Untuk mempermudah setingannya, kopikan scipt di bawah ini, ganti tilisan yang bercetak tebal sesuai kebutuhan. Setingan ini menggunakan sistem BRIGING, setingan ini udah termasuk : router, Bandwith Limiter, web-poxy, dialup di mikrotik.
/ interface ethernet
set modem name="modem" mtu=1500 mac-address=00:24:01:D2:10:8A arp=enabled \
disable-running-check=yes auto-negotiation=yes full-duplex=yes \
cable-settings=default speed=100Mbps comment="" disabled=no
set lan name="lan" mtu=1500 mac-address=00:24:01:D2:13:EA arp=enabled \
disable-running-check=yes auto-negotiation=yes full-duplex=yes \
cable-settings=default speed=100Mbps comment="" disabled=no
/ interface wireless security-profiles
set default name="default" mode=none authentication-types="" \
unicast-ciphers="" group-ciphers="" wpa-pre-shared-key="" \
wpa2-pre-shared-key="" eap-methods=passthrough tls-mode=no-certificates \
tls-certificate=none static-algo-0=none static-key-0="" static-algo-1=none \
static-key-1="" static-algo-2=none static-key-2="" static-algo-3=none \
static-key-3="" static-transmit-key=key-0 static-sta-private-algo=none \
static-sta-private-key="" radius-mac-authentication=no group-key-update=5m
/ interface wireless align
set frame-size=300 active-mode=yes receive-all=no \
audio-monitor=00:00:00:00:00:00 filter-mac=00:00:00:00:00:00 ssid-all=no \
frames-per-second=25 audio-min=-100 audio-max=-20
/ interface wireless snooper
set multiple-channels=yes channel-time=200ms receive-errors=no
/ interface wireless sniffer
set multiple-channels=no channel-time=200ms only-headers=no receive-errors=no \
memory-limit=10 file-name="" file-limit=10 streaming-enabled=no \
streaming-server=0.0.0.0 streaming-max-rate=0
/ interface l2tp-server server
set enabled=no max-mtu=1460 max-mru=1460 \
authentication=pap,chap,mschap1,mschap2 default-profile=default-encryption
/ interface pptp-server server
set enabled=no max-mtu=1460 max-mru=1460 authentication=mschap1,mschap2 \
keepalive-timeout=30 default-profile=default-encryption
/ interface pppoe-client
add name="speedy1" max-mtu=1480 max-mru=1480 interface=modem \
user="1114321xxxx@telkom.net" password="xxxxxx" profile=default \
service-name="" ac-name="" add-default-route=yes dial-on-demand=no \
use-peer-dns=yes allow=pap,chap,mschap1,mschap2 disabled=no
/ ip telephony region
/ ip telephony gatekeeper
set gatekeeper=none remote-id="" remote-address=0.0.0.0
/ ip telephony aaa
set use-radius-accounting=no interim-update=0s
/ ip telephony codec
move G.711-uLaw-64k/sw
move G.711-ALaw-64k/sw
move G.729A-8k/sw
move G.729-8k/sw
move G.723.1-6.3k/sw
move GSM-06.10-13.2k/sw
move LPC-10-2.5k/sw
/ ip accounting
set enabled=no account-local-traffic=no threshold=256
/ ip accounting web-access
set accessible-via-web=no address=0.0.0.0/0
/ ip service
set telnet port=23 address=0.0.0.0/0 disabled=no
set ftp port=21 address=0.0.0.0/0 disabled=no
set www port=80 address=0.0.0.0/0 disabled=no
set ssh port=22 address=0.0.0.0/0 disabled=no
set www-ssl port=443 address=0.0.0.0/0 certificate=none disabled=no
/ ip upnp
set enabled=no allow-disable-external-interface=yes show-dummy-rule=yes
/ ip arp
/ ip socks
set enabled=no port=1080 connection-idle-timeout=2m max-connections=200
/ ip dns
set primary-dns=202.134.1.10 secondary-dns=202.134.0.155 \
allow-remote-requests=yes cache-size=2048KiB cache-max-ttl=1w
/ ip traffic-flow
set enabled=no interfaces=all cache-entries=4k active-flow-timeout=30m \
inactive-flow-timeout=15s
/ ip address
add address=192.168.1.2/24 network=192.168.1.0 broadcast=192.168.1.255 \
interface=modem comment="" disabled=no
add address=192.168.0.30/27 network=192.168.0.0 broadcast=192.168.0.31 \
interface=lan comment="" disabled=no
/ ip proxy
set enabled=no port=8080 parent-proxy=0.0.0.0:0 maximal-client-connecions=1000 \
maximal-server-connectons=1000
/ ip proxy access
add dst-port=23-25 action=deny comment="block telnet & spam e-mail relaying" \
disabled=no
/ ip neighbor discovery
set modem discover=yes
set lan discover=yes
set speedy1 discover=no
/ ip route
add dst-address=0.0.0.0/0 gateway=192.168.1.1 scope=255 target-scope=10 \
comment="" disabled=yes
/ ip firewall mangle
/ ip firewall nat
add chain=srcnat out-interface=speedy1 action=masquerade comment="" \
disabled=no
add chain=dstnat in-interface=lan src-address=192.168.0.30 protocol=tcp \
dst-port=80 action=redirect to-ports=3128 comment="" disabled=no
/ ip firewall connection tracking
set enabled=yes tcp-syn-sent-timeout=5s tcp-syn-received-timeout=5s \
tcp-established-timeout=1d tcp-fin-wait-timeout=10s \
tcp-close-wait-timeout=10s tcp-last-ack-timeout=10s \
tcp-time-wait-timeout=10s tcp-close-timeout=10s udp-timeout=10s \
udp-stream-timeout=3m icmp-timeout=10s generic-timeout=10m \
tcp-syncookie=no
/ ip firewall filter
add chain=input connection-state=established action=accept comment="Connection \
State" disabled=no
add chain=input connection-state=related action=accept comment="" disabled=no
add chain=input connection-state=invalid action=drop comment="" disabled=no
add chain=forward src-address=0.0.0.0/8 action=drop comment="Block Bogus IP \
Address" disabled=no
add chain=forward dst-address=0.0.0.0/8 action=drop comment="" disabled=no
add chain=forward src-address=127.0.0.0/8 action=drop comment="" disabled=no
add chain=forward dst-address=127.0.0.0/8 action=drop comment="" disabled=no
add chain=forward src-address=224.0.0.0/3 action=drop comment="" disabled=no
add chain=forward dst-address=224.0.0.0/3 action=drop comment="" disabled=no
add chain=input src-address=0.0.0.0/0 protocol=tcp dst-port=8080 action=tarpit \
comment="" disabled=no
add chain=input protocol=tcp dst-port=22 src-address-list=ssh_blacklist \
action=drop comment="Drop SSH brute forcers" disabled=no
add chain=input protocol=tcp dst-port=22 connection-state=new \
src-address-list=ssh_stage3 action=add-src-to-address-list \
address-list=ssh_blacklist address-list-timeout=1w3d comment="" \
disabled=no
add chain=input protocol=tcp dst-port=22 connection-state=new \
src-address-list=ssh_stage2 action=add-src-to-address-list \
address-list=ssh_stage3 address-list-timeout=1m comment="" disabled=no
add chain=input protocol=tcp dst-port=22 connection-state=new \
src-address-list=ssh_stage1 action=add-src-to-address-list \
address-list=ssh_stage2 address-list-timeout=1m comment="" disabled=no
add chain=input protocol=tcp dst-port=22 connection-state=new \
action=add-src-to-address-list address-list=ssh_stage1 \
address-list-timeout=1m comment="" disabled=no
add chain=input protocol=tcp psd=21,3s,3,1 action=add-src-to-address-list \
address-list="port scanners" address-list-timeout=2w comment="Port \
Scanners to list " disabled=no
add chain=input protocol=tcp tcp-flags=fin,!syn,!rst,!psh,!ack,!urg \
action=add-src-to-address-list address-list="port scanners" \
address-list-timeout=2w comment="" disabled=no
add chain=input protocol=tcp tcp-flags=fin,syn action=add-src-to-address-list \
address-list="port scanners" address-list-timeout=2w comment="" \
disabled=no
add chain=input protocol=tcp tcp-flags=fin,psh,urg,!syn,!rst,!ack \
action=add-src-to-address-list address-list="port scanners" \
address-list-timeout=2w comment="" disabled=no
add chain=input protocol=tcp tcp-flags=fin,syn,rst,psh,ack,urg \
action=add-src-to-address-list address-list="port scanners" \
address-list-timeout=2w comment="" disabled=no
add chain=input protocol=tcp tcp-flags=syn,rst action=add-src-to-address-list \
address-list="port scanners" address-list-timeout=2w comment="" \
disabled=no
add chain=input protocol=tcp tcp-flags=!fin,!syn,!rst,!psh,!ack,!urg \
action=add-src-to-address-list address-list="port scanners" \
address-list-timeout=2w comment="" disabled=no
add chain=input src-address-list="port scanners" action=drop comment="" \
disabled=no
add chain=input protocol=tcp dst-port=21 src-address-list=ftp_blacklist \
action=drop comment="Filter FTP to Box" disabled=no
add chain=output protocol=tcp content="530 Login incorrect" \
dst-limit=1/1m,9,dst-address/1m action=accept comment="" disabled=no
add chain=output protocol=tcp content="530 Login incorrect" \
action=add-dst-to-address-list address-list=ftp_blacklist \
address-list-timeout=3h comment="" disabled=no
add chain=forward protocol=tcp action=jump jump-target=tcp comment="Separate \
Protocol into Chains" disabled=no
add chain=forward protocol=udp action=jump jump-target=udp comment="" \
disabled=no
add chain=forward protocol=icmp action=jump jump-target=icmp comment="" \
disabled=no
add chain=input protocol=tcp action=jump jump-target=tcp comment="" \
disabled=no
add chain=input protocol=udp action=jump jump-target=udp comment="" \
disabled=no
add chain=udp protocol=udp dst-port=69 action=drop comment="Blocking UDP \
Packet" disabled=no
add chain=udp protocol=udp dst-port=111 action=drop comment="" disabled=no
add chain=udp protocol=udp dst-port=135 action=drop comment="" disabled=no
add chain=udp protocol=udp dst-port=137-139 action=drop comment="" disabled=no
add chain=udp protocol=udp dst-port=445 action=drop comment="" disabled=no
add chain=udp protocol=udp dst-port=2049 action=drop comment="" disabled=no
add chain=udp protocol=udp dst-port=3133 action=drop comment="" disabled=no
add chain=tcp protocol=tcp dst-port=69 action=drop comment="Bloking TCP \
Packet" disabled=no
add chain=tcp protocol=tcp dst-port=25 action=add-src-to-address-list \
address-list=conficker address-list-timeout=5m comment="" disabled=no
add chain=tcp protocol=tcp dst-port=25 action=tarpit comment="" disabled=no
add chain=tcp protocol=tcp dst-port=111 action=drop comment="" disabled=no
add chain=tcp protocol=tcp dst-port=119 action=drop comment="" disabled=no
add chain=tcp protocol=tcp dst-port=135 action=add-src-to-address-list \
address-list=conficker address-list-timeout=5m comment="" disabled=no
add chain=tcp protocol=tcp dst-port=135 action=tarpit comment="" disabled=no
add chain=tcp protocol=tcp dst-port=137-139 action=add-src-to-address-list \
address-list=conficker address-list-timeout=5m comment="" disabled=no
add chain=tcp protocol=tcp dst-port=137-139 action=tarpit comment="" \
disabled=no
add chain=tcp protocol=tcp dst-port=445 action=add-src-to-address-list \
address-list=conficker address-list-timeout=5m comment="" disabled=no
add chain=tcp protocol=tcp dst-port=445 action=tarpit comment="" disabled=no
add chain=tcp protocol=tcp dst-port=2049 action=drop comment="" disabled=no
add chain=tcp protocol=tcp dst-port=12345-12346 action=drop comment="" \
disabled=no
add chain=tcp protocol=tcp dst-port=20034 action=drop comment="" disabled=no
add chain=tcp protocol=tcp dst-port=3133 action=drop comment="" disabled=no
add chain=tcp protocol=tcp dst-port=67-68 action=drop comment="" disabled=no
add chain=icmp protocol=icmp icmp-options=0:0-255 limit=5,5 action=accept \
comment="Limited Ping Flood" disabled=no
add chain=icmp protocol=icmp icmp-options=3:3 limit=5,5 action=accept \
comment="" disabled=no
add chain=icmp protocol=icmp icmp-options=3:4 limit=5,5 action=accept \
comment="" disabled=no
add chain=icmp protocol=icmp icmp-options=8:0-255 limit=5,5 action=accept \
comment="" disabled=no
add chain=icmp protocol=icmp icmp-options=11:0-255 limit=5,5 action=accept \
comment="" disabled=no
add chain=icmp protocol=icmp action=drop comment="" disabled=no
add chain=input src-address=192.168.0.0/27 action=accept comment="Allow access \
to router from known network" disabled=no
add chain=input src-address=125.162.0.0/16 action=accept comment="" \
disabled=no
add chain=input src-address=125.165.0.0/16 action=accept comment="" \
disabled=no
add chain=input dst-address-type=broadcast action=accept comment="Allow \
Broadcast Traffic" disabled=no
/ ip firewall address-list
/ ip firewall service-port
set ftp ports=21 disabled=no
set tftp ports=69 disabled=no
set irc ports=6667 disabled=no
set h323 disabled=no
set quake3 disabled=no
set gre disabled=no
set pptp disabled=no
/ ip hotspot service-port
set ftp ports=21 disabled=no
/ ip hotspot profile
set default name="default" hotspot-address=0.0.0.0 dns-name="" \
html-directory=hotspot rate-limit="" http-proxy=0.0.0.0:0 \
smtp-server=0.0.0.0 login-by=cookie,http-chap http-cookie-lifetime=3d \
split-user-domain=no use-radius=no
/ ip hotspot user profile
set default name="default" idle-timeout=none keepalive-timeout=2m \
status-autorefresh=1m shared-users=1 transparent-proxy=yes \
open-status-page=always advertise=no
/ ip dhcp-server config
set store-leases-disk=5m
/ ip ipsec proposal
add name="default" auth-algorithms=sha1 enc-algorithms=3des lifetime=30m \
lifebytes=0 pfs-group=modp1024 disabled=no
/ ip web-proxy
set enabled=yes src-address=0.0.0.0 port=3128 hostname="pendy" \
transparent-proxy=yes parent-proxy=0.0.0.0:0 \
cache-administrator="ruxcendy@gmail.com" max-object-size=4096KiB \
cache-drive=system max-cache-size=unlimited max-ram-cache-size=unlimited
/ ip web-proxy access
add dst-port=23-25 action=deny comment="block telnet & spam e-mail relaying" \
disabled=no
/ ip web-proxy cache
add url=":cgi-bin \\?" action=deny comment="don't cache dynamic http pages" \
disabled=no
/ system logging
add topics=info prefix="" action=memory disabled=no
add topics=error prefix="" action=memory disabled=no
add topics=warning prefix="" action=memory disabled=no
add topics=critical prefix="" action=echo disabled=no
add topics=web-proxy prefix="" action=memory disabled=yes
/ system logging action
set memory name="memory" target=memory memory-lines=100 memory-stop-on-full=no
set disk name="disk" target=disk disk-lines=100 disk-stop-on-full=no
set echo name="echo" target=echo remember=yes
set remote name="remote" target=remote remote=0.0.0.0:514
/ system upgrade mirror
set enabled=no primary-server=0.0.0.0 secondary-server=0.0.0.0 \
check-interval=1d user=""
/ system clock dst
set dst-delta=+00:00 dst-start="jan/01/1970 00:00:00" dst-end="jan/01/1970 \
00:00:00"
/ system watchdog
set reboot-on-failure=yes watch-address=none watchdog-timer=yes \
no-ping-delay=5m automatic-supout=yes auto-send-supout=no
/ system console
add port=serial0 term="" disabled=no
set FIXME term="linux" disabled=no
set FIXME term="linux" disabled=no
set FIXME term="linux" disabled=no
set FIXME term="linux" disabled=no
set FIXME term="linux" disabled=no
set FIXME term="linux" disabled=no
set FIXME term="linux" disabled=no
set FIXME term="linux" disabled=no
/ system console screen
set line-count=25
/ system identity
set name="AO.net"
/ system note
set show-at-login=yes note=""
/ system gps
set enabled=no set-system-time=yes
/ system lcd
set enabled=no type=24x4 port=parallel contrast=0
/ system lcd page
set time display-time=5s disabled=yes
set resources display-time=5s disabled=yes
set uptime display-time=5s disabled=yes
set packets display-time=5s disabled=yes
set bits display-time=5s disabled=yes
set version display-time=5s disabled=yes
set modem display-time=5s disabled=yes
set lan display-time=5s disabled=yes
set speedy1 display-time=5s disabled=yes
/ system ntp server
set enabled=no broadcast=no multicast=no manycast=yes
/ system ntp client
set enabled=no mode=unicast primary-ntp=0.0.0.0 secondary-ntp=0.0.0.0
/ system routerboard bios
set
/ system health
set state-after-reboot=enabled
/ port
set serial0 name="serial0" baud-rate=9600 data-bits=8 parity=none stop-bits=1 \
flow-control=hardware
set serial1 name="serial1" baud-rate=9600 data-bits=8 parity=none stop-bits=1 \
flow-control=hardware
/ ppp profile
set default name="default" use-compression=default use-vj-compression=default \
use-encryption=default only-one=default change-tcp-mss=yes comment=""
set default-encryption name="default-encryption" use-compression=default \
use-vj-compression=default use-encryption=yes only-one=default \
change-tcp-mss=yes comment=""
/ ppp aaa
set use-radius=no accounting=yes interim-update=0s
/ queue type
set default name="default" kind=pfifo pfifo-limit=50
set ethernet-default name="ethernet-default" kind=pfifo pfifo-limit=50
set wireless-default name="wireless-default" kind=sfq sfq-perturb=5 \
sfq-allot=1514
set synchronous-default name="synchronous-default" kind=red red-limit=60 \
red-min-threshold=10 red-max-threshold=50 red-burst=20 red-avg-packet=1000
set hotspot-default name="hotspot-default" kind=sfq sfq-perturb=5 \
sfq-allot=1514
add name="AO-NET" kind=pcq pcq-rate=0 pcq-limit=50 pcq-classifier="" \
pcq-total-limit=2000
add name="default-small" kind=pfifo pfifo-limit=10
/ queue simple
add name="AO_NET" dst-address=0.0.0.0/0 interface=all parent=none \
direction=both priority=8 queue=default/default limit-at=256000/1000000 \
max-limit=256000/1000000 total-queue=default-small disabled=no
add name="KOM_01" target-addresses=192.168.0.1/32 dst-address=0.0.0.0/0 \
interface=all parent=AO_NET direction=both priority=8 \
queue=default-small/default-small limit-at=64000/100000 \
max-limit=64000/100000 burst-limit=64000/256000 burst-time=10s/10s \
total-queue=default-small disabled=no
add name="KOM_02" target-addresses=192.168.0.2/32 dst-address=0.0.0.0/0 \
interface=all parent=AO_NET direction=both priority=8 \
queue=default-small/default-small limit-at=64000/100000 \
max-limit=64000/100000 burst-limit=64000/256000 burst-time=10s/10s \
total-queue=default-small disabled=no
add name="KOM_03" target-addresses=192.168.0.3/32 dst-address=0.0.0.0/0 \
interface=all parent=AO_NET direction=both priority=8 \
queue=default-small/default-small limit-at=64000/100000 \
max-limit=64000/100000 burst-limit=64000/256000 burst-time=10s/10s \
total-queue=default-small disabled=no
add name="KOM_04" target-addresses=192.168.0.4/32 dst-address=0.0.0.0/0 \
interface=all parent=AO_NET direction=both priority=8 \
queue=default-small/default-small limit-at=64000/100000 \
max-limit=64000/100000 burst-limit=64000/256000 burst-time=10s/10s \
total-queue=default-small disabled=no
add name="KOM_05" target-addresses=192.168.0.5/32 dst-address=0.0.0.0/0 \
interface=all parent=AO_NET direction=both priority=8 \
queue=default-small/default-small limit-at=64000/100000 \
max-limit=64000/100000 burst-limit=64000/256000 burst-time=10s/10s \
total-queue=default-small disabled=no
add name="KOM_06" target-addresses=192.168.0.6/32 dst-address=0.0.0.0/0 \
interface=all parent=AO_NET direction=both priority=8 \
queue=default-small/default-small limit-at=64000/100000 \
max-limit=64000/100000 burst-limit=64000/256000 burst-time=10s/10s \
total-queue=default-small disabled=no
add name="KOM_07" target-addresses=192.168.0.7/32 dst-address=0.0.0.0/0 \
interface=all parent=AO_NET direction=both priority=8 \
queue=default-small/default-small limit-at=64000/100000 \
max-limit=64000/100000 burst-limit=64000/256000 burst-time=10s/10s \
total-queue=default-small disabled=no
add name="KOM_08" target-addresses=192.168.0.8/32 dst-address=0.0.0.0/0 \
interface=all parent=AO_NET direction=both priority=8 \
queue=default-small/default-small limit-at=64000/100000 \
max-limit=64000/100000 burst-limit=64000/256000 burst-time=10s/10s \
total-queue=default-small disabled=no
add name="KOM_09" target-addresses=192.168.0.9/32 dst-address=0.0.0.0/0 \
interface=all parent=AO_NET direction=both priority=8 \
queue=default-small/default-small limit-at=64000/100000 \
max-limit=64000/100000 burst-limit=64000/256000 burst-time=10s/10s \
total-queue=default-small disabled=no
add name="KASIR" target-addresses=192.168.0.25/32 dst-address=0.0.0.0/0 \
interface=all parent=AO_NET direction=both priority=8 \
queue=default-small/default-small limit-at=64000/100000 \
max-limit=64000/100000 burst-limit=64000/128000 burst-time=10s/10s \
total-queue=default-small disabled=no
add name="KOM_10" target-addresses=192.168.0.10/32 dst-address=0.0.0.0/0 \
interface=all parent=AO_NET direction=both priority=8 \
queue=default-small/default-small limit-at=64000/100000 \
max-limit=64000/100000 burst-limit=64000/256000 burst-time=10s/10s \
total-queue=default-small disabled=no
add name="KOM_11" target-addresses=192.168.0.11/32 dst-address=0.0.0.0/0 \
interface=all parent=AO_NET direction=both priority=8 \
queue=default-small/default-small limit-at=1000/1000 max-limit=1000/1000 \
total-queue=default-small disabled=no
add name="KOM_12" target-addresses=192.168.0.12/32 dst-address=0.0.0.0/0 \
interface=all parent=AO_NET direction=both priority=8 \
queue=default-small/default-small limit-at=1000/1000 max-limit=1000/1000 \
total-queue=default-small disabled=no
add name="KOM_13" target-addresses=192.168.0.13/32 dst-address=0.0.0.0/0 \
interface=all parent=AO_NET direction=both priority=8 \
queue=default-small/default-small limit-at=1000/1000 max-limit=1000/1000 \
total-queue=default-small disabled=no
add name="KOM_14" target-addresses=192.168.0.14/32 dst-address=0.0.0.0/0 \
interface=all parent=AO_NET direction=both priority=8 \
queue=default-small/default-small limit-at=1000/1000 max-limit=1000/1000 \
total-queue=default-small disabled=no
add name="KOM_15" target-addresses=192.168.0.15/32 dst-address=0.0.0.0/0 \
interface=all parent=AO_NET direction=both priority=8 \
queue=default-small/default-small limit-at=1000/1000 max-limit=1000/1000 \
total-queue=default-small disabled=no
add name="KOM_16" target-addresses=192.168.0.16/32 dst-address=0.0.0.0/0 \
interface=all parent=AO_NET direction=both priority=8 \
queue=default-small/default-small limit-at=1000/1000 max-limit=1000/1000 \
total-queue=default-small disabled=no
add name="KOM_17" target-addresses=192.168.0.17/32 dst-address=0.0.0.0/0 \
interface=all parent=AO_NET direction=both priority=8 \
queue=default-small/default-small limit-at=1000/1000 max-limit=1000/1000 \
total-queue=default-small disabled=no
add name="KOM_18" target-addresses=192.168.0.18/32 dst-address=0.0.0.0/0 \
interface=all parent=AO_NET direction=both priority=8 \
queue=default-small/default-small limit-at=1000/1000 max-limit=1000/1000 \
total-queue=default-small disabled=no
add name="KOM_19" target-addresses=192.168.0.19/32 dst-address=0.0.0.0/0 \
interface=all parent=AO_NET direction=both priority=8 \
queue=default-small/default-small limit-at=1000/1000 max-limit=1000/1000 \
total-queue=default-small disabled=no
add name="KOM_20" target-addresses=192.168.0.20/32 dst-address=0.0.0.0/0 \
interface=all parent=AO_NET direction=both priority=8 \
queue=default-small/default-small limit-at=1000/1000 max-limit=1000/1000 \
total-queue=default-small disabled=no
add name="KOM_21" target-addresses=192.168.0.21/32 dst-address=0.0.0.0/0 \
interface=all parent=AO_NET direction=both priority=8 \
queue=default-small/default-small limit-at=1000/1000 max-limit=1000/1000 \
total-queue=default-small disabled=no
add name="KOM_22" target-addresses=192.168.0.22/32 dst-address=0.0.0.0/0 \
interface=all parent=AO_NET direction=both priority=8 \
queue=default-small/default-small limit-at=1000/1000 max-limit=1000/1000 \
total-queue=default-small disabled=no
add name="KOM_23" target-addresses=192.168.0.23/32 dst-address=0.0.0.0/0 \
interface=all parent=AO_NET direction=both priority=8 \
queue=default-small/default-small limit-at=1000/1000 max-limit=1000/1000 \
total-queue=default-small disabled=no
add name="KOM_24" target-addresses=192.168.0.24/32 dst-address=0.0.0.0/0 \
interface=all parent=AO_NET direction=both priority=8 \
queue=default-small/default-small limit-at=1000/1000 max-limit=1000/1000 \
total-queue=default-small disabled=no
add name="KOM_26" target-addresses=192.168.0.26/32 dst-address=0.0.0.0/0 \
interface=all parent=AO_NET direction=both priority=8 \
queue=default-small/default-small limit-at=1000/1000 max-limit=1000/1000 \
total-queue=default-small disabled=no
add name="KOM_27" target-addresses=192.168.0.27/32 dst-address=0.0.0.0/0 \
interface=all parent=AO_NET direction=both priority=8 \
queue=default-small/default-small limit-at=1000/1000 max-limit=1000/1000 \
total-queue=default-small disabled=no
add name="KOM_28" target-addresses=192.168.0.28/32 dst-address=0.0.0.0/0 \
interface=all parent=AO_NET direction=both priority=8 \
queue=default-small/default-small limit-at=1000/1000 max-limit=1000/1000 \
total-queue=default-small disabled=no
add name="KOM_29" target-addresses=192.168.0.29/32 dst-address=0.0.0.0/0 \
interface=all parent=AO_NET direction=both priority=8 \
queue=default-small/default-small limit-at=1000/1000 max-limit=1000/1000 \
total-queue=default-small disabled=no
/ user
add name="admin" group=full address=0.0.0.0/0 comment="system default user" \
disabled=no
add name="operator" group=read address=0.0.0.0/0 comment="" disabled=no
/ user group
add name="read" policy=local,telnet,ssh,reboot,read,test,winbox,password,web,!f\
tp,!write,!policy
add name="write" policy=local,telnet,ssh,reboot,read,write,test,winbox,password\
,web,!ftp,!policy
add name="full" policy=local,telnet,ssh,ftp,reboot,read,write,policy,test,winbo\
x,password,web
/ user aaa
set use-radius=no accounting=yes interim-update=0s default-group=read
/ radius incoming
set accept=no port=1700
/ driver
/ snmp
set enabled=no contact="" location=""
/ snmp community
set public name="public" address=0.0.0.0/0 read-access=yes
/ tool bandwidth-server
set enabled=yes authenticate=yes allocate-udp-ports-from=2000 max-sessions=10
/ tool mac-server ping
set enabled=yes
/ tool e-mail
set server=0.0.0.0 from="<>"
/ tool sniffer
set interface=all only-headers=no memory-limit=10 file-name="" file-limit=10 \
streaming-enabled=no streaming-server=0.0.0.0 filter-stream=yes \
filter-protocol=ip-only filter-address1=0.0.0.0/0:0-65535 \
filter-address2=0.0.0.0/0:0-65535
/ tool graphing
set store-every=5min
/ tool graphing interface
add interface=all allow-address=0.0.0.0/0 store-on-disk=yes disabled=no
/ routing ospf
set router-id=0.0.0.0 distribute-default=never redistribute-connected=no \
redistribute-static=no redistribute-rip=no redistribute-bgp=no \
metric-default=1 metric-connected=20 metric-static=20 metric-rip=20 \
metric-bgp=20
/ routing ospf area
set backbone area-id=0.0.0.0 type=default translator-role=translate-candidate \
authentication=none prefix-list-import="" prefix-list-export="" \
disabled=no
/ routing bgp
set enabled=no as=1 router-id=0.0.0.0 redistribute-static=no \
redistribute-connected=no redistribute-rip=no redistribute-ospf=no
/ routing rip
set redistribute-static=no redistribute-connected=no redistribute-ospf=no \
redistribute-bgp=no metric-static=1 metric-connected=1 metric-ospf=1 \
metric-bgp=1 update-timer=30s timeout-timer=3m garbage-timer=2m
maaf y om sy pemula.maksudnya di copy'kan di mana y.bisa sedikit di jelasin dong hatur nuwunn
BalasHapus>>Buka Winbox
Hapus>>Pada menu winbox pilih New Terminal
>>Copy scrip diatas trus paste pada new terminal
>>Tekan enter
kalo PPoE gimana mas..? please Down 1mb /Up 256kb
BalasHapusmaaf mas pertanyaannya kurang jelas
BalasHapus