This configuration for friends who may be quite difficult Mikrotik settings. To Warnet
ago lived in the copy and paste it in the terminal.
1. install a cd Mikrotik
Just follow the step c press (Yes) (Yes)
after the restart, login: admin pass: (empty)
Is copy and paste the following just any posts;
BASIC _______________
system identity set name = warnet.beenet
user set admin password = free
ethernet____________________
interface ethernet enable ether1
interface ethernet enable ether2
Ethernet interface ether1 set name = intranet
Ethernet interface ether2 set name = internet
IP ADDRESS_______________
ip address add interface = internet address = XXXXX (from ISP)
ip address add interface = intranet address = 192.168.0.1/24
route_______________
ip route add gateway = XXXXX (from ISP)
dns___________
ip dns set primary-dns = XXXXX (ISP's) 2 secondary-dns = XXXXX (from ISP)
nat & firewall filter standar_______________
ip firewall nat add action = Masquerade chain = srcnat
ip firewall filter add chain = input connection-state = invalid action = drop
ip firewall filter add chain = input protocol = UDP action = accept
ip firewall filter add chain = input protocol = ICMP action = accept
ip firewall filter add chain = input in-interface = intranet action = accept
ip firewall filter add chain = input in-interface = internet action = accept
dhcp server______________________________________
ip dhcp-server setup
dhcp server interface: intranet
dhcp address space: 192.168.0.0/24
gateway for dhcp network: 192.168.0.1
addresses to give out: 192.168.0.2-192.168.0.254
dns servers: XXXXX (from ISP), XXXXX (from ISP)
lease time: 3d
web proxy_________________________
ip web-proxy
set enabled = yes
set src-address = 0.0.0.0
set port = 8080
set hostname = "proxy-apaaja"
set transparent-proxy = yes
set parent-proxy = 0.0.0.0:0
set cache-administrator = "silahkan.pannggil.operator"
set max-object-size = 4096KiB
set cache-drive = system
set max-cache-size = unlimited
set max-ram-cache-size = unlimited
bikinredirect port to transparant proxy__________________________
/ ip firewall nat add chain = dstnat protocol = tcp dst-port = 80 action = redirect to-ports = 8080
/ ip firewall nat add chain = dstnat protocol = tcp dst-port = 3128 action = redirect to-ports = 8080
/ ip firewall nat add chain = dstnat protocol = tcp dst-port = 8080 action = redirect to-ports = 8080
PCQ ________________________
/ ip firewall mangle add chain = forward src-address = 192.168.169.0/28 action = mark-connection new-connection-mark = client1-cm
/ ip firewall mangle add connection-mark = client1-cm action = mark-packet new-packet-mark = client1-pm chain = forward
/ queue type add name = downsteam-pcq kind = pcq pcq-classifier = dst-address
/ queue type add name = Upstream-pcq kind = pcq pcq-classifier = src-address
/ queue tree add parent = intranet downsteam queue = pcq-packet-mark = client1-pm
/ queue tree add parent = internet queue = pcq-Upstream packet-mark = client1-pm
simple queue______________________________
queue simple add name = units-01 target-addresses = 192.168.0.11
queue simple add name = units-02 target-addresses = 192.168.0.12
queue simple add name = units-03 target-addresses = 192.168.0.13
queue simple add name = units-04 target-addresses = 192.168.0.14
queue simple add name = units-05 target-addresses = 192.168.0.15
queue simple add name = units-06 target-addresses = 192.168.0.16
queue simple add name = units-07 target-addresses = 192.168.0.17
queue simple add name = units-08 target-addresses = 192.168.0.18
queue simple add name = units-09 target-addresses = 192.168.0.19
queue simple add name = units-10 target-addresses = 192.168.0.20
queue simple add name = xbilling target-addresses = 192.168.0.2
BLOX SPAM____________________________
/ ip firewall filter add chain = forward dst-port = 135-139 protocol = tcp action = drop
/ ip firewall filter add chain = forward dst-port = 135-139 protocol = UDP action = drop
/ ip firewall filter add chain = forward dst-port = 445 protocol = tcp action = drop
/ ip firewall filter add chain = forward dst-port = 445 protocol = UDP action = drop
/ ip firewall filter add chain = forward dst-port = 593 protocol = tcp action = drop
/ ip firewall filter add chain = forward dst-port = 4444 protocol = tcp action = drop
/ ip firewall filter add chain = forward dst-port = 5554 protocol = tcp action = drop
/ ip firewall filter add chain = forward dst-port = 9996 protocol = tcp action = drop
/ ip firewall filter add chain = forward dst-port = 995-999 protocol = UDP action = drop
/ ip firewall filter add chain = forward dst-port = 53 protocol = tcp action = drop
/ ip firewall filter add chain = forward dst-port = 55 protocol = tcp action = drop
ago lived in the copy and paste it in the terminal.
1. install a cd Mikrotik
- dg cd boot Mikrotik
- after a iso can boot linux, select a few packages that are required. (check only if all confused)
Just follow the step c press (Yes) (Yes)
after the restart, login: admin pass: (empty)
Is copy and paste the following just any posts;
BASIC _______________
system identity set name = warnet.beenet
user set admin password = free
ethernet____________________
interface ethernet enable ether1
interface ethernet enable ether2
Ethernet interface ether1 set name = intranet
Ethernet interface ether2 set name = internet
IP ADDRESS_______________
ip address add interface = internet address = XXXXX (from ISP)
ip address add interface = intranet address = 192.168.0.1/24
route_______________
ip route add gateway = XXXXX (from ISP)
dns___________
ip dns set primary-dns = XXXXX (ISP's) 2 secondary-dns = XXXXX (from ISP)
nat & firewall filter standar_______________
ip firewall nat add action = Masquerade chain = srcnat
ip firewall filter add chain = input connection-state = invalid action = drop
ip firewall filter add chain = input protocol = UDP action = accept
ip firewall filter add chain = input protocol = ICMP action = accept
ip firewall filter add chain = input in-interface = intranet action = accept
ip firewall filter add chain = input in-interface = internet action = accept
dhcp server______________________________________
ip dhcp-server setup
dhcp server interface: intranet
dhcp address space: 192.168.0.0/24
gateway for dhcp network: 192.168.0.1
addresses to give out: 192.168.0.2-192.168.0.254
dns servers: XXXXX (from ISP), XXXXX (from ISP)
lease time: 3d
web proxy_________________________
ip web-proxy
set enabled = yes
set src-address = 0.0.0.0
set port = 8080
set hostname = "proxy-apaaja"
set transparent-proxy = yes
set parent-proxy = 0.0.0.0:0
set cache-administrator = "silahkan.pannggil.operator"
set max-object-size = 4096KiB
set cache-drive = system
set max-cache-size = unlimited
set max-ram-cache-size = unlimited
bikinredirect port to transparant proxy__________________________
/ ip firewall nat add chain = dstnat protocol = tcp dst-port = 80 action = redirect to-ports = 8080
/ ip firewall nat add chain = dstnat protocol = tcp dst-port = 3128 action = redirect to-ports = 8080
/ ip firewall nat add chain = dstnat protocol = tcp dst-port = 8080 action = redirect to-ports = 8080
PCQ ________________________
/ ip firewall mangle add chain = forward src-address = 192.168.169.0/28 action = mark-connection new-connection-mark = client1-cm
/ ip firewall mangle add connection-mark = client1-cm action = mark-packet new-packet-mark = client1-pm chain = forward
/ queue type add name = downsteam-pcq kind = pcq pcq-classifier = dst-address
/ queue type add name = Upstream-pcq kind = pcq pcq-classifier = src-address
/ queue tree add parent = intranet downsteam queue = pcq-packet-mark = client1-pm
/ queue tree add parent = internet queue = pcq-Upstream packet-mark = client1-pm
simple queue______________________________
queue simple add name = units-01 target-addresses = 192.168.0.11
queue simple add name = units-02 target-addresses = 192.168.0.12
queue simple add name = units-03 target-addresses = 192.168.0.13
queue simple add name = units-04 target-addresses = 192.168.0.14
queue simple add name = units-05 target-addresses = 192.168.0.15
queue simple add name = units-06 target-addresses = 192.168.0.16
queue simple add name = units-07 target-addresses = 192.168.0.17
queue simple add name = units-08 target-addresses = 192.168.0.18
queue simple add name = units-09 target-addresses = 192.168.0.19
queue simple add name = units-10 target-addresses = 192.168.0.20
queue simple add name = xbilling target-addresses = 192.168.0.2
BLOX SPAM____________________________
/ ip firewall filter add chain = forward dst-port = 135-139 protocol = tcp action = drop
/ ip firewall filter add chain = forward dst-port = 135-139 protocol = UDP action = drop
/ ip firewall filter add chain = forward dst-port = 445 protocol = tcp action = drop
/ ip firewall filter add chain = forward dst-port = 445 protocol = UDP action = drop
/ ip firewall filter add chain = forward dst-port = 593 protocol = tcp action = drop
/ ip firewall filter add chain = forward dst-port = 4444 protocol = tcp action = drop
/ ip firewall filter add chain = forward dst-port = 5554 protocol = tcp action = drop
/ ip firewall filter add chain = forward dst-port = 9996 protocol = tcp action = drop
/ ip firewall filter add chain = forward dst-port = 995-999 protocol = UDP action = drop
/ ip firewall filter add chain = forward dst-port = 53 protocol = tcp action = drop
/ ip firewall filter add chain = forward dst-port = 55 protocol = tcp action = drop
No comments:
Post a Comment