uvnata
Members PCT
Jumlah posting : 27
Join date : 18.09.10
 |  Subyek: NET 3 in 1 Sat Sep 18, 2010 1:07 pm | |
| topologi Speedy1------->|MikroTik|--------Client ----------------| Speedy2------->| ----------------| Proxy Ubuntu-->| - Spoiler:
interpaca 1 : lan
interface 2 : speedy(jalur game )
interface 3 : speedy ( jalur browsing )
interface 4 : Proxy ( ubuntu server 8.10 )
[admin@MikroTik] > interface pr
Flags: D - dynamic, X - disabled, R - running, S - slave
# NAME TYPE MTU L2MTU
0 R lan ether 1500
1 R speedy5.1 ether 1500
2 R speedy3.1 ether 1500
3 R proxy ether 1500
[admin@MikroTik] > ip address pr
Flags: X - disabled, I - invalid, D - dynamic
# ADDRESS NETWORK BROADCAST INTERFACE
0 192.168.10.1/24 192.168.10.0 192.168.10.255 lan
1 192.168.1.1/24 192.168.1.0 192.168.1.255 proxy
2 192.168.5.2/24 192.168.5.0 192.168.5.255 speedy5.1
3 192.168.3.2/24 192.168.3.0 192.168.3.255 speedy3.1
[admin@MikroTik] > ip route pr
Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme,
B - blackhole, U - unreachable, P - prohibit
# DST-ADDRESS PREF-SRC GATEWAY DISTANCE
0 A S 0.0.0.0/0 192.168.3.1 1
1 A S 0.0.0.0/0 192.168.5.1 1
2 ADC 192.168.1.0/24 192.168.1.1 proxy 0
3 ADC 192.168.3.0/24 192.168.3.2 speedy3.1 0
4 ADC 192.168.5.0/24 192.168.5.2 speedy5.1 0
5 ADC 192.168.10.0/24 192.168.10.1 lan 0
NB : ip modem : 192.168.3.1 & 192.168.5.1
---- ip Proxy : 192.168.1.10
[admin@MikroTik] > ip firewall nat pr
Flags: X - disabled, I - invalid, D - dynamic
0 chain=srcnat action=masquerade src-address=192.168.10.0/24 routing-mark=iix dst-address-list=nice
out-interface=speedy3.1
1 chain=srcnat action=masquerade src-address=192.168.1.0/24
2 chain=srcnat action=masquerade src-address=192.168.10.0/24 out-interface=speedy5.1
3 chain=dstnat action=dst-nat to-addresses=192.168.1.10 to-ports=3128 protocol=tcp src-address=!192.168.1.10
routing-mark=!iix dst-port=80
4 chain=dstnat action=dst-nat to-addresses=192.168.1.10 to-ports=3128 protocol=tcp dst-port=8080
[admin@MikroTik] > ip firewall mangle pr
Flags: X - disabled, I - invalid, D - dynamic
0 ;;; squid
chain=postrouting action=mark-packet new-packet-mark=proxy-hit passthrough=no dscp=12
1 ;;; game
chain=prerouting action=mark-routing new-routing-mark=iix passthrough=no src-address=192.168.10.0/24
dst-address-list=nice
2 ;;; browsing
chain=forward action=mark-connection new-connection-mark=semua passthrough=yes src-address=192.168.10.0/24
dst-address-list=!nice
3 chain=postrouting action=mark-packet new-packet-mark=paket_kecil passthrough=no connection-mark=semua
connection-bytes=0-600000
4 chain=postrouting action=mark-packet new-packet-mark=paket_kecil passthrough=no protocol=udp connection-mark=semua
connection-bytes=0-400000
5 chain=postrouting action=mark-packet new-packet-mark=paket_besar passthrough=no connection-mark=semua
6 ;;; poker
chain=forward action=mark-connection new-connection-mark=semua poker passthrough=yes src-address=192.168.10.0/24
dst-address-list=POINK
7 chain=postrouting action=mark-packet new-packet-mark=poker passthrough=no connection-mark=semua poker
[admin@MikroTik] > queue tree pr
Flags: X - disabled, I - invalid
0 name="File_Besar" parent=B-Global-Download packet-mark=paket_besar limit-at=64k queue=PCQ_download priority=8
max-limit=356k burst-limit=0 burst-threshold=0 burst-time=0s
1 name="File_Kecil" parent=B-Global-Download packet-mark=paket_kecil limit-at=256k queue=PCQ_download priority=1
max-limit=1500k burst-limit=0 burst-threshold=0 burst-time=0s
2 name="Upload_Kecil" parent=C-Global_Upload packet-mark=paket_kecil limit-at=64k queue=PCQ_upload priority=8
max-limit=350k burst-limit=0 burst-threshold=0 burst-time=0s
3 name="Upload_Besar" parent=C-Global_Upload packet-mark=paket_besar limit-at=24k queue=PCQ_upload priority=8
max-limit=85k burst-limit=0 burst-threshold=0 burst-time=0s
4 name="A_HIT-Proxy" parent=lan packet-mark=proxy-hit limit-at=0 queue=default priority=8 max-limit=0 burst-limit=0
burst-threshold=0 burst-time=0s
5 name="C-Global_Upload" parent=proxy packet-mark="" limit-at=0 priority=1 max-limit=500k burst-limit=0
burst-threshold=0 burst-time=0s
6 name="B-Global-Download" parent=lan packet-mark="" limit-at=0 priority=1 max-limit=0 burst-limit=0 burst-threshold=0
burst-time=0s
7 name="poker" parent=B-Global-Download packet-mark=poker limit-at=64k queue=PCQ_download priority=1 max-limit=4M
burst-limit=0 burst-threshold=0 burst-time=0s
[admin@MikroTik] > queue type pr
0 name="PCQ_upload" kind=pcq pcq-rate=0 pcq-limit=30 pcq-classifier=src-address,src-port pcq-total-limit=1000
1 name="PCQ_download" kind=pcq pcq-rate=0 pcq-limit=50 pcq-classifier=dst-address,dst-port pcq-total-limit=2000
| |
|
