Configuração do Thunder

Olá , eu não to conseguindo faser a configuração do thunder , quando ativo as regras , da pagina não encotrada :S , oque faço? , não uso hotspot e nem ppooe.. tem como alguem me passar as regras correta ? ;X

Exibições: 676

Respostas a este tópico

Permalink Responder até anderson correia em 7 novembro 2011 at 10:35

Olá amigo para obter respostas corretas voce tem que postar a versão do seu thunder e mikrotik.

Permalink Responder até Luan Dionatan Assink Coelho em 7 novembro 2011 at 13:14

o do proprio mk-auth e a verção do mikrotik é 4.15 , será q fica bom com o thunder do mk-auth? , tenho mais ou menos 800 clientes ...'

Permalink Responder até Igor Borges de Vargas em 8 novembro 2011 at 17:10

http://www.overnix.com/showthread.php?1829-Tutorial-pt_BR-ThunderCa...

Permalink Responder até Humberto Leandro De Almeida em 12 novembro 2011 at 6:58

Muda a faixa de ip ... aki esta fucioando perfeito

/ip firewall filter
add action=accept chain=forward comment="Aceita proxy" disabled=no \
src-address=192.168.2.0/30

/ip firewall nat

add action=dst-nat chain=pre-hotspot comment="REDIRECT THUNDER" disabled=yes \
dst-address=!192.168.2.2 dst-port=80 hotspot=auth in-interface=EthClientes \
protocol=tcp src-address=172.12.2.0/24 to-addresses=192.168.2.2 to-ports=\
3128

/ip firewall mangle
add action=mark-connection chain=postrouting comment="Marca com e sem TOS" \
disabled=no dscp=12 new-connection-mark=n-cache passthrough=yes protocol=\
tcp src-port=3128
add action=mark-packet chain=postrouting comment="Libera Cache Full" \
connection-mark=n-cache disabled=no new-packet-mark=Cache-Packet \
passthrough=yes
add action=mark-connection chain=postrouting comment="" disabled=no dscp=!12 \
new-connection-mark=s-cache passthrough=no protocol=tcp src-port=3128
add action=mark-connection chain=postrouting comment="THUNDER CACHE 3" \
content="X-Cache: HIT from Thunder" disabled=no new-connection-mark=\
thunder3-connection passthrough=yes
add action=mark-packet chain=postrouting comment="" connection-mark=\
thunder3-connection disabled=no new-packet-mark=thunder3-packs \
passthrough=no
add action=mark-connection chain=forward comment="CACHE HITS" \
content="X-Cache: HIT" disabled=no new-connection-mark=forward-hits \
passthrough=yes
add action=mark-packet chain=forward comment="" connection-mark=forward-hits \
disabled=no new-packet-mark=cache-hits passthrough=no
add action=mark-connection chain=postrouting comment="CACHE SQUID" disabled=\
no dscp=12 new-connection-mark=CACHE-SQUID passthrough=yes protocol=tcp \
src-port=3128

/ queue type

add name="cache" kind=pcq pcq-rate=4800000 pcq-limit=50 pcq-classifier=dst-address pcq-total-limit=2000

/queue tree
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=0 name="01 - CACHE-FULL" packet-mark=Cache-Packet parent=\
global-out priority=2 queue=cache
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=3M \
max-limit=100M name="02 - THUNDER CACHE 3" packet-mark=thunder3-packs \
parent=global-out priority=8 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=512k \
max-limit=8M name="04 - CACHE-SQUID" packet-mark=cache-squid parent=\
global-out priority=2 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=3M \
max-limit=100M name="03 - CACHE SQUID HITS" packet-mark=cache-hits \
parent=global-out priority=2 queue=default

Permalink Responder até Murilo em 25 janeiro 2012 at 22:37

Olá amigo essa faixade ip 192.168.2.0/30 é do cache ou dos clientes ?

Obrigado

Humberto Leandro De Almeida disse:

Muda a faixa de ip ... aki esta fucioando perfeito

/ip firewall filter
add action=accept chain=forward comment="Aceita proxy" disabled=no \
src-address=192.168.2.0/30

/ip firewall nat

add action=dst-nat chain=pre-hotspot comment="REDIRECT THUNDER" disabled=yes \
dst-address=!192.168.2.2 dst-port=80 hotspot=auth in-interface=EthClientes \
protocol=tcp src-address=172.12.2.0/24 to-addresses=192.168.2.2 to-ports=\
3128

/ip firewall mangle
add action=mark-connection chain=postrouting comment="Marca com e sem TOS" \
disabled=no dscp=12 new-connection-mark=n-cache passthrough=yes protocol=\
tcp src-port=3128
add action=mark-packet chain=postrouting comment="Libera Cache Full" \
connection-mark=n-cache disabled=no new-packet-mark=Cache-Packet \
passthrough=yes
add action=mark-connection chain=postrouting comment="" disabled=no dscp=!12 \
new-connection-mark=s-cache passthrough=no protocol=tcp src-port=3128
add action=mark-connection chain=postrouting comment="THUNDER CACHE 3" \
content="X-Cache: HIT from Thunder" disabled=no new-connection-mark=\
thunder3-connection passthrough=yes
add action=mark-packet chain=postrouting comment="" connection-mark=\
thunder3-connection disabled=no new-packet-mark=thunder3-packs \
passthrough=no
add action=mark-connection chain=forward comment="CACHE HITS" \
content="X-Cache: HIT" disabled=no new-connection-mark=forward-hits \
passthrough=yes
add action=mark-packet chain=forward comment="" connection-mark=forward-hits \
disabled=no new-packet-mark=cache-hits passthrough=no
add action=mark-connection chain=postrouting comment="CACHE SQUID" disabled=\
no dscp=12 new-connection-mark=CACHE-SQUID passthrough=yes protocol=tcp \
src-port=3128

/ queue type

add name="cache" kind=pcq pcq-rate=4800000 pcq-limit=50 pcq-classifier=dst-address pcq-total-limit=2000

/queue tree
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=0 name="01 - CACHE-FULL" packet-mark=Cache-Packet parent=\
global-out priority=2 queue=cache
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=3M \
max-limit=100M name="02 - THUNDER CACHE 3" packet-mark=thunder3-packs \
parent=global-out priority=8 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=512k \
max-limit=8M name="04 - CACHE-SQUID" packet-mark=cache-squid parent=\
global-out priority=2 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=3M \
max-limit=100M name="03 - CACHE SQUID HITS" packet-mark=cache-hits \
parent=global-out priority=2 queue=default

Permalink Responder até Humberto Leandro De Almeida em 27 janeiro 2012 at 18:10

(Cache-192.168.2.0/30) Clientes 172.12.2.1/24

/ip firewall filter add action=accept chain=forward comment="Aceita proxy" disabled=no \ src-address=192.168.2.0/30

/ip firewall nat

add action=dst-nat chain=pre-hotspot comment="REDIRECT THUNDER" disabled=yes \ dst-address=!192.168.2.2 dst-port=80 hotspot=auth in-interface=EthClientes \ protocol=tcp src-address=172.12.2.0/24 to-addresses=192.168.2.2 to-ports=\ 3128

/ip firewall mangle add action=mark-connection chain=postrouting comment="Marca com e sem TOS" \ disabled=no dscp=12 new-connection-mark=n-cache passthrough=yes protocol=\ tcp src-port=3128 add action=mark-packet chain=postrouting comment="Libera Cache Full" \ connection-mark=n-cache disabled=no new-packet-mark=Cache-Packet \ passthrough=yes add action=mark-connection chain=postrouting comment="" disabled=no dscp=!12 \ new-connection-mark=s-cache passthrough=no protocol=tcp src-port=3128 add action=mark-connection chain=postrouting comment="THUNDER CACHE 3" \ content="X-Cache: HIT from Thunder" disabled=no new-connection-mark=\ thunder3-connection passthrough=yes add action=mark-packet chain=postrouting comment="" connection-mark=\ thunder3-connection disabled=no new-packet-mark=thunder3-packs \ passthrough=no add action=mark-connection chain=forward comment="CACHE HITS" \ content="X-Cache: HIT" disabled=no new-connection-mark=forward-hits \ passthrough=yes add action=mark-packet chain=forward comment="" connection-mark=forward-hits \ disabled=no new-packet-mark=cache-hits passthrough=no add action=mark-connection chain=postrouting comment="CACHE SQUID" disabled=\ no dscp=12 new-connection-mark=CACHE-SQUID passthrough=yes protocol=tcp \ src-port=3128

/ queue type

add name="cache" kind=pcq pcq-rate=4800000 pcq-limit=50 pcq-classifier=dst-address pcq-total-limit=2000

/queue tree add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \ max-limit=0 name="01 - CACHE-FULL" packet-mark=Cache-Packet parent=\ global-out priority=2 queue=cache add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=3M \ max-limit=100M name="02 - THUNDER CACHE 3" packet-mark=thunder3-packs \ parent=global-out priority=8 queue=default add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=512k \ max-limit=8M name="04 - CACHE-SQUID" packet-mark=cache-squid parent=\ global-out priority=2 queue=default add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=3M \ max-limit=100M name="03 - CACHE SQUID HITS" packet-mark=cache-hits \ parent=global-out priority=2 queue=default

Murilo disse:

Olá amigo essa faixade ip 192.168.2.0/30 é do cache ou dos clientes ?

Obrigado

Humberto Leandro De Almeida disse:

Muda a faixa de ip ... aki esta fucioando perfeito

/ip firewall filter
add action=accept chain=forward comment="Aceita proxy" disabled=no \
src-address=192.168.2.0/30

/ip firewall nat

add action=dst-nat chain=pre-hotspot comment="REDIRECT THUNDER" disabled=yes \
dst-address=!192.168.2.2 dst-port=80 hotspot=auth in-interface=EthClientes \
protocol=tcp src-address=172.12.2.0/24 to-addresses=192.168.2.2 to-ports=\
3128

/ip firewall mangle
add action=mark-connection chain=postrouting comment="Marca com e sem TOS" \
disabled=no dscp=12 new-connection-mark=n-cache passthrough=yes protocol=\
tcp src-port=3128
add action=mark-packet chain=postrouting comment="Libera Cache Full" \
connection-mark=n-cache disabled=no new-packet-mark=Cache-Packet \
passthrough=yes
add action=mark-connection chain=postrouting comment="" disabled=no dscp=!12 \
new-connection-mark=s-cache passthrough=no protocol=tcp src-port=3128
add action=mark-connection chain=postrouting comment="THUNDER CACHE 3" \
content="X-Cache: HIT from Thunder" disabled=no new-connection-mark=\
thunder3-connection passthrough=yes
add action=mark-packet chain=postrouting comment="" connection-mark=\
thunder3-connection disabled=no new-packet-mark=thunder3-packs \
passthrough=no
add action=mark-connection chain=forward comment="CACHE HITS" \
content="X-Cache: HIT" disabled=no new-connection-mark=forward-hits \
passthrough=yes
add action=mark-packet chain=forward comment="" connection-mark=forward-hits \
disabled=no new-packet-mark=cache-hits passthrough=no
add action=mark-connection chain=postrouting comment="CACHE SQUID" disabled=\
no dscp=12 new-connection-mark=CACHE-SQUID passthrough=yes protocol=tcp \
src-port=3128

/ queue type

add name="cache" kind=pcq pcq-rate=4800000 pcq-limit=50 pcq-classifier=dst-address pcq-total-limit=2000

/queue tree
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=0 name="01 - CACHE-FULL" packet-mark=Cache-Packet parent=\
global-out priority=2 queue=cache
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=3M \
max-limit=100M name="02 - THUNDER CACHE 3" packet-mark=thunder3-packs \
parent=global-out priority=8 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=512k \
max-limit=8M name="04 - CACHE-SQUID" packet-mark=cache-squid parent=\
global-out priority=2 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=3M \
max-limit=100M name="03 - CACHE SQUID HITS" packet-mark=cache-hits \
parent=global-out priority=2 queue=default

Permalink Responder até Murilo em 9 fevereiro 2012 at 9:10

Amigo, quando abilito a regra (

/ip firewall nat

add action=dst-nat chain=pre-hotspot comment="REDIRECT THUNDER" disabled=yes \ dst-address=!192.168.2.2 dst-port=80 hotspot=auth in-interface=EthClientes \ protocol=tcp src-address=172.12.2.0/24 to-addresses=192.168.2.2 to-ports=\ 3128 ) ele aparece essa mensagens ao tentar navegar ..

Humberto Leandro De Almeida disse:

(Cache-192.168.2.0/30) Clientes 172.12.2.1/24

/ip firewall filter add action=accept chain=forward comment="Aceita proxy" disabled=no \ src-address=192.168.2.0/30

/ip firewall nat

add action=dst-nat chain=pre-hotspot comment="REDIRECT THUNDER" disabled=yes \ dst-address=!192.168.2.2 dst-port=80 hotspot=auth in-interface=EthClientes \ protocol=tcp src-address=172.12.2.0/24 to-addresses=192.168.2.2 to-ports=\ 3128

/ip firewall mangle add action=mark-connection chain=postrouting comment="Marca com e sem TOS" \ disabled=no dscp=12 new-connection-mark=n-cache passthrough=yes protocol=\ tcp src-port=3128 add action=mark-packet chain=postrouting comment="Libera Cache Full" \ connection-mark=n-cache disabled=no new-packet-mark=Cache-Packet \ passthrough=yes add action=mark-connection chain=postrouting comment="" disabled=no dscp=!12 \ new-connection-mark=s-cache passthrough=no protocol=tcp src-port=3128 add action=mark-connection chain=postrouting comment="THUNDER CACHE 3" \ content="X-Cache: HIT from Thunder" disabled=no new-connection-mark=\ thunder3-connection passthrough=yes add action=mark-packet chain=postrouting comment="" connection-mark=\ thunder3-connection disabled=no new-packet-mark=thunder3-packs \ passthrough=no add action=mark-connection chain=forward comment="CACHE HITS" \ content="X-Cache: HIT" disabled=no new-connection-mark=forward-hits \ passthrough=yes add action=mark-packet chain=forward comment="" connection-mark=forward-hits \ disabled=no new-packet-mark=cache-hits passthrough=no add action=mark-connection chain=postrouting comment="CACHE SQUID" disabled=\ no dscp=12 new-connection-mark=CACHE-SQUID passthrough=yes protocol=tcp \ src-port=3128

/ queue type

add name="cache" kind=pcq pcq-rate=4800000 pcq-limit=50 pcq-classifier=dst-address pcq-total-limit=2000

/queue tree add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \ max-limit=0 name="01 - CACHE-FULL" packet-mark=Cache-Packet parent=\ global-out priority=2 queue=cache add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=3M \ max-limit=100M name="02 - THUNDER CACHE 3" packet-mark=thunder3-packs \ parent=global-out priority=8 queue=default add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=512k \ max-limit=8M name="04 - CACHE-SQUID" packet-mark=cache-squid parent=\ global-out priority=2 queue=default add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=3M \ max-limit=100M name="03 - CACHE SQUID HITS" packet-mark=cache-hits \ parent=global-out priority=2 queue=default

Murilo disse:

Olá amigo essa faixade ip 192.168.2.0/30 é do cache ou dos clientes ?

Obrigado

Humberto Leandro De Almeida disse:

Muda a faixa de ip ... aki esta fucioando perfeito

/ip firewall filter
add action=accept chain=forward comment="Aceita proxy" disabled=no \
src-address=192.168.2.0/30

/ip firewall nat

add action=dst-nat chain=pre-hotspot comment="REDIRECT THUNDER" disabled=yes \
dst-address=!192.168.2.2 dst-port=80 hotspot=auth in-interface=EthClientes \
protocol=tcp src-address=172.12.2.0/24 to-addresses=192.168.2.2 to-ports=\
3128

/ip firewall mangle
add action=mark-connection chain=postrouting comment="Marca com e sem TOS" \
disabled=no dscp=12 new-connection-mark=n-cache passthrough=yes protocol=\
tcp src-port=3128
add action=mark-packet chain=postrouting comment="Libera Cache Full" \
connection-mark=n-cache disabled=no new-packet-mark=Cache-Packet \
passthrough=yes
add action=mark-connection chain=postrouting comment="" disabled=no dscp=!12 \
new-connection-mark=s-cache passthrough=no protocol=tcp src-port=3128
add action=mark-connection chain=postrouting comment="THUNDER CACHE 3" \
content="X-Cache: HIT from Thunder" disabled=no new-connection-mark=\
thunder3-connection passthrough=yes
add action=mark-packet chain=postrouting comment="" connection-mark=\
thunder3-connection disabled=no new-packet-mark=thunder3-packs \
passthrough=no
add action=mark-connection chain=forward comment="CACHE HITS" \
content="X-Cache: HIT" disabled=no new-connection-mark=forward-hits \
passthrough=yes
add action=mark-packet chain=forward comment="" connection-mark=forward-hits \
disabled=no new-packet-mark=cache-hits passthrough=no
add action=mark-connection chain=postrouting comment="CACHE SQUID" disabled=\
no dscp=12 new-connection-mark=CACHE-SQUID passthrough=yes protocol=tcp \
src-port=3128

/ queue type

add name="cache" kind=pcq pcq-rate=4800000 pcq-limit=50 pcq-classifier=dst-address pcq-total-limit=2000

/queue tree
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=0 name="01 - CACHE-FULL" packet-mark=Cache-Packet parent=\
global-out priority=2 queue=cache
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=3M \
max-limit=100M name="02 - THUNDER CACHE 3" packet-mark=thunder3-packs \
parent=global-out priority=8 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=512k \
max-limit=8M name="04 - CACHE-SQUID" packet-mark=cache-squid parent=\
global-out priority=2 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=3M \
max-limit=100M name="03 - CACHE SQUID HITS" packet-mark=cache-hits \
parent=global-out priority=2 queue=default

Permalink Responder até Humberto Leandro De Almeida em 9 fevereiro 2012 at 10:05

amigo vc mudo a faixa de ip ?
essas regras uso com hotspot
mim add ae humberto_leandr0@hotmail.com
Murilo disse:

Amigo, quando abilito a regra (

/ip firewall nat

add action=dst-nat chain=pre-hotspot comment="REDIRECT THUNDER" disabled=yes \ dst-address=!192.168.2.2 dst-port=80 hotspot=auth in-interface=EthClientes \ protocol=tcp src-address=172.12.2.0/24 to-addresses=192.168.2.2 to-ports=\ 3128 ) ele aparece essa mensagens ao tentar navegar ..

Humberto Leandro De Almeida disse:

(Cache-192.168.2.0/30) Clientes 172.12.2.1/24

/ip firewall filter add action=accept chain=forward comment="Aceita proxy" disabled=no \ src-address=192.168.2.0/30

/ip firewall nat

add action=dst-nat chain=pre-hotspot comment="REDIRECT THUNDER" disabled=yes \ dst-address=!192.168.2.2 dst-port=80 hotspot=auth in-interface=EthClientes \ protocol=tcp src-address=172.12.2.0/24 to-addresses=192.168.2.2 to-ports=\ 3128

/ip firewall mangle add action=mark-connection chain=postrouting comment="Marca com e sem TOS" \ disabled=no dscp=12 new-connection-mark=n-cache passthrough=yes protocol=\ tcp src-port=3128 add action=mark-packet chain=postrouting comment="Libera Cache Full" \ connection-mark=n-cache disabled=no new-packet-mark=Cache-Packet \ passthrough=yes add action=mark-connection chain=postrouting comment="" disabled=no dscp=!12 \ new-connection-mark=s-cache passthrough=no protocol=tcp src-port=3128 add action=mark-connection chain=postrouting comment="THUNDER CACHE 3" \ content="X-Cache: HIT from Thunder" disabled=no new-connection-mark=\ thunder3-connection passthrough=yes add action=mark-packet chain=postrouting comment="" connection-mark=\ thunder3-connection disabled=no new-packet-mark=thunder3-packs \ passthrough=no add action=mark-connection chain=forward comment="CACHE HITS" \ content="X-Cache: HIT" disabled=no new-connection-mark=forward-hits \ passthrough=yes add action=mark-packet chain=forward comment="" connection-mark=forward-hits \ disabled=no new-packet-mark=cache-hits passthrough=no add action=mark-connection chain=postrouting comment="CACHE SQUID" disabled=\ no dscp=12 new-connection-mark=CACHE-SQUID passthrough=yes protocol=tcp \ src-port=3128

/ queue type

add name="cache" kind=pcq pcq-rate=4800000 pcq-limit=50 pcq-classifier=dst-address pcq-total-limit=2000

/queue tree add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \ max-limit=0 name="01 - CACHE-FULL" packet-mark=Cache-Packet parent=\ global-out priority=2 queue=cache add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=3M \ max-limit=100M name="02 - THUNDER CACHE 3" packet-mark=thunder3-packs \ parent=global-out priority=8 queue=default add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=512k \ max-limit=8M name="04 - CACHE-SQUID" packet-mark=cache-squid parent=\ global-out priority=2 queue=default add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=3M \ max-limit=100M name="03 - CACHE SQUID HITS" packet-mark=cache-hits \ parent=global-out priority=2 queue=default

Murilo disse:

Olá amigo essa faixade ip 192.168.2.0/30 é do cache ou dos clientes ?

Obrigado

Humberto Leandro De Almeida disse:

Muda a faixa de ip ... aki esta fucioando perfeito

/ip firewall filter
add action=accept chain=forward comment="Aceita proxy" disabled=no \
src-address=192.168.2.0/30

/ip firewall nat

add action=dst-nat chain=pre-hotspot comment="REDIRECT THUNDER" disabled=yes \
dst-address=!192.168.2.2 dst-port=80 hotspot=auth in-interface=EthClientes \
protocol=tcp src-address=172.12.2.0/24 to-addresses=192.168.2.2 to-ports=\
3128

/ip firewall mangle
add action=mark-connection chain=postrouting comment="Marca com e sem TOS" \
disabled=no dscp=12 new-connection-mark=n-cache passthrough=yes protocol=\
tcp src-port=3128
add action=mark-packet chain=postrouting comment="Libera Cache Full" \
connection-mark=n-cache disabled=no new-packet-mark=Cache-Packet \
passthrough=yes
add action=mark-connection chain=postrouting comment="" disabled=no dscp=!12 \
new-connection-mark=s-cache passthrough=no protocol=tcp src-port=3128
add action=mark-connection chain=postrouting comment="THUNDER CACHE 3" \
content="X-Cache: HIT from Thunder" disabled=no new-connection-mark=\
thunder3-connection passthrough=yes
add action=mark-packet chain=postrouting comment="" connection-mark=\
thunder3-connection disabled=no new-packet-mark=thunder3-packs \
passthrough=no
add action=mark-connection chain=forward comment="CACHE HITS" \
content="X-Cache: HIT" disabled=no new-connection-mark=forward-hits \
passthrough=yes
add action=mark-packet chain=forward comment="" connection-mark=forward-hits \
disabled=no new-packet-mark=cache-hits passthrough=no
add action=mark-connection chain=postrouting comment="CACHE SQUID" disabled=\
no dscp=12 new-connection-mark=CACHE-SQUID passthrough=yes protocol=tcp \
src-port=3128

/ queue type

add name="cache" kind=pcq pcq-rate=4800000 pcq-limit=50 pcq-classifier=dst-address pcq-total-limit=2000

/queue tree
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=0 name="01 - CACHE-FULL" packet-mark=Cache-Packet parent=\
global-out priority=2 queue=cache
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=3M \
max-limit=100M name="02 - THUNDER CACHE 3" packet-mark=thunder3-packs \
parent=global-out priority=8 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=512k \
max-limit=8M name="04 - CACHE-SQUID" packet-mark=cache-squid parent=\
global-out priority=2 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=3M \
max-limit=100M name="03 - CACHE SQUID HITS" packet-mark=cache-hits \
parent=global-out priority=2 queue=default

Permalink Responder até Humberto Leandro De Almeida em 9 fevereiro 2012 at 12:20

Murilo disse:

Amigo, quando abilito a regra (

/ip firewall nat

add action=dst-nat chain=pre-hotspot comment="REDIRECT THUNDER" disabled=yes \ dst-address=!192.168.2.2 dst-port=80 hotspot=auth in-interface=EthClientes \ protocol=tcp src-address=172.12.2.0/24 to-addresses=192.168.2.2 to-ports=\ 3128 ) ele aparece essa mensagens ao tentar navegar ..

Humberto Leandro De Almeida disse:

(Cache-192.168.2.0/30) Clientes 172.12.2.1/24

/ip firewall filter add action=accept chain=forward comment="Aceita proxy" disabled=no \ src-address=192.168.2.0/30

/ip firewall nat

add action=dst-nat chain=pre-hotspot comment="REDIRECT THUNDER" disabled=yes \ dst-address=!192.168.2.2 dst-port=80 hotspot=auth in-interface=EthClientes \ protocol=tcp src-address=172.12.2.0/24 to-addresses=192.168.2.2 to-ports=\ 3128

/ip firewall mangle add action=mark-connection chain=postrouting comment="Marca com e sem TOS" \ disabled=no dscp=12 new-connection-mark=n-cache passthrough=yes protocol=\ tcp src-port=3128 add action=mark-packet chain=postrouting comment="Libera Cache Full" \ connection-mark=n-cache disabled=no new-packet-mark=Cache-Packet \ passthrough=yes add action=mark-connection chain=postrouting comment="" disabled=no dscp=!12 \ new-connection-mark=s-cache passthrough=no protocol=tcp src-port=3128 add action=mark-connection chain=postrouting comment="THUNDER CACHE 3" \ content="X-Cache: HIT from Thunder" disabled=no new-connection-mark=\ thunder3-connection passthrough=yes add action=mark-packet chain=postrouting comment="" connection-mark=\ thunder3-connection disabled=no new-packet-mark=thunder3-packs \ passthrough=no add action=mark-connection chain=forward comment="CACHE HITS" \ content="X-Cache: HIT" disabled=no new-connection-mark=forward-hits \ passthrough=yes add action=mark-packet chain=forward comment="" connection-mark=forward-hits \ disabled=no new-packet-mark=cache-hits passthrough=no add action=mark-connection chain=postrouting comment="CACHE SQUID" disabled=\ no dscp=12 new-connection-mark=CACHE-SQUID passthrough=yes protocol=tcp \ src-port=3128

/ queue type

add name="cache" kind=pcq pcq-rate=4800000 pcq-limit=50 pcq-classifier=dst-address pcq-total-limit=2000

/queue tree add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \ max-limit=0 name="01 - CACHE-FULL" packet-mark=Cache-Packet parent=\ global-out priority=2 queue=cache add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=3M \ max-limit=100M name="02 - THUNDER CACHE 3" packet-mark=thunder3-packs \ parent=global-out priority=8 queue=default add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=512k \ max-limit=8M name="04 - CACHE-SQUID" packet-mark=cache-squid parent=\ global-out priority=2 queue=default add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=3M \ max-limit=100M name="03 - CACHE SQUID HITS" packet-mark=cache-hits \ parent=global-out priority=2 queue=default

Murilo disse:

Olá amigo essa faixade ip 192.168.2.0/30 é do cache ou dos clientes ?

Obrigado

Humberto Leandro De Almeida disse:

Muda a faixa de ip ... aki esta fucioando perfeito

/ip firewall filter
add action=accept chain=forward comment="Aceita proxy" disabled=no \
src-address=192.168.2.0/30

/ip firewall nat

add action=dst-nat chain=pre-hotspot comment="REDIRECT THUNDER" disabled=yes \
dst-address=!192.168.2.2 dst-port=80 hotspot=auth in-interface=EthClientes \
protocol=tcp src-address=172.12.2.0/24 to-addresses=192.168.2.2 to-ports=\
3128

/ip firewall mangle
add action=mark-connection chain=postrouting comment="Marca com e sem TOS" \
disabled=no dscp=12 new-connection-mark=n-cache passthrough=yes protocol=\
tcp src-port=3128
add action=mark-packet chain=postrouting comment="Libera Cache Full" \
connection-mark=n-cache disabled=no new-packet-mark=Cache-Packet \
passthrough=yes
add action=mark-connection chain=postrouting comment="" disabled=no dscp=!12 \
new-connection-mark=s-cache passthrough=no protocol=tcp src-port=3128
add action=mark-connection chain=postrouting comment="THUNDER CACHE 3" \
content="X-Cache: HIT from Thunder" disabled=no new-connection-mark=\
thunder3-connection passthrough=yes
add action=mark-packet chain=postrouting comment="" connection-mark=\
thunder3-connection disabled=no new-packet-mark=thunder3-packs \
passthrough=no
add action=mark-connection chain=forward comment="CACHE HITS" \
content="X-Cache: HIT" disabled=no new-connection-mark=forward-hits \
passthrough=yes
add action=mark-packet chain=forward comment="" connection-mark=forward-hits \
disabled=no new-packet-mark=cache-hits passthrough=no
add action=mark-connection chain=postrouting comment="CACHE SQUID" disabled=\
no dscp=12 new-connection-mark=CACHE-SQUID passthrough=yes protocol=tcp \
src-port=3128

/ queue type

add name="cache" kind=pcq pcq-rate=4800000 pcq-limit=50 pcq-classifier=dst-address pcq-total-limit=2000

/queue tree
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=0 name="01 - CACHE-FULL" packet-mark=Cache-Packet parent=\
global-out priority=2 queue=cache
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=3M \
max-limit=100M name="02 - THUNDER CACHE 3" packet-mark=thunder3-packs \
parent=global-out priority=8 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=512k \
max-limit=8M name="04 - CACHE-SQUID" packet-mark=cache-squid parent=\
global-out priority=2 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=3M \
max-limit=100M name="03 - CACHE SQUID HITS" packet-mark=cache-hits \
parent=global-out priority=2 queue=default

RSS

Bem-vindo a
MK-AUTH

Registre-se
ou acesse

Links Patrocinados

Badges | Relatar um incidente | Termos de serviço