Topologi
[admin@IDN-R1]>
/ip firewall layer7-protocol
add name=youtube regexp=^.+youtube.com.*
add name=youtube-slow regexp=\
"\"r[0-9]+---[a-z]+-+[a-z0-9-]+\\.googlevideo.com\""
/ip hotspot profile
add dns-name=hotspot.dzikra.id hotspot-address=50.50.50.1 name=hsprof1
/ip pool
add name=hs-pool-4 ranges=50.50.50.2-50.50.50.254
/ip dhcp-server
add address-pool=hs-pool-4 disabled=no interface=ether4 lease-time=1h name=\
dhcp1
/ip hotspot
add address-pool=hs-pool-4 disabled=no interface=ether4 name=hotspot1 \
profile=hsprof1
/tool user-manager customer
set admin access=\
own-routers,own-users,own-profiles,own-limits,config-payment-gw
#error exporting /dude
/ip address
add address=19.19.19.10/16 interface=ether1 network=19.19.0.0
add address=12.12.12.1/24 interface=ether2 network=12.12.12.0
add address=13.13.13.1/24 interface=ether3 network=13.13.13.0
add address=50.50.50.1/24 interface=ether4 network=50.50.50.0
/ip dhcp-server network
add address=50.50.50.0/24 comment="hotspot network" gateway=50.50.50.1
/ip dns
set allow-remote-requests=yes servers=8.8.8.8,8.8.4.4
/ip firewall filter
add action=passthrough chain=unused-hs-chain comment=\
"place hotspot rules here" disabled=yes
add action=drop chain=forward layer7-protocol=youtube
/ip firewall mangle
add action=mark-connection chain=prerouting layer7-protocol=youtube-slow \
new-connection-mark=youtube.con
add action=mark-packet chain=prerouting connection-mark=youtube.con \
new-packet-mark=youtube.pack passthrough=no
/ip firewall nat
add action=passthrough chain=unused-hs-chain comment=\
"place hotspot rules here" disabled=yes
add action=masquerade chain=srcnat out-interface=ether1
add action=masquerade chain=srcnat comment="masquerade hotspot network" \
src-address=50.50.50.0/24
/ip hotspot ip-binding
add mac-address=00:0C:29:8E:CF:06 to-address=50.50.50.48 type=bypassed
/ip hotspot user
add name=admin password=idnjoos
add name=user1 password=idnjoos
add name=user2 password=idnmantap
/ip route
add distance=1 gateway=19.19.19.4
/routing ospf network
add area=backbone network=12.12.12.0/24
add area=backbone network=13.13.13.0/24
add area=backbone network=50.50.50.0/24
/system identity
set name=IDN-R1
[admin@IDN-R2]> /interface bridge add name=r2-br /interface wireless security-profiles set [ find default=yes ] supplicant-identity=MikroTik /ip pool add name=dhcp_pool1 ranges=192.168.1.2-192.168.1.254 /ip dhcp-server add address-pool=dhcp_pool1 disabled=no interface=r2-br name=dhcp1 /tool user-manager customer set admin access=own-routers,own-users,own-profiles,own-limits,config-payment-gw #error exporting /dude /interface bridge port add bridge=r2-br interface=ether2 add bridge=r2-br interface=ether3 /ip address add address=12.12.12.2/24 interface=ether1 network=12.12.12.0 add address=192.168.1.1/24 interface=r2-br network=192.168.1.0 /ip dhcp-server lease add address=192.168.1.253 client-id=1:0:50:79:66:68:1 mac-address=00:50:79:66:68:01 server=dhcp1 /ip dhcp-server network add address=192.168.1.0/24 dns-server=8.8.8.8 gateway=192.168.1.1 /routing ospf network add area=backbone network=12.12.12.0/24 add area=backbone network=192.168.1.0/24 /system identity set name=IDN-R2
[admin@IDN-R3]> /ip pool add name=dhcp_pool1 ranges=192.168.2.2-192.168.2.254 /ip dhcp-server add address-pool=dhcp_pool1 disabled=no interface=ether2 name=dhcp1 /tool user-manager customer set admin access=own-routers,own-users,own-profiles,own-limits,config-payment-gw #error exporting /dude /ip address add address=13.13.13.2/24 interface=ether1 network=13.13.13.0 add address=192.168.2.1/24 interface=ether2 network=192.168.2.0 /ip dhcp-server lease add address=192.168.2.253 client-id=1:0:50:79:66:68:3 mac-address=00:50:79:66:68:03 server=dhcp1 /ip dhcp-server network add address=192.168.2.0/24 dns-server=8.8.8.8 gateway=192.168.2.1 /routing ospf network add area=backbone network=13.13.13.0/24 add area=backbone network=192.168.2.0/24 /system identity set name=IDN-R3
Komentar
Posting Komentar