» » » » [MIKROTIK] LOAD BALANCE NTH ver + External Proxy (Squid)
, , Edit

[MIKROTIK] LOAD BALANCE NTH ver + External Proxy (Squid)


Port 1 : ISP A --> IP Public
Port 2 : ISP B --> IP Public
Port 3 : LAN --> 192.168.88.1/28
Port 4 : RT/RW atau HotSpot --> 192.168.66.10/28
Port 5 : Proxy --> 192.168.44.1/30 

What i want is, LAN & RT/RW bisa masuk proxy dan LB bareng serta kena cache proxy, so thiz is should be


ADDRESS LIST
/IP Firewall Address List
add list="Proxy Allowed" address=192.168.88.0/28
add list="Proxy Allowed" address=192.168.66.0/28
NAT
/IP NAT add chain=srcnat out-interface=ISP-A action=masquerade
/IP NAT add chain=srcnat out-interface=ISP-B action=masquerade
/IP NAT add chain=dstnat protocol=tcp dst-port=80,81,8080,3128 src-address-list="Proxy Allowed" action=dstnat to-address=192.168.44.2 to-port=3128
Notes : karena ada 2 interface jadi kita deteksi pake IP di src-address-list

/IP Firewall Mangle
add chain=prerouting in-interface=LAN dst-address=192.168.88.0/28 connection-state=new nth=2,1 action=mark-connection new-connection-mark=lan-1 comment="Load Balance LAN" passthrough=yes
add chain=prerouting in-interface=LAN dst-address=192.168.88.0/28 connection-state=new nth=2,2 action=mark-connection new-connection-mark=lan-2 passthrough=yes
add chain=prerouting in-interface=LAN connection-mark=lan-1 action=mark-routing new-routing-mark=jalur-1 passthrough=no
add chain=prerouting in-interface=LAN connection-mark=lan-2 action=mark-routing new-routing-mark=jalur-2 passthrough=no

add chain=prerouting in-interface=Proxy connection-state=new nth=2,1 action=mark-connection new-connection-mark=proxy-1 comment="Load Balance Proxy"
add chain=prerouting in-interface=Proxy connection-state=new nth=2,2 action=mark-connection new-connection-mark=proxy-2
add chain=prerouting in-interface=Proxy connection-mark=proxy-1 action=mark-routing new-routing-mark=jalur-1
add chain=prerouting in-interface=Proxy connection-mark=proxy-2 action=mark-routing new-routing-mark=jalur-2

add chain=prerouting in-interface=RT-RW dst-address=192.168.66.0/28 connection-state=new nth=2,1 action=mark-connection new-connection-mark=rt-1 comment="Load Balance RT/RW"
add chain=prerouting in-interface=RT-RW dst-adddress=192.168.66.0/28 connection-state=new nth=2,2 action=mark-connection new-connection-mark=rt-2
add chain=prerouting in-interface=RT-RW connection-mark=rt-1 action=mark-routing new-routing-mark=jalur-1
add chain=prerouting in-interface=RT-RW connection-mark=rt-2 action=mark-routing new-routing-mark=jalur-2

Sumber: Mr.Eko Apriadi - http://www.mediacomptech.com/2013/05/mikrotik-load-balance-nth-ver-external.html#ixzz3ZHck4aO1

0 Response to "[MIKROTIK] LOAD BALANCE NTH ver + External Proxy (Squid)"

Post a Comment

Ilmu ibarat sempax, kita harus menggunakannya, tapi tak perlu memamerkannya..".Tolong klik iklan dong..biar blog nya tetep eksis..Thxs "

Subscribe to: Post Comments (Atom)