Load Balancing pada mikrotik dapat dilakukan dengan beberapa metode
1. NTH load balancing with masquerade
Untuk metode ini dns mikrotik harus sama dengan dns di client. Jika tidak load balancing tidak akan jalan
A. Penggunaan di Mikrotik versi 2.xx
- Pada mikrotik versi 2.xx, Definisi NTH-nya adalah NTH=Every,Counter,Packet contoh : nth=1,1,0 . 1,1,1 . 1,1,2
Contoh implementasi pada 3 koneksi :
Showing posts with label load balancing. Show all posts
Showing posts with label load balancing. Show all posts
Monday, December 19, 2011
Simple Firewall Filter di Mikrotik
Firewall Untuk Mikrotik
A. Proteksi Untuk Router
add action=accept chain=input comment="Accept established connections" connection-state=established disabled=no
add action=accept chain=input comment="Accept related connections" connection-state=related disabled=no
add action=drop chain=input comment="Drop invalid connections" connection-state=invalid disabled=no
add action=accept chain=input comment=UDP disabled=no protocol=udp
add action=accept chain=input comment="Allow limited pings" disabled=no limit=50/5s,2 protocol=icmp
add action=drop chain=input comment="Drop excess pings" disabled=no protocol=icmp
add action=accept chain=input comment="SSH for secure shell" disabled=no dst-port=22 protocol=tcp
add action=accept chain=input comment=winbox disabled=no dst-port=8291 protocol=tcp
add action=accept chain=input comment="From our private LAN" disabled=no src-address=192.168.1.0/24
add action=accept chain=input comment="From proxy" disabled=no src-address=192.168.0.0/24
add action=drop chain=input comment="Drop everything else" disabled=no
A. Proteksi Untuk Router
add action=accept chain=input comment="Accept established connections" connection-state=established disabled=no
add action=accept chain=input comment="Accept related connections" connection-state=related disabled=no
add action=drop chain=input comment="Drop invalid connections" connection-state=invalid disabled=no
add action=accept chain=input comment=UDP disabled=no protocol=udp
add action=accept chain=input comment="Allow limited pings" disabled=no limit=50/5s,2 protocol=icmp
add action=drop chain=input comment="Drop excess pings" disabled=no protocol=icmp
add action=accept chain=input comment="SSH for secure shell" disabled=no dst-port=22 protocol=tcp
add action=accept chain=input comment=winbox disabled=no dst-port=8291 protocol=tcp
add action=accept chain=input comment="From our private LAN" disabled=no src-address=192.168.1.0/24
add action=accept chain=input comment="From proxy" disabled=no src-address=192.168.0.0/24
add action=drop chain=input comment="Drop everything else" disabled=no
Subscribe to:
Posts (Atom)