Friday, March 22, 2013

[TUTORIAL] Batasi IDM dengan Queue Simple via Mangle pada Mikrotik


Mungkin sudah banyak blog yang membahas tentang ini (membatasi idm di mikrotik) tapi tidak ada salahnya kami menyuguhkan kembali di blog ini. Oke langsung saja.

1. Masukkan rule di firewall untuk mendapatkan IP server tempat file yang didownload dan memasukan IP itu ke dalam address list.


/ip firewall filter add chain=forward src-address=192.168.10.0/24 protocol=tcp content=.mp3 action=add-dst-to-address-list address-list=downloads address-list-timeout=00:05:00

/ip firewall filter add chain=forward src-address=192.168.10.0/24 protocol=tcp content=.exe action=add-dst-to-address-list address-list=downloads address-list-timeout=00:05:00

/ip firewall filter add chain=forward src-address=192.168.10.0/24 protocol=tcp content=.rar action=add-dst-to-address-list address-list=downloads address-list-timeout=00:05:00

/ip firewall filter add chain=forward src-address=192.168.10.0/24 protocol=tcp content=.zip action=add-dst-to-address-list address-list=downloads address-list-timeout=00:05:00

/ip firewall filter add chain=forward src-address=192.168.10.0/24 protocol=tcp content=.7z action=add-dst-to-address-list address-list=downloads address-list-timeout=00:05:00

/ip firewall filter add chain=forward src-address=192.168.10.0/24 protocol=tcp content=.cab action=add-dst-to-address-list address-list=downloads address-list-timeout=00:05:00

/ip firewall filter add chain=forward src-address=192.168.10.0/24 protocol=tcp content=.asf action=add-dst-to-address-list address-list=downloads address-list-timeout=00:05:00

/ip firewall filter add chain=forward src-address=192.168.10.0/24 protocol=tcp content=.mov action=add-dst-to-address-list address-list=downloads address-list-timeout=00:05:00

/ip firewall filter add chain=forward src-address=192.168.10.0/24 protocol=tcp content=.wmv action=add-dst-to-address-list address-list=downloads address-list-timeout=00:05:00

/ip firewall filter add chain=forward src-address=192.168.10.0/24 protocol=tcp content=.mpg action=add-dst-to-address-list address-list=downloads address-list-timeout=00:05:00

/ip firewall filter add chain=forward src-address=192.168.10.0/24 protocol=tcp content=.mpeg action=add-dst-to-address-list address-list=downloads address-list-timeout=00:05:00

/ip firewall filter add chain=forward src-address=192.168.10.0/24 protocol=tcp content=.mkv action=add-dst-to-address-list address-list=downloads address-list-timeout=00:05:00

/ip firewall filter add chain=forward src-address=192.168.10.0/24 protocol=tcp content=.avi action=add-dst-to-address-list address-list=downloads address-list-timeout=00:05:00

/ip firewall filter add chain=forward src-address=192.168.10.0/24 protocol=tcp content=.flv action=add-dst-to-address-list address-list=downloads address-list-timeout=00:05:00

/ip firewall filter add chain=forward src-address=192.168.10.0/24 protocol=tcp content=.pdf action=add-dst-to-address-list address-list=downloads address-list-timeout=00:05:00

/ip firewall filter add chain=forward src-address=192.168.10.0/24 protocol=tcp content=.wav action=add-dst-to-address-list address-list=downloads address-list-timeout=00:05:00

/ip firewall filter add chain=forward src-address=192.168.10.0/24 protocol=tcp content=.rm action=add-dst-to-address-list address-list=downloads address-list-timeout=00:05:00

/ip firewall filter add chain=forward src-address=192.168.10.0/24 protocol=tcp content=.mp4 action=add-dst-to-address-list address-list=downloads address-list-timeout=00:05:00

/ip firewall filter add chain=forward src-address=192.168.10.0/24 protocol=tcp content=.ram action=add-dst-to-address-list address-list=downloads address-list-timeout=00:05:00

/ip firewall filter add chain=forward src-address=192.168.10.0/24 protocol=tcp content=.rmvb action=add-dst-to-address-list address-list=downloads address-list-timeout=00:05:00

/ip firewall filter add chain=forward src-address=192.168.10.0/24 protocol=tcp content=.dat action=add-dst-to-address-list address-list=downloads address-list-timeout=00:05:00

/ip firewall filter add chain=forward src-address=192.168.10.0/24 protocol=tcp content=.daa action=add-dst-to-address-list address-list=downloads address-list-timeout=00:05:00

/ip firewall filter add chain=forward src-address=192.168.10.0/24 protocol=tcp content=.iso action=add-dst-to-address-list address-list=downloads address-list-timeout=00:05:00

/ip firewall filter add chain=forward src-address=192.168.10.0/24 protocol=tcp content=.nrg action=add-dst-to-address-list address-list=downloads address-list-timeout=00:05:00

/ip firewall filter add chain=forward src-address=192.168.10.0/24 protocol=tcp content=.bin action=add-dst-to-address-list address-list=downloads address-list-timeout=00:05:00

/ip firewall filter add chain=forward src-address=192.168.10.0/24 protocol=tcp content=.vcd action=add-dst-to-address-list address-list=downloads address-list-timeout=00:05:00

/ip firewall filter add chain=forward src-address=192.168.10.0/24 protocol=tcp content=.mp2 action=add-dst-to-address-list address-list=downloads address-list-timeout=00:05:00

/ip firewall filter add chain=forward src-address=192.168.10.0/24 protocol=tcp content=.3gp action=add-dst-to-address-list address-list=downloads address-list-timeout=00:05:00

/ip firewall filter add chain=forward src-address=192.168.10.0/24 protocol=tcp content=.mpe action=add-dst-to-address-list address-list=downloads address-list-timeout=00:05:00

/ip firewall filter add chain=forward src-address=192.168.10.0/24 protocol=tcp content=.qt action=add-dst-to-address-list address-list=downloads address-list-timeout=00:05:00

/ip firewall filter add chain=forward src-address=192.168.10.0/24 protocol=tcp content=.raw action=add-dst-to-address-list address-list=downloads address-list-timeout=00:05:00

/ip firewall filter add chain=forward src-address=192.168.10.0/24 protocol=tcp content=.wma action=add-dst-to-address-list address-list=downloads address-list-timeout=00:05:00

/ip firewall filter add chain=forward src-address=192.168.10.0/24 protocol=tcp content=.ogg action=add-dst-to-address-list address-list=downloads address-list-timeout=00:05:00

/ip firewall filter add chain=forward src-address=192.168.10.0/24 protocol=tcp content=.doc action=add-dst-to-address-list address-list=downloads address-list-timeout=00:05:00


Sesuaikan src-address dengan ip anda sendiri. Rule diatas akan menangkap semua traffic dengan ekstensi tertentu dan memasukkannya ke address list downloads selamat 5 menit


2. Setting mangle untuk paket yang berasal dari IP yang didapat dari langkah 1


/ip firewall mangle add chain=forward protocol=tcp src-address-list=downloads action=mark-packet new-packet-mark=downloads-paket

3. Langkah terakhir kita masukkan simple queue dari paket mark yang dibuat dari langkah 2.


/queue simple add name=downloads-files max-limit=128000/128000 packet-marks=downloads-paket

Semoga bermanfaat dan ini sudah saya aplikasikan di mikrotik saya, Mikrotik 5.18.

Sumber: MR-EKOAPRIADI - http://mr-ekoapriadi.blogspot.com/2013/02/batasi-idm-dengan-queue-simple-via.html#ixzz2OG7VfPCM

Reaksi:

0 komentar: