Scribd
Upload
11 views2 pages

Ars

The document outlines the configuration of a network router, including the setup of interfaces, PPPoE clients, firewall rules, and NAT settings. It includes specific actions for managing traffic, such as connection marking for load balancing and destination NAT for certain services. Additionally, it establishes address lists for popular platforms like YouTube, WhatsApp, and Facebook to manage traffic accordingly.

Uploaded by

nurwahidkuntoro91
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
11 views2 pages

Ars

The document outlines the configuration of a network router, including the setup of interfaces, PPPoE clients, firewall rules, and NAT settings. It includes specific actions for managing traffic, such as connection marking for load balancing and destination NAT for certain services. Additionally, it establishes address lists for popular platforms like YouTube, WhatsApp, and Facebook to manage traffic accordingly.

Uploaded by

nurwahidkuntoro91
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
You are on page 1/ 2

/interface bridge

add name=loopback
/interface ethernet
set [ find default-name=ether1 ] name=ether1-WARGUN
set [ find default-name=ether2 ] name=ether2-BAROS
set [ find default-name=ether5 ] name=ether5-Out
/interface pppoe-client
add add-default-route=yes default-route-distance=4 disabled=no interface=ether1-
WARGUN name=1.gsi-net.id user=100008
add add-default-route=yes default-route-distance=4 disabled=no interface=ether2-
BAROS name=2.baros user=wahid
/ip firewall mangle
add action=accept chain=prerouting disabled=yes src-address=172.16.171.0/24
add action=mark-connection chain=prerouting comment=lb-pcc_1 disabled=yes in-
interface=1.gsi-net.id new-connection-mark=WARGUN
add action=mark-connection chain=prerouting disabled=yes in-interface=vpn_remote
new-connection-mark=BAROS
add action=mark-connection chain=prerouting disabled=yes dst-address=!
172.16.171.0/24 new-connection-mark=WARGUN per-connection-classifier=both-
addresses:2/0 src-address=\
!172.16.171.0/24
add action=mark-connection chain=prerouting disabled=yes dst-address=!
172.16.171.0/24 new-connection-mark=BAROS per-connection-classifier=both-
addresses:2/1 src-address=\
!172.16.171.0/24
add action=mark-connection chain=prerouting comment="Routing Youtube" disabled=yes
dst-address-list=Youtube new-connection-mark=koneksi_Youtube passthrough=yes \
src-address-list=lokal
add action=mark-packet chain=forward connection-mark=koneksi_Youtube disabled=yes
new-packet-mark=paket_yt passthrough=no
add action=mark-connection chain=prerouting comment="Routing WA" disabled=yes dst-
address-list=Whatsapp new-connection-mark=koneksi_wa passthrough=yes src-address-
list=\
lokal
add action=mark-packet chain=forward connection-mark=koneksi_wa disabled=yes new-
packet-mark=paket_wa passthrough=no
add action=mark-connection chain=prerouting comment="Routing FB" disabled=yes dst-
address-list=FB new-connection-mark=koneksi_fb passthrough=yes src-address-
list=lokal
add action=mark-packet chain=forward connection-mark=koneksi_wa disabled=yes new-
packet-mark=paket_fb passthrough=no
add action=fasttrack-connection chain=prerouting disabled=yes dst-address-
list=ipcek src-address=172.16.100.102
add action=mark-connection chain=prerouting comment="Per Connection Load Balance 0"
disabled=yes dst-address=!172.16.100.0/24 dst-address-list=!lokal dst-
port=80,8080 \
new-connection-mark=conn-LanA passthrough=yes per-connection-classifier=src-
address-and-port:2/0 protocol=tcp src-address-list=lokal
add action=mark-connection chain=prerouting comment=1 disabled=yes dst-address=!
172.16.100.0/24 dst-address-list=!lokal dst-port=80,8080 new-connection-mark=conn-
LanB \
passthrough=yes per-connection-classifier=src-address-and-port:2/1 protocol=tcp
src-address-list=lokal
add action=mark-connection chain=prerouting comment="Per Address Load Balance0"
disabled=yes dst-address=!172.16.100.0/24 dst-address-list=!lokal new-connection-
mark=\
conn-LanA passthrough=yes per-connection-classifier=both-addresses:2/0 src-
address-list=lokal
add action=mark-connection chain=prerouting comment=1 disabled=yes dst-address=!
172.16.100.0/24 dst-address-list=!lokal new-connection-mark=conn-LanB
passthrough=yes \
per-connection-classifier=both-addresses:2/1 src-address-list=lokal
/ip firewall nat
add action=passthrough chain=unused-hs-chain comment="place hotspot rules here"
disabled=yes
add action=masquerade chain=srcnat comment="masquerade hotspot network" out-
interface=1.gsi-net.id
add action=masquerade chain=srcnat comment="masquerade hotspot network" out-
interface=2.baros
add action=dst-nat chain=dstnat dst-address=192.168.40.193 dst-port=8292
protocol=tcp to-addresses=172.16.171.149 to-ports=8291
add action=dst-nat chain=dstnat dst-address=192.168.40.193 dst-port=8293
protocol=tcp to-addresses=172.16.171.149 to-ports=8293
add action=masquerade chain=srcnat dst-address=192.168.40.0/24
add action=masquerade chain=srcnat dst-address=10.5.15.0/29
add action=masquerade chain=srcnat
add action=dst-nat chain=dstnat dst-address=172.16.80.2 protocol=tcp to-
addresses=172.16.171.150 to-ports=8778
/ip firewall raw
add action=add-dst-to-address-list address-list=Youtube address-list-timeout=1h
chain=prerouting comment=Youtube content=.googlevideo.com dst-address-list=!lokal \
src-address-list=lokal
add action=add-dst-to-address-list address-list=Youtube address-list-timeout=1h
chain=prerouting content=googlevideo.com dst-address-list=!lokal src-address-
list=lokal
add action=add-dst-to-address-list address-list=Youtube address-list-timeout=1h
chain=prerouting content=.youtube.com dst-address-list=!lokal src-address-
list=lokal
add action=add-dst-to-address-list address-list=Youtube address-list-timeout=1h
chain=prerouting content=.ytimg.com dst-address-list=!lokal src-address-list=lokal
add action=add-dst-to-address-list address-list=Whatsapp address-list-timeout=1h
chain=prerouting comment=WA content=.whatsapp.com dst-address-list=!lokal \
src-address-list=lokal
add action=add-dst-to-address-list address-list=Whatsapp address-list-timeout=1h
chain=prerouting content=.whatsapp.net dst-address-list=!lokal src-address-
list=lokal
add action=add-dst-to-address-list address-list=Whatsapp address-list-timeout=1h
chain=prerouting content=cdn.whatsapp.net dst-address-list=!lokal src-address-
list=lokal
add action=add-dst-to-address-list address-list=Whatsapp address-list-timeout=1h
chain=prerouting content=static.whatsapp.net dst-address-list=!lokal src-address-
list=\
lokal
add action=add-dst-to-address-list address-list=Whatsapp address-list-timeout=1h
chain=prerouting content=web.whatsapp.com dst-address-list=!lokal src-address-
list=lokal
add action=add-dst-to-address-list address-list=FB address-list-timeout=5h
chain=prerouting comment=Facebook content=.facebook.com dst-address-list=!lokal \
src-address-list=lokal
add action=add-dst-to-address-list address-list=FB address-list-timeout=5h
chain=prerouting content=.facebook.net dst-address-list=!lokal src-address-
list=lokal
add action=add-dst-to-address-list address-list=FB address-list-timeout=5h
chain=prerouting content=.fbcdn.net dst-address-list=!lokal src-address-list=lokal

You might also like

pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy