Follow us on...
Follow us on G+ Follow us on Twitter Follow us on Facebook Watch us on YouTube
Register
Page 1 of 2 12 LastLast
Results 1 to 15 of 24
  1. #1
    Status
    Offline
    sipiyuku's Avatar
    Baru Gabung
    Join Date
    Jul 2007
    Posts
    14
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0

    Kenapa setelah ada 1 klient yg donload pengaruh besar terhadap klient yg lain??

    Dear para master Mikrotik.
    Saya punya kasus, komputer klient masing2 saya limit 100K. tapi kenapa setelah ada satu klient saja yg download maka klient yg lain jadi lambat sekali koneksinya padahal kan tiap klient udah di jatah BW masing??. Saya memakai queue tree.
    Mohon pencerahan atau solusi dari para master MIkrotik

  2. #2
    Status
    Offline
    Akangage's Avatar
    Administrator
    Join Date
    Aug 2007
    Location
    Daerah Khusus Ibukota Jakarta, Indonesia
    Posts
    4,195
    Reviews
    Read 0 Reviews
    Downloads
    210
    Uploads
    87
    Feedback Score
    0
    Harusnya kena limit tuh.... kalo engga coba di restart dulu MikroTik-nya! Akang lancar2 aja tuh Queue-nya dah hampir 1 taon make ga pernah bobol Click here to enlarge

  3. #3
    Status
    Offline
    ponywaterhouse's Avatar
    Forum Guru
    Join Date
    Jul 2007
    Posts
    1,507
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    tanya dulu nih..
    bandwith nya total brp kbps?
    koneksi nya pake apa ya?

  4. #4
    Status
    Offline
    Akangage's Avatar
    Administrator
    Join Date
    Aug 2007
    Location
    Daerah Khusus Ibukota Jakarta, Indonesia
    Posts
    4,195
    Reviews
    Read 0 Reviews
    Downloads
    210
    Uploads
    87
    Feedback Score
    0
    Oia... brp kb/s ya Click here to enlarge jadi malu Click here to enlarge

  5. #5
    Status
    Offline
    sherayusuf's Avatar
    Member
    Join Date
    Sep 2007
    Location
    bekasi-jakarta bolak balik
    Posts
    188
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    yups tanya dolo berapa kbps bw nya
    klo bw nya 128 kbps terus di limit / client 100 kbps ya client yg lain yg ful brosing jadi padat deh hehehe

    mending pake simple queue aja lebih enak ngelimitnya antara lokal dan internas
    klo mau system group share bisa pake sub queue misal bw 128 kbps di bagi ke 2 group
    group 1 dapet jatah 64 kbps di share ke 3 komp dan group 2 jg sama
    Last edited by sherayusuf; 30-03-2008 at 12:18. Reason: ralat

  6. #6
    Status
    Offline
    rendyka's Avatar
    Member
    Join Date
    Jul 2007
    Posts
    130
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by Akangage Click here to enlarge
    Harusnya kena limit tuh.... kalo engga coba di restart dulu MikroTik-nya! Akang lancar2 aja tuh Queue-nya dah hampir 1 taon make ga pernah bobol Click here to enlarge
    pake cara apa nih bos ? gw setting di mesin mikrotik (pake in webproxy tapi ) koq bobol mulu Click here to enlargeClick here to enlargeClick here to enlargeClick here to enlarge

  7. #7
    Status
    Offline
    sipiyuku's Avatar
    Baru Gabung
    Join Date
    Jul 2007
    Posts
    14
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by sherayusuf Click here to enlarge
    yups tanya dolo berapa kbps bw nya
    klo bw nya 128 kbps terus di limit / client 100 kbps ya client yg lain yg ful brosing jadi padat deh hehehe

    mending pake simple queue aja lebih enak ngelimitnya antara lokal dan internas
    klo mau system group share bisa pake sub queue misal bw 128 kbps di bagi ke 2 group
    group 1 dapet jatah 64 kbps di share ke 3 komp dan group 2 jg sama
    Bw total 512 Kbps. ada 10 pc user...kasusnya gini.
    ketika 1 klient download maka klient yg lain jadi lambat...
    aku pake queuetree masing2 klient aku kasih limit-at=32k max-limit=72k
    topologi:

    Internet --Mikrotik-----klient
    |
    |
    |
    External Proxy


    aku sertakan setting limitasi download file2 tertentu di squid box

    acl download url_regex -i \.exe$ \.mp3$ \.mp4$ \.tar.gz$ \.gz$ \.tar.bz2$ \.rpm$ \.zip$ \.rar$ \.avi$ \.mpg$ \.mpeg$ \.rm$ \.iso$ \.wav$ \.mov$ \.dat$ \.mpe$ \.mid$ \.midi$ \.rmi$ \.wma$ \.wmv$ \.ogg$ \.ogm$ \.m1v$ \.mp2$ \.mpa$ \.wax$ \.m3u$ \.asx$ \.wpl$ \.wmx$ \.dvr-ms$ \.snd$ \.au$ \.aif$ \.asf$ \.m2v$ \.m2p$ \.ts$ \.tp$ \.trp$ \.div$ \.divx$ \.mod$ \.vob$ \.aob$ \.dts$ \.ac3$ \.cda$ \.vro$ \.deb$


    delay_pools 1

    delay_class 1 1
    delay_parameters 1 4000/32000
    delay_access 1 allow download
    delay_access 1 deny all



    yg menjadi pertanyaan disini..kenapa setelah ada 1 klient yg download klient yg lain jadi lambat..padahal si klient yg download tsb..mendapatkan rate download sesuai dengan jatah yg aku set di squidbox...
    Mungkin temen2 ada yg bisa bantu saya....
    Thanks all

  8. #8
    Status
    Offline
    sipiyuku's Avatar
    Baru Gabung
    Join Date
    Jul 2007
    Posts
    14
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Code:
    (Internet)Mikrotik(192.168.11.1)|------|LAN
                                | 
                                |(192.168.100.1)
                                |  
                      Proxy(192.168.100.2)

    Sory ..ini topologi yg benar...tadi keliru..

  9. #9
    Status
    Offline
    felix_sg's Avatar
    Member Super Senior
    Join Date
    Sep 2007
    Location
    indonesia
    Posts
    607
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    salah setting di squid nya mungkin bro.

  10. #10
    Status
    Offline
    Akangage's Avatar
    Administrator
    Join Date
    Aug 2007
    Location
    Daerah Khusus Ibukota Jakarta, Indonesia
    Posts
    4,195
    Reviews
    Read 0 Reviews
    Downloads
    210
    Uploads
    87
    Feedback Score
    0
    hmm.... bisa jadi seh di proxy-nya

  11. #11
    Status
    Offline
    Akangage's Avatar
    Administrator
    Join Date
    Aug 2007
    Location
    Daerah Khusus Ibukota Jakarta, Indonesia
    Posts
    4,195
    Reviews
    Read 0 Reviews
    Downloads
    210
    Uploads
    87
    Feedback Score
    0
    Click here to enlarge Originally Posted by rendyka Click here to enlarge
    pake cara apa nih bos ? gw setting di mesin mikrotik (pake in webproxy tapi ) koq bobol mulu Click here to enlargeClick here to enlargeClick here to enlargeClick here to enlarge
    Pake simple queue Click here to enlarge Wah... salah setting kali, kalo g salah ada yang bahas limiter pake Proxy MT, coba di search aja lagi thread-nya

  12. #12
    Status
    Offline
    sipiyuku's Avatar
    Baru Gabung
    Join Date
    Jul 2007
    Posts
    14
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by felix_sg Click here to enlarge
    salah setting di squid nya mungkin bro.
    ne sekalian aku kasih config squid gw...
    Code:
    #============================================
    # Network Options
    # The ports our Squid will listen on.
    #============================================
    # snmp_port 3128
    http_port 3128 
    icp_port 3130
    
    #============================================
    # Squid's Cache and LOG
    # Places where Squid's logs will go to.
    #============================================
    cache_dir aufs /cache 12000 16 256
    cache_log /var/log/squid/cache.log
    cache_access_log /var/log/squid/access.log
    cache_store_log /var/log/squid/store.log
    cache_swap_log /var/log/squid/swap.log
    
    #============================================
    # MISCELLANEOUS Config
    #============================================
    hierarchy_stoplist cgi-bin ? .js .jsp 
    emulate_httpd_log off
    connect_timeout 2 minutes
    peer_connect_timeout 30 seconds
    request_timeout 30 seconds
    buffered_logs off
    logfile_rotate 7
    log_icp_queries off
    log_fqdn off
    cache_log none
    cache_store_log none 
    redirect_rewrites_host_header off
    shutdown_lifetime 10 seconds
    memory_pools off
    quick_abort_min 0
    quick_abort_max 0
    quick_abort_pct 98
    reload_into_ims on
    pipeline_prefetch on
    vary_ignore_expire on
    ie_refresh off
    client_netmask 255.255.255.255
    client_lifetime 2 hours
    refresh_pattern \.(gif|jpg|jpeg)$ 600 80% 86400
    refresh_pattern \.(xbm|xpm|ico|tiff)$ 600 80% 86400
    refresh_pattern \.(au|snd|wav|ra|mid)$ 600 80% 86400
    refresh_pattern \.(qt|mov|avi|mpeg)$ 600 80% 86400
    refresh_pattern \.(iv|wrl|vrml)$ 600 80% 86400
    refresh_pattern \.(Z|gz)$ 600 80% 86400
    refresh_pattern \.(hqx|bin)$ 600 80% 86400
    refresh_pattern \.(tar|zip)$ 600 80% 86400
    refresh_pattern . 120 50% 14400
    refresh_pattern ^http:// 30 50% 86400
    refresh_pattern ^http://www.google.com/.* 720 100% 4320
    refresh_pattern ^http://www.yahoo.com/.* 720 100% 4320
    refresh_pattern ^http://photo-*.friendster.*/.* 720 100% 4320
    refresh_pattern ^http://*.friendster.*/.* 720 100% 4320
    refresh_pattern ^http://*.yahoo.*/.* 720 100% 4320
    refresh_pattern ^http://*.akamai.*/.* 720 100% 4320
    refresh_pattern ^http://*.google.*/.* 720 100% 4320
    refresh_pattern ^http://*.yimg.*/.* 720 100% 4320
    refresh_pattern ^http://*.padangchat.*/.* 720 100% 4320
    refresh_pattern ^http://*.mynicespace.*/.* 720 100% 4320
    refresh_pattern ^http://*.gmail.*/.* 720 100% 4320
    refresh_pattern ^http://*.plasa.*/.* 720 100% 4320
    refresh_pattern ^http://*.chiboik.*/.* 720 100% 4320
    refresh_pattern ^http://*.mylovelygirl.*/.* 720 100% 4320
    refresh_pattern ^http://*.homebsd.*/.* 720 100% 4320
    refresh_pattern ^http://*.ripway.*/.* 720 100% 4320
    refresh_pattern ^http://*.photobucket.*/.* 720 100% 4320
    refresh_pattern ^http://*.imageshack.*/.* 720 100% 4320
    refresh_pattern ^http://*.youtube.*/.* 720 100% 4320
    refresh_pattern ^http://*.slide.*/.* 720 100% 4320
    refresh_pattern ^http://*.rockyou.*/.* 720 100% 4320
    refresh_pattern ^http://*.geocities.*/.* 720 100% 4320
    refresh_pattern ^http://*.myspace.*/.* 720 100% 4320
    refresh_pattern ^http://*.facebook.*/.* 720 100% 4320
    refresh_pattern ^http://*.profiles.friendster.*/.* 10080 100% 4320
    refresh_pattern ^http://*.rapidshare.*/.* 720 100% 4320
    refresh_pattern ^http://*.divine-music.*/.* 100800 100% 4320
    refresh_pattern ^http://*.*.id/.* 720 100% 4320
    refresh_pattern ^http://*.imageshack.*/.* 100800 100% 4320
    refresh_pattern ^http://*.photobucket.*/.* 100800 100% 4320
    refresh_pattern ^ftp:// 30 50% 86400
    positive_dns_ttl 60 seconds
    negative_dns_ttl 30 seconds
    query_icmp on
    strip_query_terms off
    
    #===========================================
    # DIRECT ACCES ON THIS DOMAIN
    #===========================================
    acl dstdomaindirect dstdomain .friendster.com 
    always_direct allow dstdomaindirect
    
    #============================================
    # FTP Options
    #============================================
    ftp_user ftp@simple.net
    ftp_list_width 32
    ftp_passive on
    ftp_sanitycheck on
    
    #============================================
    # Options which effect the Cache Size
    #============================================
    cache_mem 6 MB
    cache_swap_low 98
    cache_swap_high 99
    maximum_object_size 128 MB
    maximum_object_size_in_memory 32 KB 
    store_avg_object_size 100 KB
    store_objects_per_bucket 10
    ipcache_size 2048 KB
    ipcache_low 98
    ipcache_high 99
    fqdncache_size 1024
    cache_replacement_policy heap LFUDA 
    memory_replacement_policy heap GDSF 
    #============================================
    # ACCESS CONTROLS LIST
    #============================================
    acl all src 0.0.0.0/0.0.0.0
    acl localnet src 192.168.11.0/24
    acl proxy src 192.168.100.0/29
    acl localhost src 127.0.0.1
    
    #*******************************************
    # Different Access
    #*******************************************
    acl SSL_ports port 443 563
    acl SSL_ports port 563
    acl Safe_ports port 80
    acl Safe_ports port 21
    acl Safe_ports port 280
    acl Safe_ports port 448
    acl Safe_ports port 591
    acl Safe_ports port 777
    acl Safe_ports port 443
    acl Safe_ports port 563
    acl Safe_ports port 808
    acl Safe_ports port 70
    acl Safe_ports port 210
    acl Safe_ports port 4190-65535
    acl CONNECT method CONNECT
    acl PURGE method PURGE
    acl POST method POST
    acl manager proto cache_object
    acl VIRUS urlpath_regex winnt/system32/cmd.exe?
    acl QUERY urlpath_regex cgi-bin \? .js .jsp
    
    #********************************************
    # Attach disallow and allow :
    #********************************************
    http_access allow manager localhost
    http_access allow localnet
    http_access allow proxy
    http_access allow localhost
    http_access allow manager localhost
    http_access allow manager localnet
    http_access allow manager proxy
    http_access allow PURGE localhost
    http_access deny VIRUS
    http_access deny all
    http_access deny !Safe_ports
    http_access deny CONNECT !SSL_ports
    http_reply_access allow all
    no_cache deny QUERY
    icp_access allow localnet
    icp_access allow proxy
    miss_access allow localnet
    miss_access allow proxy
    miss_access deny all
    
    #============================================
    # HTTPD Options and Settings
    #============================================
    log_ip_on_direct on
    httpd_accel_host virtual 
    httpd_accel_port 80 
    httpd_accel_with_proxy on
    httpd_accel_uses_host_header on
    dns_nameservers 202.152.0.2 202.152.5.36
    header_access Accept-Encoding deny all
    header_access Via deny all
    #============================================
    # ADMINISTRATIVE PARAMETERS
    #============================================
    cache_mgr sipiyuku@yahoo.com
    cachemgr_passwd simple99 all
    
    #********************************************
    # This is a name of a user our Squid will work as.
    #********************************************
    cache_effective_user squid
    cache_effective_group squid
    
    #============================================
    # Hostname of Proxy
    #============================================
    visible_hostname proxy.simple.net
    unique_hostname proxy.simple.net
    
    
    #============================================
    # ! DELAY POOLS - Squid Limiter !
    #============================================
    # This is the most important part for shaping incoming traffic with Squid
    # For detailed description see squid.conf file or docs at 
    # We want to limit downloads of these type of files
    # Put this all in one line
    
    acl download url_regex -i \.exe$ \.mp3$ \.mp4$ \.tar.gz$ \.gz$ \.tar.bz2$ \.rpm$ \.zip$ \.rar$ \.avi$ \.mpg$ \.mpeg$ \.rm$ \.iso$ \.wav$ \.mov$ \.dat$ \.mpe$ \.mid$ \.midi$ \.rmi$ \.wma$ \.wmv$ \.ogg$ \.ogm$ \.m1v$ \.mp2$ \.mpa$ \.wax$ \.m3u$ \.asx$ \.wpl$ \.wmx$ \.dvr-ms$ \.snd$ \.au$ \.aif$ \.asf$ \.m2v$ \.m2p$ \.ts$ \.tp$ \.trp$ \.div$ \.divx$ \.mod$ \.vob$ \.aob$ \.dts$ \.ac3$ \.cda$ \.vro$ \.deb$
    
    delay_pools 1
    
    delay_class 1 1
    delay_parameters 1 3000/256000
    delay_access 1 allow download
    delay_access 1 deny all
    
    #=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
    #
    ### End of Squid Configuration ###
    #
    #=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=

    tolong di koreksi mungkin ada yg salah dari configurasi squidku diatas

    trims

  13. #13
    Status
    Offline
    sherayusuf's Avatar
    Member
    Join Date
    Sep 2007
    Location
    bekasi-jakarta bolak balik
    Posts
    188
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    acl bwt ip mikrotik nya ko ngak ada???

  14. #14
    Status
    Offline
    sipiyuku's Avatar
    Baru Gabung
    Join Date
    Jul 2007
    Posts
    14
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by sherayusuf Click here to enlarge
    acl bwt ip mikrotik nya ko ngak ada???

    maksudnya gimana bro?

  15. #15
    Status
    Offline
    sherayusuf's Avatar
    Member
    Join Date
    Sep 2007
    Location
    bekasi-jakarta bolak balik
    Posts
    188
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by sipiyuku Click here to enlarge
    maksudnya gimana bro?
    tambahin ini di acl nya
    Code:
    acl mikrotik src ip mikrotik
    atau
    ni pake squid.conf ku aja
    ni pake windows squidya

    tgl ubah2 aja klo mau pake linux
    DIREKTORI LOG DAN CACHE
    cache_dir aufs c:/squid/var/cache 400 6 256
    acl blacklistfrom url_regex -i "c:\squid\etc\blacklist_from.txt"
    #acl blokdomain dstdomain -i regex "C:\squid\etc\blocklist.txt"
    #acl smtpd url_regex -i "c:\squid\etc\blacklist_smtpd.txt
    #acl spam url_regex -i "c:\squid\etc\blacklist_spam.txt"
    acl porno url_regex -i "c:\squid\etc\blocklist.txt"
    #acl blacklistip dst "c:\squid\etc\blacklistip.txt"
    acl kataterlarang url_regex -i "C:\squid\etc\kata.txt"
    no_cache deny porno
    acl ipnoporno url_regex -i "c:\squid\etc\ipwhitelist.txt"
    acl noporno url_regex -i "c:\squid\etc\whitelist.txt"

    ini ngak transparent lo
    Code:
    #WELCOME TO SQUID HIGHT PERFOMANCE
    #sherayusuf@Copy[left]2007
    
    #          ___             ___       __   __      ____        ____                                      
    #         /   \ __    ____/   \  ___/  / /  |__ _/    |      |    |                                              
    #        /  /\_|  /  /    | -  |/   \  | |  | |/ |    /__ _ /   __/                                        
    #       /  /__   |__/  /| |   / _    | |/  /  /  | / \   /  |   /_                                     
    #       \__   \  _  \  __/   /\/  |  |    ||  |  |_   | /  /    _/                                  
    #        __|  / / | |    \ \   |    / |  / |    /    /  |  /|  |          
    #       \____/|_| /_/\___/_||_/ /__/  /__  \___/|___/\____/ ___/         
    #
    
    
    http_port 3128 
    icp_port 3130
    udp_incoming_address 0.0.0.0
    udp_outgoing_address 255.255.255.255 
    
    #============================================================$
    #Bypass web yg mengandung extension di bawah ini
    #============================================================$
    hierarchy_stoplist cgi-bin ? .js .jsp .g .do .php .asp .cgi localhost Bimanet-network-proxy 
    acl QUERY urlpath_regex cgi-bin \? .js .jsp .g .do .php .asp .cgi localhost Bimanet-network-proxy
    no_cache deny QUERY
    
    #============================================================$
    
    #============================================================$
    # OPTION UKURAN CACHE
    #============================================================$
    #cache_dir diskd c:/squid/var/cache
    cache_dir aufs c:/squid/var/cache 400 6 256
    cache_mem 6 MB
    maximum_object_size 128 MB
    maximum_object_size_in_memory 32 KB
    minimum_object_size 32 KB
    fqdncache_size 1024
    cache_swap_low 98%
    cache_swap_high 99%
    cache_replacement_policy heap LFUDA  #LFUDA utk cache hardisk dan GDSF utk cache memori, hardisk diprioritaskan obyek yg ukuran besar dan di memori obyek yg ukurannya kecil utk disimpan 
    memory_replacement_policy heap GDSF
    high_memory_warning 100 MB
    ipcache_size 1024 #tergantung RAM (standar ram 512 is 2048)
    ipcache_low 98
    ipcache_high 99
    quick_abort_min 0
    quick_abort_max 0
    quick_abort_pct 100
    fqdncache_size 2046
    
    
    #============================================================$
    # DIREKTORI LOG DAN CACHE
    #============================================================$
    cache_access_log c:/squid/var/logs/access.log
    cache_log c:/squid/var/logs/cache.log
    #cache_store_log c:/squid/var/logs/store.log #di disable untuk memperbesar respon
    mime_table c:/squid/etc/mime.conf
    pid_filename c:/squid/var/logs/squid.pid
    unlinkd_program c:/squid/libexec/unlinkd.exe
    log_fqdn off
    cache_log none 
    log_icp_queries off
    buffered_logs off
    emulate_httpd_log off
    
    
    #============================================================$
    # TIMEOUT
    #============================================================$
    half_closed_clients off
    negative_ttl 1 minutes
    half_closed_clients off
    read_timeout 5 minutes
    request_timeout 1 minutes
    client_lifetime 360 minutes
    
    
    #============================================================$
    # FTP section
    #============================================================$
    ftp_passive on
    ftp_sanitycheck on
    ftp_list_width 32 
    
    #============================================================$
    # DNS resolution section
    #============================================================$
    dns_nameservers 127.0.0.1/8 202.72.208.8/29 202.149.69.254/24
    
    #============================================================$
    # AUTH section
    #============================================================$
    auth_param basic children 5
    auth_param basic realm Squid proxy-caching web server
    auth_param basic credentialsttl 3 hours
    auth_param basic casesensitive on
    
    #============================================================$
    # Refresh Rate TUNING CACHE PROXY
    #============================================================$
    refresh_pattern \.gif 4320 50% 43200
    refresh_pattern \.jpg 4320 50% 43200
    refresh_pattern \.tif 4320 50% 43200
    refresh_pattern \.png 4320 50% 43200
    refresh_pattern \.jpeg 4320 50% 43200
    refresh_pattern ^http://*.googlesyndication.*/.* 720 100% 4320
    refresh_pattern ^http://www.friendster.com/.* 720 100% 4320
    refresh_pattern ^http://*.windowsmedia.*/.* 720 100% 4320
    refresh_pattern ^http://mail.yahoo.com/.* 720 100% 4320
    refresh_pattern ^http://*.google.*/.* 720 100% 4320
    refresh_pattern ^http://*.gmail.*/.* 720 100% 4320
    refresh_pattern ^http://*.yahoo.*/.* 720 100% 4320
    refresh_pattern ^http://*.yimg.*/.* 720 100% 4320
    refresh_pattern ^http://*korea.*/.* 720 100% 4320
    refresh_pattern ^http://*.akamai.*/.* 720 100% 4320
    refresh_pattern ^http://*.plasa.*/.* 720 100% 4320
    refresh_pattern ^http://*.telkom.*/.* 720 100% 4320
    refresh_pattern ^ftp: 10080 95% 40320 reload-into-ims override-lastmod
    refresh_pattern ^gopher: 1440 0% 1440
    refresh_pattern . 0 20% 4320 reload-into-ims override-lastmod
    #refresh_pattern ^ftp: 10080 95% 241920 reload-into-ims override-lastmod #(penyimpanan file di cache lebih lama)
    #refresh_pattern . 180 95% 120960 reload-into-ims override-lastmod  #(penyimpanan file di cache lebih lama)
    negative_ttl 1 minutes
    quick_abort_min 0 KB
    quick_abort_max 0 KB
    quick_abort_pct 98%
    
    #============================================================$
    # ACL section AKSES KONTROL
    #============================================================$
    acl all src 0.0.0.0/0.0.0.0
    acl lan src 192.168.0.0/255.255.255.0 
    acl manager proto cache_object
    acl mikrotik src 192.168.0.254
    #acl our_networks src 192.168.0.0/24 192.10.11.0/24 202.72.208.8/29
    acl localnet src 192.168.0.0/24 192.10.11.0/24 202.72.208.8/29
    acl localhost src 127.0.0.1/255.255.255.255
    acl to_localhost dst 127.0.0.0/8
    acl SSL_ports port 443 563 # https, snews
    acl SSL_ports port 873 # rsync
    acl Safe_ports port 80 # http
    acl Safe_ports port 21 # ftp
    acl Safe_ports port 443 563 # https, snews
    acl Safe_ports port 70 # gopher
    acl Safe_ports port 210 # wais
    acl Safe_ports port 5004 # telnet Mikrotik bima dan bagus net
    acl Safe_ports port 1025-65535 # unregistered ports
    acl Safe_ports port 280 # http-mgmt
    acl Safe_ports port 488 # gss-http
    acl Safe_ports port 591 # filemaker
    acl Safe_ports port 777 # multiling http
    acl Safe_ports port 631 # cups
    acl Safe_ports port 873 # rsync
    acl Safe_ports port 901 # SWAT
    acl purge method PURGE
    acl CONNECT method CONNECT
    
    #acll blacklist
    #=====================================
    acl blacklistfrom url_regex -i "c:\squid\etc\blacklist_from.txt"
    #acl blokdomain dstdomain -i regex "C:\squid\etc\blocklist.txt"
    #acl smtpd url_regex -i "c:\squid\etc\blacklist_smtpd.txt
    #acl spam url_regex -i "c:\squid\etc\blacklist_spam.txt"
    acl porno url_regex -i "c:\squid\etc\blocklist.txt"
    #acl blacklistip dst  "c:\squid\etc\blacklistip.txt"
    acl kataterlarang url_regex -i "C:\squid\etc\kata.txt"
    no_cache deny porno
    
    #acl whitelist
    #=====================================
    acl ipnoporno url_regex -i "c:\squid\etc\ipwhitelist.txt"
    acl noporno url_regex -i "c:\squid\etc\whitelist.txt"
    header_access Accept-Encoding deny all 
    
    #deny acl
    #=====================================
    http_access deny porno all
    #http_access deny blacklistip 
    #http_access deny blokdomain
    http_access deny manager
    #http_access deny smtpd
    #http_access deny spam
    http_access deny kataterlarang
    
    #allow acl
    #=====================================
    header_access Accept-Encoding deny all
    http_access allow manager localhost
    http_access allow noporno all
    http_access allow ipnoporno all
    http_access allow localnet
    http_access allow localhost
    http_access allow mikrotik
    http_access deny !Safe_ports
    http_access deny CONNECT !SSL_ports
    http_access deny CONNECT
    icp_access allow lan
    icp_access deny all
    miss_access allow all 
    
    
    #============================================================$
    # Transparent proxy setting
    #============================================================$
    #httpd_accel_host BIMANET-Proxy
    #httpd_accel_port 80
    #httpd_accel_with_proxy on
    #httpd_accel_uses_host_header on
    httpd_accel_no_pmtu_disc on
    #httpd_accel_single_host off
    half_closed_clients off
    #forwarded_for on
    
    #============================================================$
    # MISCELLANEOUS
    #============================================================$
    logfile_rotate 5
    negative_ttl 1 minutes
    #digest_rebuild_period 30 minute
    #digest_rewrite_period 30 minute
    #digest_swapout_chunk_size 4096 bytes
    client_persistent_connections on
    server_persistent_connections on
    pipeline_prefetch on
    vary_ignore_expire on
    reload_into_ims on
    store_dir_select_algorithm round-robin
    nonhierarchical_direct off
    prefer_direct off
    memory_pools off
    ie_refresh on
    shutdown_lifetime 10 second
    
    cachemgr_passwd flashdisk
    cache_effective_user squid
    cache_effective_group squid
    
    buffered_logs off
    log_icp_queries off
    logfile_rotate 0
    log_fqdn off
    forwarded_for on
    icp_hit_stale on #untuk sibling dg mengukur respons-nya via ICP dan ICMP (tapi ada isp yg tidak mengijinkan lho) 
    query_icmp on #untuk subling dg mengukur respons-nya via ICP dan ICMP (tapi ada isp yg tidak mengijinkan lho) 
    reload_into_ims on # Penting utk meningkatkan refresh pattern lebih lanjut
    emulate_httpd_log off
    negative_ttl 2 minutes
    pipeline_prefetch on # Penting utk meningkatkan refresh pattern lebih lanjut
    vary_ignore_expire on # Penting utk meningkatkan refresh pattern lebih lanjut
    half_closed_clients off
    high_response_time_warning 2000
    high_page_fault_warning 2
    cache_mgr bimanet2006@yahoo.co.id
    visible_hostname BIMANET_Web_Proxy_Filter_by_Yusuf_hadiwinata
    header_access Accept-Encoding deny all
    itu dah di kasih keteranganya tgl ubah2 sesuka hati dandis sesuaikan sama OS dan spek komp aja

  16. The Following User Says Thank You to sherayusuf For This Useful Post:


 

 
Page 1 of 2 12 LastLast

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Klient login Hotspot langsung diarahin ke situs tertentu
    By Nasry in forum Scripting @ Mikrotik
    Replies: 55
    Last Post: 12-02-2013, 13:16
  2. Replies: 6
    Last Post: 18-12-2012, 01:30
  3. Share Kekecewaan Terhadap Pelayanan FASTNET
    By landax in forum General Networking
    Replies: 27
    Last Post: 26-07-2009, 12:55
  4. Klient mikrotik ga bisa konek ke internet
    By bangbross in forum Beginner Basics
    Replies: 17
    Last Post: 04-02-2008, 04:36

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •