Create Dota in Mikrotik
DOTA is one of the Warcraft games for the online version. gamenet games on this is the best-selling games in addition to other online-games games like ragnarok, sealonline, pangya, deco and much more. in addition to these games for free, aka nda pake pocer, also very fun dimaenkan. Here I am trying to write about how to create DOTA in mikrotik machine.
Follow these steps:
-ip firewall nat add chain=srcnat action=masquerade out-interface=Public
-ip address add address=202.xxx.xxx.xxx/32 interface=Public (xxx filled according to your public IP)
-ip firewall nat add chain=dstnat dst-address=202.xxx.xxx.xxx action=dst-nat to-addresses=192.168.***.*** (*** completed according to the local IP who want to create games)
-ip firewall nat add chain=srcnat src-address=192.168.***.*** action=src-nat to-addresses=202.xxx.xxx.xxx
In order for a client who joined in a LAN or a single network can play together add the command:
-ip firewall nat add chain=dstnat dst-address=202.xxx.xxx.1-202.xxx.xxx.254 action=netmap to-addresses=192.168.***.1-192.168.***.254
-ip firewall nat add chain=srcnat src-address=192.168.***.1-192.168.***.254 action=netmap to-addresses=202.xxx.xxx.1-202.xxx.xxx.254
Until this has been successful, but in fact there is a problem I faced, which can not be my proxy machine or remote access from outside the network and other problems, SNMP port ketutup bandwagon, so to display the traffic cacti so blank ... anyone can help
Fix Dota Mik
Previously I've written about Dota Create Rules in Mikrotik, but there are constraints as rules enabled then routerbox not be in a remote, diping can not even display the graph MRTG / Cacti.
After a few times to try and find literature from google finally see the rules that are suitable for a remote interest from outside the network, can ping and of course I could see a graph bandwidth usage via MRTG / Cacti.
Rules like this:
ip firewall nat add chain=dstnat dst-address=202. x . x . x protocol=tcp dst-port=6113 action=dst-nat to-addresses=192.168. x . x to-ports=6113
ip firewall nat add chain=dstnat dst-address=202. x . x . x protocol=udp dst-port=6113 action=dst-nat to-addresses=192.168. x . x to-ports=6113
ip firewall nat add chain=srcnat src-address=192.168. x . x protocol=tcp src-port=6113 action=src-nat to-addresses=202. x . x . x to-ports=6113
ip firewall nat add chain=srcnat src-address=192.168. x . x protocol=udp src-port=6113 action=src-nat to-addresses=202. x . x . x to-ports=6113
ip firewall nat add chain=srcnat src-address=192.168. x . x -192.168. x . x action=netmap to-address=202. x . x . x -202. x . x . x to-ports=0-65535
Probably already know a lot about the rules above, I hope the above rules can be used anyone who needs it, because from experience that there is indeed difficult to find literature or googling about the rules create dota in mikrotik.
hopefully help.
taken from http://harrychanputra.wordpress.com
ClarkConnect as Proxy Mikrotik
If we subscribe to the Internet on a Vendor ISP we definitely get more than 2 Public IP. There are 4, 6 and so on depending on the size of our bandwiht lease. Well .. Also sometimes we only use 1 IP Public for the Internet, others are unemployed. In fact we can use for web servers, file servers, proxy servers and other another. Well for that the author tried to "sharing" of what writers do to be in oprek also by the other. This time the author combines the Mikrotik and Clarkconnect as a proxy.
Proxy Mikrotik ClarkConnect as a result oprek writer and has been running well. The result is increased upload bandwidth of about 100 Kbps 400kbps can achieve more. To be honest the author's own beginnings are also surprised by the speed test results showing increase upload. Surely this will affect the speed of the internet. After monitoring the course of both the OS was ClarkConnect store cache large enough so that they can leverage from Mikrotik proxy itself. So basically the cache stored in ClarConnect be taken by the mikrotik client when accessing the internet.
The authors use yan specifications are as follows:
1. ClarkConnect
ü Intel P3 800Mhz Processor
ü 100 GB Sata Hardisk
ü 256 MB RAM
ü 2 NIC 3com
2. Mikrotik RB450
Note: Specs above is an option, match with existing equipment
Actually, not too complicated if you are already familiar with the clarkconnect or mikrotik. This is a setting for beginners.
Here is his configuration scheme
His steps:
Here the author uses ClarkConnect Community Edition 5. This version also has support SATA. For those not familiar with Clarkconnect please click www.clarkconnect.com and donwload version editionnya community. The point is that at the time of installation do not forget to check for squid web proxy also installed.
Gateway ClearOS part 1
Right now most of the gateway from the cafe to use proxy. Here I will use a linux distro that can be used as a gateway from the cafe, which is ClearOS. For info about this ClearOS, Click here
According ClearOS penjelasin on the homepage of this, these distributions can be used in addition to the gateway, can also be used as server ^ ^, the following feature - a feature that is offered ClearOS for use as a gateway:
· Antimalware – Antivirus, Antiphishing, Antispyware
· Antispam
· Bandwidth Management
· Intrusion Protection, Intrusion Prevention, Intrusion Detection
· Protocol Filtering including Peer-to-Peer Detection
· Content Filter
· Web Proxy
· Access Control
other features above, some things that I found on these distributions are:
remote gateway from the client using a web browser.
1.configuration layout on the PC that we use as a gateway similar to the display in a web browser when we had a remote from the client, not just a black screen (console).
2.Installasi and configurations that I think is much easier and faster.
3.Web proxy, with this connection in the cafe you will feel quickly, because the page of the website in the cache on the server.
Last
4.Dan the most I like, FREE.
to make this gateway would need a PC that will be installed this ClearOS. Spec PC that will I use is:
P3 800Mhz processor
HP mobo (typenya forget)
256MB RAM
Seagate 10GB HDD
2 Lan Card, for eth0 and eth1.
After preparation Ok, now go directly to the installation of this ClearOS:
The first set it to first boot from this PC is a CD / DVD-Rom, after the set and CD ClearOS can walk, then the first tampilanya is as below:
we have to do, just press enter it. Because we're going to do a fresh install into this PC. Then wait until the next step.
here given the choice of language we will use, choose English.
Furthermore, here we choose the type of keyboard is used, select your keyboard type.
Furthermore, here there is a question where the source provided the installation in, because here I use the CD-ROM so select Local CD-ROM.
Here we were told to choose whether to install or upgrade. If you just want to install this ClearOS then select Install, whereas if there ClearOS and you want to upgrade select Upgrade.
Furthermore, here we are warned that all the contents of the disk will be deleted, and if you are already convinced then type ClearOS in the box provided.
Furthermore, here we are in the mode required to choose what we will use. So as previously described ClearOS has 2 modes of
1.Gateway Mode, which is used for the gateway.
2.Standalone Mode: used for the server.
So for this time that we choose is the Gateway Mode.
Next, we choose a type of Internet connection used. Here I choose Ethernet. Furthermore, here we choose whether its IP address using DHCP or manual configuration, here I choose the manual.
First I will explain first, to make this gateway we will use two NICs are:
1.NIC the first one to plug in between the gateway and the modem. (Eth0)
2.NIC a second to plug in between the gateway and the local network. (Eth1)
so that there will be two IP contained in this gateway, and also there are two different subnetworks for example 192.168.1.XX for example 192.168.0.XX for eth0 and eth1. This illustration can be seen below.
Well now return to the installation process before, here we enter the IP address for the first NIC (eth0). So the configuration is:
IP address: 192.168.1.2 / 255.255.255.0
gateway: 192.168.1.1 (the IP of the modem)
Name Server: 202.134.0.155 (the control of Speedy) then here we enter the IP address for the second NIC (eth1). Furthermore, here input the password for the system / root of this ClearOS. And do not forget the verify, the password is what will be used to log into the system ClearOS and also do a remote from the client.
Next, here is to select the schema of this ClearOS partition. Here I choose Use Default. To select the default configuration of ClearOS, but if you are intending to set up its own partition configuration for this ClearOS you can choose I will do my own partitioning.
Furthermore, here we will choose the module - module standard that will be installed at this ClearOS, here I will activate the Graphical Console, Antimalware, Antispam, Bandwidth Manager, Intrusion Protection, Protocol Filters.
Furthermore, here we will choose the modules - additional modules that will be installed at this ClearOS, here I will enable Web Proxy, Content Filter, Windows Networking, and Web Servers.
Here is the last warning was whether all the settings you input is correct, if yes, select done. Next you take a cup of coffee and snack to wait installation process is complete, (which is optional you know)
Installation Process
after there was a message as below, then the installation is complete, then reboot the PC.
congratulations, you have successfully installed the Gateway cafe. I'll see you in the next article which is a continuation of this article about the configuration of this ClearOS.
Limiting Download Mikrotik
Sometimes a network administrator will have "a headache" for the act of the client that mggunakan download accelator like Free Download Manager (FDM), Internet Download Manager (IDM) and another download accelerator. This causes the bandwidth allocation in its own suction ... while others just want to browse the hard .. long ... huuuuhhhhhh ... Well .. to outsmart him there is an effective way to limit download bandwidth without disrupting the overall browsing.
Actually this tutorial already exists in Google's uncle also .. But no one author is trying to modify with a slightly different way but essentially the same. OK .. just follow the steps below ... ...
before continuing, there are several steps that we need to consider, among others, the bandwidth capacity that we have, firewall, mangle, and simple queue
The first step we are setting up a firewall. The following script:
/ip firewall filter add chain=forward src-address=192.168.1.0/24 protocol=tcp content=.exe action=add-dst-to-address-list address-list=cekek address-list-timeout=01:00:00
/ip firewall filter add chain=forward src-address=192.168.1.0/24 protocol=tcp content=.iso action=add-dst-to-address-list address-list=cekek address-list-timeout=01:00:00
/ip firewall filter add chain=forward src-address=192.168.1.0/24 protocol=tcp content=.mpg action=add-dst-to-address-list address-list=cekek address-list-timeout=01:00:00
/ip firewall filter add chain=forward src-address=192.168.1.0/24 protocol=tcp content=.zip action=add-dst-to-address-list address-list=cekek address-list-timeout=01:00:00
/ip firewall filter add chain=forward src-address=192.168.1.0/24 protocol=tcp content=.rar action=add-dst-to-address-list address-list=cekek address-list-timeout=01:00:00
/ip firewall filter add chain=forward src-address=192.168.1.0/24 protocol=tcp content=.dat action=add-dst-to-address-list address-list=cekek address-list-timeout=01:00:00
/ip firewall filter add chain=forward src-address=192.168.1.0/24 protocol=tcp content=.flv action=add-dst-to-address-list address-list=cekek address-list-timeout=01:00:00
/ip firewall filter add chain=forward src-address=192.168.1.0/24 protocol=tcp content=.3gp action=add-dst-to-address-list address-list=cekek address-list-timeout=01:00:00
/ip firewall filter add chain=forward src-address=192.168.1.0/24 protocol=tcp content=.mpeg action=add-dst-to-address-list address-list=cekek address-list-timeout=01:00:00
/ip firewall filter add chain=forward src-address=192.168.1.0/24 protocol=tcp content=.avi action=add-dst-to-address-list address-list=cekek address-list-timeout=01:00:00
/ip firewall filter add chain=forward src-address=192.168.1.0/24 protocol=tcp content=.ram action=add-dst-to-address-list address-list=cekek address-list-timeout=01:00:00
/ip firewall filter add chain=forward src-address=192.168.1.0/24 protocol=tcp content=.mov action=add-dst-to-address-list address-list=cekek address-list-timeout=01:00:00
/ip firewall filter add chain=forward src-address=192.168.1.0/24 protocol=tcp content=.wma action=add-dst-to-address-list address-list=cekek address-list-timeout=01:00:00
/ip firewall filter add chain=forward src-address=192.168.1.0/24 protocol=tcp content=.aiff action=add-dst-to-address-list address-list=cekek address-list-timeout=01:00:00
/ip firewall filter add chain=forward src-address=192.168.1.0/24 protocol=tcp content=.au action=add-dst-to-address-list address-list=cekek address-list-timeout=01:00:00
/ip firewall filter add chain=forward src-address=192.168.1.0/24 protocol=tcp content=.wav action=add-dst-to-address-list address-list=cekek address-list-timeout=01:00:00
/ip firewall filter add chain=forward src-address=192.168.1.0/24 protocol=tcp content=.rar action=add-dst-to-address-list address-list=cekek address-list-timeout=01:00:00
Description:
ip address in the script is the IP network, therefore, adjust it with your network ip, tcp content is a file extension that is often downloaded by the client, if you feel less, please in the add itself. Cekek address list will appear automatically in the menu ip firewall address list with nana cekek (in cekik, red). Block smua script above then you paste it in the menu New terminal, end with enter.
The next step is menginisialisai packet marking in the mangle with the script below:
/ip firewall mangle add chain = forward protocol = tcp src-address-list = cekek action = mark-packet new-packet-mark = cekek-bw-by-extension
that is, all tcp traffict which recognize the file extension in the download will be marked (marked) as cekek-bw-by-extension selanjutny will identify the firewall address list so that the ip address that the downloads will be detected automatically.
/ Queue simple add-files-limit = 32000/64000 max packet-marks = cekek-bw-by-extension
means that we limit the file extension 32kbps download and 64kbps upload dowload. if the bandwidth you need at tight CEKEK those who like ngedownload. For those of you who have a large bandwidth downlod please adjust the capacity you want to give .. could 128kbps, 256kbps 512kbps up to you dah ....
OK finished ..
Mikrotik as Bridge
Mikrotik as Bridge is intended that the interface that leads to the Internet functioned as a Bridge (Bridge) for internet connection. With the Bridge is the traffict BW from Interface (ether1 or have your name change) will miss the Bridge. Based on the author's experience, by setting this Bridge to be more stable internet connection .. Here's how its settings ..
Open Winbox, Click Menu Bridge, click the + sign, apply, OK
Click the Port menu, Double Clik ether1, arrow down, select Bridge 1, Apply and OK
Results and Traffict BW Bridge configuration that is being used ...
keep try...
The button image will displayed on your site like this
Google Website Translator Gadget
About Me
- catatanku