Saya menggunakan Ubuntu server 10.04, yaitu :
Topologi
Hotspot
||
Modem/Internet === Mikrotik === Client Warnet
||
Squid Proxy
1. IP Mikrotik:
- 192.168.0.1 = local
- 192.168.10.1 = proxy
- 192.168.1.1 = public/ke modem speedy
2. IP squid (pakai IPCop)
- 192.168.10.2 = ip green(procy)
3. IP Client: 192.168.0.0/24
Ip address sesuaikan dengan yang anda gunakan,
Setting NAT :
/ip firewall nat
add chain=srcnat action=masquerade
add chain=dstnat action=dst-nat to-addresses=192.168.10.2 to-ports=3128
protocol=tcp src-address=!192.168.10.0/24 in-interface=Lokal
dst-port=80,81,3128,5050,8080
Setting Mangle :
/ip firewall mangle
add chain=forward action=mark-connection new-connection-mark=squid_con
passthrough=yes content=HIT comment="Proxy Server" disabled=no
add chain=forward action=mark-packet new-packet-mark=squid-pkt passthrough=no
connection-mark=squid_con comment="" disabled=no
add chain=forward action=mark-connection new-connection-mark=all_conn
passthrough=yes connection-mark=!squid_con comment="No HIT Connection" disabled=no
add chain=forward action=mark-packet new-packet-mark=http_pkt passthrough=no
protocol=tcp dst-port=80 connection-mark=all_conn comment="" disabled=no
add chain=forward action=mark-packet new-packet-mark=icmp_pkt passthrough=no
protocol=icmp connection-mark=all_conn comment="" disabled=no
add chain=forward action=mark-packet new-packet-mark=top_pkt passthrough=no
protocol=tcp dst-port=1973 connection-mark=all_conn
add chain=forward action=mark-packet new-packet-mark=test_pkt passthrough=no
connection-mark=all_conn
Setting Simple Queue :
name="Hit Proxy" dst-address=0.0.0.0/0 interface=all parent=none
packet-marks=squid-pkt direction=both priority=1
queue=default-small/default-small limit-at=0/0 max-limit=0/50M
burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s
total-queue=default-small
name="Main Link" dst-address=0.0.0.0/0 interface=all parent=none
direction=both priority=8 queue=default-small/default-small
limit-at=0/0 max-limit=0/1500k burst-limit=0/0 burst-threshold=0/0
burst-time=0s/0s total-queue=default-small
name="pc-billing warnet" target-addresses=192.168.0.99/32 dst-address=0.0.0.0/0
interface=all parent=Main Link direction=both priority=3
queue=default-small/default-small limit-at=0/256k max-limit=0/512k
burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s
total-queue=default-small
Mulai dari pc billing warnet dst tinggal sesuaikan aja target addressnya dengan pc client 1 - 200,
Source : http://opensource.telkomspeedy.com/forum/viewtopic.php?id=2284
Terimakasih kepada opensurce karena telah membantu saya... :D
Newbie masih belajar, harap koreksi kalo masih ada yang salah...
Tidak ada komentar:
Posting Komentar