Selasa, 13 Maret 2012

Limit (block) IDM dengan Mikrotik

ini merupakan teknik limit(blok) IDM yang menurut saya ampuh dipasang di mikrotik,

Cekimprot…..!!
192.168.2.1 == ether2-lan (IP Router untuk Client)
192.168.2.0/24 == ether2-lan(IP Client)
//Jika ada Proxy
10.10.10.0/24 = ether5-proxy
10.10.10.1 ==ether5-proxy
REGEX (Regular Expression) “teknik yang digunakan untuk mencocokan string teks, seperti karakter tertentu, kata-kata, atau pola karakter”

1.REGEX CONTENT LAYER7

/ip firewall layer7-protocol add comment="" name="Extension \" .exe \"" regexp="\\.(exe)" add comment="" name="Extension \" .rar \"" regexp="\\.(rar)" add comment="" name="Extension \" .zip \"" regexp="\\.(zip)" add comment="" name="Extension \" .7z \"" regexp="\\.(7z)" add comment="" name="Extension \" .cab \"" regexp="\\.(cab)" add comment="" name="Extension \" .asf \"" regexp="\\.(asf)" add comment="" name="Extension \" .mov \"" regexp="\\.(mov)" add comment="" name="Extension \" .wmv \"" regexp="\\.(wmv)" add comment="" name="Extension \" .mpg \"" regexp="\\.(mpg)" add comment="" name="Extension \" .mpeg \"" regexp="\\.(mpeg)" add comment="" name="Extension \" .mkv \"" regexp="\\.(mkv)" add comment="" name="Extension \" .avi \"" regexp="\\.(avi)" add comment="" name="Extension \" .flv \"" regexp="\\.(flv)" add comment="" name="Extension \" .pdf \"" regexp="\\.(pdf)" add comment="" name="Extension \" .wav \"" regexp="\\.(wav)" add comment="" name="Extension \" .rm \"" regexp="\\.(rm)" add comment="" name="Extension \" .mp3 \"" regexp="\\.(mp3)" add comment="" name="Extension \" .mp4 \"" regexp="\\.(mp4)" add comment="" name="Extension \" .ram \"" regexp="\\.(ram)" add comment="" name="Extension \" .rmvb \"" regexp="\\.(rmvb)" add comment="" name="Extension \" .dat \"" regexp="\\.(dat)" add comment="" name="Extension \" .daa \"" regexp="\\.(daa)" add comment="" name="Extension \" .iso \"" regexp="\\.(iso)" add comment="" name="Extension \" .nrg \"" regexp="\\.(nrg)" add comment="" name="Extension \" .bin \"" regexp="\\.(bin)" add comment="" name="Extension \" .vcd \"" regexp="\\.(vcd)" add comment="" name="Extension \" .mp2 \"" regexp="\\.(mp2)" add comment="" name="Extension \" .3gp \"" regexp="\\.(3gp)" add comment="" name="Extension \" .mpe \"" regexp="\\.(mpe)" add comment="" name="Extension \" .qt \"" regexp="\\.(qt)" add comment="" name="Extension \" .raw \"" regexp="\\.(raw)" add comment="" name="Extension \" .wma \"" regexp="\\.(wma)" add comment="" name="Extension \" .ogg \"" regexp="\\.(ogg)" add comment="" name="Extension \" .doc \"" regexp="\\.(doc)"

`----------------------------`

`2. BUAT ADDRESS LIST UNTUK MEMISAHKAN AGAR TIDAK KENA RULE MANGLE`

/ip firewall address-list

add address=192.168.2.1 comment="" disabled=no list=bypass

add address=192.168.2.0/24 comment="" disabled=no list=skip_content_download

add address=10.10.10.1 comment=”" disabled=no list=bypass
add address=10.10.10.0/24 comment=”" disabled=no list=skip_content_download



KLIK OPSI(LINK) UNTUK DOWNLOAD SCRIPT

——————————————

3. FILTER BUAT NANGKAP IP CONTENT L7

/ip firewall filter  <-----Download Script bila code dibawah terpotong
/

/ip firewall filter
add action=add-dst-to-address-list address-list=content_download address-list-timeout=5s chain=forward comment=”" disabled=no dst-address-list=\
!skip_content_download layer7-protocol=”Extension \” .mp3 \”" protocol=tcp
add action=add-dst-to-address-list address-list=content_download address-list-timeout=5s chain=forward comment=”" disabled=no dst-address-list=\
!skip_content_download layer7-protocol=”Extension \” .avi \”" protocol=tcp
add action=add-dst-to-address-list address-list=content_download address-list-timeout=5s chain=forward comment=”" disabled=no dst-address-list=\
!skip_content_download layer7-protocol=”Extension \” .flv \”" protocol=tcp
add action=add-dst-to-address-list address-list=content_download address-list-timeout=5s chain=forward comment=”" disabled=no dst-address-list=\
!skip_content_download layer7-protocol=”Extension \” .iso \”" protocol=tcp
add action=add-dst-to-address-list address-list=content_download address-list-timeout=5s chain=forward comment=”" disabled=no dst-address-list=\
!skip_content_download layer7-protocol=”Extension \” .pdf \”" protocol=tcp
add action=add-dst-to-address-list address-list=content_download address-list-timeout=5s chain=forward comment=”" disabled=no dst-address-list=\
!skip_content_download layer7-protocol=”Extension \” .mpeg \”" protocol=tcp
add action=add-dst-to-address-list address-list=content_download address-list-timeout=5s chain=forward comment=”" disabled=no dst-address-list=\
!skip_content_download layer7-protocol=”Extension \” .exe \”" protocol=tcp
add action=add-dst-to-address-list address-list=content_download address-list-timeout=5s chain=forward comment=”" disabled=no dst-address-list=\
!skip_content_download layer7-protocol=”Extension \” .rar \”" protocol=tcp
add action=add-dst-to-address-list address-list=content_download address-list-timeout=5s chain=forward comment=”" disabled=no dst-address-list=\
!skip_content_download layer7-protocol=”Extension \” .zip \”" protocol=tcp
add action=add-dst-to-address-list address-list=content_download address-list-timeout=5s chain=forward comment=”" disabled=no dst-address-list=\
!skip_content_download layer7-protocol=”Extension \” .mp4 \”" protocol=tcp
add action=add-dst-to-address-list address-list=content_download address-list-timeout=5s chain=forward comment=”" disabled=no dst-address-list=\
!skip_content_download layer7-protocol=”Extension \” .mp2 \”" protocol=tcp
add action=add-dst-to-address-list address-list=content_download address-list-timeout=5s chain=forward comment=”" disabled=no dst-address-list=\
!skip_content_download layer7-protocol=”Extension \” .3gp \”" protocol=tcp
add action=add-dst-to-address-list address-list=content_download address-list-timeout=5s chain=forward comment=”" disabled=no dst-address-list=\
!skip_content_download layer7-protocol=”Extension \” .mov \”" protocol=tcp
add action=add-dst-to-address-list address-list=content_download address-list-timeout=5s chain=forward comment=”" disabled=no dst-address-list=\
!skip_content_download layer7-protocol=”Extension \” .mpe \”" protocol=tcp
add action=add-dst-to-address-list address-list=content_download address-list-timeout=5s chain=forward comment=”" disabled=no dst-address-list=\
!skip_content_download layer7-protocol=”Extension \” .mpg \”" protocol=tcp
add action=add-dst-to-address-list address-list=content_download address-list-timeout=5s chain=forward comment=”" disabled=no dst-address-list=\
!skip_content_download layer7-protocol=”Extension \” .qt \”" protocol=tcp
add action=add-dst-to-address-list address-list=content_download address-list-timeout=5s chain=forward comment=”" disabled=no dst-address-list=\
!skip_content_download layer7-protocol=”Extension \” .ram \”" protocol=tcp
add action=add-dst-to-address-list address-list=content_download address-list-timeout=5s chain=forward comment=”" disabled=no dst-address-list=\
!skip_content_download layer7-protocol=”Extension \” .rm \”" protocol=tcp
add action=add-dst-to-address-list address-list=content_download address-list-timeout=5s chain=forward comment=”" disabled=no dst-address-list=\
!skip_content_download layer7-protocol=”Extension \” .raw \”" protocol=tcp
add action=add-dst-to-address-list address-list=content_download address-list-timeout=5s chain=forward comment=”" disabled=no dst-address-list=\
!skip_content_download layer7-protocol=”Extension \” .wav \”" protocol=tcp
add action=add-dst-to-address-list address-list=content_download address-list-timeout=5s chain=forward comment=”" disabled=no dst-address-list=\
!skip_content_download layer7-protocol=”Extension \” .wmv \”" protocol=tcp
add action=add-dst-to-address-list address-list=content_download address-list-timeout=5s chain=forward comment=”" disabled=no dst-address-list=\
!skip_content_download layer7-protocol=”Extension \” .wma \”" protocol=tcp
add action=add-dst-to-address-list address-list=content_download address-list-timeout=5s chain=forward comment=”" disabled=no dst-address-list=\
!skip_content_download layer7-protocol=”Extension \” .ogg \”" protocol=tcp
add action=add-dst-to-address-list address-list=content_download address-list-timeout=5s chain=forward comment=”" disabled=no dst-address-list=\
!skip_content_download layer7-protocol=”Extension \” .doc \”" protocol=tcp
add action=add-dst-to-address-list address-list=content_download address-list-timeout=5s chain=forward comment=”" disabled=no dst-address-list=\
!skip_content_download layer7-protocol=”Extension \” .7z \”" protocol=tcp
add action=add-dst-to-address-list address-list=content_download address-list-timeout=5s chain=forward comment=”" disabled=no dst-address-list=\
!skip_content_download layer7-protocol=”Extension \” .asf \”" protocol=tcp
add action=add-dst-to-address-list address-list=content_download address-list-timeout=5s chain=forward comment=”" disabled=no dst-address-list=\
!skip_content_download layer7-protocol=”Extension \” .bin \”" protocol=tcp
add action=add-dst-to-address-list address-list=content_download address-list-timeout=5s chain=forward comment=”" disabled=no dst-address-list=\
!skip_content_download layer7-protocol=”Extension \” .cab \”" protocol=tcp
add action=add-dst-to-address-list address-list=content_download address-list-timeout=5s chain=forward comment=”" disabled=no dst-address-list=\
!skip_content_download layer7-protocol=”Extension \” .daa \”" protocol=tcp
add action=add-dst-to-address-list address-list=content_download address-list-timeout=5s chain=forward comment=”" disabled=no dst-address-list=\
!skip_content_download layer7-protocol=”Extension \” .dat \”" protocol=tcp
add action=add-dst-to-address-list address-list=content_download address-list-timeout=5s chain=forward comment=”" disabled=no dst-address-list=\
!skip_content_download layer7-protocol=”Extension \” .mkv \”" protocol=tcp
add action=add-dst-to-address-list address-list=content_download address-list-timeout=5s chain=forward comment=”" disabled=no dst-address-list=\
!skip_content_download layer7-protocol=”Extension \” .nrg \”" protocol=tcp
add action=add-dst-to-address-list address-list=content_download address-list-timeout=5s chain=forward comment=”" disabled=no dst-address-list=\
!skip_content_download layer7-protocol=”Extension \” .rmvb \”" protocol=tcp
add action=add-dst-to-address-list address-list=content_download address-list-timeout=5s chain=forward comment=”" disabled=no dst-address-list=\
!skip_content_download layer7-protocol=”Extension \” .vcd \”" protocol=tcp

4. Membuat rule manglenya

/ip firewall mangle

/ip firewall mangle
add action=mark-connection chain=prerouting comment=Content_download disabled=no dst-address-list=content_download new-connection-mark=Bw_Download passthrough=yes protocol=tcp
add action=mark-connection chain=prerouting comment=”" connection-bytes=262146-4294967295 disabled=no dst-address-list=!bypass new-connection-mark=Bw_Download passthrough=yes protocol=!icmp
add action=mark-packet chain=prerouting comment=”" connection-mark=Bw_Download disabled=no dst-address-list=!bypass new-packet-mark=Paket_Download passthrough=no
add action=mark-connection chain=prerouting comment=Content_browsing disabled=no dst-address-list=!bypass new-connection-mark=Bw_Browsing passthrough=yes protocol=!icmp
add action=mark-packet chain=prerouting comment=”" connection-mark=Bw_Browsing disabled=no dst-address-list=!bypass new-packet-mark=Paket_Browsing passthrough=no

5. SETELAH ITU KITA BUAT QUEUE BUAT BATASIN DOWNLOADNYA TERSERAH MAU PAKE SIMPLE OR TREE, DISINI SY MEMAKAI QUETREE DAN SY MENGALOKASIKAN BW UNTUK DOWNLOAD 256KBPS AJA, SILAHKAN SESUAIKAN DNGN KONDISI BW ANDA, BILA ANDA INGIN MENGGANTI ALOKASI BANDWITH MISAL MENAMBAH DARI 256 KE 512 SILAHKAN ATUR PADA QUEUE TYPENYA DULU

/queue type
/queue tree

/queue type
add kind=pcq name=pcq-down pcq-classifier=dst-address pcq-limit=50 pcq-rate=256000 pcq-total-limit=2000
add kind=pcq name=Pcq_Browsing_Down pcq-classifier=dst-address pcq-limit=50 pcq-rate=0 pcq-total-limit=2000
/queue tree
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 max-limit=0 name=DOWN parent=ether2-lan priority=8
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 max-limit=0 name=Browsing_Down packet-mark=Paket_Browsing parent=DOWN priority=5 \
queue=Pcq_Browsing_Down
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no max-limit=256k name=Regular_Down packet-mark=Paket_Download parent=DOWN \
priority=8 queue=pcq-down

6. NAH… MASALAH LIMIT DOWNLOAD UDAH SELESAI SAMPAI DISINI, SKARANG TINGGAL RULE UNTUK DROP KONEKSI IDM (TETAP NANGKAPNYA MEMAKAI CONTENT L7)

Langsung Filter aja pake conn_limit trus di Drop

(perhatikan in-interfacenya sesuaikan dgn nama interface yg menuju Local client anda

/ip firewall filter



/ip firewall filter

add action=drop chain=forward comment=”" connection-limit=4,32 disabled=no in-interface=ether2-lan layer7-protocol=”Extension \” .exe \”" protocol=tcp
add action=drop chain=forward comment=”" connection-limit=4,32 disabled=no in-interface=ether2-lan layer7-protocol=”Extension \” .3gp \”" protocol=tcp
add action=drop chain=forward comment=”" connection-limit=4,32 disabled=no in-interface=ether2-lan layer7-protocol=”Extension \” .7z \”" protocol=tcp
add action=drop chain=forward comment=”" connection-limit=4,32 disabled=no in-interface=ether2-lan layer7-protocol=”Extension \” .asf \”" protocol=tcp
add action=drop chain=forward comment=”" connection-limit=4,32 disabled=no in-interface=ether2-lan layer7-protocol=”Extension \” .avi \”" protocol=tcp
add action=drop chain=forward comment=”" connection-limit=4,32 disabled=no in-interface=ether2-lan layer7-protocol=”Extension \” .bin \”" protocol=tcp
add action=drop chain=forward comment=”" connection-limit=4,32 disabled=no in-interface=ether2-lan layer7-protocol=”Extension \” .cab \”" protocol=tcp
add action=drop chain=forward comment=”" connection-limit=4,32 disabled=no in-interface=ether2-lan layer7-protocol=”Extension \” .daa \”" protocol=tcp
add action=drop chain=forward comment=”" connection-limit=4,32 disabled=no in-interface=ether2-lan layer7-protocol=”Extension \” .dat \”" protocol=tcp
add action=drop chain=forward comment=”" connection-limit=4,32 disabled=no in-interface=ether2-lan layer7-protocol=”Extension \” .doc \”" protocol=tcp
add action=drop chain=forward comment=”" connection-limit=4,32 disabled=no in-interface=ether2-lan layer7-protocol=”Extension \” .flv \”" protocol=tcp
add action=drop chain=forward comment=”" connection-limit=4,32 disabled=no in-interface=ether2-lan layer7-protocol=”Extension \” .iso \”" protocol=tcp
add action=drop chain=forward comment=”" connection-limit=4,32 disabled=no in-interface=ether2-lan layer7-protocol=”Extension \” .mkv \”" protocol=tcp
add action=drop chain=forward comment=”" connection-limit=4,32 disabled=no in-interface=ether2-lan layer7-protocol=”Extension \” .mov \”" protocol=tcp
add action=drop chain=forward comment=”" connection-limit=4,32 disabled=no in-interface=ether2-lan layer7-protocol=”Extension \” .mp2 \”" protocol=tcp
add action=drop chain=forward comment=”" connection-limit=4,32 disabled=no in-interface=ether2-lan layer7-protocol=”Extension \” .mp3 \”" protocol=tcp
add action=drop chain=forward comment=”" connection-limit=4,32 disabled=no in-interface=ether2-lan layer7-protocol=”Extension \” .mp4 \”" protocol=tcp
add action=drop chain=forward comment=”" connection-limit=4,32 disabled=no in-interface=ether2-lan layer7-protocol=”Extension \” .mpe \”" protocol=tcp
add action=drop chain=forward comment=”" connection-limit=4,32 disabled=no in-interface=ether2-lan layer7-protocol=”Extension \” .mpeg \”" protocol=tcp
add action=drop chain=forward comment=”" connection-limit=4,32 disabled=no in-interface=ether2-lan layer7-protocol=”Extension \” .mpg \”" protocol=tcp
add action=drop chain=forward comment=”" connection-limit=4,32 disabled=no in-interface=ether2-lan layer7-protocol=”Extension \” .nrg \”" protocol=tcp
add action=drop chain=forward comment=”" connection-limit=4,32 disabled=no in-interface=ether2-lan layer7-protocol=”Extension \” .ogg \”" protocol=tcp
add action=drop chain=forward comment=”" connection-limit=4,32 disabled=no in-interface=ether2-lan layer7-protocol=”Extension \” .pdf \”" protocol=tcp
add action=drop chain=forward comment=”" connection-limit=4,32 disabled=no in-interface=ether2-lan layer7-protocol=”Extension \” .qt \”" protocol=tcp
add action=drop chain=forward comment=”" connection-limit=4,32 disabled=no in-interface=ether2-lan layer7-protocol=”Extension \” .ram \”" protocol=tcp
add action=drop chain=forward comment=”" connection-limit=4,32 disabled=no in-interface=ether2-lan layer7-protocol=”Extension \” .rar \”" protocol=tcp
add action=drop chain=forward comment=”" connection-limit=4,32 disabled=no in-interface=ether2-lan layer7-protocol=”Extension \” .raw \”" protocol=tcp
add action=drop chain=forward comment=”" connection-limit=4,32 disabled=no in-interface=ether2-lan layer7-protocol=”Extension \” .rm \”" protocol=tcp
add action=drop chain=forward comment=”" connection-limit=4,32 disabled=no in-interface=ether2-lan layer7-protocol=”Extension \” .rmvb \”" protocol=tcp
add action=drop chain=forward comment=”" connection-limit=4,32 disabled=no in-interface=ether2-lan layer7-protocol=”Extension \” .vcd \”" protocol=tcp
add action=drop chain=forward comment=”" connection-limit=4,32 disabled=no in-interface=ether2-lan layer7-protocol=”Extension \” .wav \”" protocol=tcp
add action=drop chain=forward comment=”" connection-limit=4,32 disabled=no in-interface=ether2-lan layer7-protocol=”Extension \” .wma \”" protocol=tcp
add action=drop chain=forward comment=”" connection-limit=4,32 disabled=no in-interface=ether2-lan layer7-protocol=”Extension \” .wmv \”" protocol=tcp
add action=drop chain=forward comment=”" connection-limit=4,32 disabled=no in-interface=ether2-lan layer7-protocol=”Extension \” .zip \”" protocol=tcp

———————————————————

| Free Bussines? |

Jumat, 01 Juli 2011

Cara Install dan Membuat Squid Proxy Server dengan Debian Linux

Baca selengkapnya »

Cara Setting Load Balance Mikrotik ( 3 Modem di gabungkan dalam satu Mikrotik Router)

--Jika anda mempunyai 3 buah modem kemudian anda ingin gabungkan menjadi satu dengan mikrotik router, berikut ini cara settingnya:

Baca selengkapnya »

Panduan Setting Dial Up Speedy dengan Router Mikrotik

Tip ini saya tulis dari pengalaman saya memakai Speedy dengan modem ADSL Articonet ACN-100R dan TP-Link TD 8817 yang kualitasnya tidak jauh berbeda. Dari pengalaman, jika dial-up speedy dilakukan oleh kedua modem tersebut, secara periodik koneksi akan terputus tanpa sebab yang jelas. It sucks! Menurut analisa beberapa rekan dan tenaga outsource Telkom Speedy sendiri, hal ini disebabkan karena buffer memori modem sudah kelebihan beban. Hal ini menyebabkan proses dialing terganggu.

Karena sampai beberapa tahap gangguan ini membuat jengah, saya kepikiran untuk mengalihkan fungsi dial-up koneksi speedy ke komputer yang difungsikan sebagai router.

Saat itu saya langsung teringat pada beberapa perangkat komputer yang sudah tidak digunakan lagi teronggok di gudang. Daripada beli komputer atau router baru, mending saya ‘hidupkan kembali’ perangkat-perangkat veteran tersebut agar bisa merasakan masa kejayaannya lagi. he he he …

Akhirnya setelah semalaman berkutat dengan perangkat lawas dan debu, akhirnya saya bisa satukan kembali sebuah PC dengan processor P III 750MHz , 256MB SDRAM, dan sebuah harddisk 40GB. Ya, lumayan lah…

Selanjutnya komputer Veteran saya akan mengambil alih tugas modem melakukan dial-up speedy. Kurang dari 5 menit, seting mikrotik sudah selesai. Selanjutnya saya tempatkan posisinya dalam jaringan sebagai berikut

[INTERNET]——[MODEM ADSL]——[ROUTER MIKROTIK]——[SWITCH]———[CLIENT]
xxx.xxx—192.168.1.1/192.168.1.100—192.168.1.103/192.168.30.1—192.168.30.2-192.168.30.254

PERSIAPAN

Untuk mengantisipasi hal yang tidak diinginkan, saya sarankan Anda melakukan backup setting modem Speedy Anda terlebih dahulu. Hampir tiap modem dilengkapi dengan fasilitas ini. Konfigurasi yang diberikan oleh petugas dapat Anda backup dalam bentuk satu file yang kelak dapat Anda panggil lagi untuk mengembalikan setting modem ADSL ke kondisi semula dengan mudah.

Silakan masuk ke jendela setting Modem dengan memuka browser dan masukkan alamat modem (defaultnya: http://192.168.1.1).

Masuk pada bagian informasi service seperti berikut dan catat semua keterangan tentang LAN dan WAN yang ada.

SETTING MODEM ADSL

Buka browser Anda, masukkan alamat modem (defaultnya adalah http://192.168.1.1)

Masukkan username dan password : admin/admin
Masuk ke menu “Advanced Setup” kemudian pilih “WAN” dan klik tombol “Edit” Masukkan nilai PVC
Configuration : (masukkan nilainya sesuai wilayah TELKOM masing-masing daerah)
VPI = X (setting saya=8)
VCI = XX (setting saya=8)
informasi ini bisa didapatkan dari petugas Telkom atau teknisi yang melakukan instalasi. Jika Anda masih belum yakin dengan setting yang tepat di lokasi Anda, silakan cek konfigurasi dalam tulisan berikut:
Setting Modem Speedy dari Berbagai Daerah
Service Category = UBR Without PCR, kemudian klik Next
Connection type = Bridging
Encapsulation = LLC, kemudian klik tombol Next
Tandai check box pilihan “Enable Bridge Service”, Next dan akhiri dengan Save
Selanjutnya klik tombol Save/Reboot, tunggu beberapa saat +- 2 menit hingga proses reboot modem selesai.

Jika Anda menggunakan paket Modem TP-Link TD8117 caranya lebih mudah. Ikuti saja langkah step-by-step nya dari Menu Start Up > Wizard > Pilih koneksi Bridge > Akhiri dengan Finish. That’s it!

Jika Anda memerlukan panduan yang dilengkapi dengan gambar, silakan lihat panduannya di sini:Setting Speedy pada Modem ADSL TP-Link TD-8817

SETTING ROUTER MIKROTIK

Sudah banyak dimaklumi bahwa Mikrotik agak susah memberikan identifikasi pada Lan Card. Agar lebih mudah mengingat, Pertama kita beri nama masing-masing LAN Card yang ada pada Mikrotik. sebagai berikut.

/interface ethernet set ether1 name=speedy
/interface ethernet set ether2 name=lokal

Setelah masing-masing LAN card diberi nama, tentukan IP-nya

ip address add address=192.168.1.103/24 interface=speedy
ip address add address=192.168.30.1/24 interface=lokal

periksa apakah nama card lan dan ip yang diberikan sudah benar.

ip address print

Kemudian lakukan test ping ke masing masing IP tersebut untuk memastikan konfigurasi sudah tepat.

Selanjutnya, aktifkan fitur PPOE Mikrotik untuk melakukan dial ke modem ADSL Speedy. Berikut ini akan kita bahas cara dial-up dengan menggunakan baris perintah di terminal. Anda bisa juga lakukan hal ini lewat Winbox. Baca juga Panduan Setting PPOE-Client Speedy dari Winbox di bagian lain blog ini.

/interface pppoe-client add name=pppoe-client-speedy user=142xxxxxxxxx@telkom.net
password=XXXXXXXXXX interface=speedy service-name=internet disabled=no
/ip route add gateway= 125.124.123.1

Keterangan: IP Gateway ini bisa ditemukan dari dengan mengetik perintah ipconfig dari command pada saat speedy sudah di dial dari Windows. Anda juga bisa dapatkan informasi ini dari informasi konfigurasi modem (lewat browser seperti yang disampaikan pada setting modem di atas) atau yang sudah Anda catat sebelumnya.

Periksa sekali lagi apakah settingan yang kita lakukan sudah benar dengan:

/ip route print

SETTING DNS

Masukkan kode berikut untuk melakukan setting DNS Speedy:

/ip dns set primary-dns=202.134.1.10 allow-remote-request=yes
/ip dns set secondary-dns=202.134.0.155 allow-remote-request=yes

Selanjutnya setting masquerade, untuk meneruskan perintah dari routing dari semua client ke NAT firewall mikrotik.

/ip firewall nat add chain=srcnat action=masquerade

Langkah terakhir, buka winbox, pada menu pppoe yang barusan Anda buat, masuk ke menu PPP > Interfaces > dobel klik koneksi Anda > pilih Tab Dial Out, pastikan untuk menandai check box “add default route”.

Setelah Proses diatas selesai, lakukan ping ke 202.134.0.10. jika koneksi terhubung berarti Gateway speedy sudah dimasukkan dalam daftar mikrotik dan Anda dapat mulai berselancar.

TROUBLESHOOT

Jika BELUM UP, periksa kembali:

Cek koneksi kabel dari modem ke perangkat mikrotik
Cek username dan password speedy

Jika Ping belum jalan atau muncul pesan error “Invalid value for argument addresses” berarti ada satu hal yang terlewat.

Buka Winbox, masuk menu PPP. Dobel klik pada ppoe yang aktif. Tandai Check Box “Add default route” dan “Use peer DNS“

Jika masih ada yang bingung, baca panduan di forum dan lihat step-by-step video tutorial dari forum sebelah jika diperlukan. Baca juga pengalaman seorang rekan tentang setting mikrotik.

Sumber : http://guntingbatukertas.com/sistem-operasi/mikrotik/panduan-setting-dial-up-speedy-dengan-router-mikrotik/#ixzz1QrEwA200

Per-Traffic Load Balancing

Introduction

Bandwidth management is an essential part of every day operation for typical ISP's, business, and even everyday home users. There are many different types of management tools available to RouterOS users, QoS, rate-limiting, packet-limiting, to name few

I personally operate a wireless ISP in an area that has no other type of conventional high-speed internet conection (ie. cable, fibre or DSL). Not having access to fibre myself, I am in a situation where the single fastest backbone connection I can get does not provide enough bandwidth for me to have only one connection. As a result of this limitation load-balancing multiple internet backbone connections is very important.

Baca selengkapnya »

Rabu, 22 Juni 2011

Iklan Melayang (Flying Ads) Modifikasi

Iklan Melayang (Flying Ads) Modifikasi - Sebelumnya Sobat baca dulu : Cara Membuat Iklan Melayang / Flying Ads versi biasa. Setelah membaca, Sobat bisa praktekkan yang itu dulu, baru bisa menuju trik berikut. Jika pada Cara Membuat Iklan Melayang / Flying Ads versi biasaditerapkan effek "close 2x" artinya harus meng-klik 2 kali agar iklan melayang tersebut bisa hilang. Kemudian effek yang kedua adalah, iklan melayang tersebut berjalan keluar dan masuk dengan waktu yang lama alias keluar perlahan-lahan.

Baca selengkapnya »

Senin, 20 Juni 2011

Step by Step membangun VPN Server dgn Mikrotik

VPN adalah Virtual Private Network dimana VPN ini merupakan interkoneksi antar jaringan ( PC Client to LAN maupun LAN to LAN ) yang mana interkoneksi ini melalui jaringan Public ( Internet ) sehingga dengan VPN ini terjadi koneksi terselubung alias lorong atau Tunneling Connection sehingga data yang di akses ( data yang di kirim dan di terima ) benar-benar aman.

Baca selengkapnya tentang VPN di Wikipedia ini :

http://en.wikipedia.org/wiki/Vpn

Berikut ini contoh Desain VPN yang menghubungkan LAN to LAN antar kota :

Baca selengkapnya »

Rangkuman Ilmu Komputer Ku

Search Engine

Selasa, 13 Maret 2012

Limit (block) IDM dengan Mikrotik

1.REGEX CONTENT LAYER7

`----------------------------`

`2. BUAT ADDRESS LIST UNTUK MEMISAHKAN AGAR TIDAK KENA RULE MANGLE`

——————————————

3. FILTER BUAT NANGKAP IP CONTENT L7

4. Membuat rule manglenya

6. NAH… MASALAH LIMIT DOWNLOAD UDAH SELESAI SAMPAI DISINI, SKARANG TINGGAL RULE UNTUK DROP KONEKSI IDM (TETAP NANGKAPNYA MEMAKAI CONTENT L7)

———————————————————

Jumat, 01 Juli 2011

Cara Install dan Membuat Squid Proxy Server dengan Debian Linux

Cara Setting Load Balance Mikrotik ( 3 Modem di gabungkan dalam satu Mikrotik Router)

Panduan Setting Dial Up Speedy dengan Router Mikrotik

Per-Traffic Load Balancing

Introduction

Rabu, 22 Juni 2011

Iklan Melayang (Flying Ads) Modifikasi

Senin, 20 Juni 2011

Step by Step membangun VPN Server dgn Mikrotik