API tools faq
paste
Advertisement
rootplg3544

ROUTING 2 ISP LENGKAP DAN BAGUS

rootplg3544
Nov 1st, 2019
977
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 13.48 KB | None | 0 0
raw download clone embed print report
  1. ether5-WMS = ISP UTAMA
  2. ether1-INDIHOME = ISP BACK UP DAN KHUSUS GAME
  3.  
  4. /ip firewall address-list
  5. add address=192.168.2.0/24 list=ip_private (AP)
  6. add address=192.168.3.0/24 list=ip_private (LAN)
  7. add address=192.168.10.0/24 list=ip_private (WMS)
  8. add address=192.168.100.0/24 list=ip_private (INDIHOME)
  9. add address=10.10.8.0/21 list=ip_private (HOTSPOT)
  10.  
  11. /ip firewall mangle
  12. add action=mark-connection chain=prerouting comment=GAME connection-mark=\
  13. !BROWSING dst-address-list="IP GAME ONLINE" in-interface=!ether5-WMS \
  14. new-connection-mark=GAME passthrough=yes protocol=tcp
  15. add action=mark-connection chain=prerouting connection-mark=!BROWSING \
  16. dst-address-list="IP GAME ONLINE" in-interface=!ether5-WMS \
  17. new-connection-mark=GAME passthrough=yes protocol=udp
  18. add action=mark-packet chain=forward connection-mark=GAME in-interface=\
  19. ether1-INDIHOME new-packet-mark="GAME DOWNLOAD" passthrough=yes
  20. add action=mark-packet chain=forward connection-mark=GAME new-packet-mark=\
  21. "GAME UPLOAD" out-interface=ether1-INDIHOME passthrough=yes
  22. add action=mark-routing chain=prerouting comment="JALUR GAME" \
  23. connection-mark=GAME in-interface=!ether5-WMS new-routing-mark=\
  24. "GAME ONLINE" passthrough=yes src-address-list=ip_private
  25. add action=mark-connection chain=prerouting comment=BROWSING dst-port=\
  26. 21,22,23,81,88,5050,843,182,8777,1935,53,8000-8081,80,443 in-interface=\
  27. !ether5-WMS new-connection-mark=BROWSING passthrough=yes protocol=tcp
  28. add action=mark-connection chain=prerouting dst-port=\
  29. 21,22,23,81,88,5050,843,182,8777,1935,53,8000-8081,80,443 in-interface=\
  30. !ether5-WMS new-connection-mark=BROWSING passthrough=yes protocol=udp
  31. add action=mark-connection chain=prerouting dst-port=\
  32. 67,5228,35915,39397,110,5060,6666,3478,66,53,8291 in-interface=\
  33. !ether5-WMS new-connection-mark=BROWSING passthrough=yes protocol=tcp
  34. add action=mark-connection chain=prerouting dst-port=\
  35. 67,5228,35915,39397,110,5060,6666,3478,66,53,8291 in-interface=\
  36. !ether5-WMS new-connection-mark=BROWSING passthrough=yes protocol=udp
  37. add action=mark-packet chain=forward connection-bytes=0-1000000 \
  38. connection-mark=BROWSING in-interface=ether5-WMS new-packet-mark=\
  39. "BROWSING RINGAN DOWNLOAD" passthrough=yes
  40. add action=mark-packet chain=forward connection-bytes=0-1000000 \
  41. connection-mark=BROWSING new-packet-mark="BROWSING RINGAN UPLOAD" \
  42. out-interface=ether5-WMS passthrough=yes
  43. add action=add-dst-to-address-list address-list="BROWSING BERAT" \
  44. address-list-timeout=15s chain=prerouting comment="BROWSING BERAT" \
  45. connection-mark=!BROWSING connection-rate=200k-100M disabled=yes \
  46. in-interface=!ether5-WMS
  47. add action=mark-connection chain=prerouting disabled=yes dst-address-list=\
  48. "BROWSING BERAT" in-interface=!ether5-WMS new-connection-mark=\
  49. "BROWSING BERAT" passthrough=yes protocol=tcp
  50. add action=mark-connection chain=prerouting disabled=yes dst-address-list=\
  51. "BROWSING BERAT" in-interface=!ether5-WMS new-connection-mark=\
  52. "BROWSING BERAT" passthrough=yes protocol=udp
  53. add action=mark-packet chain=forward connection-bytes=1000000-100000000 \
  54. connection-mark=BROWSING in-interface=ether5-WMS new-packet-mark=\
  55. "BROWSING DOWNLOAD" passthrough=yes
  56. add action=mark-packet chain=forward connection-bytes=1000000-100000000 \
  57. connection-mark=BROWSING new-packet-mark="BROWSING UPLOAD" out-interface=\
  58. ether5-WMS passthrough=yes
  59. add action=add-dst-to-address-list address-list=YOUTUBE address-list-timeout=\
  60. 3m chain=prerouting comment=YOUTUBE content=.googlevideo.com \
  61. in-interface=!ether5-WMS
  62. add action=mark-connection chain=prerouting dst-address-list=YOUTUBE \
  63. in-interface=!ether5-WMS new-connection-mark=YOUTUBE passthrough=yes
  64. add action=mark-packet chain=forward connection-mark=YOUTUBE in-interface=\
  65. ether5-WMS new-packet-mark="YOUTUBE DOWNLOAD" passthrough=yes
  66. add action=mark-packet chain=forward connection-mark=YOUTUBE new-packet-mark=\
  67. "YOUTUBE UPLOAD" out-interface=ether5-WMS passthrough=yes
  68. add action=mark-connection chain=prerouting comment=ICMP new-connection-mark=\
  69. ICMP passthrough=yes protocol=icmp
  70. add action=mark-packet chain=forward connection-mark=ICMP in-interface=\
  71. ether5-WMS new-packet-mark="ICMP DOWNLOAD" passthrough=yes
  72. add action=mark-packet chain=forward connection-mark=ICMP new-packet-mark=\
  73. "ICMP UPLOAD" out-interface=ether5-WMS passthrough=yes
  74. add action=add-dst-to-address-list address-list="SOSIAL MEDIA" \
  75. address-list-timeout=3m chain=prerouting comment="SOSIAL MEDIA" content=\
  76. .facebook.com in-interface=!ether5-WMS
  77. add action=add-dst-to-address-list address-list="SOSIAL MEDIA" \
  78. address-list-timeout=3m chain=prerouting content=.facebook.net \
  79. in-interface=!ether5-WMS
  80. add action=add-dst-to-address-list address-list="SOSIAL MEDIA" \
  81. address-list-timeout=3m chain=prerouting content=.fbcdn.net in-interface=\
  82. !ether5-WMS
  83. add action=add-dst-to-address-list address-list="SOSIAL MEDIA" \
  84. address-list-timeout=3m chain=prerouting content=.twimg.com in-interface=\
  85. !ether5-WMS
  86. add action=add-dst-to-address-list address-list="SOSIAL MEDIA" \
  87. address-list-timeout=3m chain=prerouting content=twitter.com \
  88. in-interface=!ether5-WMS
  89. add action=add-dst-to-address-list address-list="SOSIAL MEDIA" \
  90. address-list-timeout=3m chain=prerouting content=.twitter.com \
  91. in-interface=!ether5-WMS
  92. add action=add-dst-to-address-list address-list="SOSIAL MEDIA" \
  93. address-list-timeout=3m chain=prerouting content=.instagram.com \
  94. in-interface=!ether5-WMS
  95. add action=add-dst-to-address-list address-list="SOSIAL MEDIA" \
  96. address-list-timeout=3m chain=prerouting content=.cdninstagram.com \
  97. in-interface=!ether5-WMS
  98. add action=add-dst-to-address-list address-list="SOSIAL MEDIA" \
  99. address-list-timeout=3m chain=prerouting content=.whatsapp.com \
  100. in-interface=!ether5-WMS
  101. add action=add-dst-to-address-list address-list="SOSIAL MEDIA" \
  102. address-list-timeout=3m chain=prerouting content=.whatsapp.net \
  103. in-interface=!ether5-WMS
  104. add action=add-dst-to-address-list address-list="SOSIAL MEDIA" \
  105. address-list-timeout=3m chain=prerouting content=tiktokcdn.com \
  106. in-interface=!ether5-WMS
  107. add action=add-dst-to-address-list address-list="SOSIAL MEDIA" \
  108. address-list-timeout=3m chain=prerouting content=telegram.org \
  109. in-interface=!ether5-WMS
  110. add action=add-dst-to-address-list address-list="SOSIAL MEDIA" \
  111. address-list-timeout=3m chain=prerouting content=.telegram.org \
  112. in-interface=!ether5-WMS
  113. add action=mark-connection chain=prerouting dst-address-list="SOSIAL MEDIA" \
  114. in-interface=!ether5-WMS new-connection-mark="SOSIAL MEDIA" passthrough=\
  115. yes
  116. add action=mark-packet chain=forward connection-mark="SOSIAL MEDIA" \
  117. in-interface=ether5-WMS new-packet-mark="SOSIAL MEDIA DOWNLOAD" \
  118. passthrough=yes
  119. add action=mark-packet chain=forward connection-mark="SOSIAL MEDIA" \
  120. new-packet-mark="SOSIAL MEDIA UPLOAD" out-interface=ether5-WMS \
  121. passthrough=yes
  122. add action=change-ttl chain=postrouting comment="BLOCK SHARING " dst-address=\
  123. !192.168.2.2-192.168.2.50 dst-address-list=ip_private new-ttl=set:1 \
  124. passthrough=no
  125.  
  126. /ip firewall raw
  127. add action=add-dst-to-address-list address-list="IP GAME ONLINE" \
  128. address-list-timeout=1h chain=prerouting comment="Mobile Legend" \
  129. dst-address-list=!ip_private dst-port=\
  130. 5000-5508,5551-5558,5601-5608,5651-5658,30097-30147 protocol=tcp
  131. add action=add-dst-to-address-list address-list="IP GAME ONLINE" \
  132. address-list-timeout=1h chain=prerouting comment="Mobile Legends" \
  133. dst-address-list=!ip_private dst-port=30000-30150,5000-5555,9001 \
  134. protocol=tcp
  135. add action=add-dst-to-address-list address-list="IP GAME ONLINE" \
  136. address-list-timeout=1h chain=prerouting comment="Mobile Legends" \
  137. content=.youngjoygame.com dst-address-list=!ip_private
  138. add action=add-dst-to-address-list address-list="IP GAME ONLINE" \
  139. address-list-timeout=1h chain=prerouting comment="Lineage 2" \
  140. dst-address-list=!ip_private dst-port=12000 protocol=tcp
  141. add action=add-dst-to-address-list address-list="IP GAME ONLINE" \
  142. address-list-timeout=1h chain=prerouting comment="Clash Royal" \
  143. dst-address-list=!ip_private dst-port=9330-9340 protocol=tcp
  144. add action=add-dst-to-address-list address-list="IP GAME ONLINE" \
  145. address-list-timeout=1h chain=prerouting comment=AOV dst-address-list=\
  146. !ip_private dst-port=10001-10094 protocol=tcp
  147. add action=add-dst-to-address-list address-list="IP GAME ONLINE" \
  148. address-list-timeout=1h chain=prerouting comment=AOV dst-address-list=\
  149. !ip_private dst-port=10101-10201,10080-10110,17000-18000 protocol=udp
  150. add action=add-dst-to-address-list address-list="IP GAME ONLINE" \
  151. address-list-timeout=1h chain=prerouting comment=AOV dst-address-list=\
  152. !ip_private dst-port=10080,17000 protocol=udp
  153. add action=add-dst-to-address-list address-list="IP GAME ONLINE" \
  154. address-list-timeout=1h chain=prerouting comment="Free fire garena" \
  155. dst-address-list=!ip_private dst-port=39698,39003,39779 protocol=tcp
  156. add action=add-dst-to-address-list address-list="IP GAME ONLINE" \
  157. address-list-timeout=1h chain=prerouting comment="Free fire garena" \
  158. dst-address-list=!ip_private dst-port=10000-10007,7008 protocol=udp
  159. add action=add-dst-to-address-list address-list="IP GAME ONLINE" \
  160. address-list-timeout=1h chain=prerouting comment=PUBG dst-address-list=\
  161. !ip_private dst-port=7086-7995,12070-12460,41182-41192 protocol=udp
  162. add action=add-dst-to-address-list address-list="IP GAME ONLINE" \
  163. address-list-timeout=1h chain=prerouting comment=PUBG dst-address-list=\
  164. !ip_private dst-port=10012,17500 protocol=tcp
  165. add action=add-dst-to-address-list address-list="IP GAME ONLINE" \
  166. address-list-timeout=1h chain=prerouting comment=PUBG dst-address-list=\
  167. !ip_private dst-port="10491,10010,10013,10612,20002,20001,20000,12235,1374\
  168. 8,13972,13894,11455,10096,10039" protocol=udp
  169. add action=add-dst-to-address-list address-list="IP GAME ONLINE" \
  170. address-list-timeout=1h chain=prerouting comment="PUBG Mobile" content=\
  171. .igamecj.com dst-address-list=!ip_private
  172. add action=add-dst-to-address-list address-list="IP GAME ONLINE" \
  173. address-list-timeout=1h chain=prerouting comment="PUBG Mobile" content=\
  174. tencentgames.helpshift.com dst-address-list=!ip_private
  175. add action=add-dst-to-address-list address-list="IP GAME ONLINE" \
  176. address-list-timeout=1h chain=prerouting comment=Vainglory \
  177. dst-address-list=!ip_private dst-port=7000-8020 protocol=tcp
  178. add action=add-dst-to-address-list address-list="IP GAME ONLINE" \
  179. address-list-timeout=1h chain=prerouting comment=Vainglory content=\
  180. .superevil.net dst-address-list=!ip_private
  181. add action=add-dst-to-address-list address-list="IP GAME ONLINE" \
  182. address-list-timeout=1h chain=prerouting comment="COD MOBILE" \
  183. dst-address-list=!ip_private dst-port=7500-7700,17000-20100 protocol=udp
  184. add action=add-dst-to-address-list address-list="IP GAME ONLINE" \
  185. address-list-timeout=1h chain=prerouting dst-address-list=!ip_private \
  186. dst-port=65000-65090 protocol=tcp
  187. add action=add-dst-to-address-list address-list="IP GAME ONLINE" \
  188. address-list-timeout=1h chain=prerouting comment=Garena content=\
  189. .garenanow.com dst-address-list=!ip_private
  190.  
  191. /queue tree
  192. add max-limit=35M name="Traffick Download" parent=global queue=\
  193. pcq-download-default
  194. add max-limit=5M name="Browsing Berat Download" packet-mark=\
  195. "BROWSING DOWNLOAD" parent="Traffick Download" queue=pcq-download-default
  196. add max-limit=15M name="Youtube Download" packet-mark="YOUTUBE DOWNLOAD" \
  197. parent="Traffick Download" queue=pcq-download-default
  198. add limit-at=512k max-limit=10M name="Game Download" packet-mark=\
  199. "GAME DOWNLOAD" parent="Traffick Download" priority=1 queue=\
  200. pcq-download-default
  201. add max-limit=10M name="Jalur Traffick Download" packet-mark=\
  202. "BROWSING RINGAN DOWNLOAD" parent="Traffick Download" queue=\
  203. pcq-download-default
  204. add max-limit=35M name="Traffick Upload" parent=global queue=\
  205. pcq-upload-default
  206. add max-limit=5M name="Browsing Berat Upload" packet-mark="BROWSING UPLOAD" \
  207. parent="Traffick Upload" queue=pcq-upload-default
  208. add limit-at=512k max-limit=10M name="Game Upload" packet-mark="GAME UPLOAD" \
  209. parent="Traffick Upload" priority=1 queue=pcq-upload-default
  210. add max-limit=15M name="Youtube Upload" packet-mark="YOUTUBE UPLOAD" parent=\
  211. "Traffick Upload" queue=pcq-upload-default
  212. add max-limit=10M name="Jalur Traffick Upload" packet-mark=\
  213. "BROWSING RINGAN UPLOAD" parent="Traffick Upload" queue=\
  214. pcq-upload-default
  215. add max-limit=2M name="Icmp Download" packet-mark="ICMP DOWNLOAD" parent=\
  216. "Traffick Download" queue=pcq-download-default
  217. add max-limit=2M name="Icmp Upload" packet-mark="ICMP UPLOAD" parent=\
  218. "Traffick Upload" queue=pcq-upload-default
  219. add max-limit=15M name="Sosial Media Download" packet-mark=\
  220. "SOSIAL MEDIA DOWNLOAD" parent="Traffick Download" queue=\
  221. pcq-download-default
  222. add max-limit=15M name="Sosial Media Upload" packet-mark=\
  223. "SOSIAL MEDIA UPLOAD" parent="Traffick Upload" queue=pcq-upload-default
  224.  
  225. /ip route
  226. add comment="ISP BACKUP DAN GAME" distance=2 gateway=192.168.100.1 \
  227. routing-mark="GAME ONLINE"
  228. add check-gateway=ping comment="ISP UTAMA" distance=1 gateway=8.8.8.8 \
  229. target-scope=30
  230. add check-gateway=ping distance=2 gateway=192.168.100.1
  231. add check-gateway=ping distance=1 dst-address=8.8.8.8/32 gateway=192.168.10.1
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!