Scribd Logo
Unggah

Selamat datang di Scribd!

  • Konfigurasi Mikrotik Bandwidth Test Client

    Diunggah oleh

    satriya suryawan
    3 tayangan14 halaman
    Manajemen bandwitdh

    Hak Cipta

    © © All Rights Reserved

    Format Tersedia

    DOCX, PDF, TXT atau baca online dari Scribd

    Apakah menurut Anda dokumen ini bermanfaat?

    Apakah konten ini tidak pantas?

    Laporkan Dokumen Ini
    Manajemen bandwitdh

    Hak Cipta:

    © All Rights Reserved
    Unduh sebagai DOCX, PDF, TXT atau baca online dari Scribd
    Tandai sebagai konten tidak pantas
    3 tayangan14 halaman

    Konfigurasi Mikrotik Bandwidth Test Client

    Diunggah oleh

    satriya suryawan
    Manajemen bandwitdh

    Hak Cipta:

    © All Rights Reserved
    Unduh sebagai DOCX, PDF, TXT atau baca online dari Scribd
    Tandai sebagai konten tidak pantas
    dari 14

    Konfigurasi Mikrotik Bandwidth Test Client

    Topology

    Setting Mikrotik Menggunakan Winbox


    1. Download winbox
    https://download2.mikrotik.com/routeros/winbox/3.11/winbox.exe
    2. Connect Ke Mikrotik
    Connect To : Ip Mikrotik
    User : admin
    Pass : Kosong ( jangan di isi )
    3. Setting PPPOE
    Interface > + ( tanda Plus ) > Pilih PPPOE Client
    Name : metro
    Interface : Ether1
     Tab Dial Out
    User Name : biznetmetro
    Pass : 12345678
    Jangan di Ceklist Use Peer DNS, dan Add default Route
    4. Setelah Mikrotik Terhubung dengan internet lakukan proses upgrade OS
    System > Package > Check For update > Download and Install
    5. Setting PPPOE 2
    Interface > + ( tanda Plus ) > Pilih PPPOE Client
    Name : Biznethome
    Interface : Ether2
     Tab Dial Out
    User Name : biznethome
    Pass : 12345678
    Jangan di Ceklist Use Peer DNS, dan Add default Route
    6. Add PPTP Client
    Interface > + ( tanda Plus ) > Pilih PPTP Client
    Name vpn
    Connect To 117.102.69.35
    Username : xxxxx
    Password : xxx
    7. Routing
    IP > Routes , Klik Tanda +
    Add gateway Mikrotik
    DST . address : 0.0.0.0/0
    Gateway Pilih Metro
    Klik Comment isi : gw-metro
    8. Routing
    IP > Routes , Klik Tanda +
    Add gateway Mikrotik
    DST . address : 0.0.0.0/0
    Gateway Pilih Biznethome
    Klik Comment isi : gw-home

    9. Routing
    IP > Routes , Klik Tanda +
    DST . address : 0.0.0.0/0
    Gateway Pilih Biznethome
    Klik Comment isi : gw-home
    10. Add Lagi 2 Rules beikut :
    Klik Terminal Paste Scrip berikut

    /ip firewall filter


    add action=drop chain=input dst-port=53 in-interface=metro protocol=udp

    add action=drop chain=input comment="pptp brute force drop 1/4 - complete comunication DROP" src-
    address-list=pptp_blacklist_DROP

    add action=add-dst-to-address-list address-list=pptp_blacklist_DROP address-list-timeout=10m


    chain=output comment="pptp brute force drop 2/4" content=\

    "bad username or password" dst-address-list=pptp_blacklist_stage_2 protocol=gre

    add action=add-dst-to-address-list address-list=pptp_blacklist_stage_2 address-list-timeout=1m


    chain=output comment="pptp brute force drop 3/4" content=\

    "bad username or password" dst-address-list=pptp_blacklist_stage_1 protocol=gre

    add action=add-dst-to-address-list address-list=pptp_blacklist_stage_1 address-list-timeout=1m


    chain=output comment="pptp brute force drop 4/4" content=\

    "bad username or password" protocol=gre

    add action=accept chain=input dst-port=1701 protocol=udp

    add action=accept chain=input dst-port=500 protocol=udp

    add action=accept chain=input dst-port=4500 protocol=udp

    add action=accept chain=input protocol=ipsec-esp

    add action=accept chain=input protocol=ipsec-ah

    add action=drop chain=input comment="drop ssh brute forcers" dst-port=22 protocol=tcp src-
    address-list=black_list

    add action=add-src-to-address-list address-list=black_list address-list-timeout=1d chain=input


    connection-state=new dst-port=22 protocol=tcp src-address-list=ssh_stage3

    add action=add-src-to-address-list address-list=ssh_stage3 address-list-timeout=1m chain=input


    connection-state=new dst-port=22 protocol=tcp src-address-list=ssh_stage2

    add action=add-src-to-address-list address-list=ssh_stage2 address-list-timeout=1m chain=input


    connection-state=new dst-port=22 protocol=tcp src-address-list=ssh_stage1

    add action=add-src-to-address-list address-list=ssh_stage1 address-list-timeout=1m chain=input


    connection-state=new dst-port=22 protocol=tcp

    add action=drop chain=input comment="drop ftp brute forcers" dst-port=21 protocol=tcp src-
    address-list=black_list

    add action=add-src-to-address-list address-list=black_list address-list-timeout=1d chain=input


    connection-state=new dst-port=21 protocol=tcp src-address-list=ftp_stage3

    add action=add-src-to-address-list address-list=ftp_stage3 address-list-timeout=1m chain=input


    connection-state=new dst-port=21 protocol=tcp src-address-list=ftp_stage2

    add action=add-src-to-address-list address-list=ftp_stage2 address-list-timeout=1m chain=input


    connection-state=new dst-port=21 protocol=tcp src-address-list=ftp_stage1

    add action=add-src-to-address-list address-list=ftp_stage1 address-list-timeout=1m chain=input


    connection-state=new dst-port=21 protocol=tcp
    add action=drop chain=input comment="drop telnet brute forcers" dst-port=23 protocol=tcp src-
    address-list=black_list

    add action=add-src-to-address-list address-list=black_list address-list-timeout=1d chain=input


    connection-state=new dst-port=23 protocol=tcp src-address-list=\

    telnet_stage3

    add action=add-src-to-address-list address-list=telnet_stage3 address-list-timeout=1m chain=input


    connection-state=new dst-port=23 protocol=tcp src-address-list=\

    telnet_stage2

    add action=add-src-to-address-list address-list=telnet_stage2 address-list-timeout=1m chain=input


    connection-state=new dst-port=23 protocol=tcp src-address-list=\

    telnet_stage1

    add action=add-src-to-address-list address-list=telnet_stage1 address-list-timeout=1m chain=input


    connection-state=new dst-port=23 protocol=tcp

    Paste Lagi Script Berikut


    /system ntp client

    set enabled=yes primary-ntp=182.253.66.204 secondary-ntp=202.162.32.12

    /system clock

    set time-zone-name=Asia/Jakarta

    /system logging action

    set 0 memory-lines=100

    set 1 disk-lines-per-file=100

    set 3 remote=192.168.23.44

    add name=bwtest target=echo

    add name=rbwtset remote=192.168.23.44 target=remote

    /system logging action

    set 0 memory-lines=100

    set 1 disk-lines-per-file=100

    set 3 remote=192.168.23.44

    add name=bwtest target=echo

    add name=rbwtset remote=192.168.23.44 target=remote

    /system logging

    /system logging remove 3

    /system logging remove 4

    /system logging remove 5

    /system logging remove 6

    /system logging remove 7


    /system logging remove 8

    add action=rbwtset topics=warning

    add action=rbwtset topics=info

    System > Script > add


    Isi name : homejkt
    Isi source nya : ada di File homejkt
    Klik Add :
    Name : metrojkt
    Isi Source nya : ada di File metrojkt

    Terminal :
    /system scheduler
    add interval=1h name=Metro on-event="/system script run metrojkt" policy=\
    ftp,reboot,read,write,policy,test,password,sniff,sensitive,romon \
    start-date=jun/09/2017 start-time=15:48:00
    add interval=1h name=Home on-event="/system script run homejkt" policy=\
    ftp,reboot,read,write,policy,test,password,sniff,sensitive,romon \
    start-date=jun/09/2017 start-time=15:50:00

    System User :
    Add uSer : biznet
    Password : biznet01

    User admin harus disable

    Anda mungkin juga menyukai