Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- # aug/04/2016 10:41:01 by RouterOS 6.42
- # software id = 3AAJ-2WFL
- #
- # model = RouterBOARD 750G r3
- # serial number = 6F3806801D16
- /interface ethernet
- set [ find default-name=ether1 ] name=e1-Indihome
- set [ find default-name=ether2 ] name="e2-My Republic"
- set [ find default-name=ether3 ] comment=Local name=e3-Distribusi
- set [ find default-name=ether4 ] name=e4
- set [ find default-name=ether5 ] name=e5
- /interface pppoe-client
- add add-default-route=yes comment=ISP default-route-distance=2 \
- dial-on-demand=yes disabled=no interface=e1-Indihome keepalive-timeout=5 \
- name=PPPoE password=KXTJAU04WE user=122861213234@telkom.net
- /interface wireless security-profiles
- set [ find default=yes ] supplicant-identity=MikroTik
- /ip hotspot profile
- set [ find default=yes ] html-directory=flash/hotspot
- /ip pool
- add name=PPTPool ranges=192.168.3.3-192.168.3.25
- /ppp profile
- add local-address=PPTPool name=PPTP-Profile remote-address=PPTPool
- /queue tree
- add limit-at=100M max-limit=500M name=Icmp packet-mark=PKT-ICMP parent=global \
- priority=1 queue=default
- /routing ospf instance
- set [ find default=yes ] redistribute-connected=as-type-2 \
- redistribute-other-ospf=as-type-2 redistribute-static=as-type-2 \
- router-id=192.168.3.1
- /snmp community
- set [ find default=yes ] addresses=0.0.0.0/0
- /tool user-manager customer
- set admin access=\
- own-routers,own-users,own-profiles,own-limits,config-payment-gw
- /user group
- set read policy="local,telnet,ssh,read,winbox,web,sniff,sensitive,api,romon,ti\
- kapp,!ftp,!reboot,!write,!policy,!test,!password,!dude"
- /interface l2tp-server server
- set enabled=yes ipsec-secret=ratmonogroup use-ipsec=yes
- /interface pptp-server server
- set enabled=yes
- /ip address
- add address=192.168.1.2/24 interface=e1-Indihome network=192.168.1.0
- add address=192.168.2.2/24 interface="e2-My Republic" network=192.168.2.0
- add address=192.168.3.1/24 interface=e3-Distribusi network=192.168.3.0
- /ip cloud
- set ddns-enabled=yes
- /ip dns
- set allow-remote-requests=yes servers=192.168.1.1,192.168.2.1,8.8.8.8,8.8.4.4
- /ip dns static
- add address=8.8.8.8 disabled=yes name=google.com
- add address=8.8.8.8 disabled=yes name=google.co.id
- /ip firewall address-list
- add address=6f3806801d16.sn.mynetname.net list="Remote ALL"
- /ip firewall mangle
- add action=mark-connection chain=input comment="Load Balance" in-interface=\
- PPPoE new-connection-mark=ISP1-Indihome passthrough=no
- add action=mark-connection chain=input in-interface="e2-My Republic" \
- new-connection-mark="ISP2-My Republic" passthrough=no
- add action=mark-routing chain=output connection-mark=ISP1-Indihome \
- new-routing-mark=ISP1 passthrough=no
- add action=mark-routing chain=output connection-mark="ISP2-My Republic" \
- new-routing-mark=ISP2 passthrough=no
- add action=accept chain=prerouting comment=PCC dst-address=192.168.1.0/24 \
- in-interface=e3-Distribusi
- add action=accept chain=prerouting dst-address=192.168.2.0/24 in-interface=\
- e3-Distribusi
- add action=mark-connection chain=prerouting dst-address-type=!local \
- in-interface=e3-Distribusi new-connection-mark=ISP1-Indihome passthrough=\
- yes per-connection-classifier=both-addresses-and-ports:2/0
- add action=mark-connection chain=prerouting dst-address-type=!local \
- in-interface=e3-Distribusi new-connection-mark="ISP2-My Republic" \
- passthrough=yes per-connection-classifier=both-addresses-and-ports:2/1
- add action=mark-routing chain=prerouting connection-mark=ISP1-Indihome \
- in-interface=e3-Distribusi new-routing-mark=ISP1 passthrough=no
- add action=mark-routing chain=prerouting connection-mark="ISP2-My Republic" \
- in-interface=e3-Distribusi new-routing-mark=ISP2 passthrough=no
- add action=mark-connection chain=prerouting comment=ICMP new-connection-mark=\
- ICMP_LOKAL passthrough=yes protocol=icmp
- add action=mark-packet chain=prerouting connection-mark=ICMP_LOKAL \
- new-packet-mark=PKT-ICMP passthrough=no
- /ip firewall nat
- add action=masquerade chain=srcnat comment="Nat ISP" out-interface=PPPoE
- add action=masquerade chain=srcnat out-interface=e1-Indihome
- add action=masquerade chain=srcnat out-interface="e2-My Republic"
- add action=masquerade chain=srcnat comment="Nat Local" out-interface=\
- e3-Distribusi
- add action=dst-nat chain=dstnat comment="Remote Mikrotik" dst-address-list=\
- "!Remote ALL" dst-port=81 protocol=tcp to-addresses=192.168.3.2 to-ports=\
- 8081
- add action=dst-nat chain=dstnat dst-address-list="Remote ALL" dst-port=82 \
- protocol=tcp to-addresses=192.168.3.2 to-ports=8291
- add action=dst-nat chain=dstnat comment="Remote Radio PTP" dst-address-list=\
- "Remote ALL" dst-port=213 protocol=tcp to-addresses=192.168.2.3 to-ports=\
- 443
- add action=dst-nat chain=dstnat dst-address-list="Remote ALL" dst-port=214 \
- protocol=tcp to-addresses=192.168.2.4 to-ports=443
- add action=dst-nat chain=dstnat dst-address-list="Remote ALL" dst-port=211 \
- protocol=tcp to-addresses=192.168.2.1 to-ports=80
- add action=dst-nat chain=dstnat comment="Remote Radio AP" dst-address-list=\
- "Remote ALL" dst-port=223 protocol=tcp to-addresses=192.168.22.3 \
- to-ports=80
- add action=dst-nat chain=dstnat dst-address-list="Remote ALL" dst-port=233 \
- protocol=tcp to-addresses=192.168.23.3 to-ports=443
- add action=dst-nat chain=dstnat dst-address-list="Remote ALL" dst-port=234 \
- protocol=tcp to-addresses=192.168.23.4 to-ports=443
- add action=dst-nat chain=dstnat dst-address-list="Remote ALL" dst-port=235 \
- protocol=tcp to-addresses=192.168.23.5 to-ports=443
- add action=dst-nat chain=dstnat dst-address-list="Remote ALL" dst-port=236 \
- protocol=tcp to-addresses=192.168.23.6 to-ports=443
- add action=dst-nat chain=dstnat dst-address-list="Remote ALL" dst-port=237 \
- protocol=tcp to-addresses=192.168.23.7 to-ports=80
- add action=dst-nat chain=dstnat dst-address-list="Remote ALL" dst-port=238 \
- protocol=tcp to-addresses=192.168.23.8 to-ports=443
- add action=dst-nat chain=dstnat comment="Remote Radio Client" \
- dst-address-list="Remote ALL" dst-port=2310 protocol=tcp to-addresses=\
- 192.168.23.10 to-ports=443
- add action=dst-nat chain=dstnat dst-address-list="Remote ALL" dst-port=2311 \
- protocol=tcp to-addresses=192.168.23.11 to-ports=443
- add action=dst-nat chain=dstnat dst-address-list="Remote ALL" dst-port=2312 \
- protocol=tcp to-addresses=192.168.23.12 to-ports=443
- add action=dst-nat chain=dstnat dst-address-list="Remote ALL" dst-port=2313 \
- protocol=tcp to-addresses=192.168.23.13 to-ports=443
- add action=dst-nat chain=dstnat dst-address-list="Remote ALL" dst-port=2314 \
- protocol=tcp to-addresses=192.168.23.14 to-ports=80
- add action=dst-nat chain=dstnat dst-address-list="Remote ALL" dst-port=2315 \
- protocol=tcp to-addresses=192.168.23.15 to-ports=80
- add action=dst-nat chain=dstnat dst-address-list="Remote ALL" dst-port=2316 \
- protocol=tcp to-addresses=192.168.23.16 to-ports=443
- add action=dst-nat chain=dstnat dst-address-list="Remote ALL" dst-port=2317 \
- protocol=tcp to-addresses=192.168.23.17 to-ports=443
- add action=dst-nat chain=dstnat dst-address-list="Remote ALL" dst-port=2318 \
- protocol=tcp to-addresses=192.168.23.18 to-ports=443
- add action=dst-nat chain=dstnat dst-address-list="Remote ALL" dst-port=2319 \
- protocol=tcp to-addresses=192.168.23.19 to-ports=443
- add action=dst-nat chain=dstnat dst-address-list="Remote ALL" dst-port=2320 \
- protocol=tcp to-addresses=192.168.23.20 to-ports=443
- add action=dst-nat chain=dstnat dst-address-list="Remote ALL" dst-port=2326 \
- protocol=tcp to-addresses=192.168.23.26 to-ports=443
- add action=dst-nat chain=dstnat dst-address-list="Remote ALL" dst-port=2327 \
- protocol=tcp to-addresses=192.168.23.27 to-ports=443
- add action=dst-nat chain=dstnat dst-address-list="Remote ALL" dst-port=2333 \
- protocol=tcp to-addresses=192.168.23.33 to-ports=443
- add action=dst-nat chain=dstnat dst-address-list="Remote ALL" dst-port=2390 \
- protocol=tcp to-addresses=192.168.23.90 to-ports=80
- add action=dst-nat chain=dstnat dst-address-list="Remote ALL" dst-port=2391 \
- protocol=tcp to-addresses=192.168.23.91 to-ports=443
- add action=dst-nat chain=dstnat dst-address-list="Remote ALL" dst-port=2392 \
- protocol=tcp to-addresses=192.168.23.92 to-ports=443
- add action=dst-nat chain=dstnat dst-address-list="Remote ALL" dst-port=2393 \
- protocol=tcp to-addresses=192.168.23.93 to-ports=443
- add action=dst-nat chain=dstnat dst-address-list="Remote ALL" dst-port=2394 \
- protocol=tcp to-addresses=192.168.23.94 to-ports=443
- add action=dst-nat chain=dstnat dst-address-list="Remote ALL" dst-port=2395 \
- protocol=tcp to-addresses=192.168.23.95 to-ports=443
- add action=dst-nat chain=dstnat dst-address-list="Remote ALL" dst-port=2396 \
- protocol=tcp to-addresses=192.168.23.96 to-ports=80
- add action=dst-nat chain=dstnat dst-address-list="Remote ALL" dst-port=2397 \
- protocol=tcp to-addresses=192.168.23.97 to-ports=443
- add action=dst-nat chain=dstnat dst-address-list="Remote ALL" dst-port=2398 \
- protocol=tcp to-addresses=192.168.23.98 to-ports=443
- add action=dst-nat chain=dstnat dst-address-list="Remote ALL" dst-port=2399 \
- protocol=tcp to-addresses=192.168.23.99 to-ports=443
- add action=dst-nat chain=dstnat dst-address-list="Remote ALL" dst-port=23100 \
- protocol=tcp to-addresses=192.168.23.100 to-ports=443
- add action=dst-nat chain=dstnat dst-address-list="Remote ALL" dst-port=23101 \
- protocol=tcp to-addresses=192.168.23.101 to-ports=443
- add action=dst-nat chain=dstnat dst-address-list="Remote ALL" dst-port=23102 \
- protocol=tcp to-addresses=192.168.23.102 to-ports=443
- add action=dst-nat chain=dstnat comment="Remote Router Client" \
- dst-address-list="Remote ALL" dst-port=2248 protocol=tcp to-addresses=\
- 192.168.22.48 to-ports=8080
- add action=dst-nat chain=dstnat dst-address-list="Remote ALL" dst-port=2364 \
- protocol=tcp to-addresses=192.168.23.64 to-ports=8080
- add action=masquerade chain=srcnat disabled=yes out-interface=*A
- /ip route
- add check-gateway=ping distance=1 gateway=PPPoE routing-mark=ISP1
- add check-gateway=ping comment=PCC distance=1 gateway=192.168.2.1 \
- routing-mark=ISP2
- add check-gateway=ping distance=1 gateway=8.8.8.8 target-scope=30
- add check-gateway=ping comment=Failover distance=2 gateway=PPPoE
- add check-gateway=ping distance=1 dst-address=8.8.8.8/32 gateway=192.168.2.1
- add comment="Static Routing VPN" distance=1 dst-address=66.96.232.56/32 \
- gateway=192.168.2.1
- /ip service
- set telnet disabled=yes
- set ftp disabled=yes
- set www port=808
- set ssh disabled=yes
- /ppp secret
- add name=vpn-rgnet password=ratmonogroup profile=PPTP-Profile
- add name=rgnet password=rgnet profile=PPTP-Profile
- /routing ospf network
- add area=backbone network=192.168.1.0/24
- add area=backbone network=192.168.2.0/24
- add area=backbone network=192.168.3.0/24
- /system clock
- set time-zone-autodetect=no time-zone-name=Asia/Jakarta
- /system identity
- set name="RGNet - ISP"
- /system routerboard settings
- set silent-boot=no
- /system scheduler
- add interval=1d name=update-cloud on-event="/ip cloud-force update" policy=\
- ftp,reboot,read,write,policy,test,password,sniff,sensitive,romon \
- start-date=mar/26/2018 start-time=22:02:17
- add interval=5h15m name=flush-dns on-event=flush-dns policy=\
- ftp,reboot,read,write,policy,test,password,sniff,sensitive,romon \
- start-date=may/02/2018 start-time=09:42:00
- /system script
- add name=flush-dns owner=hadrian policy=\
- ftp,reboot,read,write,policy,test,password,sniff,sensitive source=\
- "/ip dns cache flush"
- /tool netwatch
- add down-script="/tool fetch url=\"https://api.telegram.org/bot580086614:AAHxe\
- 58Y2rdoa2C127ZUZEyYQiN9tzkgr8w/sendmessage\?chat_id=-287628716&text=Jaring\
- an Indihome Down\" keep-result=no" host=192.168.1.1 interval=5s \
- up-script="/tool fetch url=\"https://api.telegram.org/bot580086614:AAHxe58\
- Y2rdoa2C127ZUZEyYQiN9tzkgr8w/sendmessage\?chat_id=-287628716&text=Jaringan\
- \_Indihome Bagus\" keep-result=no"
- add down-script="/tool fetch url=\"https://api.telegram.org/bot580086614:AAHxe\
- 58Y2rdoa2C127ZUZEyYQiN9tzkgr8w/sendmessage\?chat_id=-287628716&text=Jaring\
- an My Repulic Down\" keep-result=no" host=192.168.2.1 interval=5s \
- up-script="/tool fetch url=\"https://api.telegram.org/bot580086614:AAHxe58\
- Y2rdoa2C127ZUZEyYQiN9tzkgr8w/sendmessage\?chat_id=-287628716&text=Jaringan\
- \_My Republic Bagus\" keep-result=no"
- /tool user-manager database
- set db-path=flash/user-manager
Add Comment
Please, Sign In to add comment