Posted by : Ham JavaNet Sabtu, 25 Mei 2013




Port 1 : ISP A --> IP Public
Port 2 : ISP B --> IP Public
Port 3 : LAN --> 192.168.88.1/28
Port 4 : RT/RW atau HotSpot --> 192.168.66.10/28
Port 5 : Proxy --> 192.168.44.1/30 

What i want is, LAN & RT/RW bisa masuk proxy dan LB bareng serta kena cache proxy, so thiz is should be


ADDRESS LIST
/IP Firewall Address List
add list="Proxy Allowed" address=192.168.88.0/28
add list="Proxy Allowed" address=192.168.66.0/28
NAT
/IP NAT add chain=srcnat out-interface=ISP-A action=masquerade
/IP NAT add chain=srcnat out-interface=ISP-B action=masquerade
/IP NAT add chain=dstnat protocol=tcp dst-port=80,81,8080,3128 src-address-list="Proxy Allowed" action=dstnat to-address=192.168.44.2 to-port=3128
Notes : karena ada 2 interface jadi kita deteksi pake IP di src-address-list

/IP Firewall Mangle
add chain=prerouting in-interface=LAN dst-address=192.168.88.0/28 connection-state=new nth=2,1 action=mark-connection new-connection-mark=lan-1 comment="Load Balance LAN" passthrough=yes
add chain=prerouting in-interface=LAN dst-address=192.168.88.0/28 connection-state=new nth=2,2 action=mark-connection new-connection-mark=lan-2 passthrough=yes
add chain=prerouting in-interface=LAN connection-mark=lan-1 action=mark-routing new-routing-mark=jalur-1 passthrough=no
add chain=prerouting in-interface=LAN connection-mark=lan-2 action=mark-routing new-routing-mark=jalur-2 passthrough=no

add chain=prerouting in-interface=Proxy connection-state=new nth=2,1 action=mark-connection new-connection-mark=proxy-1 comment="Load Balance Proxy"
add chain=prerouting in-interface=Proxy connection-state=new nth=2,2 action=mark-connection new-connection-mark=proxy-2
add chain=prerouting in-interface=Proxy connection-mark=proxy-1 action=mark-routing new-routing-mark=jalur-1
add chain=prerouting in-interface=Proxy connection-mark=proxy-2 action=mark-routing new-routing-mark=jalur-2

add chain=prerouting in-interface=RT-RW dst-address=192.168.66.0/28 connection-state=new nth=2,1 action=mark-connection new-connection-mark=rt-1 comment="Load Balance RT/RW"
add chain=prerouting in-interface=RT-RW dst-adddress=192.168.66.0/28 connection-state=new nth=2,2 action=mark-connection new-connection-mark=rt-2
add chain=prerouting in-interface=RT-RW connection-mark=rt-1 action=mark-routing new-routing-mark=jalur-1
add chain=prerouting in-interface=RT-RW connection-mark=rt-2 action=mark-routing new-routing-mark=jalur-2


Description: [MIKROTIK] LOAD BALANCE NTH ver + External Proxy (Squid) Enhancement
Rating: 4.5
Reviewer: Ham JavaNet
ItemReviewed: [MIKROTIK] LOAD BALANCE NTH ver + External Proxy (Squid) Enhancement

Leave a Reply

Monggo Tinggalkan Jejak Kaks :)

Subscribe to Posts | Subscribe to Comments

Welcome to My Blog

Popular Post

Labels

Arsip Blog

Followers

- Copyright © 2013 shad0w-share | Designed by Johanes Djogan -