Follow us on...
Follow us on G+ Follow us on Twitter Follow us on Facebook Watch us on YouTube
Register
Page 2 of 2 FirstFirst 12
Results 16 to 23 of 23
  1. #16
    Status
    Offline
    kodox's Avatar
    Member
    Join Date
    Jul 2010
    Location
    Karawang, Jabar
    Posts
    206
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by invalid Click here to enlarge
    itu yang aku tebali....berarti port-nya IPCop gak usah di rubah ke 3128 ?!? di biarkan port default aja gitu ?!?
    Gak harus sih, bebas pake port berapa aja. Itu cuma contoh ajah... Soalnya kadang saya biarkan port defaultnya ipcop, ada juga yg pake port 3128, malah yg tadinya pake port default saya rubah ke port 3128 karena port 800-nya saya pake untuk server lain. Hehehehe....

  2. #17
    Status
    Offline
    invalid's Avatar
    Newbie
    Join Date
    Mar 2013
    Location
    Gresik - Jawa Timur
    Posts
    23
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by kodox Click here to enlarge
    Gak harus sih, bebas pake port berapa aja. Itu cuma contoh ajah... Soalnya kadang saya biarkan port defaultnya ipcop, ada juga yg pake port 3128, malah yg tadinya pake port default saya rubah ke port 3128 karena port 800-nya saya pake untuk server lain. Hehehehe....
    ok dahh...
    di coba dulu.
    ntar kalo ada error lagi bakal di post lagi disini.
    thanks atas share nya Click here to enlarge

  3. #18
    Status
    Offline
    invalid's Avatar
    Newbie
    Join Date
    Mar 2013
    Location
    Gresik - Jawa Timur
    Posts
    23
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by kodox Click here to enlarge
    Mungkin ini membantu:

    Untuk NAT-nya, baik proxy sejajar dengan MT atau tidak harusnya NAT seperti ini:

    /ip firewall nat add chain=srcnat out-interface=ether-ke-IP-Green-IPCOP action=masquerade
    /ip firewall nat add chain=dstnat action=dst-nat in-interface=ether-yg-ke-HUB/Client \
    protocol=tcp dst-port=80,3128,8080 to-addresses=IP-Green-IPCOP to-ports=Port-Proxy-IPCOP-(defaultnya port 800)

    Saya pakai NAT itu udah lebih dari 2 tahun & di lebih dari 3 warnet yg saya kelola sampai hari ini...
    saya memakai topologi berikut :

    MODEM --- MIKROTIK --- HUB
    ---------------|
    ---------------|
    -------------IPCOP


    IP :
    MODEM = 192.168.0.1
    MIKROTIK :
    ether1 = 192.168.0.100/24 (menuju MODEM)
    ether2 = 192.168.1.1/24 (menuju HUB)
    ether3 = 192.168.2.1/24 (menuju IPCOP)
    gateway = 192.168.0.1

    IPCOP :
    GREEN = 192.168.2.5/24
    RED = 192.168.3.5/24
    gateway = 192.168.2.1

    CLIENT = 192.168.1.10-20/24
    gateway = 192.168.1.1

    saya mencoba memakai konfigurasi diatas (perhatikan tulisan cetak tebal), ping dari client ke DNS speedy dia Reply Namun browsing hanya berputar-putar saja tidak muncul webpage nya.
    tapi, jika saya memakai konfigurasi berikut :

    /ip firewall nat add chain=srcnat out-interface=ether1 src-address-list=!ether2 action=masquerade
    /ip firewall nat add chain=dstnat action=dst-nat in-interface=ether2 \
    protocol=tcp dst-port=80,3128,8080 to-addresses=192.168.2.5 to-ports=3128

    Note : perhatikan tulisan dengan cetak tebal

    semuanya lancar baik ping maupun browsing, cache tersimpan dalam proxy, namun saya "merasa" jika membuka web yang sama yang sudah pernah dibuka diwaktu yang lalu yang sudah tersimpan di proxy, request nya tidak ke proxy, melainkan langsung ke MODEM.
    tolong kawan-kawan di koreksi dimana letak kesalahan konfigurasi yang telah saya pakai.

    Nb. : konfigurasi IPCOP semuanya default dari pertama install, cuma merubah port menjadi 3128 dan mencentang enabled on green, transparent on green dan log enabled.
    response dan solusi nya selalu ditunggu.
    terima kasih.
    Last edited by invalid; 15-04-2013 at 08:56.

  4. #19
    Status
    Offline
    invalid's Avatar
    Newbie
    Join Date
    Mar 2013
    Location
    Gresik - Jawa Timur
    Posts
    23
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    up....up...up.....
    kok aku merasa sepi banget sehhh......

  5. #20
    Status
    Offline
    kodox's Avatar
    Member
    Join Date
    Jul 2010
    Location
    Karawang, Jabar
    Posts
    206
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by invalid Click here to enlarge

    /ip firewall nat add chain=srcnat out-interface=ether1 src-address-list=!ether2 action=masquerade
    /ip firewall nat add chain=dstnat action=dst-nat in-interface=ether2 \
    protocol=tcp dst-port=80,3128,8080 to-addresses=192.168.2.5 to-ports=3128
    Maksud yg di tebalin itu? Ada address-list yg namanya ether2 di /ip firewall address-list...?

    Kalo gak pake src-address-list hasilnya gimana...?

    Ini di IPCOP-nya cuma pake 1 ethernet yak...? Kalo IP RED-nya jadi satu subnet ama GREEN gimana...?

  6. #21
    Status
    Offline
    toyibhusain's Avatar
    Baru Gabung
    Join Date
    May 2011
    Location
    Bekasi
    Posts
    13
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Kalo IPCop-nya tetep mau dijadiin Gateway Internet, bisa dengan 2 cara:

    1. Transparent Traffik (Bridging) seperti yg dijelasin om admin.

    2. Statik Routing, buat IP PTP dulu dari IPCop ke Mikrotik trus di routing dari IPCop ke Mikrotik, dan di Mikrotiknya jngan dikasih NAT

  7. #22
    Status
    Offline
    invalid's Avatar
    Newbie
    Join Date
    Mar 2013
    Location
    Gresik - Jawa Timur
    Posts
    23
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by kodox Click here to enlarge
    Maksud yg di tebalin itu? Ada address-list yg namanya ether2 di /ip firewall address-list...?

    Kalo gak pake src-address-list hasilnya gimana...?

    Ini di IPCOP-nya cuma pake 1 ethernet yak...? Kalo IP RED-nya jadi satu subnet ama GREEN gimana...?
    dah fix mas...ternyata NAT nya gini :
    /ip firewall nat
    add action=dst-nat chain=dstnat comment="TRANSPARENT DNS" disabled=no \
    dst-port=53 in-interface=ether2 protocol=udp to-ports=53
    add action=dst-nat chain=dstnat comment="" disabled=no dst-port=53 \
    in-interface=ether2 protocol=tcp to-ports=53
    add action=dst-nat chain=dstnat comment="" disabled=no dst-port=53 \
    in-interface=ether3 protocol=udp to-ports=53
    add action=dst-nat chain=dstnat comment="" disabled=no dst-port=53 \
    in-interface=ether3 protocol=tcp to-ports=53
    add action=dst-nat chain=dstnat comment="TRANSPARENT PROXY" disabled=no \
    dst-address-list=!proxynet dst-port=80,8080,3128 in-interface=ether2 \
    protocol=tcp to-addresses=192.168.2.5 to-ports=3128
    add action=dst-nat chain=dstnat comment="PROXY NAT" disabled=no dst-address=\
    192.168.1.10 dst-port=22,81,10000 in-interface=ether2 protocol=tcp \
    to-addresses=192.168.2.5
    add action=masquerade chain=srcnat comment="MASQUERADE MODEM" disabled=no \
    out-interface=ether1
    add action=masquerade chain=srcnat comment="MASQUERADE PPPOE" disabled=no \
    out-interface=Speedy

    dial up speedy di mikrotik dan modem mode bridge.
    thanks all Click here to enlarge

  8. #23
    Status
    Offline
    shr
    shr's Avatar
    Baru Gabung
    Join Date
    Oct 2013
    Posts
    2
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by invalid Click here to enlarge
    dah fix mas...ternyata NAT nya gini :
    /ip firewall nat
    add action=dst-nat chain=dstnat comment="TRANSPARENT DNS" disabled=no \
    dst-port=53 in-interface=ether2 protocol=udp to-ports=53
    add action=dst-nat chain=dstnat comment="" disabled=no dst-port=53 \
    in-interface=ether2 protocol=tcp to-ports=53
    add action=dst-nat chain=dstnat comment="" disabled=no dst-port=53 \
    in-interface=ether3 protocol=udp to-ports=53
    add action=dst-nat chain=dstnat comment="" disabled=no dst-port=53 \
    in-interface=ether3 protocol=tcp to-ports=53
    add action=dst-nat chain=dstnat comment="TRANSPARENT PROXY" disabled=no \
    dst-address-list=!proxynet dst-port=80,8080,3128 in-interface=ether2 \
    protocol=tcp to-addresses=192.168.2.5 to-ports=3128
    add action=dst-nat chain=dstnat comment="PROXY NAT" disabled=no dst-address=\
    192.168.1.10 dst-port=22,81,10000 in-interface=ether2 protocol=tcp \
    to-addresses=192.168.2.5
    add action=masquerade chain=srcnat comment="MASQUERADE MODEM" disabled=no \
    out-interface=ether1
    add action=masquerade chain=srcnat comment="MASQUERADE PPPOE" disabled=no \
    out-interface=Speedy

    dial up speedy di mikrotik dan modem mode bridge.
    thanks all Click here to enlarge
    ini pke ip berapa ? yang saya tebali

 

 
Page 2 of 2 FirstFirst 12

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •