Follow us on...
Follow us on G+ Follow us on Twitter Follow us on Facebook Watch us on YouTube
Register
Page 1 of 24 12311 ... LastLast
Results 1 to 15 of 360
  1. #1
    Status
    Offline
    donipermono1982's Avatar
    Moderator
    Join Date
    Feb 2008
    Location
    Jakarta Selatan
    Posts
    2,809
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0

    .:.Loadbalance PCC + External Proxy +Automatic by pass Proxy

    Assalamualaikum Wr.Wb

    Setelah sekian lama absen, gw coba bikin tutorial ke 2 gw mudah2 an ga repost ya gan Click here to enlarge yg pasti dah dapet izin sama penunggu forum ini gan Click here to enlarge. Sesuai judul nya, Load balancing PCC + Proxy EXternal + Autmatic By pass Proxy Jika Down. Loadbalancing Versi gw ini hasil modifikasi dari berbagai sumber. jadi kalau ada kesamaan mangle dan nat mohon di maklumi ya. Bagi yg udah paham mohon masukannya bagi yg mau coba mohon review nya, karena tanpa kalian LB PCC ini ga akan tau kelemahan dan kelebihannya. OK . Kuliah subuhnya sampe sini sekarang kita mulai acaranya berikutnya Click here to enlarge

    Manifest IP :

    Click here to enlarge

    Manifest Device :

    Click here to enlarge

    Berangkattttt Click here to enlarge

    Yang Namanya Loadbalancing kayanya ga mungkin bisa ga ada mangle Click here to enlarge Rule di sini sakral.Wajib Hukumnya jadi ga boleh di tinggalkan apalagi di langgar Click here to enlarge

    chain=postrouting action=mark-packet new-packet-mark=HIT passthrough=no protocol=tcp dst-port=80,81,8080,3128 dscp=12 comments="Proxy Los"

    chain=prerouting action=mark-connection new-connection-mark=PROXY-1 passthrough=yes connection-state=new in-interface=Squid comments="LOAD BALANCE PROXY PCC"
    chain=prerouting action=mark-connection new-connection-mark=PROXY-2 passthrough=yes connection-state=new in-interface=Squid
    chain=prerouting action=mark-connection new-connection-mark=PROXY-3 passthrough=yes connection-state=new in-interface=Squid
    chain=prerouting action=mark-connection new-connection-mark=PROXY-1 passthrough=yes in-interface=Squid connection-mark=PROXY-1
    chain=prerouting action=mark-connection new-connection-mark=PROXY-2 passthrough=yes in-interface=Squid connection-mark=PROXY-2
    chain=prerouting action=mark-connection new-connection-mark=PROXY-3 passthrough=yes in-interface=Squid connection-mark=PROXY-3
    chain=prerouting action=mark-connection new-connection-mark=PROXY-1 passthrough=yes protocol=tcp dst-address-type=!local in-interface=Squid dst-port=80,81,8080,3128 per-connection-classifier=both-addresses-and-ports:3/0
    chain=prerouting action=mark-connection new-connection-mark=PROXY-2 passthrough=yes protocol=tcp dst-address-type=!local in-interface=Squid dst-port=80,81,8080,3128 per-connection-classifier=both-addresses-and-ports:3/1
    chain=prerouting action=mark-connection new-connection-mark=PROXY-3 passthrough=yes protocol=tcp dst-address-type=!local in-interface=Squid dst-port=80,81,8080,3128 per-connection-classifier=both-addresses-and-ports:3/2
    chain=prerouting action=mark-routing new-routing-mark=Route-Proxy-1 passthrough=yes in-interface=Squid connection-mark=PROXY-1
    chain=prerouting action=mark-routing new-routing-mark=Route-Proxy-1 passthrough=yes in-interface=Squid connection-mark=PROXY-2
    chain=prerouting action=mark-routing new-routing-mark=Route-Proxy-2 passthrough=yes in-interface=Squid connection-mark=PROXY-3

    chain=input action=mark-connection new-connection-mark=ADSL-1 passthrough=yes connection-state=new in-interface=Lokal comments="LOAD BALANCE LOKAL"
    chain=input action=mark-connection new-connection-mark=ADSL-2 passthrough=yes connection-state=new in-interface=Lokal
    chain=input action=mark-connection new-connection-mark=ADSL-3 passthrough=yes connection-state=new in-interface=Lokal
    chain=prerouting action=mark-connection new-connection-mark=ADSL-1 passthrough=no in-interface=Lokal connection-mark=ADSL-1
    chain=prerouting action=mark-connection new-connection-mark=ADSL-2 passthrough=no in-interface=Lokal connection-mark=ADSL-2
    chain=prerouting action=mark-connection new-connection-mark=ADSL-3 passthrough=no in-interface=Lokal connection-mark=ADSL-3

    chain=prerouting action=mark-connection new-connection-mark=ADSL-1 passthrough=yes protocol=tcp dst-address-type=!local in-interface=Lokal dst-port=!80,81,8080,3128 per-connection-classifier=both-addresses-and-ports:3/0 comments="AUTOMATIC DISABLE IF PROXY DOWN"
    chain=prerouting action=mark-connection new-connection-mark=ADSL-2 passthrough=yes protocol=tcp dst-address-type=!local in-interface=Lokal dst-port=!80,81,8080,3128 per-connection-classifier=both-addresses-and-ports:3/1
    chain=prerouting action=mark-connection new-connection-mark=ADSL-3 passthrough=yes protocol=tcp dst-address-type=!local in-interface=Lokal dst-port=!80,81,8080,3128 per-connection-classifier=both-addresses-and-ports:3/2

    chain=prerouting action=mark-connection new-connection-mark=ADSL-1 passthrough=yes dst-address-type=!local in-interface=Lokal per-connection-classifier=both-addresses-and-ports:3/0 comments="AUTOMATIC ENABLE IF PROXY DOWN"
    chain=prerouting action=mark-connection new-connection-mark=ADSL-2 passthrough=yes dst-address-type=!local in-interface=Lokal per-connection-classifier=both-addresses-and-ports:3/1
    chain=prerouting action=mark-connection new-connection-mark=ADSL-3 passthrough=yes dst-address-type=!local in-interface=Lokal per-connection-classifier=both-addresses-and-ports:3/2

    chain=prerouting action=mark-routing new-routing-mark=jalur-1 passthrough=yes in-interface=Lokal connection-mark=ADSL-1
    chain=prerouting action=mark-routing new-routing-mark=jalur-1 passthrough=yes in-interface=Lokal connection-mark=ADSL-2
    chain=prerouting action=mark-routing new-routing-mark=jalur-2 passthrough=yes in-interface=Lokal connection-mark=ADSL-3

    chain=prerouting action=mark-connection new-connection-mark=Trafik PB + POKER passthrough=yes protocol=tcp dst-address-list=Poker + PB dst-port=49100 comments="POKER + POINT BLANK"
    chain=prerouting action=mark-connection new-connection-mark=Trafik PB + POKER passthrough=yes protocol=udp dst-address-list=Poker + PB dst-port=40000-40010
    chain=prerouting action=mark-connection new-connection-mark=Trafik PB + POKER passthrough=yes protocol=tcp dst-address-list=Poker + PB dst-port=39190
    chain=prerouting action=mark-packet new-packet-mark=PB + Poker passthrough=yes connection-mark=Trafik PB + POKER

    chain=prerouting action=mark-routing new-routing-mark=Poker + PB passthrough=no src-address=192.168.0.2-192.168.0.30 dst-address-list=Poker + PB in-interface=Lokal connection-mark=Trafik PB + POKER comments="ROUTING POKER + POINT BLANK"
    chain=prerouting action=mark-routing new-routing-mark=Poker + PB passthrough=no src-address=192.168.3.2-192.168.3.16 dst-address-list=Poker + PB in-interface=Lokal connection-mark=Trafik PB + POKER
    Kalau Khusyu pasti hasilnya juga bener, dapet keq begini Click here to enlarge

    Click here to enlarge

    NAT

    NAT atau bahasa ilmiahnya Network Address Translation ini juga sangat penting di dalam proses Loadbalancing karena Rule ini lah yg mengatur Interface dan IP yg di tuju. jadi gw harap jangan sampe lupa NAT Click here to enlarge

    Begini Pasal 8 ayat 5 tahun 2010

    chain=srcnat action=masquerade out-interface=Telkom comments="NAT LOKAL"
    chain=srcnat action=masquerade out-interface=Telkom-1

    chain=dstnat action=dst-nat to-addresses=192.168.4.2 to-ports=3128 protocol=tcp src-address-list=IP Users dst-address-list=!IP Proxy dst-port=80,81,8080,3128 comments=TRANSPARANT SQUID"

    chain=dstnat action=dst-nat to-ports=53 protocol=tcp in-interface=Lokal dst-port=53 comments="TRANSPARENT DNS"
    chain=dstnat action=dst-nat to-ports=53 protocol=udp in-interface=Lokal dst-port=53
    chain=dstnat action=dst-nat to-ports=53 protocol=tcp in-interface=Squid dst-port=53
    chain=dstnat action=dst-nat to-ports=53 protocol=udp in-interface=Squid dst-port=53

    rule ini khusus bagi yg memakai DNS server di squid proxy nya.

    chain=dstnat action=dst-nat to-addresses=192.168.4.2 to-ports=53 protocol=tcp in-interface=Squid dst-port=53 comments="TRANSPARENT BIND9"
    chain=dstnat action=dst-nat to-addresses=192.168.4.2 to-ports=53 protocol=udp in-interface=Squid dst-port=53
    Hasil Foto di tekape

    Click here to enlarge

    mudah2 an di jalan yg benar ya semua nya Click here to enlarge

    Kalau tahap ini dah lewat berikutnya

    ROUTE

    bahasa gampangnya arah tujuan , ya begitulah pokoknya Click here to enlarge

    langsung aja ya

    Click here to enlarge

    berikut tambahan buat poker dan point blank karena di mangle sudah ada rule nya jadi biar ga tersesat gw tampilin sekalian pelaku nya

    keterangan dari pelaku

    chain=forward action=add-dst-to-address-list protocol=tcp address-list=Poker + PB address-list-timeout=0s dst-port=843 comments="SCANNER POKER + POINT BLANK"
    chain=forward action=add-dst-to-address-list protocol=tcp address-list=Poker + PB address-list-timeout=0s dst-port=9339
    chain=forward action=add-dst-to-address-list protocol=tcp address-list=Poker + PB address-list-timeout=0s dst-port=39190
    chain=forward action=add-dst-to-address-list protocol=tcp address-list=Poker + PB address-list-timeout=0s dst-port=49100
    chain=forward action=add-dst-to-address-list protocol=udp address-list=Poker + PB address-list-timeout=0s dst-port=40000-40010
    BAP

    Click here to enlarge

    lagi nyari scriptnya ya..dah mau kabur aja gw Click here to enlarge

    scrpt ini untuk keadaan di mana proxy external mati/mokat/tewas/wafat yg disebabkan karena banyak hal*

    * kecuali error - contohnya hdd badsector ..pengalaman pribadi Click here to enlarge

    ;;; MANGLE PROXY
    192.168.4.2

    add comment="MANGLE PROXY" disabled=no down-script=
    \nip fi na en num=3\r\
    \nip fi ma en num=22\r\
    \nip fi ma en num=23\r\
    \nip fi ma en num=24\r\
    \nip fi ma dis num=19\r\
    \nip fi ma dis num=20\r\
    \nip fi ma dis num=21\r\
    \nip proxy set enable=yes\r\
    \n" host=192.168.4.2 interval=1s timeout=1s up-script="ip fi na en num=2\r\
    \nip fi na dis num=3\r\
    \nip fi ma dis num=22\r\
    \nip fi ma dis num=23\r\
    \nip fi ma dis num=24\r\
    \nip fi ma en num=19\r\
    \nip fi ma en num=20\r\
    \nip fi ma en num=21\r\
    \nip proxy set enable=no\r\
    \n"
    UPDATE
    Rule ini untuk Yang memakai PCBOX untuk routernya agar bisa automatis ke Proxy internal jika proxy down bisa nambahin script ini di NAT
    ;;; AUTOMATIC ENABLE IF PROXY DOWN ---> Redirect to internal proxy | monitoring by netwatch
    chain=dstnat action=redirect to-ports=3128 protocol=tcp
    routing-mark=!jalur-1 src-address-list=IP Users dst-port=80,81,8080,3128
    connection-mark=!ADSL-1



    enaknya langsung bener apa gw salahin dulu ya biar bisa ga asal copasClick here to enlarge akangange mode : on

    ok. demikian yg bisa sampaikan pada kesempatan kali ini mudah2 an berguna bagi nusa bangsa dan mempererat tali persaudaraan demi persatuan dan kesatuan di negara Ketuhanan yang maha esa. Click here to enlarge

    Daftar pustaka










    2 MB + 1 MB

    Jangan lupa cendolnya ya gan Click here to enlarge

    Thank to


    Allah sang pencipta yg telah memberikan ilmu dan waktu nya hingga selesai tutorial ini
    Akangange : Juru kunci sekaligus penunggu forum ini Click here to enlarge
    Ucog karnadi : konsultan sekaligus analys system Click here to enlarge
    Hendra A.K.A uburcumi - Thank saran dan kriitknya kapan2 conferensi lagi ya bro Click here to enlarge

    Testmonial


    Code:
    original post by healm4n
    
    itu dia mas doni,,,, kl squid ny d buat transparent seh isa,,, :th_music: via NAT bs redirect k squid,,, cman g da trafik d LOAD BALANCING PROXY PCC,,,, itu trafik :th_soldier: k mna y,,, :th_dont_know:
    ini berarti proxy ny lom ngeload balancing,,,, :th_drop3: perlu :th_magnify: lg nih,,,
    UPDATE
    sya dapet info dari thread  n langsung k TKP tuk acak2 squid n ternyata BERHASIL,,,!!!!! :th_music:
    biang kerok dari smua trouble sya itu config squid yg acak2an,,, :th_black_day:
    smua rule n chain skrg ada trafic ny,,, n ternyata stlh sya buktiin sendiri, tutor dari mas doni mang mantap,,,, prikitiew ny dah d byr d muka y mas doni :th_drop2
    Click here to enlarge
    Click here to enlarge
    TRIK N TIPS

    Click here to enlarge
    Click here to enlarge
    Last edited by donipermono1982; 30-06-2010 at 09:32.

  2. The Following 177 Users Say Thank You to donipermono1982 For This Useful Post:

    + Show/Hide list of the thanked

    4r03l,achi,acin988,ad13l,adhan247,afiq,agtami,agusfazri,Akangage,akbar,anonim,Anonymous,antomoreng,aokfi,arisetyawan,arul,askanagase,azuracy,b3nny_21,babang,banned.kilobyte,banyak kasus,BaSinX,benhajar,bibibz,boled,borokovic,budakbaheula,budihermanto,c0nf,cahbest,cank ole,CaPunG,cikruk21,cintacici,cumi23,cw-12,cyberfish,D4wFl1N,daeng moon,debula,deddychan,destruxx,dhop,dingo,djamboelp,dolcoi,dskymc,duceboy,dutapsd,enhacomp,Enyong,epay,epoy,erunix_unix,fagundez,fals99,faqiir,farabi,farmin,fendy4all,fredy_Doank,fuzzakirach,gezr,gin8vodka,glendylubis,gulagula,hamidy,healm4n,hr10f,h_frizky,iesien22,ikha,indifferentials,Inidian,inoktav,ipoelnet,Joeee,jokotole82,juldian,karaeng,kecoadisqo,khocock,kriwelz,lazyshark,lemod,lf_dm,lupamikir,m3tr0mini,mahaadit,maidenisme,manggatal,manual,masdhanang,Mikrobumi,mirzafaishal,mjm_oke,moztru,mrjepara,mvidaus,naga wulan,namirei,ndh4y,nunu,nunukan,nurdesy,odzxy,oik_oik,okim,onomlakbok,panjulan,papady,PECICILAN,picazzo,PirangPirang,plenkcell,prihiri,putra_maiwa,q4midz,raden7langit,Rahmansyah,raid,rangkayu,ratmadi,rerenet,rhdyt,rioda78,ripmanis,riswan,rizal90,rizaldi7557,root32,sahuleka,sayuto,scrich,sempy26,Si Unyil,Siklus,sinagaa,syukri,tekispan,telaten,tennomeiji17,the3br3w,tiramisu,tishafieq,tolabul,TomiES,tyang_dusun,ucciesex,ucok_karnadi,udhi,ullydia,unisoft87,unlockmodem,untung,utak-atik,varcetti,wachyu,wahyu455,wakumbaba,Warriors,whiely,whisky,willi1904,wsputra,xeonx,yog,yogaponsel,yogi.mikrotikid,yosanpro,zainalk29,zeroice,ZEXEL,zytr3z,_daEng_

  3. #2
    Status
    Offline
    Akangage's Avatar
    Administrator
    Join Date
    Aug 2007
    Location
    Daerah Khusus Ibukota Jakarta, Indonesia
    Posts
    4,195
    Reviews
    Read 0 Reviews
    Downloads
    210
    Uploads
    87
    Feedback Score
    0
    Sory boz sedikit edit di rapihin, BTW Thanks, JOss banget, dan buat yang mau pake BACA BAIK-BAIK Jangan asal COPAS Click here to enlarge

  4. The Following 9 Users Say Thank You to Akangage For This Useful Post:


  5. #3
    Status
    Offline
    mencit's Avatar
    Baru Gabung
    Join Date
    May 2008
    Posts
    8
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Byuuhhhh banyak banget broo... ini proxy sejajar dengan mikrotiknya ya bro ??... kalo iya seepp.. soalnya topologi ane juga mirip yang beginian nih... testing suara percobaan.

  6. #4
    Status
    Offline
    tyang_dusun's Avatar
    Member Super Senior
    Join Date
    Jun 2008
    Location
    Klaten, Jawa Tengah, Indonesia, Indonesia
    Posts
    521
    Reviews
    Read 0 Reviews
    Downloads
    1
    Uploads
    0
    Feedback Score
    0
    langsung olah TKP Gan ..... Click here to enlarge

  7. #5
    Status
    Offline
    cyberfish's Avatar
    Member
    Join Date
    Aug 2009
    Posts
    236
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    mangstabh...Click here to enlargeClick here to enlarge

  8. #6
    Status
    Offline
    donipermono1982's Avatar
    Moderator
    Join Date
    Feb 2008
    Location
    Jakarta Selatan
    Posts
    2,809
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by mencit Click here to enlarge
    Byuuhhhh banyak banget broo... ini proxy sejajar dengan mikrotiknya ya bro ??... kalo iya seepp.. soalnya topologi ane juga mirip yang beginian nih... testing suara percobaan.
    bener bro , squid sejajar client Click here to enlarge

    Click here to enlarge Originally Posted by tyang_dusun Click here to enlarge
    langsung olah TKP Gan ..... Click here to enlarge
    siap gan :0

    Click here to enlarge Originally Posted by cyberfish Click here to enlarge
    mangstabh...Click here to enlargeClick here to enlarge
    thanks Click here to enlarge

  9. The Following 3 Users Say Thank You to donipermono1982 For This Useful Post:


  10. #7
    Status
    Offline
    agusfazri's Avatar
    Calon Member
    Join Date
    Mar 2010
    Location
    Cijulang, Jawa Barat, Indonesia, Indonesia
    Posts
    88
    Reviews
    Read 0 Reviews
    Downloads
    3
    Uploads
    0
    Feedback Score
    0
    izin copas, gan ................
    Click here to enlarge

  11. #8
    Status
    Offline
    cank ole's Avatar
    Member
    Join Date
    Apr 2010
    Posts
    144
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0

    Mantaffffsss Om doni

    Click here to enlargeClick here to enlargeHuuffftt...nice info:Click here to enlargeClick here to enlargeClick here to enlargemksh bnyk om doni and utk para suhu2 yg ud banyak memberikan ilmu na di forum iniClick here to enlargeClick here to enlargeClick here to enlargeClick here to enlarge

  12. #9
    Status
    Offline
    raid's Avatar
    Newbie
    Join Date
    May 2009
    Posts
    36
    Reviews
    Read 0 Reviews
    Downloads
    7
    Uploads
    0
    Feedback Score
    0

    top markotop

    top markotop gud marsogud.., nambahin gan...

    traffic yang bukan HTTP di PCC skalian gan.. Click here to enlarge


    uuuppppsssssss....................

    udah ding, maap kagak teliti Click here to enlarge

  13. #10
    Status
    Offline
    unique_leader's Avatar
    Member Super Senior
    Join Date
    Jul 2007
    Posts
    639
    Reviews
    Read 0 Reviews
    Downloads
    5
    Uploads
    0
    Feedback Score
    1 (100%)
    wwwwaaoooooowwwwwww kerennn yaaaaaa....

  14. #11
    Status
    Offline
    farelio's Avatar
    Newbie
    Join Date
    Aug 2007
    Posts
    54
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    thanks bro ... ijin simak dan copas ....Click here to enlargeClick here to enlarge

  15. #12
    Status
    Offline
    putra_maiwa's Avatar
    Forum Guru
    Join Date
    Sep 2009
    Posts
    1,298
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    mantaff gan...Click here to enlarge

  16. #13
    Status
    Offline
    dhop's Avatar
    Calon Member
    Join Date
    Sep 2008
    Posts
    73
    Reviews
    Read 0 Reviews
    Downloads
    2
    Uploads
    0
    Feedback Score
    0
    .:BOOKMARKED:.
    thanks tuts nya... Click here to enlarge

  17. #14
    Status
    Offline
    sutamikurniawan's Avatar
    Member Senior
    Join Date
    Oct 2007
    Posts
    385
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    bookmark dulu ah

  18. #15
    Status
    Offline
    donipermono1982's Avatar
    Moderator
    Join Date
    Feb 2008
    Location
    Jakarta Selatan
    Posts
    2,809
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by Akangage Click here to enlarge
    Sory boz sedikit edit di rapihin, BTW Thanks, JOss banget, dan buat yang mau pake BACA BAIK-BAIK Jangan asal COPAS Click here to enlarge
    thanks kang dah di approve, kirain tadinya gagal posting karena karakternya melebihi 1000 karakter.. Click here to enlarge

  19. The Following 4 Users Say Thank You to donipermono1982 For This Useful Post:


 

 
Page 1 of 24 12311 ... LastLast

Thread Information

Users Browsing this Thread

There are currently 2 users browsing this thread. (0 members and 2 guests)

Similar Threads

  1. LB + External Proxy
    By riswan in forum Tutorial
    Replies: 19
    Last Post: 02-12-2010, 17:54
  2. Dstnat untuk proxy external ke mikrotik dengan proxy internal
    By awarmanf in forum General Networking
    Replies: 3
    Last Post: 21-02-2010, 21:17
  3. [Ask]External Proxy Lagi :D
    By aduh_aduh in forum General Networking
    Replies: 2
    Last Post: 07-01-2010, 13:11
  4. ASK:Automatic Disable Rule NAT ke Eksternal Proxy
    By sridjokoonline in forum Scripting @ Mikrotik
    Replies: 4
    Last Post: 06-09-2009, 00:36
  5. proxy external
    By sufandi in forum General Networking
    Replies: 23
    Last Post: 21-07-2009, 18:18

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •