Follow us on...
Follow us on G+ Follow us on Twitter Follow us on Facebook Watch us on YouTube
Register
Results 1 to 2 of 2
  1. #1
    Status
    Offline
    setengahgila's Avatar
    Baru Gabung
    Join Date
    Feb 2011
    Location
    Jakarta
    Posts
    7
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0

    Limit Download Client & Proxy

    Permisi Sesepuh Semua...
    Newby Numpang Tanya..

    Ane Kan Baru Nyoba Bikin Proxy Dengan Topologi Sebagai Berikut..

    Internet -> RB750 -> Client
    --------------|
    ------------Proxy

    192.168.1.1 = Modem
    192.168.1.2 = Mikrotik eth1
    192.168.10.1 = Mikrotik eth3
    192.168.2.1 = Mikrotik eth5

    Karena Ane Bner" Awam Masalah Mikrotik Jadilah Ane Googling Buat Ngerjainnya..
    Berikut Setingan Yang Ane Dapet Dan terapkan

    NAT
    Code:
    [admin@Q.Net] > /ip firewall nat print
    Flags: X - disabled, I - invalid, D - dynamic 
     0   chain=srcnat action=masquerade src-address-list=List IP 
         out-interface=Modem 
    
     1   chain=srcnat action=masquerade src-address=192.168.2.0/24
    Mangle
    Code:
    [admin@Q.Net] > /ip firewall mangle print
    Flags: X - disabled, I - invalid, D - dynamic 
     0   ;;; PROXY HIT DSCP
         chain=prerouting action=mark-packet new-packet-mark=Proxy HIT 
         passthrough=no dscp=12 
    
     1   chain=forward action=mark-connection new-connection-mark=HIT 
         passthrough=yes protocol=tcp in-interface=HC out-interface=Hub 
    
     2   ;;; LIMIT DOWNLOAD PROXY
         chain=forward action=mark-connection new-connection-mark=Download Proxy 
         passthrough=yes protocol=tcp in-interface=Modem out-interface=HC 
         connection-bytes=256000-4294967295 
    
     3   chain=forward action=mark-packet new-packet-mark=Download Proxy 
         passthrough=no protocol=tcp in-interface=Modem out-interface=HC 
         connection-mark=Download Proxy 
    
     4   ;;; LIMIT DOWNLOAD CLIENT
         chain=forward action=mark-connection new-connection-mark=Client 
         passthrough=yes protocol=tcp in-interface=Modem out-interface=Hub 
         connection-bytes=256000-4294967295 
    
     5   chain=forward action=mark-packet new-packet-mark=Client passthrough=yes 
         protocol=tcp in-interface=Modem out-interface=Hub connection-mark=Client 
    
     6   ;;; ROUTING CLIENT TO PROXY
         chain=prerouting action=mark-routing new-routing-mark=Proxy 
         passthrough=yes protocol=tcp src-address=192.168.10.0/24 dst-port=80
    Queue Type
    Code:
    [admin@Q.Net] > /que ty pr   
    Flags: * - default 
     0 * name="default" kind=pfifo pfifo-limit=50 
    
     1 * name="ethernet-default" kind=pfifo pfifo-limit=50 
    
     2 * name="wireless-default" kind=sfq sfq-perturb=5 sfq-allot=1514 
    
     3 * name="synchronous-default" kind=red red-limit=60 red-min-threshold=10 red-max-threshold=50 red-burst=20 red-avg-packet=1000 
    
     4 * name="hotspot-default" kind=sfq sfq-perturb=5 sfq-allot=1514 
    
     5   name="Proxy" kind=pcq pcq-rate=128k pcq-limit=50 pcq-classifier=dst-address pcq-total-limit=2000 pcq-burst-rate=0 pcq-burst-threshold=0 
         pcq-burst-time=10s pcq-src-address-mask=32 pcq-dst-address-mask=32 pcq-src-address6-mask=64 pcq-dst-address6-mask=64 
    
     6   name="Download" kind=pcq pcq-rate=128k pcq-limit=50 pcq-classifier=dst-address pcq-total-limit=2000 pcq-burst-rate=0 
         pcq-burst-threshold=0 pcq-burst-time=10s pcq-src-address-mask=32 pcq-dst-address-mask=32 pcq-src-address6-mask=64 
         pcq-dst-address6-mask=64 
    
     7 * name="only-hardware-queue" kind=none 
    
     8 * name="multi-queue-ethernet-default" kind=mq-pfifo mq-pfifo-limit=50 
    
     9 * name="default-small" kind=pfifo pfifo-limit=10
    Queue Tree
    Code:
    [admin@Q.Net] > /que tr print
    Flags: X - disabled, I - invalid 
     0   name="HIT" parent=global-out packet-mark=HIT limit-at=0 queue=default 
         priority=1 max-limit=0 burst-limit=0 burst-threshold=0 burst-time=0s 
    
     1   name="Limit Download Proxy" parent=global-out packet-mark=Download Proxy 
         limit-at=0 queue=default priority=8 max-limit=1M burst-limit=0 
         burst-threshold=0 burst-time=0s 
    
     2   name="Limit Download Client" parent=global-out packet-mark=Client 
         limit-at=0 queue=default priority=8 max-limit=512k burst-limit=0 
         burst-threshold=0 burst-time=0s
    Yang Ane Pertanyakan Kenapa Download Client Engga Ke Limit Sama Sekali...
    Dari Mangle Download Clientnya Pun Ga Jalan Counternya..
    Mohon Pencerahan Para Sesepuh Supaya Download Ke Client Bisa terlimit, HIT Proxy Unlimited, Proxy Download Juga Terlimit..

    Terimakasih Sebelumnya...

  2. #2
    Status
    Offline
    dhopack's Avatar
    Forum Guru
    Join Date
    Dec 2010
    Location
    KUDUS
    Posts
    1,919
    Reviews
    Read 0 Reviews
    Downloads
    2
    Uploads
    0
    Feedback Score
    0
    menurut saya HITnya langsng mark-packet aja, trs kyae manglenya kurang, kalau pake conn-byte seharuse ada tambahan lagi misal untuk browse diset 0-256000 lalu down diset 256000-0, baru dilempar ke Queue, di Qtree koneksi browse mendekati 256000 maka koneksi akan dilempar ke download dan dilimit BWnya,
    kalau pake simpleQ cukup diset per IP nya,

    Click here to enlarge Originally Posted by setengahgila Click here to enlarge
    ...
    6 ;;; ROUTING CLIENT TO PROXY
    chain=prerouting action=mark-routing new-routing-mark=Proxy
    passthrough=yes protocol=tcp src-address=192.168.10.0/24 dst-port=80
    ...
    kalau gak salah jika memakai rule tersebut posisinya paling atas, dan pembelokan port http ke squid ada dimesin proxy dan tidak melalui NAT nya MT,
    tak lupa CMIIW dan maaf jika salah kaprah hehehe

  3. The Following User Says Thank You to dhopack For This Useful Post:


 

 

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Replies: 1
    Last Post: 22-04-2012, 10:42
  2. Replies: 7
    Last Post: 05-12-2011, 23:00
  3. Replies: 1
    Last Post: 07-11-2011, 12:58
  4. Replies: 5
    Last Post: 21-08-2011, 05:47
  5. Drop Limit download client
    By lolipop in forum General Networking
    Replies: 19
    Last Post: 15-08-2011, 05:45

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •