mark=odd action=mark-packet 
         new-packet-mark=intl passthrough=no 
    
    10   chain=forward in-interface=Lokal connection-mark=old action=mark-packet 
         new-packet-mark=intl passthrough=no 
    
    11   chain=forward in-interface=Lokal connection-mark=even action=mark-packet 
         new-packet-mark=intl passthrough=yes

    untuk NAT nya seperti ini dah bener mas? gak perlu buat rule lagi kah? soalnya saya baca di forum kok ada yg di masquarade dll

    Code:
     0   ;;; Speedy
         chain=srcnat connection-mark=odd src-address-list=Pelanggan 
         action=src-nat to-addresses=192.168.250.2 to-ports=0-65535 
    
     1   ;;; Laxo
         chain=srcnat connection-mark=even src-address-list=Pelanggan 
         action=src-nat to-addresses=119.2.xxx.xxx to-ports=0-65535 
    
     2   ;;; Speedy2
         chain=srcnat connection-mark=old src-address-list=Pelanggan 
         action=src-nat to-addresses=192.168.251.2 to-ports=0-65535 
    
     3   ;;; Email Laxo
         chain=dstnat protocol=tcp dst-port=25 action=dst-nat 
         to-addresses=119.2.xxx.xxx to-ports=25
    simple queue

    Code:
    17    name="Notebook Lokal" target-addresses=192.168.0.20/32 
          dst-address=0.0.0.0/0 interface=all parent=none packet-marks=local 
          direction=both priority=8 queue=default-small/default-small 
          limit-at=0/0 max-limit=128000/512000 total-queue=default-small 
    
    18    name="Notebook Intl" target-addresses=192.168.0.20/32 
          dst-address=0.0.0.0/0 interface=all parent=none packet-marks=intl 
          direction=both priority=8 queue=default-small/default-small 
          limit-at=0/0 max-limit=64000/64000 total-queue=default-small

    thanks atas bantuannya

  13. #12
    Status
    Offline
    adeldian's Avatar
    Member Senior
    Join Date
    Nov 2007
    Posts
    411
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    2 (100%)
    coba yang local ditaruh yang paling atas biar dicek terlebih dahulu
    terus coba matikan queuenya dahulu
    jika sudah bisa baru queue dimainkan

    btw apakah pake proxy?

    terima kasih

  14. #13
    Status
    Offline
    firlando's Avatar
    Calon Member
    Join Date
    Aug 2007
    Posts
    74
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by adeldian Click here to enlarge
    coba yang local ditaruh yang paling atas biar dicek terlebih dahulu
    terus coba matikan queuenya dahulu
    jika sudah bisa baru queue dimainkan

    btw apakah pake proxy?

    terima kasih
    proxy setahu saya sih gak bisa di pake kalo ada load balancing, pusing dia ngeroutingnya hehehe, anyway webproxy saya gak pake mas, baik internal maupun external
    udah di coba pindah2 tempat tapi tetap sama aja mas macet pas mau masuk IIX tapi international jalan terus.


    makasih mas

  15. #14
    Status
    Offline
    adeldian's Avatar
    Member Senior
    Join Date
    Nov 2007
    Posts
    411
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    2 (100%)
    aneh juga ya. padahal logikanya dah masuk. yang ada ip di nice harus pakai routing ke LAXO gitu......
    seandainyapun lewat speedy tidak akan error mas ......

    any clue di konfigurasi,address list dll ?

    anyway coba saja kirimkan export dari firewall ke ane
    pakai .com ya

    terima kasih

 

 

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. load balance + load balance
    By pc2console in forum Scripting @ Mikrotik
    Replies: 23
    Last Post: 24-06-2014, 17:12
  2. [VID] Tutorial Load Balancing & Failover
    By brain_devil2006 in forum Tutorial
    Replies: 51
    Last Post: 30-06-2012, 09:18
  3. Replies: 18
    Last Post: 11-01-2010, 01:29
  4. [Ask] 2 ISP no-load balance
    By Sumarjono in forum General Networking
    Replies: 11
    Last Post: 05-07-2008, 01:51
  5. (Ask) Load Balance 2 Modem 1 ISP ?
    By Moeghan in forum Beginner Basics
    Replies: 7
    Last Post: 17-12-2007, 17:55

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •