16.42
Unknown
Limit dengan metode ini bisa jadi solusi jika menginginka kenyamanan browsing bagi client,
langsung saja siapkan extention, buat rule firewall dan masukkan ke adress list network contoh:
/ ip firewall filter add chain=output protocol=tcp content=.mp3 action=add-dst-to-address-list \ address-list=User-Download-List address-list-timeout=1h comment="MP3 \ Files" disabled=no add chain=output protocol=tcp content=.exe action=add-dst-to-address-list \ address-list=User-Download-List address-list-timeout=1h comment="EXE \ Files" disabled=no add chain=output protocol=tcp content=.rm action=add-dst-to-address-list \ address-list=User-Download-List address-list-timeout=1h comment="RM Files" \ disabled=nobisa tambahkan rule sesuai kebutuhan. kemudian kita lakukan mangle untuk marking paket yang berasal dari address list diatas seperti ini:
/ ip firewall mangle add chain=prerouting protocol=tcp src-address-list=User-Download-List action=mark-packet \ new-packet-mark=User-Download-Files passthrough=no comment="User Download Services" \ disabled=noLalu untuk yg terakhir kita masukkan simple queue dari paket mark diatas
/ queue tree add name="User-Download-Files" parent=global-in packet-mark=User-Download-Files limit-at=512000 \ queue=default priority=8 max-limit=512000 burst-limit=0 burst-threshold=0 burst-time=0s \ disabled=no
Posted in: *.MikroTIK
0 comments:
Posting Komentar