Follow us on...
Follow us on G+ Follow us on Twitter Follow us on Facebook Watch us on YouTube
Register
Results 1 to 5 of 5
  1. #1
    Status
    Offline
    ronnysan's Avatar
    Baru Gabung
    Join Date
    Jan 2010
    Posts
    12
    Reviews
    Read 0 Reviews
    Downloads
    1
    Uploads
    0
    Feedback Score
    0

    Lightbulb Tolong di Review (Bandwidth Manager + Proxy Internal)

    Tolong di review Agan2 sekalian .....
    Ini settingan Mikrotik gw dengan Pisah Download-Browsing-Game-FB dan menggunakan Proxy internal.
    Settingan ini semuanya adalah hasil dari gabungan tutor dari forum ini.
    Minta masukan jika ada yg kurang ......
    Click here to enlargeClick here to enlargeClick here to enlarge

    TOPOLOGI
    Modem
    |
    Mikrotik------Ether1 (Bridge dengan modem PPOE) >> 192.168.1.2
    |------------Ether2 (LAN Ke Warnet) >> 192.168.2.0/24
    |------------Ether3 (WiFi) >> 192.168.0.0/24
    Proxy Internal

    IP >> FIREWALL >> NAT
    0 ;;; Proxy
    chain=dstnat action=dst-nat to-addresses=192.168.2.1 to-ports=8080
    protocol=tcp src-address-list=tales dst-address-list=!AyoDance
    in-interface=ether3 dst-port=80,81,3128,8080,3127

    1 chain=dstnat action=dst-nat to-addresses=192.168.2.1 to-ports=8080
    protocol=tcp src-address-list=tales1 dst-address-list=!AyoDance
    in-interface=ether2 dst-port=80,81,3128,8080,3127

    2 chain=dstnat action=dst-nat to-addresses=192.168.2.1 to-ports=8080
    protocol=tcp src-address-list=tales2 dst-port=80,81,3128,8080,3127

    3 ;;; DNS Resolve
    chain=dstnat action=redirect to-ports=53 protocol=udp
    src-address-list=tales2 dst-port=53

    4 chain=dstnat action=redirect to-ports=53 protocol=udp
    src-address-list=tales dst-port=53

    5 chain=dstnat action=redirect to-ports=53 protocol=udp
    src-address-list=tales1 dst-port=53

    6 chain=dstnat action=redirect to-ports=53 protocol=tcp dst-port=53

    7 ;;; Added by webbox
    chain=srcnat action=masquerade src-address-list=tales
    out-interface=Speedy-pppoe

    8 chain=srcnat action=masquerade src-address-list=tales1
    out-interface=Speedy-pppoe

    9 chain=srcnat action=masquerade src-address-list=tales2
    out-interface=Speedy-pppoe
    IP >> FIREWALL >> MANGLE
    0 ;;; WinBox
    chain=prerouting action=mark-routing new-routing-mark=WINBOX
    passthrough=yes protocol=tcp dst-port=8291

    1 chain=prerouting action=mark-routing new-routing-mark=WINBOX
    passthrough=yes protocol=udp dst-port=20561,5678

    2 chain=prerouting action=mark-connection new-connection-mark=WINBOX
    passthrough=yes routing-mark=WINBOX

    3 chain=prerouting action=mark-connection new-connection-mark=WINBOX
    passthrough=yes protocol=tcp dst-port=8291

    4 chain=prerouting action=mark-packet new-packet-mark=winbox passthrough=no
    connection-mark=WINBOX

    5 ;;; DNS
    chain=prerouting action=mark-connection new-connection-mark=DNS
    passthrough=yes protocol=udp dst-port=53

    6 chain=prerouting action=mark-connection new-connection-mark=LUAR
    passthrough=yes protocol=tcp dst-port=53

    7 chain=prerouting action=mark-packet new-packet-mark=dns passthrough=no
    connection-mark=DNS

    8 ;;; PING
    chain=prerouting action=mark-connection new-connection-mark=PING
    passthrough=yes protocol=icmp

    9 chain=prerouting action=mark-packet new-packet-mark=ping passthrough=no
    connection-mark=PING

    10 ;;; Pack-Down-Proxy
    chain=output action=mark-packet new-packet-mark=Pack-Down-Proxy
    passthrough=no out-interface=ether2 dscp=4

    11 chain=output action=mark-packet new-packet-mark=Pack-Down-Proxy
    passthrough=no out-interface=ether3 dscp=4

    12 chain=output action=mark-packet new-packet-mark=Pack-Down-Proxy
    passthrough=no layer7-protocol=HIT

    13 chain=forward action=mark-packet new-packet-mark=Pack-Down-Proxy
    passthrough=no layer7-protocol=HIT

    14 chain=input action=mark-packet new-packet-mark=Pack-Down-Proxy
    passthrough=no layer7-protocol=HIT

    15 chain=postrouting action=mark-packet new-packet-mark=Pack-Down-Proxy
    passthrough=no layer7-protocol=HIT

    16 chain=prerouting action=mark-packet new-packet-mark=Pack-Down-Proxy
    passthrough=no layer7-protocol=HIT

    17 chain=prerouting action=mark-packet new-packet-mark=Pack-Down-Proxy
    passthrough=no content=X-Cache: HIT

    18 ;;; Poker
    chain=prerouting action=mark-routing new-routing-mark=POKER
    passthrough=yes protocol=tcp dst-address-list=Load Poker
    dst-port=843,9339

    19 chain=prerouting action=mark-connection new-connection-mark=POKER
    passthrough=yes routing-mark=POKER packet-mark=!Pack-Down-Proxy

    20 chain=prerouting action=mark-connection new-connection-mark=POKER
    passthrough=yes packet-mark=!Pack-Down-Proxy content=apps.facebook.com

    21 chain=prerouting action=mark-connection new-connection-mark=POKER
    passthrough=yes dst-address-list=Load Poker packet-mark=!Pack-Down-Proxy

    22 chain=prerouting action=mark-packet new-packet-mark=poker passthrough=no
    packet-mark=!Pack-Down-Proxy connection-mark=POKER

    23 ;;; FB
    chain=prerouting action=mark-connection new-connection-mark=FB
    passthrough=yes dst-address-list=facebook packet-mark=!Pack-Down-Proxy

    24 chain=prerouting action=mark-connection new-connection-mark=FB
    passthrough=yes packet-mark=!Pack-Down-Proxy content=facebook.com

    25 chain=prerouting action=mark-connection new-connection-mark=FB
    passthrough=yes packet-mark=!Pack-Down-Proxy content=facebook

    26 chain=prerouting action=mark-connection new-connection-mark=FB
    passthrough=yes packet-mark=!Pack-Down-Proxy content=zynga

    27 chain=prerouting action=mark-connection new-connection-mark=FB
    passthrough=yes packet-mark=!Pack-Down-Proxy
    content=statics.poker.static.zynga.com

    28 chain=prerouting action=mark-connection new-connection-mark=FB
    passthrough=yes packet-mark=!Pack-Down-Proxy content=zynga.com

    29 chain=prerouting action=mark-connection new-connection-mark=FB
    passthrough=yes packet-mark=!Pack-Down-Proxy content=fbcdn.net

    30 chain=prerouting action=mark-connection new-connection-mark=FB
    passthrough=yes packet-mark=!Pack-Down-Proxy content=*.facebook.com/*

    31 chain=prerouting action=mark-connection new-connection-mark=FB
    passthrough=yes packet-mark=!Pack-Down-Proxy content=fbcdn.net/*

    32 chain=prerouting action=mark-connection new-connection-mark=FB
    passthrough=yes packet-mark=!Pack-Down-Proxy
    content=statics.poker.static.zynga.com/*

    33 chain=prerouting action=mark-packet new-packet-mark=fb passthrough=no
    packet-mark=!Pack-Down-Proxy connection-mark=FB

    34 ;;; PB IIX - Game - FaceBook
    chain=prerouting action=mark-routing new-routing-mark=PB passthrough=yes
    protocol=udp dst-port=40000-40010

    35 chain=prerouting action=mark-routing new-routing-mark=PB passthrough=yes
    protocol=udp dst-port=9999,42052,42053,42051

    36 chain=prerouting action=mark-routing new-routing-mark=PB passthrough=yes
    protocol=tcp dst-port=39100,39110,39220,39190,49100,18900,18901,189 07,
    18910,18909,6000-6152,7808,30000

    37 chain=prerouting action=mark-connection new-connection-mark=PB
    passthrough=yes routing-mark=PB packet-mark=!Pack-Down-Proxy

    38 chain=prerouting action=mark-connection new-connection-mark=PB
    passthrough=yes packet-mark=!Pack-Down-Proxy content=gemscool.com

    39 chain=prerouting action=mark-packet new-packet-mark=pb passthrough=no
    packet-mark=!Pack-Down-Proxy connection-mark=PB

    40 chain=output action=mark-packet new-packet-mark=pb passthrough=no
    packet-mark=!Pack-Down-Proxy connection-mark=PB

    41 ;;; ALL CON
    chain=prerouting action=mark-connection new-connection-mark=Conn
    passthrough=yes protocol=tcp routing-mark=!POKER
    in-interface=Speedy-pppoe packet-mark=!fb connection-mark=!WINBOX

    42 chain=input action=mark-connection new-connection-mark=Conn
    passthrough=yes protocol=tcp routing-mark=!POKER
    in-interface=Speedy-pppoe packet-mark=!fb connection-mark=!WINBOX

    43 chain=forward action=mark-connection new-connection-mark=Conn
    passthrough=yes protocol=tcp routing-mark=!POKER
    in-interface=Speedy-pppoe packet-mark=!fb connection-mark=!WINBOX

    44 chain=forward action=mark-connection new-connection-mark=Conn
    passthrough=yes protocol=tcp routing-mark=!POKER packet-mark=!fb
    connection-mark=!WINBOX

    45 ;;; Pack-Down-Bypass >256k
    chain=prerouting action=mark-packet new-packet-mark=Pack-Down-Bypass
    passthrough=no protocol=tcp routing-mark=!POKER dst-address-list=!tales2
    packet-mark=!Pack-Down-Proxy connection-mark=Conn
    connection-bytes=256000-4294967295

    46 chain=forward action=mark-packet new-packet-mark=Pack-Down-Bypass
    passthrough=no protocol=tcp routing-mark=!POKER dst-address-list=!tales2
    packet-mark=!Pack-Down-Proxy connection-mark=Conn
    connection-bytes=256000-4294967295

    47 chain=input action=mark-packet new-packet-mark=Pack-Down-Bypass
    passthrough=no protocol=tcp routing-mark=!POKER dst-address-list=!tales2
    packet-mark=!Pack-Down-Proxy connection-mark=Conn
    connection-bytes=256000-4294967295

    48 chain=output action=mark-packet new-packet-mark=Pack-Down-Bypass
    passthrough=no protocol=tcp routing-mark=!POKER dst-address-list=!tales2
    out-interface=ether2 packet-mark=!Pack-Down-Proxy connection-mark=Conn

    49 chain=output action=mark-packet new-packet-mark=Pack-Down-Bypass
    passthrough=no protocol=tcp routing-mark=!POKER dst-address-list=!tales2
    out-interface=ether3 packet-mark=!Pack-Down-Proxy connection-mark=Conn

    50 ;;; Browsing < 256k
    chain=prerouting action=mark-packet new-packet-mark=browsing
    passthrough=no protocol=tcp routing-mark=!PB
    packet-mark=!Pack-Down-Proxy connection-mark=Conn

    51 chain=forward action=mark-packet new-packet-mark=browsing passthrough=no
    protocol=tcp routing-mark=!PB packet-mark=!Pack-Down-Proxy
    connection-mark=Conn

    52 chain=input action=mark-packet new-packet-mark=browsing passthrough=no
    protocol=tcp routing-mark=!PB packet-mark=!Pack-Down-Proxy
    connection-mark=Conn

    53 ;;; Pack-Upload
    chain=prerouting action=mark-packet new-packet-mark=Pack-Upload
    passthrough=no src-address-list=tales1 in-interface=ether2

    54 chain=prerouting action=mark-packet new-packet-mark=Pack-Upload
    passthrough=no src-address-list=tales in-interface=ether3
    -- [Q quit|D dump|up|down]
    QUEUE >> TREE
    0 name="DNS-" parent=DNS-PING packet-mark=dns limit-at=0 queue=default
    priority=1 max-limit=0 burst-limit=0 burst-threshold=0 burst-time=0s

    1 name="FB-" parent=BROWSING packet-mark=fb limit-at=0 queue=default
    priority=4 max-limit=0 burst-limit=0 burst-threshold=0 burst-time=0s

    2 name="PB-" parent=global-total packet-mark=pb limit-at=128000 queue=PCQ
    priority=3 max-limit=1000000 burst-limit=0 burst-threshold=0
    burst-time=0s

    3 name="PING-" parent=DNS-PING packet-mark=ping limit-at=0 queue=default
    priority=1 max-limit=0 burst-limit=0 burst-threshold=0 burst-time=0s

    4 name="POKER-" parent=BROWSING packet-mark=poker limit-at=0 queue=default
    priority=4 max-limit=0 burst-limit=0 burst-threshold=0 burst-time=0s

    5 name="UPLOAD-" parent=UNLIMITED packet-mark=Pack-Upload limit-at=0
    queue=default priority=2 max-limit=0 burst-limit=0 burst-threshold=0
    burst-time=0s

    6 name="WINBOX-" parent=UNLIMITED packet-mark=winbox limit-at=0
    queue=default priority=2 max-limit=0 burst-limit=0 burst-threshold=0
    burst-time=0s

    7 name="PROXY-" parent=UNLIMITED packet-mark=Pack-Down-Proxy limit-at=0
    queue=default priority=2 max-limit=0 burst-limit=0 burst-threshold=0
    burst-time=0s

    8 name="DNS-PING" parent=global-total packet-mark="" limit-at=128000
    queue=PING-DNS priority=1 max-limit=512000 burst-limit=0
    burst-threshold=0 burst-time=0s

    9 name="BROWSING" parent=global-total packet-mark="" limit-at=128000
    queue=PCQ priority=4 max-limit=2000000 burst-limit=0 burst-threshold=0
    burst-time=0s

    10 name="UNLIMITED" parent=global-total packet-mark="" limit-at=1000000000
    queue=Proxy priority=2 max-limit=1000000000 burst-limit=0
    burst-threshold=0 burst-time=0s

    11 name="DOWNLOAD" parent=global-total packet-mark=Pack-Down-Bypass
    limit-at=128000 queue=DOWNLOAD priority=8 max-limit=500000 burst-limit=0
    burst-threshold=0 burst-time=0s

    12 name="BROWSING-" parent=BROWSING packet-mark=browsing limit-at=0
    queue=default priority=4 max-limit=0 burst-limit=0 burst-threshold=0
    burst-time=0s
    -- [Q quit|D dump|up|down]
    Salam,
    TheTales
    Last edited by ronnysan; 06-03-2012 at 18:08.

  2. The Following User Says Thank You to ronnysan For This Useful Post:


  3. #2
    Status
    Offline
    samsianto's Avatar
    Baru Gabung
    Join Date
    Oct 2011
    Posts
    15
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    itu hasilnya gmn mas bro???

  4. #3
    Status
    Offline
    ronnysan's Avatar
    Baru Gabung
    Join Date
    Jan 2010
    Posts
    12
    Reviews
    Read 0 Reviews
    Downloads
    1
    Uploads
    0
    Feedback Score
    0
    Saya belum mengerti benar dengan chain sehingga semua chain saya masukkan dam satu paket ....
    Hasilnya proxy internal berjalan dengan baik tapi FB kadang bisa dibuka kadang tidak saya kurang mengerti masalahnya..
    Tolong direview....

  5. #4
    Status
    Offline
    samsianto's Avatar
    Baru Gabung
    Join Date
    Oct 2011
    Posts
    15
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    saya juga lagi ngutek ini,, gara-gara mau beli RB+setingnya, uang nya buat keperluan lain,akhirnya saya pake MK3.30 crak-crakan,,keinginan se pisah game, download, browsing + internal proxy,saya coba yg ini , hehheheheh,, sudah ada yg coba ,, tapi dikit reviewnya, mudah-mudahan ada yg pernah berhasil tolong share???

  6. #5
    Status
    Offline
    ronnysan's Avatar
    Baru Gabung
    Join Date
    Jan 2010
    Posts
    12
    Reviews
    Read 0 Reviews
    Downloads
    1
    Uploads
    0
    Feedback Score
    0
    @samsianto >> MK 3.30 apakah sudah di coba stabil gak ??? ..... Saya menggunakan MK 3.22 sudah 2tahun lebih dan tidak pernah ada masalah.
    Oh yah .. thanks buat link-nya.
    Setelah saya check, memang ada beberapa kesalahan di mangle dan queue tree saya ......
    Demikian yg sudah saya rubah ... (berwarna merah "HAPUS" dan berwarna biru "GANTI/RUBAH")
    41 ;;; ALL CON
    chain=prerouting action=mark-connection new-connection-mark=Conn
    passthrough=yes protocol=tcp routing-mark=!POKER
    in-interface=Speedy-pppoe packet-mark=!fb connection-mark=!WINBOX


    42 chain=input action=mark-connection new-connection-mark=Conn
    passthrough=yes protocol=tcp routing-mark=!POKER
    in-interface=Speedy-pppoe packet-mark=!fb connection-mark=!WINBOX


    43 chain=forward action=mark-connection new-connection-mark=Conn
    passthrough=yes protocol=tcp routing-mark=!POKER
    in-interface=Speedy-pppoe packet-mark=!fb connection-mark=!WINBOX

    44 chain=forward action=mark-connection new-connection-mark=Conn
    passthrough=yes protocol=tcp routing-mark=!POKER packet-mark=!fb
    connection-mark=!WINBOX

    45 ;;; Pack-Down-Bypass >256k
    chain=prerouting action=mark-packet new-packet-mark=Pack-Down-Bypass
    passthrough=no protocol=tcp routing-mark=!POKER dst-address-list=!tales2
    packet-mark=!Pack-Down-Proxy connection-mark=Conn
    connection-bytes=256000-4294967295


    46 chain=forward action=mark-packet new-packet-mark=Pack-Down-Bypass
    passthrough=no protocol=tcp routing-mark=!POKER dst-address-list=!tales2
    packet-mark=!Pack-Down-Proxy connection-mark=Conn
    connection-bytes=256000-4294967295

    47 chain=input action=mark-packet new-packet-mark=Pack-Down-Bypass
    passthrough=no protocol=tcp routing-mark=!POKER dst-address-list=!tales2
    packet-mark=!Pack-Down-Proxy connection-mark=Conn
    connection-bytes=256000-4294967295


    48 chain=output action=mark-packet new-packet-mark=Pack-Down-Bypass
    passthrough=no protocol=tcp routing-mark=!POKER dst-address-list=!tales2
    out-interface=ether2 packet-mark=!Pack-Down-Proxy connection-mark=Conn

    49 chain=output action=mark-packet new-packet-mark=Pack-Down-Bypass
    passthrough=no protocol=tcp routing-mark=!POKER dst-address-list=!tales2
    out-interface=ether3 packet-mark=!Pack-Down-Proxy connection-mark=Conn

    50 ;;; Browsing < 256k
    chain=prerouting action=mark-packet new-packet-mark=browsing
    passthrough=no protocol=tcp routing-mark=!PB
    packet-mark=!Pack-Down-Proxy connection-mark=Conn


    51 chain=forward action=mark-packet new-packet-mark=browsing passthrough=no
    protocol=tcp routing-mark=!PB packet-mark=!Pack-Down-Proxy
    connection-mark=Conn

    52 chain=input action=mark-packet new-packet-mark=browsing passthrough=no
    protocol=tcp routing-mark=!PB packet-mark=!Pack-Down-Proxy
    connection-mark=Conn

    Paket Upload di pindahkan ke atas paket ALL CONN (Rule No. 41)
    53 ;;; Pack-Upload
    chain=prerouting action=mark-packet new-packet-mark=Pack-Upload
    passthrough=no src-address-list=tales1 in-interface=ether2

    54 chain=prerouting action=mark-packet new-packet-mark=Pack-Upload
    passthrough=no src-address-list=tales in-interface=ether3
    Dan untuk Queue Tree-nya setelah saya terapkan ternyata masih ada bobol seperti port 443 yg tidak ter limit, setelah beberapa percobaan saya rubah sedikit dan hasilnya semua paket terlimit .....
    Dibawah ini paket queue tree yag saya sudah rubah....
    0 name="DNS-" parent=DNS-PING packet-mark=dns limit-at=0 queue=default
    priority=1 max-limit=0 burst-limit=0 burst-threshold=0 burst-time=0s

    1 name="FB-" parent=BROWSING packet-mark=fb limit-at=0 queue=default
    priority=4 max-limit=0 burst-limit=0 burst-threshold=0 burst-time=0s

    2 name="PB-" parent=global-total packet-mark=pb limit-at=128000 queue=PCQ
    priority=3 max-limit=1000000 burst-limit=0 burst-threshold=0
    burst-time=0s

    3 name="PING-" parent=DNS-PING packet-mark=ping limit-at=0 queue=default
    priority=1 max-limit=0 burst-limit=0 burst-threshold=0 burst-time=0s

    4 name="POKER-" parent=BROWSING packet-mark=poker limit-at=0 queue=default
    priority=4 max-limit=0 burst-limit=0 burst-threshold=0 burst-time=0s

    5 name="UPLOAD-" parent=UNLIMITED packet-mark=Pack-Upload limit-at=0
    queue=default priority=2 max-limit=0 burst-limit=0 burst-threshold=0
    burst-time=0s

    6 name="WINBOX-" parent=UNLIMITED packet-mark=winbox limit-at=0
    queue=default priority=2 max-limit=0 burst-limit=0 burst-threshold=0
    burst-time=0s

    7 name="PROXY-" parent=UNLIMITED packet-mark=Pack-Down-Proxy limit-at=0
    queue=default priority=2 max-limit=0 burst-limit=0 burst-threshold=0
    burst-time=0s

    8 name="DNS-PING" parent=global-total packet-mark="" limit-at=128000
    queue=PING-DNS priority=1 max-limit=512000 burst-limit=0
    burst-threshold=0 burst-time=0s

    9 name="BROWSING" parent=global-total packet-mark="" limit-at=128000
    queue=PCQ priority=4 max-limit=2000000 burst-limit=0 burst-threshold=0
    burst-time=0s

    10 name="UNLIMITED" parent=global-total packet-mark="" limit-at=1000000000
    queue=Proxy priority=2 max-limit=1000000000 burst-limit=0
    burst-threshold=0 burst-time=0s

    Rule no 11 ini untuk parent jangan gunakan global-total tapi digantikan dengan global-out
    11 name="DOWNLOAD" parent=global-total packet-mark=Pack-Down-Bypass
    limit-at=128000 queue=DOWNLOAD priority=8 max-limit=500000 burst-limit=0
    burst-threshold=0 burst-time=0s

    12 name="BROWSING-" parent=BROWSING packet-mark=browsing limit-at=0
    queue=default priority=4 max-limit=0 burst-limit=0 burst-threshold=0
    burst-time=0s
    Sekali lagi mohon reviewnya jika ada yg kurang ...... Thanks
    Last edited by ronnysan; 12-03-2012 at 09:23.

 

 

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. web proxy internal + Limit Bandwidth dengan extension
    By scarface_qwerty in forum General Networking
    Replies: 10
    Last Post: 19-03-2010, 04:26
  2. Dstnat untuk proxy external ke mikrotik dengan proxy internal
    By awarmanf in forum General Networking
    Replies: 3
    Last Post: 21-02-2010, 21:17
  3. Replies: 21
    Last Post: 25-11-2009, 02:35
  4. bandwidth manager hotspot
    By wp11b in forum General Networking
    Replies: 3
    Last Post: 27-12-2007, 21:45

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •