Follow us on...
Follow us on G+ Follow us on Twitter Follow us on Facebook Watch us on YouTube
Register
Results 1 to 3 of 3
  1. #1
    Status
    Offline
    happiers07's Avatar
    Member
    Join Date
    Apr 2009
    Posts
    162
    Reviews
    Read 0 Reviews
    Downloads
    2
    Uploads
    0
    Feedback Score
    0

    (ASK) LB + Proxy Ga Jalan, Mohon Cek Apa yg Salah

    sblmnya saya sudah mencari2 dan mencoba2 untuk Natnya tp tetp sama ja ga bisa browshing..
    Butuh masukan dari sesepuh dsn Click here to enlarge

    TOPOLOGI
    Click here to enlarge

    Ip address

    [admin@MikroTik] > ip address pr
    Flags: X - disabled, I - invalid, D - dynamic
    # ADDRESS NETWORK BROADCAST INTERFACE
    0 192.168.0.1/24 192.168.0.0 192.168.0.255 local
    1 192.168.1.2/24 192.168.1.0 192.168.1.255 speedy1
    2 192.168.2.2/24 192.168.2.0 192.168.2.255 speedy2
    3 192.168.4.1/24 192.168.4.0 192.168.4.255 proxy
    4 192.168.3.1/24 192.168.3.0 192.168.3.255 hostspot


    IP firewall mangle

    ip firewall mangle pr
    Flags: X - disabled, I - invalid, D - dynamic
    0 ;;; LB LOKAL
    chain=prerouting in-interface=local connection-state=new nth=1,1,0
    action=mark-connection new-connection-mark=speedy1 passthrough=yes

    1 chain=prerouting in-interface=local connection-mark=speedy1
    action=mark-routing new-routing-mark=speedy1 passthrough=no

    2 chain=prerouting in-interface=local connection-state=new nth=1,1,1
    action=mark-connection new-connection-mark=speedy2 passthrough=yes

    3 chain=prerouting in-interface=local connection-mark=speedy2
    action=mark-routing new-routing-mark=speedy2 passthrough=no

    4 ;;; LB Proxy
    chain=prerouting in-interface=proxy connection-state=new nth=1,1,0
    action=mark-connection new-connection-mark=speedy1 passthrough=yes

    5 chain=prerouting in-interface=proxy connection-mark=speedy1
    action=mark-routing new-routing-mark=speedy1 passthrough=no

    6 chain=prerouting in-interface=proxy connection-state=new nth=1,1,1
    action=mark-connection new-connection-mark=speedy2 passthrough=yes

    7 chain=prerouting in-interface=proxy connection-mark=speedy2
    action=mark-routing new-routing-mark=speedy2 passthrough=no





    IP firewall NAT
    [admin@MikroTik] > ip firewall nat pr
    Flags: X - disabled, I - invalid, D - dynamic
    0 ;;; MODEM
    chain=srcnat out-interface=speedy1 action=masquerade

    1 chain=srcnat out-interface=speedy2 action=masquerade

    2 ;;; PROXY
    chain=srcnat out-interface=proxy action=masquerade

    3 ;;; HOTSPOT
    chain=srcnat src-address=192.168.3.0/24 action=masquerade

    4 ;;; redirect proxy
    chain=dstnat src-address=192.168.0.0/24 protocol=tcp dst-port=80
    action=dst-nat to-addresses=192.168.4.2 to-ports=3128





    IP Route
    # DST-ADDRESS PREF-SRC G GATEWAY DISTANCE INTERFACE
    0 ADC 192.168.0.0/24 192.168.0.1 local
    1 ADC 192.168.1.0/24 192.168.1.2 speedy1
    2 ADC 192.168.2.0/24 192.168.2.2 speedy2
    3 ADC 192.168.3.0/24 192.168.3.1 hostspot
    4 ADC 192.168.4.0/24 192.168.4.1 proxy
    5 A S 0.0.0.0/0 r 192.168.1.1 speedy1
    6 A S 0.0.0.0/0 r 192.168.2.1 speedy2

  2. #2
    Status
    Offline
    happiers07's Avatar
    Member
    Join Date
    Apr 2009
    Posts
    162
    Reviews
    Read 0 Reviews
    Downloads
    2
    Uploads
    0
    Feedback Score
    0
    SQUID.CONF

    #==================================$
    # Proxy Server Versi 2.7.Stable3
    # by onestopdigitalsolution
    #==================================$

    ################################################## ###############
    # Port
    ################################################## ###############
    http_port 3128 transparent
    icp_port 3130
    prefer_direct off

    ################################################## ###############
    # Cache & Object
    ################################################## ###############

    cache_mem 6 MB
    cache_swap_low 98
    cache_swap_high 99

    max_filedesc 8192

    maximum_object_size 256 MB
    minimum_object_size 0 bytes
    maximum_object_size_in_memory 256 KB

    ipcache_size 5120
    ipcache_low 98
    ipcache_high 99

    fqdncache_size 5120

    cache_replacement_policy heap LFUDA
    memory_replacement_policy heap GDSF

    cache_dir aufs /home/happiers07/squid 49000 28 256

    cache_access_log /squid/access.log
    cache_log /squid/cache.log
    log_fqdn off
    log_icp_queries off
    cache_log none
    cache_store_log none
    pid_filename /var/run/squid.pid
    cache_swap_log /var/log/squid/swap.state

    dns_nameservers /etc/resolv.conf

    emulate_httpd_log off
    hosts_file /etc/hosts
    # half_closed_clients off
    negative_ttl 1 minutes


    ################################################## ###############
    # Rules: Safe Port
    ################################################## ###############

    acl all src 0.0.0.0/0.0.0.0
    acl manager proto cache_object
    acl localhost src 127.0.0.1/255.255.255.255
    acl localnet src 192.168.0.0/255.255.255.0
    acl localnet src 192.168.4.0/255.255.255.0
    acl to_localhost dst 127.0.0.0/8

    acl SSL_ports port 443 563 873 # https snews rsync
    acl Safe_ports port 80 # http
    acl Safe_ports port 20 21 # ftp
    acl Safe_ports port 70 # gopher
    acl Safe_ports port 210 # wais
    acl Safe_ports port 1025-65535 # unregistered ports
    acl Safe_ports port 631 # cups
    acl Safe_ports port 10000 # webmin
    acl Safe_ports port 901 # SWAT
    acl Safe_ports port 280 # http-mgmt
    acl Safe_ports port 488 # gss-http
    acl Safe_ports port 591 # filemaker
    acl Safe_ports port 777 # multiling http
    acl Safe_ports port 873 # rsync
    acl Safe_ports port 110 # POP3
    acl Safe_ports port 25 # SMTP
    acl Safe_ports port 2095 2096 # webmail from cpanel
    acl Safe_ports port 2082 2083 # cpanel

    acl purge method PURGE
    acl CONNECT method CONNECT

    http_access allow manager localhost
    http_access deny manager
    http_access allow purge localhost
    http_access deny purge
    http_access deny !Safe_ports !SSL_ports
    http_access deny CONNECT !SSL_ports !Safe_ports


    ################################################## ###############
    # Refresh Pattern
    ################################################## ###############

    refresh_pattern ^ftp: 10080 95% 241920 reload-into-ims override-lastmod
    refresh_pattern . 180 95% 120960 reload-into-ims override-lastmod
    refresh_pattern ^gopher: 1440 0% 1440
    refresh_pattern ^http: 720 90% 432000

    refresh_pattern -i \.(gif|png|jpg|jpeg|ico)$ 10080 90% 43200 override-expire ignore-no-cache ignore-private
    refresh_pattern -i \.(iso|avi|wav|mp3|mp4|mpeg|mpg|swf|flv|x-flv)$ 43200 90% 432000 override-expire ignore-no-cache ignore-private
    refresh_pattern -i \.(deb|rpm|exe|ram|bin|pdf|ppt|doc|tiff)$ 10080 90% 43200 override-expire ignore-no-cache ignore-private
    refresh_pattern -i \.(zip|gz|arj|lha|lzh|tar|tgz|cab|rar)$ 10080 95% 43200 override-expire ignore-no-cache ignore-private
    refresh_pattern -i \.(php|asp|aspx|cgi|html|htm|css|js) 1440 40% 40320

    refresh_pattern ^ 720 100% 4320
    refresh_pattern ^ 720 100% 4320
    refresh_pattern ^ 720 100% 4320
    refresh_pattern ^ 720 100% 4320
    refresh_pattern ^ 720 100% 4320
    refresh_pattern ^ 720 100% 4320
    refresh_pattern ^ 720 100% 4320
    refresh_pattern ^ 720 100% 4320
    refresh_pattern ^ 720 100% 4320
    refresh_pattern ^ 720 100% 4320
    refresh_pattern ^ 720 100% 4320
    refresh_pattern ^ 720 100% 4320
    refresh_pattern ^ 720 100% 4320
    refresh_pattern ^ 720 100% 4320
    refresh_pattern ^ 60 20% 360
    refresh_pattern ^ 60 20% 360
    refresh_pattern ^ 60 20% 360
    refresh_pattern ^ 60 100% 360
    refresh_pattern ^ 60 20% 360
    refresh_pattern ^ 60 20% 360
    refresh_pattern ^ 720 100% 4320
    refresh_pattern ^ 720 100% 4320
    refresh_pattern ^ 720 100% 4320
    refresh_pattern ^ 720 100% 4320
    refresh_pattern ^ 720 100% 4320
    refresh_pattern ^ 720 100% 4320
    refresh_pattern ^ 720 100% 4320

    refresh_pattern . 0 20% 4320

    quick_abort_min 0
    quick_abort_max 0
    quick_abort_pct 98

    reload_into_ims on
    pipeline_prefetch on
    vary_ignore_expire on

    ################################################## ###############
    # Memaksa file2 video untuk di cache
    ################################################## ###############

    acl streaming url_regex -i \.youtube\.com\/get_video\?
    acl streaming url_regex -i \.googlevideo\.com\/videoplayback \.googlevideo\.com\/videoplay \.googlevideo\.com\/get_video\?
    acl streaming url_regex -i \.google\.com\/videoplayback \.google\.com\/videoplay \.google\.com\/get_video\?
    acl streaming url_regex -i \.google\.[a-z][a-z]\/videoplayback \.google\.[a-z][a-z]\/videoplay \.google\.[a-z][a-z]\/get_video\?
    acl streaming url_regex -i (25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\/videoplayback\?
    acl streaming url_regex -i (25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\/videoplay\?
    acl streaming url_regex -i (25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\/get_video\?
    acl streaming url_regex -i proxy[a-z0-9\-][a-z0-9][a-z0-9][a-z0-9]?\.dailymotion\.com\/
    acl streaming url_regex -i vid\.akm\.dailymotion\.com\/
    acl streaming url_regex -i [a-z0-9][0-9a-z][0-9a-z]?[0-9a-z]?[0-9a-z]?\.xtube\.com\/(.*)flv
    acl streaming url_regex -i bitcast\.vimeo\.com\/vimeo\/videos\/
    acl streaming url_regex -i va\.wrzuta\.pl\/wa[0-9][0-9][0-9][0-9]?
    acl streaming url_regex -i \.files\.youporn\.com\/(.*)\/flv\/
    acl streaming url_regex -i \.msn\.com\.edgesuite\.net\/(.*)\.flv
    acl streaming url_regex -i media[a-z0-9]?[a-z0-9]?[a-z0-9]?\.tube8\.com\/ mobile[a-z0-9]?[a-z0-9]?[a-z0-9]?\.tube8\.com\/
    acl streaming url_regex -i \.mais\.uol\.com\.br\/(.*)\.flv
    acl streaming url_regex -i \.video[a-z0-9]?[a-z0-9]?\.blip\.tv\/(.*)\.(flv|avi|mov|mp3|m4v|mp4|wmv|rm|ram)
    acl streaming url_regex -i video\.break\.com\/(.*)\.(flv|mp4)
    acl streaming url_regex -i get_video\?video_id videodownload\?
    acl streaming_dom dstdomain .mccont.com dl.redtube.com .cdn.dailymotion.com .youtube.com .googlevideo.com
    cache allow streaming
    cache allow streaming_dom


    ################################################## ###############
    # HAVP + Clamav
    ################################################## ###############


    ################################################## ###############
    # HIERARCHY (BYPASS CGI)
    ################################################## ###############

    hierarchy_stoplist cgi-bin ? .js .jsp
    acl QUERY urlpath_regex cgi-bin \? .js .jsp
    no_cache deny QUERY


    ################################################## ###############
    # SNMP
    ################################################## ###############

    snmp_port 3401
    acl snmpsquid snmp_community public
    snmp_access allow snmpsquid localhost
    snmp_access deny all


    ################################################## ###############
    # ALLOWED ACCESS
    ################################################## ###############

    acl persegi src 192.168.0.0/24
    http_access allow persegi
    http_access allow localhost
    http_access deny all
    http_reply_access allow all
    icp_access allow persegi
    icp_access allow localhost
    icp_access deny all
    always_direct deny all


    ################################################## ###############
    # Cache CGI & Administrative #
    ################################################## ###############

    cache_mgr happiers07@yahoo.com
    #cachemgr_passwd 123456 all
    visible_hostname proxies.happy.net
    cache_effective_user squid
    cache_effective_group squid
    coredump_dir /var/spool/squid
    shutdown_lifetime 10 seconds
    logfile_rotate 14
    memory_pools off

  3. #3
    Status
    Offline
    happiers07's Avatar
    Member
    Join Date
    Apr 2009
    Posts
    162
    Reviews
    Read 0 Reviews
    Downloads
    2
    Uploads
    0
    Feedback Score
    0
    Click here to enlargeClick here to enlarge

 

 

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Mohon pencerahan... Salah satu Route besar sendiri
    By alfondores in forum Beginner Basics
    Replies: 4
    Last Post: 24-03-2010, 00:06
  2. web proxy gk jalan
    By sufandi in forum General Networking
    Replies: 47
    Last Post: 27-05-2009, 11:28
  3. gimana web proxy + mangle jalan bareng ?
    By 4nton1 in forum General Networking
    Replies: 3
    Last Post: 23-05-2009, 22:40
  4. transparent proxy gak Jalan
    By radenfahmi in forum Beginner Basics
    Replies: 18
    Last Post: 04-02-2009, 06:19
  5. Setting Web-Proxyku gak jalan mohon pencerahan
    By icemen_212 in forum Beginner Basics
    Replies: 6
    Last Post: 12-05-2008, 23:11

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •