Devilzc0de Forum Information Technology Networking Router And Switch Mikrotik v
Redirect Mikrotik ke Squidbox linux

Home General Computer Multimedia Business Lounge

Post Reply 
Redirect Mikrotik ke Squidbox linux
02-07-2010, 02:34 AM (This post was last modified: 05-27-2010 10:17 PM by wahyu_devilzc0de™.)
Post: #1
wahyu_devilzc0de™ Offline
IBI Darmajaya - Lampung
****
Global Moderators 		Posts: 1,582
Joined: Dec 2009
Reputation: 184
Redirect Mikrotik ke Squidbox linux
Assalamu'alaikum...

[Image: pic-squidbox.jpg]


Banyak persoalan yg sering dialami pada web proxy di mikrotik, yaitu diantaranya tidak bisa di opreknya squid di mikrotik ini.
Disini saya akan mencoba berbagi ilmu, dan mohon koreksi bila ada yang salah. Ok..

Mikrotik
Public = 202.134.1.100
LAN = 192.168.0.1

di asumsikan bahwa sebelum adanya squidbox terpisah ini, mikrotik server anda telah berjalan dengan sempurna..

dan squidbox linux sudah terinstall


tambahkan pada box mikrotik seperti berikut :
1.
Code:
/ip firewall nat chain=dstnat in-interface=LAN src-address=!192.168.0.254 protocol=tcp dst-port=80 action=dst-nat to-addresses=192.168.0.254 to-ports=3121

dari input diatas bahwa src-address atau sumbernya dari ip address mana saja kecuali ip squuidbox itu sendiri. dengan tujuan port 80 atau browsing. akan dialihkan ke ip squidbox dengan port squidbox adalah 3121 (port di squid linux).
Tambahkan juga di mikrotik

2.
Code:
/ip firewall nat chain=dstnat in-interface=LAN src-address=!192.168.0.254 protocol=tcp dst-port=80 action=dst-nat to-addresses=192.168.0.254 to-ports=3121

3.
Code:
/ip firewall nat chain=srcnat out-interface=LAN src-address=192.168.0.0/24 action=src-nat to-addresses=192.168.0.1 to-ports=0-65535

nb: aslinya pakai konfigurasi no 1 dan 3 aja juga bisa kok.

selamat mencoba, mudah2an berhasil...

bila ada salah mohon koreksinya.

Wassalamu'alaikum...
Visit this user's website Find all posts by this user
Quote this message in a reply
02-07-2010, 08:12 AM
Post: #2
chaer.newbie Offline
--------------------------
*******
Auditor Team 		Posts: 4,754
Joined: Dec 2009
Reputation: 167
RE: Redirect Mikrotik ke Squidbox linux
mas ..mau tanya.....

ane udah setting kaya diatas... tapi connection refused mulu, kalo ane masukin manual dari broser bisa proxy nya...tapi kalo diredriect port 80 nya dari mikrotik mala ga bisa..



katanya connection refused...

itu kenapa ya,,,? apa iptables dilinux perlu kita terapin juga...?
Find all posts by this user
Quote this message in a reply
02-07-2010, 08:34 AM
Post: #3
wahyu_devilzc0de™ Offline
IBI Darmajaya - Lampung
****
Global Moderators 		Posts: 1,582
Joined: Dec 2009
Reputation: 184
RE: Redirect Mikrotik ke Squidbox linux
Assalamu'alaikum...

maaf mas. ketiduran..
gini mas..
yang namnya transparent proxy itu tanpa memasukkan ip server kedalam web browser mas.
di server intinya :
setting fit proxy, port 8080 transparent proxy .
dan di server tidak usah di tulis :
iptables -t nat -A PREROUTING bla bla..

cukup routing aja mas,
iptables -t nat -A POSROUTING -j MASQUERADE

dan di mikrotiknya baru kita redirect kan ke ip server proxy, dengan perintah di atas.
langsung saja mas ni punya adek:

chain = dstnat
src.address 192.168.0.0/24 ( itu network yang di keluarkan )
protokol =6 (tcp)
dst.port=80

pada menu action:
action :dst.nat
to address =192.168.11.7 ( yakni ip server proxy adek )
to.port addrss= 8080

semoga berhasil mas..
ini setting saya..

Wassalamu'alaikum
Visit this user's website Find all posts by this user
Quote this message in a reply
02-07-2010, 08:53 AM
Post: #4
chaer.newbie Offline
--------------------------
*******
Auditor Team 		Posts: 4,754
Joined: Dec 2009
Reputation: 167
RE: Redirect Mikrotik ke Squidbox linux
iya mas... ane masukin ke browser itu cuma buat ngetes doang...

ane pake 1 interface aja di webproxy berarti cukup dengan perintah

routing aja mas,
iptables -t nat -A POSROUTING -j MASQUERADE

di ubuntu sever ane..

terus setting NAT dimikrotiknya doang gitu langsung bisa transparent mas,,,??
Find all posts by this user
Quote this message in a reply
02-07-2010, 09:02 AM
Post: #5
wahyu_devilzc0de™ Offline
IBI Darmajaya - Lampung
****
Global Moderators 		Posts: 1,582
Joined: Dec 2009
Reputation: 184
RE: Redirect Mikrotik ke Squidbox linux
Assalamu'alaikum ..

iya mas...
pastikan pada file squid.conf
di http port 8080 transparent ( untuk mentransparentkan port 8080 )

gitu tidak mas setting mas, kalau sudah gitu berarti betul..
tinggal menredireckan lewat mikrotik, dengan perintah yang kyk adek tadi mas..

coba :
# nmap localhost (enter)

port proxy sudah open belum.
dan sebelumnya pasti mas tidak lupa dengan perntah ini:
# chown -R proxy.proxy /cache ( mengaktifkan hdd cache )
# squid -D ( membuat swap cache)
# squid -z (menrunningkan squid )

seteleh itu kita menrestart proxynya:
# /etc/init.d/squid restart

untuk optimalnya setelah ini di reboot..

mudah2an membantu mas

Wassalamu'alaikum....
Visit this user's website Find all posts by this user
Quote this message in a reply
02-07-2010, 09:11 AM
Post: #6
chaer.newbie Offline
--------------------------
*******
Auditor Team 		Posts: 4,754
Joined: Dec 2009
Reputation: 167
RE: Redirect Mikrotik ke Squidbox linux
okeh nanti ane coba di proxy server ane..
Find all posts by this user
Quote this message in a reply
02-07-2010, 09:27 AM
Post: #7
wahyu_devilzc0de™ Offline
IBI Darmajaya - Lampung
****
Global Moderators 		Posts: 1,582
Joined: Dec 2009
Reputation: 184
RE: Redirect Mikrotik ke Squidbox linux
Assalamu'alaikum...

semoga berhasil mas...

lanjutken...

Wassalamu'alaikum....
Visit this user's website Find all posts by this user
Quote this message in a reply
02-07-2010, 10:53 AM (This post was last modified: 02-07-2010 10:56 AM by chaer.newbie.)
Post: #8
chaer.newbie Offline
--------------------------
*******
Auditor Team 		Posts: 4,754
Joined: Dec 2009
Reputation: 167
RE: Redirect Mikrotik ke Squidbox linux
Code:
Starting Nmap 5.00 ( http://nmap.org ) at 2010-02-07 10:50 WIT
Warning: Hostname localhost resolves to 2 IPs. Using 127.0.0.1.
Interesting ports on localhost (127.0.0.1):
Not shown: 993 closed ports
PORT     STATE SERVICE
22/tcp   open  ssh
53/tcp   open  domain
80/tcp   open  http
139/tcp  open  netbios-ssn
445/tcp  open  microsoft-ds
3128/tcp open  squid-http
3306/tcp open  mysql

Nmap done: 1 IP address (1 host up) scanned in 0.17 seconds

w lagi nih mas


Code:
root@firewall:/home/firewall# iptables -t nat -A POSROUTING -j MASQUERADE
iptables: No chain/target/match by that name.

port udah kebuka lebar tapi pas ane ketik yg perintah chown itu access denied...kenapa ya mas
Find all posts by this user
Quote this message in a reply
02-07-2010, 11:08 AM
Post: #9
wahyu_devilzc0de™ Offline
IBI Darmajaya - Lampung
****
Global Moderators 		Posts: 1,582
Joined: Dec 2009
Reputation: 184
RE: Redirect Mikrotik ke Squidbox linux
Assalamu'alaikum...

mas , sampean setting routingnya harus di rc.local
yang iptables -t nat -A POSTROUTING -j MASQUERADE ...iya kan??

port sudah terbuka semua..
lalu perintah : chown -R proxy.proxy /cache1 ( nama hdd cache mas, ini contoh punya saya..)

kalau perintah squid -z dan squid -D apa mas keterangannya!!!

coba mas lihat settingan adek yang dulu di : http://devilzc0de.org/forum/thread-178.html samakan saja dengan ini...tinggal di copas di /squid.conf

mas pasti bisa..

Wassalamu'alaikum...
Visit this user's website Find all posts by this user
Quote this message in a reply
02-07-2010, 11:23 AM
Post: #10
chaer.newbie Offline
--------------------------
*******
Auditor Team 		Posts: 4,754
Joined: Dec 2009
Reputation: 167
RE: Redirect Mikrotik ke Squidbox linux
udah bisa mas....

Makasih banget Recomended banget nih tuts......

ane bintangin dulu yg full
Find all posts by this user
Quote this message in a reply
Post Reply 


Topic Tools
Topic Link :
BBCode :
HTML Code :
View a Printable Version Send Thread to a Friend Subscribe to this thread
Submit Google Submit Face book Submit to Digg Submit to Reddit Submit to Furl Submit to Del.icio.us Submit to Jeqq

Possibly Related Threads...
Thread: Author Replies: Views: Last Post
  [Tutor] Remote Mikrotik Log with Freebsd syslogd chaer.newbie 7 215 05-10-2012 12:18 PM
Last Post: bot_udut
  Secure Mikrotik Winbox client side attack chaer.newbie 19 515 05-03-2012 05:16 AM
Last Post: zal_freaks
  [Ask] Step by Step User manager Mikrotik cyrus 10 404 04-20-2012 06:32 PM
Last Post: chaer.newbie
  IP forwarding Di Mikrotik supermenganteng 11 2,328 04-14-2012 09:33 PM
Last Post: nobodyknowme
  tanya mikrotik Baplak 4 239 04-09-2012 04:56 AM
Last Post: valdiadrian
  [Tutor] Implemetasi IPv6 (tunnel 6to4) on mikrotik Motaro Irhaby 8 363 04-01-2012 06:13 PM
Last Post: Motaro Irhaby
  [Solved] Anti DDOS di mikrotik 3ono 6 1,561 03-27-2012 07:32 PM
Last Post: agam atjoeng
  Limit Youtube,Ekstensi File,dan IDM di layer 7 Mikrotik linuxer46 9 472 03-26-2012 10:10 AM
Last Post: linuxer46
Wink [Tutor] Mikrotik 3.30 + License Level 6 Crack (Link Updated to Mediafire) Vandal 30 4,441 03-24-2012 01:20 PM
Last Post: linuxer46
  [Tutor] belajar mikrotik menggunakan VMware workstation dj rabell 11 834 03-22-2012 10:17 PM
Last Post: Qiezaqie

Users Browsing
1 Guest(s)


Stop SOPA/PIPA | Discuss !