cara setting mikrotik rb indoor seperti rb750

Cara Setting Mikrotik RB Indoor Seperti RB750,RB450,RB1100,RB1000 Di Set Bridge dan Setting Pengaturan Bandwidthnya

Biasanya saya postingkan setting RB Indoor seperti RB750,RB450,RB1100,RB1000 settingan nya routing,sekarang kita set Bridge (sebagai penghubung ke Modem) saja,misalnya ip modem 192.168.1.1 dan client tetap dalam satu network yaitu 192.168.1.2 sampai 192.168.1.254 dengan bandwidth tetap bisa di atur di mikrotik indoor tersebut.ok mari kita mulai:

Topologi jaringan saya:

IP Modem = 192.168.1.1

Netmask=255.255.255.0

Pertama hubungkan LAN dari Mikrotik Ethernet nomor 2 ke PC dan masukkan ip di PC=

o Ip Address=192.168.1.2 (sesuaikan dengan network anda)

http://1.bp.blogspot.com/-kiluFQS7d_0/Twao12ohTwI/AAAAAAAAFXs/Hkd2NjX7m3U/s1600/www.wirelessrouterproxy.blogspot.com-Cara%2BSetting%2BMikrotik%2BRB750%2B%2BSet%2BBridge%252BMangle%252BTree%2BAwal.png

o Netmask=255.255.255.0o Gateway=192.168.1.1 (sesuaikan dengan network anda)o DNS=192.168.1.1 (sesuaikan dengan network anda)

Seperti gambar di bawah ini:

http://2.bp.blogspot.com/-fcNSS3kBV1M/Twao-TnA9UI/AAAAAAAAFX4/D34USOATiGw/s1600/www.wirelessrouterproxy.blogspot.com-Cara%2BSetting%2BMikrotik%2BRB750%2B%2BSet%2BBridge%252BMangle%252BTree%2B1.png

Selanjutnya remote Mikrotik anda dengan winbox,download winbox ((DISINI))Seperti gambar di bawah ini:

http://3.bp.blogspot.com/-EpUp-EoVCJI/TwapHLYqK9I/AAAAAAAAFYE/T55vewRTu-Q/s1600/www.wirelessrouterproxy.blogspot.com-Cara%2BSetting%2BMikrotik%2BRB750%2B%2BSet%2BBridge%252BMangle%252BTree%2B2.png

Setelah masuk ke halaman winbox,pastikan winbox bersih dari settingan lama dengan mereset mikrotik tersebut,di halaman utama winbox klik “New Terminal” kemudian ketik system reset dan tekan ENTER di keyboard dan tekan huruf Y seperti gambar di bawah ini:

http://2.bp.blogspot.com/--sL-XvNB7ss/TwapOG0l_BI/AAAAAAAAFYQ/hZ_lr7fr-jc/s1600/www.wirelessrouterproxy.blogspot.com-Cara%2BSetting%2BMikrotik%2BRB750%2B%2BSet%2BBridge%252BMangle%252BTree%2B3.png

http://2.bp.blogspot.com/-hgpj5q9GBW4/TwapcjhjhgI/AAAAAAAAFYc/DZyQCtSCO94/s1600/www.wirelessrouterproxy.blogspot.com-Cara%2BSetting%2BMikrotik%2BRB750%2B%2BSet%2BBridge%252BMangle%252BTree%2B4.png

http://4.bp.blogspot.com/-9NXGXKVSgXU/TwapiZ8e5LI/AAAAAAAAFYo/55HUqvsHOKk/s1600/www.wirelessrouterproxy.blogspot.com-Cara%2BSetting%2BMikrotik%2BRB750%2B%2BSet%2BBridge%252BMangle%252BTree%2B5.png

Tunggu 2 menit Mikrotik mereset system,dan kembali buka remote mikrotik dengan winbox, di halaman utama winbox klik “Remove Configuration” seperti gambar di bawah ini:

http://4.bp.blogspot.com/-lszlpRSZZ-w/Twapn1pUb_I/AAAAAAAAFY0/XWR-l0ljJu4/s1600/www.wirelessrouterproxy.blogspot.com-Cara%2BSetting%2BMikrotik%2BRB750%2B%2BSet%2BBridge%252BMangle%252BTree%2B6.png

Selanjutnya di halaman utama winbox klik “Bridge” dan klik + dan klik “OK” seperti gambar di bawah ini:

http://1.bp.blogspot.com/-l0aG9HdEsyU/Twaptf0j_LI/AAAAAAAAFZA/XHovditrEXg/s1600/www.wirelessrouterproxy.blogspot.com-Cara%2BSetting%2BMikrotik%2BRB750%2B%2BSet%2BBridge%252BMangle%252BTree%2B7.png

Selanjutnya klik bagian TAB yaitu “Port” dan + di bagian interface nya pilih “ether1 dan di bagian Bridge nya pilih “bridge1” dan klik “OK” seperti gambar di bawah ini:

http://3.bp.blogspot.com/-z9Pts3k-18I/TwapyMw-faI/AAAAAAAAFZM/oAxa5QM-9OE/s1600/www.wirelessrouterproxy.blogspot.com-Cara%2BSetting%2BMikrotik%2BRB750%2B%2BSet%2BBridge%252BMangle%252BTree%2B8.png

Klik bagian TAB yaitu “Port” lagi dan + di bagian interface nya pilih “ether2” dan di bagian Bridge nya pilih “bridge1” dan klik “OK” seperti gambar di bawah ini:

http://1.bp.blogspot.com/-8rkLIdAH4Do/Twap3tuerMI/AAAAAAAAFZY/E0iBzJt8wes/s1600/www.wirelessrouterproxy.blogspot.com-Cara%2BSetting%2BMikrotik%2BRB750%2B%2BSet%2BBridge%252BMangle%252BTree%2B9.png

http://2.bp.blogspot.com/-Cgg3-89FTCU/Twap9kBvhyI/AAAAAAAAFZk/xL9v1XvPzhc/s1600/www.wirelessrouterproxy.blogspot.com-Cara%2BSetting%2BMikrotik%2BRB750%2B%2BSet%2BBridge%252BMangle%252BTree%2B10.png

Selanjutnya kembali ke TAB “Bridge” dan klik “Setting” dan centang “Use Ip Firewall” dan klik “OK” seperti gambar di bawah ini:

http://3.bp.blogspot.com/-kqfvOHhdU7c/TwaqDL7adDI/AAAAAAAAFZw/zRqa-NiVhvQ/s1600/www.wirelessrouterproxy.blogspot.com-Cara%2BSetting%2BMikrotik%2BRB750%2B%2BSet%2BBridge%252BMangle%252BTree%2B11.png

Selanjutnya sambungkan LAN=o Ethernet1 Mikrotik Ke Modemo Ethernet2 Mikrotik Ke HUBo PC Ke HUB


http://2.bp.blogspot.com/-pat_mkW3Mxk/TwaqIod7MbI/AAAAAAAAFZ8/t9wEcZ_adpM/s1600/www.wirelessrouterproxy.blogspot.com-Cara%2BSetting%2BMikrotik%2BRB750%2B%2BSet%2BBridge%252BMangle%252BTree%2B12.png

Selanjtunya test ping 192.168.1.1 –t dari cmd pc,dan test browsing , seperti gambar di bawah ini:

http://1.bp.blogspot.com/-yBzhqRDMMn0/TwaqOPcEdcI/AAAAAAAAFaI/IQCw6jvDJMA/s1600/www.wirelessrouterproxy.blogspot.com-Cara%2BSetting%2BMikrotik%2BRB750%2B%2BSet%2BBridge%252BMangle%252BTree%2B13.png

http://4.bp.blogspot.com/-_wj3rnmaYFM/TwaqiBuntHI/AAAAAAAAFag/FRBWfAGK3Xw/s1600/www.wirelessrouterproxy.blogspot.com-Cara%2BSetting%2BMikrotik%2BRB750%2B%2BSet%2BBridge%252BMangle%252BTree%2B14.png

http://2.bp.blogspot.com/-wAQw51H83DA/Twaqnue_NWI/AAAAAAAAFas/wyML5_-yBoY/s1600/www.wirelessrouterproxy.blogspot.com-Cara%2BSetting%2BMikrotik%2BRB750%2B%2BSet%2BBridge%252BMangle%252BTree%2B15.png

PC telah terkoneksi ke internet melalui Mikrotik yang di Bridge,sekarang kita buat pengaturan bandwidthnya,untuk pengaturan bandwidth saya gunakan Queue Tree membagi otomatis rata bandwidth setiap client nya.

Pertama kita buat Firewall filter drop virus dan anti netcut,di halaman utama winbox pilih “New Terminal” kemudian Copy scripts di bawah dan pastekan di “New Terminal” winbox.../ip firewall filteradd action=accept chain=input disabled=no dst-port=8291 protocol=tcpadd action=drop chain=forward connection-state=invalid disabled=noadd action=drop chain=virus disabled=no dst-port=135-139 protocol=tcpadd action=drop chain=virus disabled=no dst-port=1433-1434 protocol=tcpadd action=drop chain=virus disabled=no dst-port=445 protocol=tcpadd action=drop chain=virus disabled=no dst-port=445 protocol=udpadd action=drop chain=virus disabled=no dst-port=593 protocol=tcpadd action=drop chain=virus disabled=no dst-port=1024-1030 protocol=tcpadd action=drop chain=virus disabled=no dst-port=1080 protocol=tcpadd action=drop chain=virus disabled=no dst-port=1214 protocol=tcpadd action=drop chain=virus disabled=no dst-port=1363 protocol=tcpadd action=drop chain=virus disabled=no dst-port=1364 protocol=tcpadd action=drop chain=virus disabled=no dst-port=1368 protocol=tcpadd action=drop chain=virus disabled=no dst-port=1373 protocol=tcpadd action=drop chain=virus disabled=no dst-port=1377 protocol=tcpadd action=drop chain=virus disabled=no dst-port=2745 protocol=tcpadd action=drop chain=virus disabled=no dst-port=2283 protocol=tcp

http://3.bp.blogspot.com/-VeD2DyoOrWk/TwaqsFMqAXI/AAAAAAAAFa4/rgPzbkCInN8/s1600/www.wirelessrouterproxy.blogspot.com-Cara%2BSetting%2BMikrotik%2BRB750%2B%2BSet%2BBridge%252BMangle%252BTree%2B16.png

add action=drop chain=virus disabled=no dst-port=2535 protocol=tcpadd action=drop chain=virus disabled=no dst-port=2745 protocol=tcpadd action=drop chain=virus disabled=no dst-port=3127 protocol=tcpadd action=drop chain=virus disabled=no dst-port=3410 protocol=tcpadd action=drop chain=virus disabled=no dst-port=4444 protocol=tcpadd action=drop chain=virus disabled=no dst-port=4444 protocol=udpadd action=drop chain=virus disabled=no dst-port=5554 protocol=tcpadd action=drop chain=virus disabled=no dst-port=8866 protocol=tcpadd action=drop chain=virus disabled=no dst-port=9898 protocol=tcpadd action=drop chain=virus disabled=no dst-port=10080 protocol=tcpadd action=drop chain=virus disabled=no dst-port=12345 protocol=tcpadd action=drop chain=virus disabled=no dst-port=17300 protocol=tcpadd action=drop chain=virus disabled=no dst-port=27374 protocol=tcpadd action=drop chain=virus disabled=no dst-port=65506 protocol=tcpadd action=jump chain=forward disabled=no jump-target=virusadd action=drop chain=input connection-state=invalid disabled=noadd action=accept chain=input disabled=no protocol=udpadd action=accept chain=input disabled=no limit=50/5s,2 protocol=icmpadd action=drop chain=input disabled=no protocol=icmpadd action=accept chain=input disabled=no dst-port=21 protocol=tcpadd action=accept chain=input disabled=no dst-port=22 protocol=tcpadd action=accept chain=input disabled=no dst-port=23 protocol=tcpadd action=accept chain=input disabled=no dst-port=80 protocol=tcpadd action=accept chain=input disabled=no dst-port=8291 protocol=tcpadd action=accept chain=input disabled=no dst-port=1723 protocol=tcpadd action=accept chain=input disabled=no dst-port=23 protocol=tcpadd action=accept chain=input disabled=no dst-port=80 protocol=tcpadd action=accept chain=input disabled=no dst-port=1723 protocol=tcpadd action=add-src-to-address-list address-list=DDOS address-list-timeout=15s\chain=input disabled=no dst-port=1337 protocol=tcpadd action=add-src-to-address-list address-list=DDOS address-list-timeout=15m\chain=input disabled=no dst-port=7331 protocol=tcpsrc-address-list=knockadd action=add-src-to-address-list address-list="port scanners" \address-list-timeout=2w chain=input comment="Port scannersto list " \disabled=no protocol=tcp psd=21,3s,3,1add action=add-src-to-address-list address-list="port scanners" \address-list-timeout=2w chain=input comment="SYN/FIN scan"disabled=no \protocol=tcp tcp-flags=fin,synadd action=add-src-to-address-list address-list="port scanners" \address-list-timeout=2w chain=input comment="SYN/RST scan"disabled=no \protocol=tcp tcp-flags=syn,rstadd action=add-src-to-address-list address-list="port scanners" \address-list-timeout=2w chain=input comment="FIN/PSH/URGscan" disabled=\no protocol=tcp tcp-flags=fin,psh,urg,!syn,!rst,!ackadd action=add-src-to-address-list address-list="port scanners" \address-list-timeout=2w chain=input comment="ALL/ALL scan"disabled=no \

protocol=tcp tcp-flags=fin,syn,rst,psh,ack,urgadd action=add-src-to-address-list address-list="port scanners" \address-list-timeout=2w chain=input comment="NMAP NULLscan" disabled=no \protocol=tcp tcp-flags=!fin,!syn,!rst,!psh,!ack,!urgadd action=accept chain=input comment="ANTI NETCUT" disabled=no dst-port=\0-65535 protocol=tcpsrc-address=61.213.183.1-61.213.183.254add action=accept chain=input comment="ANTI NETCUT" disabled=no dst-port=\0-65535 protocol=tcpsrc-address=67.195.134.1-67.195.134.254add action=accept chain=input comment="ANTI NETCUT" disabled=no dst-port=\0-65535 protocol=tcpsrc-address=68.142.233.1-68.142.233.254add action=accept chain=input comment="ANTI NETCUT" disabled=no dst-port=\0-65535 protocol=tcpsrc-address=68.180.217.1-68.180.217.254add action=accept chain=input comment="ANTI NETCUT" disabled=no dst-port=\0-65535 protocol=tcpsrc-address=203.84.204.1-203.84.204.254add action=accept chain=input comment="ANTI NETCUT" disabled=no dst-port=\0-65535 protocol=tcp src-address=69.63.176.1-69.63.176.254add action=accept chain=input comment="ANTI NETCUT" disabled=no dst-port=\0-65535 protocol=tcp src-address=69.63.181.1-69.63.181.254add action=accept chain=input comment="ANTI NETCUT" disabled=no dst-port=\0-65535 protocol=tcpsrc-address=63.245.209.1-63.245.209.254add action=accept chain=input comment="ANTI NETCUT" disabled=no dst-port=\0-65535 protocol=tcpsrc-address=63.245.213.1-63.245.213.254


http://4.bp.blogspot.com/-88U8jnEWTSY/Twaqx08MoxI/AAAAAAAAFbE/x3dydw3RAWo/s1600/www.wirelessrouterproxy.blogspot.com-Cara%2BSetting%2BMikrotik%2BRB750%2B%2BSet%2BBridge%252BMangle%252BTree%2B17.png

Hasilnya bisa di lihat di halaman utama winbox pilih “Ip” kemudian “Firewall” kemudian TAB “Filter Rules”,seperti gambar di bawah ini:

http://3.bp.blogspot.com/-GKziOe39veY/Twaq5vpY9HI/AAAAAAAAFbQ/ZzH2So5p1WM/s1600/www.wirelessrouterproxy.blogspot.com-Cara%2BSetting%2BMikrotik%2BRB750%2B%2BSet%2BBridge%252BMangle%252BTree%2B18.png

Selanjutnya kita buat setting mangle untuk queue tree download dan upload,di halaman utama winbox pilih “New Terminal” dan Copy Scripts di bawah dan pastekan di “New Terminal” winbox..Perlu di perhatikan sebelum copy paste,scripts di bawah yang saya kasih spidol merah di sesuaikan network tersebut dengan network anda,setelah di edit dengan network anda baru di pastekan di “New Terminal” Winbox....

/ip firewall mangle add action=mark-connection \chain=forward comment="SEMUA KONEKSI" disabled=no \new-connection-mark="SEMUA KONEKSI" passthrough=yes/ip firewall mangle add action=mark-packet \chain=forward comment="PAKET DOWNLOAD" \connection-mark="SEMUA KONEKSI" disabled=no \dst-address=192.168.1.0/24 \

http://2.bp.blogspot.com/-A0J3mLxS13s/TwarA6GirUI/AAAAAAAAFbc/19RS5rLbeVk/s1600/www.wirelessrouterproxy.blogspot.com-Cara%2BSetting%2BMikrotik%2BRB750%2B%2BSet%2BBridge%252BMangle%252BTree%2B19.png

new-packet-mark="PAKET DOWNLOAD" \passthrough=no/ip firewall mangle add action=mark-packet \chain=forward comment="PAKET UPLOAD" \connection-mark="SEMUA KONEKSI" disabled=no \new-packet-mark="PAKET UPLOAD" passthrough=no \src-address=192.168.1.0/24


Bisa di lihat di halaman utama winbox pilih “Ip” kemudian “Firewall” kemudian TAB “Mangle”,seperti gambar di bawah ini:

http://4.bp.blogspot.com/--14oqpvBbH0/TwarKKXbwaI/AAAAAAAAFbo/SYyfADqxAfA/s1600/www.wirelessrouterproxy.blogspot.com-Cara%2BSetting%2BMikrotik%2BRB750%2B%2BSet%2BBridge%252BMangle%252BTree%2B20.png

Selanjutnya Queue Type,Copy Paste scripts di bawah di “New Terminal” Winbox:/queue type add kind=pcq name=DOWNLOAD \pcq-classifier=dst-address,dst-port/queue type add kind=pcq name=UPLOAD \pcq-classifier=src-address,src-port


http://4.bp.blogspot.com/-s4KPDM5t8Sc/TwarP4i4t2I/AAAAAAAAFb0/LsZZLKLtb7A/s1600/www.wirelessrouterproxy.blogspot.com-Cara%2BSetting%2BMikrotik%2BRB750%2B%2BSet%2BBridge%252BMangle%252BTree%2B21.png

Selanjutnya kita set Queue tree untuk membagi otomatis rata bandwidth setiap client nya, Copy Paste scripts di bawah di “New Terminal” Winbox:/queue tree add name=DOWNLOAD \packet-mark="PAKET DOWNLOAD" \parent=global-out \priority=1 queue=DOWNLOAD/queue tree add name=UPLOAD \packet-mark="PAKET UPLOAD" \parent=ether1 \priority=1 queue=UPLOAD


http://2.bp.blogspot.com/-Dw8zLWSOIsw/TwarUrLfmyI/AAAAAAAAFcA/j74xtDpY-OY/s1600/www.wirelessrouterproxy.blogspot.com-Cara%2BSetting%2BMikrotik%2BRB750%2B%2BSet%2BBridge%252BMangle%252BTree%2B22.png

Bisa di lihat di halaman utama winbox pilih “Queues” kemudian TAB “Queue Tree”,seperti gambar di bawah ini:

http://2.bp.blogspot.com/-823xozj-VlU/TwaraE1RgGI/AAAAAAAAFcM/ZYwoJWgtKI4/s1600/www.wirelessrouterproxy.blogspot.com-Cara%2BSetting%2BMikrotik%2BRB750%2B%2BSet%2BBridge%252BMangle%252BTree%2B23.png

Selanjutnya test browsing sambil melihat traffic di Queue Tree ..apakah sudah berjalan Avg.Rate nya? ..jika sudah berjalan maka setting sudah benar seperti gambar di bawah ini:

http://4.bp.blogspot.com/-M5U5y1anmb0/TwarerDlC4I/AAAAAAAAFcY/HHitlJvoVXE/s1600/www.wirelessrouterproxy.blogspot.com-Cara%2BSetting%2BMikrotik%2BRB750%2B%2BSet%2BBridge%252BMangle%252BTree%2B24.png

Selesai dan selamat mencoba...

http://2.bp.blogspot.com/-u8pKit8hqBg/Twarj17i0EI/AAAAAAAAFck/7nR5s0s9mts/s1600/www.wirelessrouterproxy.blogspot.com-Cara%2BSetting%2BMikrotik%2BRB750%2B%2BSet%2BBridge%252BMangle%252BTree%2B25.png

cara setting mikrotik rb indoor seperti rb750

Documents

timeout 2w chain input comment

protocol tcp tcp

protocol tcp tcp

65535 protocol tcp src

state invalid disabled

list ddos address

semua koneksi

paket download