Follow us on...
Follow us on G+ Follow us on Twitter Follow us on Facebook Watch us on YouTube
Register
Results 1 to 4 of 4

Thread: bypass proxy

  1. #1
    Status
    Offline
    neckropolis's Avatar
    Baru Gabung
    Join Date
    Jan 2011
    Posts
    3
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0

    bypass proxy

    Gan... ane nubi mo tanya nih gak.....mudah2an master disini mo luangin waktu sejenak dan berbagi elmu...Click here to enlarge

    gini gan...ane punya masalah by pass proxy neh...
    di kantor ane pake aplikasi yang terhubung dari cabang ke HO..nah masalahnya...cabang baru bisa konek kalo HO ane bypass gak lewat proxy.. tapi kalo lewat proxy tuh aplikasi ke blok. aplikasinya web base (apache)+oracle pake port 8081 + 1521. sementara ip database masih 1 range sama ip private yang dipake.

    topologi.........

    internet----RB750(1/public, 2/proxy in, 3/proxy out, 4/LAN)---Swich HUB---client
    proxy pake squid
    ip private 192.168.0.254/24
    nah... ip untuk database 192.168.0.1


    untuk proxy ane set di NAT masquerede (192.168.12.0/30--->proxy in/ether2)
    tuh semua yang ip public ketarik ke proxy..

    gimana caranya biara ip 192.168.0.1 gak ikut ketarik ke proxy, jadi hanya ip 192.168.0.1 yang by pass selain ip tsb semuanya lewat proxy....

    ane udah coba yang kayak disini tapi blom jalan gan...


    hehehe makasih atasa bantuannya sebelumnya....Click here to enlarge
    Last edited by neckropolis; 22-10-2012 at 16:57.

  2. #2
    Status
    Offline
    Anto.PJ's Avatar
    Forum Guru
    Join Date
    May 2011
    Location
    macz
    Posts
    1,696
    Reviews
    Read 0 Reviews
    Downloads
    7
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by neckropolis Click here to enlarge
    topologi.........

    internet----RB750(1/public, 2/proxy in, 3/proxy out, 4/LAN)---Swich HUB---client
    proxy pake squid
    ip private 192.168.0.254/24
    nah... ip untuk database 192.168.0.1

    untuk proxy ane set di NAT masquerede (192.168.12.0/30--->proxy in/ether2)
    tuh semua yang ip public ketarik ke proxy..
    NAT nya jangan masquerade.. yang dibelokkan cukup yang berhubungan dengan browsing saja, 80,443. (443 enable jika proxynya pake SSL filtering)
    kalau interface proxy pakai NAT masquerade, proxy nya open.. dapat diakses dari publik

    Click here to enlarge Originally Posted by neckropolis Click here to enlarge
    gimana caranya biara ip 192.168.0.1 gak ikut ketarik ke proxy, jadi hanya ip 192.168.0.1 yang by pass selain ip tsb semuanya lewat proxy....

    ane udah coba yang kayak disini tapi blom jalan gan...


    hehehe makasih atasa bantuannya sebelumnya....Click here to enlarge
    Code:
    chain=dst-nat protocol=tcp in-interface=eth4(LAN) src-address=!192.168.0.1 dst-port=80,3128,8080,8081 action=dst-nat to-address="IP-proxy" to-port="port-proxy"
    kenapa nggak port 80 saja.. karena kebiasaan ada user suka pake proxy luar (browser setting)..


    tambahan, agar proxy gak ngecache akses lokal.. tambahkan address-list
    Code:
    ip firewall address-list
    add name=privat address=192.168.0.0/16
    add name=privat address=172.16.0.0/12
    add name=privat address=10.0.0.0/8
    trus natnya rubah sedikit (yang diatas) menjadi

    Code:
    chain=dst-nat protocol=tcp in-interface=eth4(LAN) src-address=[!]192.168.0.1 dst-address-list=[!]privat dst-port=80,3128,8080,8081 action=dst-nat to-address="IP-proxy" to-port="port-proxy"

  3. #3
    Status
    Offline
    neckropolis's Avatar
    Baru Gabung
    Join Date
    Jan 2011
    Posts
    3
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    heheh....makasih n masukannya... ane coba dulu ya gannnnClick here to enlarge

  4. #4
    Status
    Offline
    neckropolis's Avatar
    Baru Gabung
    Join Date
    Jan 2011
    Posts
    3
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by Anto.PJ Click here to enlarge
    NAT nya jangan masquerade.. yang dibelokkan cukup yang berhubungan dengan browsing saja, 80,443. (443 enable jika proxynya pake SSL filtering)
    kalau interface proxy pakai NAT masquerade, proxy nya open.. dapat diakses dari publik


    Code:
    chain=dst-nat protocol=tcp in-interface=eth4(LAN) src-address=!192.168.0.1 dst-port=80,3128,8080,8081 action=dst-nat to-address="IP-proxy" to-port="port-proxy"
    kenapa nggak port 80 saja.. karena kebiasaan ada user suka pake proxy luar (browser setting)..


    tambahan, agar proxy gak ngecache akses lokal.. tambahkan address-list
    Code:
    ip firewall address-list
    add name=privat address=192.168.0.0/16
    add name=privat address=172.16.0.0/12
    add name=privat address=10.0.0.0/8
    trus natnya rubah sedikit (yang diatas) menjadi

    Code:
    chain=dst-nat protocol=tcp in-interface=eth4(LAN) src-address=[!]192.168.0.1 dst-address-list=[!]privat dst-port=80,3128,8080,8081 action=dst-nat to-address="IP-proxy" to-port="port-proxy"

    PROBLEM SOLVED......
    CASE CLOSE.....

    TENGKIU gan......Click here to enlargeClick here to enlarge

 

 

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. [ASK] menchache Internal Proxy facebook(Poker) yg lain bypass
    By andi_pettaruka in forum Beginner Basics
    Replies: 32
    Last Post: 13-03-2013, 07:18
  2. Bypass Hit Proxy untuk Hotspot
    By mikhael_whyta in forum Wireless Networking
    Replies: 10
    Last Post: 11-03-2012, 00:27
  3. [ASK] Bypass HIT Proxy Hotspot
    By dunk2 in forum Beginner Basics
    Replies: 16
    Last Post: 30-03-2011, 11:07
  4. [TANYA] Setting NAT bypass rapidshare dari Proxy
    By QHEN in forum General Networking
    Replies: 5
    Last Post: 25-05-2010, 21:38
  5. bypass load balancing ke proxy server
    By doan182@gmail.com in forum General Networking
    Replies: 0
    Last Post: 22-12-2009, 13:41

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •