Follow us on...
Follow us on G+ Follow us on Twitter Follow us on Facebook Watch us on YouTube
Register
Page 1 of 48 12311 ... LastLast
Results 1 to 15 of 716
  1. #1
    Status
    Offline
    adeldian's Avatar
    Member Senior
    Join Date
    Nov 2007
    Posts
    411
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    2 (100%)

    Thumbs up Mikrotik - menggunakan squid sebagai web proxy sehingga lebih optimal

    untuk lebih mudah saya menggunakan 2 virtual server, yaitu :
    1. IP Mikrotik:
    - 192.168.10.15 = local
    - 192.168.12.15 = proxy
    - 192.168.5.181 = public/ke modem speedy

    2. IP squid (pakai IPCop)
    - 192.168.12.1 = ip green(procy)

    3. IP Client: 192.168.10.0/24

    ok di ipcop disetting dulu bahwa web proxynya jalan di port 878 <= terserah anda aktifkan cachenya misal 15M atau 15000 <= untuk testing

    sekarang kita masuk ke mikrotiknya:
    Code:
    / ip address
    add address=192.168.5.181/24 network=192.168.5.0 broadcast=192.168.5.255 \
        interface=Public comment="" disabled=no
    add address=192.168.10.15/24 network=192.168.10.0 broadcast=192.168.10.255 \
        interface=Lan comment="" disabled=no
    add address=192.168.12.15/24 network=192.168.12.0 broadcast=192.168.12.255 \
        interface=Proxy comment="" disabled=no
    setting route:
    Code:
    / ip route
    add dst-address=0.0.0.0/0 gateway=192.168.5.15 scope=255 target-scope=10 \
        comment="" disabled=no
    setting dns:
    Code:
    / ip dns
    set primary-dns=192.168.5.182 secondary-dns=192.168.5.205 \
        allow-remote-requests=no cache-size=2048KiB cache-max-ttl=1w
    / ip dns static
    add name="192.168.5.3" address=192.168.5.3 ttl=1d
    setting nat:
    Code:
    / ip firewall nat
    add chain=dstnat protocol=tcp dst-port=81 action=dst-nat \
        to-addresses=192.168.12.1 to-ports=81 comment="Untuk IP Cop" disabled=no
    add chain=dstnat protocol=tcp dst-port=445 action=dst-nat \
        to-addresses=192.168.12.1 to-ports=445 comment="Untuk HTTPS IPCOP" \
        disabled=no
    add chain=dstnat src-address=!192.168.12.0/24 protocol=tcp dst-port=80 \
        action=dst-nat to-addresses=192.168.12.1 to-ports=878 comment="" disabled=no
    add chain=dstnat src-address=!192.168.12.0/24 protocol=tcp dst-port=443 \
        action=dst-nat to-addresses=192.168.12.1 to-ports=878 comment="" \
        disabled=no
    add chain=srcnat out-interface=Public action=masquerade comment="" disabled=no
    nah terus ini yang paling penting, setting manggle:
    Code:
    / ip firewall mangle
    add chain=forward content="X-Cache: HIT" action=mark-connection \
        new-connection-mark=squid_con passthrough=yes comment="" disabled=no
    add chain=forward connection-mark=squid_con action=mark-packet \
        new-packet-mark=squid_pkt passthrough=no comment="" disabled=no
    add chain=forward connection-mark=!squid_con action=mark-connection \
        new-connection-mark=all_con passthrough=yes comment="" disabled=no
    add chain=forward protocol=tcp src-port=80 connection-mark=all_con \
        action=mark-packet new-packet-mark=http_pkt passthrough=no comment="" \
        disabled=no
    add chain=forward protocol=icmp connection-mark=all_con action=mark-packet \
        new-packet-mark=icmp_pkt passthrough=no comment="" disabled=no
    add chain=forward protocol=tcp dst-port=1973 connection-mark=all_con \
        action=mark-packet new-packet-mark=top_pkt passthrough=no comment="" \
        disabled=no
    add chain=forward connection-mark=all_con action=mark-packet \
        new-packet-mark=test_pkt passthrough=no comment="" disabled=no
    terus queue :
    Code:
    / queue simple
    add name="Squid_HIT" dst-address=0.0.0.0/0 interface=all parent=none \
        packet-marks=squid_pkt direction=both priority=8 \
        queue=default-small/default-small limit-at=0/0 max-limit=0/0 \
        total-queue=default-small disabled=no
    add name="Main_Link" dst-address=0.0.0.0/0 interface=all parent=none \
        direction=both priority=8 queue=default-small/default-small limit-at=0/0 \
        max-limit=35000/256000 total-queue=default-small disabled=no
    add name="game_tales_of_pirate" dst-address=0.0.0.0/0 interface=all \
        parent=none packet-marks=top_pkt direction=both priority=1 \
        queue=default-small/default-small limit-at=0/0 max-limit=0/0 \
        total-queue=default-small disabled=no
    add name="Ping_queue" dst-address=0.0.0.0/0 interface=all parent=none \
        packet-marks=icmp_pkt direction=both priority=2 \
        queue=default-small/default-small limit-at=0/0 max-limit=0/0 \
        total-queue=default-small disabled=no
    add name="The_other_port_queue" target-addresses=192.168.12.0/24 \
        dst-address=0.0.0.0/0 interface=all parent=Main_Link packet-marks=http_pkt \
        direction=both priority=8 queue=default-small/default-small \
        limit-at=5000/5000 max-limit=50000/256000 total-queue=default-small \
        disabled=no
    add name="another_port" target-addresses=192.168.10.0/24 dst-address=0.0.0.0/0 \
        interface=all parent=Main_Link packet-marks=test_pkt direction=both \
        priority=8 queue=default-small/default-small limit-at=0/0 \
        max-limit=0/256000 total-queue=default-small disabled=no
    hasilnya:
    pertama mencache:
    Click here to enlarge
    kedua hasil cachenya:
    Click here to enlarge

    ini terinspirasi dari tutorial akange dan dari video yang aku coba tidak berhasil

    NB: Maaf ya soalnya salah paste settingan NAT nya, harap maklum, masih newbie ni
    tadi juga kelupaan. jadi nat-nya yang di tranparent port 80 dan port https 443

    Selamat Mencoba ya
    Click here to enlarge Click here to enlarge Click here to enlarge

    mohon tanggapannya dan reviewnya ya
    Click here to enlarge
    terima kasih
    Last edited by adeldian; 30-06-2008 at 17:56.

  2. The Following 189 Users Say Thank You to adeldian For This Useful Post:

    + Show/Hide list of the thanked

    10enam-empat,147,4r03l,5013EX,a2nk,A8l3h,aalovesiti,Aang,achi,achim,adhan247,agen001,agh00stm,aghostgep,agoesth,ahengweb,ahmad210993,Akangage,akbar,Althier,alul89,Alwi7666,ansoel,antomoreng,aredie,arezh,ashriel,askanagase,auahgelap,ayawe,bajingblack,banyak kasus,BatavianX,bebendayak,benhajar,bgxerjoe,bibibz,blues,borokovic,buginese,buyungsandy,cahbest,cank ole,canon.red,CaPunG,chan_aja,chepoek,cityline,cool9and,cooling,cpubekasdotcom,cyber_5566,d4n1d3h,D4wFl1N,daho,deddychan,dek_merta,dhika_famouz,didihariyadi,dingting,diwa,dolcoi,Doo,drivt,ekrika,erunix_unix,ewin_erwin,f3rry,f474h,fanatiCanz,faqiir,farmin,faul,fianprasetia,fuzzakirach,fzone,GHI,goez,gunjaxxx,gwbule,h4sbr,hackb0x,hakeem,hamidy,hanzzbob,harvest_moon,hbakhtiyar,hikmahcell,hnwcom,hobong,iLearn,indiglow_inside,ipongwelly,iqbalsyamsu,irving,isurganteng,ivanfarhan,ji177my,jokotole82,juvegenk,K-45,kampret_asu,kastaji,katrok2009,kecoadisqo,khocock,koodoxz,korekuping,krizzna,kunimihiro,kyara,lazyshark,lemod,little,lupamikir,m0ny3t,masemen,mentari_pagi,mento,merky.bolung,Mikrobumi,mixmax18,mjm_oke,monkeydedragon,multicomjaringan,namakudodik,nayawis,netsakom13,ngakakcom,oeoep,oik_oik,OiziQ,oktama,Om Jayen,onair,pakdeKJ,panjulan,papady,pasprapatan,pesonk,polim,Priaadi,q-tink,q4midz,rablydotconf,rahwono,ramlianoor,RB750,reel,rerenet,rhdyt,ripmanis,runnov,searching,shay-travetico,siharry,silent_70,singkong77,si_mand3n,smile2ardi,speedster,subhero,syukri,tamuluyun,tekispan,telaten,theblazzon,tikoes,tolabul,tyang_dusun,udhi,utak-atik,vatco25,vensa_rockoff,vieden,w0ng_nde50,waga,wahyu455,Wahyu6120,wahyusemarang,wawanonly,willi1904,wudwud,yassir,yogaponsel,Yupi,yurico98,_daEng_

  3. #2
    Status
    Offline
    felix_sg's Avatar
    Member Super Senior
    Join Date
    Sep 2007
    Location
    indonesia
    Posts
    607
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    mantap bro.. udh gw terapin, memang jadi cepat. tapi tetap gw analisa dulu 2-3 hari

    sekalian mau tanya, cara setting per pelanggannya bagaimana ??

    karena settinggan bro kan mengatur secara keseluruhan.

    hehehe mohon pencerahannya.. Click here to enlarge

  4. #3
    Status
    Offline
    pedro6161's Avatar
    Newbie
    Join Date
    Jul 2007
    Posts
    45
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    ini yang gw selalu bingung dari dulu, kenapa kalau gw install squid sendiri dengan slacky kemudian dicompare dengan squid bawaan dari IPCOP pasti lebih powerfull yang dari IPCOP. ditambah kalau dari IPCOP cachenya bagus bgt padahal file squid.conf nya sudah disamain bingung......bingung......bingung.....Click here to enlarge Click here to enlarge Click here to enlarge anyway mas adeldian bisa dibuat lebih lengkap gak tutornya coz gak ada gatewaynya tuh jadi bisa membuat binun newbie and settingan di IPCOPnya apa saja yang diganti
    Last edited by pedro6161; 10-06-2008 at 09:08.

  5. #4
    Status
    Offline
    adeldian's Avatar
    Member Senior
    Join Date
    Nov 2007
    Posts
    411
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    2 (100%)
    o iya ya, soalnya wa pakai virtual PC, jadinya bisa set lan cardnya lbih dari satu.
    di IPCOP harus pakai 2 interface, red dan green. tapi ipnya satu subnet dengan mikrotik yang interface proxy. kyk contoh diats. ip mikrotik 192.168.12.15/24, terus ip green IPCOP 192.168.12.1/24 dan ip red IPCOP 192.168.12.xx/24 xx= terserah pokoknya jangan sama kayak IP Mikrotik,IP Green, 0,dan 255.

    untuk gateway masukkan ip mikrotik (192.168.12.15)

    semoga membantu

  6. #5
    Status
    Offline
    unique_leader's Avatar
    Member Super Senior
    Join Date
    Jul 2007
    Posts
    637
    Reviews
    Read 0 Reviews
    Downloads
    5
    Uploads
    0
    Feedback Score
    1 (100%)
    topolgi nya gimana tuh

  7. #6
    Status
    Offline
    adeldian's Avatar
    Member Senior
    Join Date
    Nov 2007
    Posts
    411
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    2 (100%)
    Modem ---- MT BOX ---- Client
    ***********|
    *********IPCOP


    mohon review nya yang sudah mencoba di reality, soalnya aku pakai Virtual PC buat ngetest.

    bro-bro yang dah ngetest kasih comment ya, hihihihihih ........

    semoga membantu
    terima kasih

  8. The Following User Says Thank You to adeldian For This Useful Post:


  9. #7
    Status
    Offline
    d3v4's Avatar
    Forum Guru
    Join Date
    Jul 2007
    Location
    di alam baka
    Posts
    1,016
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    ini ada yang kurang ya ?? web proxy nya settingannya mana ?

    di parent ya ?

  10. #8
    Status
    Offline
    adeldian's Avatar
    Member Senior
    Join Date
    Nov 2007
    Posts
    411
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    2 (100%)
    proxynya ada di IPCOP bos. bukan di MTnya, soalnya kalo pakai proxy internal, sudah wa coba berkali-kali kagak bisa sebaik kalo proxynya diluar.

    di IPCOP pakai port 878 <= kalo tuturial diatas.
    untuk menontrol IPCOP sudah saya tambahkan nat agar di forward port 81 dan 445 ke ip green nya IPCOP.

    sebagai testing diatas dikasih Max Object Size = 15000KB/15MB

    semoga membantu
    terima kasih

  11. The Following 4 Users Say Thank You to adeldian For This Useful Post:


  12. #9
    Status
    Offline
    d3v4's Avatar
    Forum Guru
    Join Date
    Jul 2007
    Location
    di alam baka
    Posts
    1,016
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by adeldian Click here to enlarge
    Code:
    / ip firewall nat
    add chain=dstnat src-address=!192.168.12.0/24 protocol=tcp dst-port=80 \
        action=redirect to-ports=8080 comment="" disabled=no
    add chain=dstnat src-address=!192.168.12.0/24 protocol=tcp dst-port=443 \
        action=dst-nat to-addresses=192.168.12.1 to-ports=878 comment="" \
        disabled=no
    add chain=srcnat out-interface=Public action=masquerade comment="" disabled=no
    trus yang merah itu buat apa ? redirect ke local ? port 8080 di mana ?

  13. #10
    Status
    Offline
    adeldian's Avatar
    Member Senior
    Join Date
    Nov 2007
    Posts
    411
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    2 (100%)
    sorry bro kemaren aku buat browsing langsung lupa kalo sudah kurubah terus aku copy lagi tadi pagi, harusnya sprt ini bro:

    / ip firewall nat
    add chain=dstnat src-address=!192.168.12.0/24 protocol=tcp dst-port=80 \
    action=dst-nat to-addresses=192.168.12.1 to-ports=878 comment="" disabled=no
    add chain=dstnat src-address=!192.168.12.0/24 protocol=tcp dst-port=443 \
    action=dst-nat to-addresses=192.168.12.1 to-ports=878 comment="" \
    disabled=no
    add chain=srcnat out-interface=Public action=masquerade comment="" disabled=no

    kan masuknya untuk port 80 diredirect ke 878-nya IpCOP

    ok aku edit sorri ya bro.

    terima kasih
    Last edited by adeldian; 10-06-2008 at 13:19.

  14. The Following 8 Users Say Thank You to adeldian For This Useful Post:


  15. #11
    Status
    Offline
    d3v4's Avatar
    Forum Guru
    Join Date
    Jul 2007
    Location
    di alam baka
    Posts
    1,016
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    sip... lanjut aja deh Click here to enlarge

  16. #12
    Status
    Offline
    okto_2005's Avatar
    Member Super Senior
    Join Date
    Jul 2007
    Posts
    655
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    mangle ini buat apaan bos:

    add chain=forward protocol=tcp dst-port=1973 connection-mark=all_con \
    action=mark-packet new-packet-mark=top_pkt passthrough=no comment="" \ disabled=no

  17. #13
    Status
    Offline
    adeldian's Avatar
    Member Senior
    Join Date
    Nov 2007
    Posts
    411
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    2 (100%)
    hehehe itu untuk game, nih contoh ja kalo ada yang pakai untuk game online, supaya prioritynya lebih banyak, soalnya wa demen main game ini, sampai waktu membuat tutor ke copy. wkwkwkwkwk

    silahkan dihapus, just example

    yang udah nyoba kasih info dunk di realitynya. ni kan aku pakai virtual

    terima kasih

  18. The Following User Says Thank You to adeldian For This Useful Post:


  19. #14
    Status
    Offline
    chrone's Avatar
    Calon Member
    Join Date
    Mar 2008
    Posts
    95
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by adeldian Click here to enlarge
    proxynya ada di IPCOP bos. bukan di MTnya, soalnya kalo pakai proxy internal, sudah wa coba berkali-kali kagak bisa sebaik kalo proxynya diluar.

    di IPCOP pakai port 878 <= kalo tuturial diatas.
    untuk menontrol IPCOP sudah saya tambahkan nat agar di forward port 81 dan 445 ke ip green nya IPCOP.

    sebagai testing diatas dikasih Max Object Size = 15000KB/15MB

    semoga membantu
    terima kasih
    bang adeldian, mau nanya nih, squid yang di ipcop ini sudah ada feature ip spoofing ga? maksudnya ip client yang request tetap diterusin gitu ke internet dengan tetap memakai ip client dan bukan ip proxynya.

  20. #15
    Status
    Offline
    hakeem's Avatar
    Forum Guru
    Join Date
    Jul 2007
    Posts
    1,079
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    1 (100%)
    Woow, patut dicoba neh ... Click here to enlarge

  21. The Following 2 Users Say Thank You to hakeem For This Useful Post:


 

 
Page 1 of 48 12311 ... LastLast

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Pake squid external lebih lemot dari internal MT
    By kunimihiro in forum General Networking
    Replies: 30
    Last Post: 17-05-2011, 07:40
  2. Gimana Setting ip proxy menggunakan ip proxy luar negeri
    By kuganer in forum General Networking
    Replies: 2
    Last Post: 02-02-2011, 09:13
  3. Replies: 78
    Last Post: 26-10-2010, 11:48
  4. Replies: 40
    Last Post: 23-02-2010, 15:27
  5. Replies: 5
    Last Post: 08-01-2010, 22:40

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •