Follow us on...
Follow us on G+ Follow us on Twitter Follow us on Facebook Watch us on YouTube
Register
Results 1 to 1 of 1

Thread: bantuin dunk...

  1. #1
    Status
    Offline
    sufandi's Avatar
    Member Senior
    Join Date
    May 2008
    Location
    permukaan bumi
    Posts
    482
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0

    bantuin dunk...

    suhu mikrotik, bantuin dunk solve masalah proxy ex gue ni...

    pusink sana sini gk ada jalan keluar, moga2 ada yang mau meluangkan waktu buat share ilmu nyee....

    ini saya kasi detail nya dlu

    topologi

    internet 2x - loadbalance(rb450)-mikrotikrb450-hub-client
    >>>>>>>>>>>>>>>>>>>>>>>>-ipcop

    dan ini setingannya...

    [admin@MikroTik] > ip address print
    # ADDRESS NETWORK BROADCAST INTERFACE
    0 192.168.129.254/24 192.168.129.0 192.168.129.255 local
    1 192.168.200.2/24 192.168.200.0 192.168.200.255 load-balance
    2 192.168.100.2/24 192.168.100.0 192.168.100.255 ipcop
    [admin@MikroTik] > ip firewall nat print
    0 ;;; untuk-ipcop
    chain=dstnat action=dst-nat to-addresses=192.168.100.1 to-ports=81 protocol=tcp dst-port=81

    1 ;;; untuk-http-ipcop
    chain=dstnat action=dst-nat to-addresses=192.168.100.1 to-ports=445 protocol=tcp dst-port=445

    2 chain=dstnat action=dst-nat to-addresses=192.168.100.1 to-ports=878 protocol=tcp src-address=!192.168.100.0/24
    dst-port=80

    3 chain=dstnat action=dst-nat to-addresses=192.168.100.1 to-ports=878 protocol=tcp src-address=!192.168.100.0/24
    dst-port=443

    4 chain=srcnat action=masquerade out-interface=local
    [admin@MikroTik] > ip firewall mangle print
    0 chain=forward action=mark-connection new-connection-mark=squid-con passthrough=yes content=X-cache:HIT

    1 chain=forward action=mark-packet new-packet-mark=squid-pkt passthrough=no connection-mark=squid-con

    2 chain=forward action=mark-connection new-connection-mark=all-con passthrough=yes connection-mark=!squid-con

    3 chain=forward action=mark-packet new-packet-mark=http-pkt passthrough=no protocol=tcp src-port=80
    connection-mark=all-con

    4 chain=forward action=mark-packet new-packet-mark=icmp-pkt passthrough=no protocol=icmp connection-mark=all-con

    5 chain=forward action=mark-packet new-packet-mark=test-pkt passthrough=no connection-mark=all-con
    [admin@MikroTik] > ip route print
    # DST-ADDRESS PREF-SRC GATEWAY-STATE GATEWAY DISTANCE INTERFACE
    0 S 0.0.0.0/0 unreachable 192.168.200.1 1
    1 ADC 192.168.100.0/24 192.168.100.2 0 ipcop
    2 ADC 192.168.129.0/24 192.168.129.254 0 local
    3 ADC 192.168.200.0/24 192.168.200.2 0 load-balance

    [admin@MikroTik] > queue simple print
    0 X name="squid-HIT" dst-address=0.0.0.0/0 interface=all parent=none packet-marks=squid-pkt direction=both priority=8
    queue=default-small/default-small limit-at=0/0 max-limit=0/0 burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s
    total-queue=default-small

    1 X name="main-link" dst-address=0.0.0.0/0 interface=all parent=none direction=both priority=8
    queue=default-small/default-small limit-at=0/0 max-limit=48000/256000 burst-limit=0/0 burst-threshold=0/0
    burst-time=0s/0s total-queue=default-small

    2 X name="ping-queue" dst-address=0.0.0.0/0 interface=all parent=none packet-marks=icmp-pkt direction=both priority=2
    queue=default-small/default-small limit-at=0/0 max-limit=0/0 burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s
    total-queue=default-small

    3 X name="ipcop" target-addresses=192.168.100.0/24 dst-address=0.0.0.0/0 interface=all parent=main-link
    packet-marks=http-pkt direction=both priority=8 queue=default-small/default-small limit-at=8000/8000
    max-limit=48000/256000 burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s total-queue=default-small

    4 X name="local" target-addresses=192.168.129.0/24 dst-address=0.0.0.0/0 interface=all parent=main-link
    packet-marks=test-pkt direction=both priority=8 queue=default-small/default-small limit-at=0/0 max-limit=0/256000
    burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s total-queue=default-small

    dari sisi client saya tidak bisa ping ke LB atau ipcop....kenapa bisa ya,padahal saya kopi 100% dari suhu aldedian..THX
    Last edited by sufandi; 24-09-2009 at 16:16.

 

 

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Tolong bantuin aku.....
    By rielove in forum General Networking
    Replies: 8
    Last Post: 09-12-2009, 08:19
  2. bantuin donk !!!
    By sufandi in forum Beginner Basics
    Replies: 33
    Last Post: 05-08-2009, 14:16
  3. bantuin....
    By yusdi in forum Wireless Networking
    Replies: 7
    Last Post: 04-08-2009, 17:13
  4. bantuin dunkkk
    By yusdi in forum Beginner Basics
    Replies: 1
    Last Post: 04-08-2009, 12:36
  5. Bantuin donk ...
    By pegasus in forum General Networking
    Replies: 7
    Last Post: 22-07-2009, 08:47

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •