Langkah Praktek Manajemen Bandwith dengan
Mikrotik RB 941 dengan CLI ::
- Interface yang dipakai untuk menghubungkan MikroTik dengan jaringan
internet beri nama public. - Interface yang dipakai untuk
menghubungkan MikroTik dengan jaringan
Local beri nama local. - Konfigurasi Routing
- Konfigurasi NAT
- Konfigurasi IP Address tiap-tiap Client
- Manajemen bandwidth jenis queue simple
Queue Simple merupakan cara
sederhana melakukan limit data rate untuk
IP
Address atau subnet. Perhatikan illustrasi berikut :
Address atau subnet. Perhatikan illustrasi berikut :
Berikut ini adalah langkah-langkah konfigurasi queue simple :
a. Melalui aplikasi Winbox, pilih menu New Terminal.
b. Berikut ini adalah perintah konfigurasi queue simple.
a. Melalui aplikasi Winbox, pilih menu New Terminal.
b. Berikut ini adalah perintah konfigurasi queue simple.
[admin@MikroTik] > queue simple
[admin@MikroTik] /queue simple> add name=limit-client1 interface=lan target-address=192.168.1.2/32 maxlimit=64000/128000
[admin@MikroTik] /queue simple> add name=limit-client2 interface=lan target-address=192.168.1.3/32 maxlimit=64000/128000
[admin@MikroTik] /queue simple> add name=limit-client3 interface=lan target-address=192.168.1.4/32 maxlimit=64000/128000
[admin@MikroTik] /queue simple> print
[admin@MikroTik] /queue simple> add name=limit-client1 interface=lan target-address=192.168.1.2/32 maxlimit=64000/128000
[admin@MikroTik] /queue simple> add name=limit-client2 interface=lan target-address=192.168.1.3/32 maxlimit=64000/128000
[admin@MikroTik] /queue simple> add name=limit-client3 interface=lan target-address=192.168.1.4/32 maxlimit=64000/128000
[admin@MikroTik] /queue simple> print
Flags: X – disabled, I – invalid, D – dynamic
0 name=”limit-client1″ target-addresses=192.168.1.2/32
0 name=”limit-client1″ target-addresses=192.168.1.2/32
dst-address=0.0.0.0/0
interface=lan parent=none direction=both priority=8
queue=default-small/default-small limit-at=0/0 max-limit=64k/128k
burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s total-queue=default-small
1 name=”limit-client2″
target-addresses=192.168.1.3/32
dst-address=0.0.0.0/0 interface=lan parent=none
direction=both
priority=8 queue=default-small/default-small limit-at=0/0
max-limit=64k/128k burst-limit=0/0 burst-threshold=0/0
burst-time=0s/0s total-queue=default-small
2 name=”limit-client3″ target-addresses=192.168.1.4/32
dst-address=0.0.0.0/0 interface=lan parent=none
direction=both
priority=8 queue=default-small/default-small limit-at=0/0
max-limit=64k/128k burst-limit=0/0 burst-threshold=0/0
burst-time=0s/0s total-queue=default-small
[admin@MikroTik] /queue simple>
dst-address=0.0.0.0/0 interface=lan parent=none
direction=both
priority=8 queue=default-small/default-small limit-at=0/0
max-limit=64k/128k burst-limit=0/0 burst-threshold=0/0
burst-time=0s/0s total-queue=default-small
2 name=”limit-client3″ target-addresses=192.168.1.4/32
dst-address=0.0.0.0/0 interface=lan parent=none
direction=both
priority=8 queue=default-small/default-small limit-at=0/0
max-limit=64k/128k burst-limit=0/0 burst-threshold=0/0
burst-time=0s/0s total-queue=default-small
[admin@MikroTik] /queue simple>
Keterangan :
add name=limit-client1, menfinisikan nama dari queue simple untuk
konfigurasi komputer client 1.
Interface=local, merupakan antarmuka/interface untuk gateway client.
target-addresses=192.168.1.2/32, merupakan IP address milik komputer
Client1.
max-limit=64000/128000, merupakan limit maksimum komputer client untuk
uplink 64 kbps dan downlink 128 kbps.
add name=limit-client1, menfinisikan nama dari queue simple untuk
konfigurasi komputer client 1.
Interface=local, merupakan antarmuka/interface untuk gateway client.
target-addresses=192.168.1.2/32, merupakan IP address milik komputer
Client1.
max-limit=64000/128000, merupakan limit maksimum komputer client untuk
uplink 64 kbps dan downlink 128 kbps.
- Manajemen bandwidth jenis queue tree
Queue Tree merupakan limit
bandwidth yang kompleks karena pelimitan
dapat dikelompokkan berdasarkan portokol, ports atau kelompok IP Address.
Sebelum melakukan pelimitan, terlebih dahulu harus dilakukan penandaan paket
aliran paket menggunakan suatu tanda mangle agar paket tersebut dikenal oleh
queue tree. Mangle adalah istilah yang dipakai pada mikrotik. Hal ini bertujuan
untuk membedakan paket yang downlink only dan uplink only sehingga limit pada
bandwidth dapat bekerja optimal.
dapat dikelompokkan berdasarkan portokol, ports atau kelompok IP Address.
Sebelum melakukan pelimitan, terlebih dahulu harus dilakukan penandaan paket
aliran paket menggunakan suatu tanda mangle agar paket tersebut dikenal oleh
queue tree. Mangle adalah istilah yang dipakai pada mikrotik. Hal ini bertujuan
untuk membedakan paket yang downlink only dan uplink only sehingga limit pada
bandwidth dapat bekerja optimal.
Berikut adalah implementasi queue tree, semua client
akan dibatasi dengan
limit downlink (interface local) 192 kbps dan uplink (antarmuka public) 96
kbps. Sementara bandwidth uplink untuk tiap-tiap client adalah 32 kbps dan
downlink 64 kbps. Perhatikan illustrasi berikut :
limit downlink (interface local) 192 kbps dan uplink (antarmuka public) 96
kbps. Sementara bandwidth uplink untuk tiap-tiap client adalah 32 kbps dan
downlink 64 kbps. Perhatikan illustrasi berikut :
Berikut
ini adalah proses konfigurasi queue tree :
a.
Konfigurasi mangle untuk client 1
[admin@MikroTik]
> ip firewall mangle
[admin@MikroTik] /ip firewall mangle> add src-address=
192.168.1.2/32 action=mark-connection newconnectionmark=mark-client1
chain=prerouting
[admin@MikroTik] /ip firewall mangle> add src-address=
192.168.1.2/32 action=mark-connection newconnectionmark=mark-client1
chain=prerouting
[admin@MikroTik]
/ip firewall mangle> add connectionmark=markclient1
action=mark-packet new-packet-mark=client1 chain=prerouting
action=mark-packet new-packet-mark=client1 chain=prerouting
[admin@MikroTik]
/ip firewall mangle> print
Flags: X – disabled, I – invalid, D – dynamic
Flags: X – disabled, I – invalid, D – dynamic
0
chain=prerouting action=mark-connection newconnectionmark=mark-client1
passthrough=yes srcaddress=192.168.1.2
passthrough=yes srcaddress=192.168.1.2
1 chain=prerouting action=mark-packet
new-packet-mark=client1 passthrough=yes connection-mark=mark-client1
[admin@MikroTik] /ip firewall mangle>
[admin@MikroTik] /ip firewall mangle>
b.
Konfigurasi queue tree untuk client 1
[admin@MikroTik]
/ip firewall mangle> /queue tree
[admin@MikroTik] /queue tree> add name=client1-downlink parent=lan
limit-at=96000 packet-mark=client1 max-limit=192000
[admin@MikroTik] /queue tree> add name=client1-uplink parent=wan
limit-at=32000 packet-mark=client1 max-limit=64000
[admin@MikroTik] /queue tree> print
Flags: X – disabled, I – invalid
[admin@MikroTik] /queue tree> add name=client1-downlink parent=lan
limit-at=96000 packet-mark=client1 max-limit=192000
[admin@MikroTik] /queue tree> add name=client1-uplink parent=wan
limit-at=32000 packet-mark=client1 max-limit=64000
[admin@MikroTik] /queue tree> print
Flags: X – disabled, I – invalid
0 name=”client1-downlink” parent=local packet-mark=client1
limit-at=96k queue=default priority=8 max-limit=192k burstlimit=0 burst-threshold=0 burst-time=0s
1 name=”client1-uplink” parent=public packet-mark=client1
limitat=32k queue=default priority=8 max-limit=64k burstlimit=0 burst-threshold=0 burst-time=0s
[admin@MikroTik]
/queue tree>
c.
Konfigurasi mangle untuk client 2
[admin@MikroTik]
/queue tree> /ip firewall mangle
[admin@MikroTik] /ip firewall mangle> add
srcaddress=192.168.1.3/32 action=mark-connection newconnectionmark=mark-client2 chain=prerouting
[admin@MikroTik] /ip firewall mangle> add
srcaddress=192.168.1.3/32 action=mark-connection newconnectionmark=mark-client2 chain=prerouting
[admin@MikroTik]
/ip firewall mangle> add connectionmark=markclient2
action=mark-packet new-packet-mark=client2 chain=prerouting
action=mark-packet new-packet-mark=client2 chain=prerouting
[admin@MikroTik]
/ip firewall mangle> print
Flags: X – disabled, I – invalid, D – dynamic
Flags: X – disabled, I – invalid, D – dynamic
0 chain=prerouting action=mark-connection new-
connectionmark=mark-client1 passthrough=yes srcaddress=192.168.1.2
1 chain=prerouting action=mark-packet new-packet-mark=client1
passthrough=yes connection-mark=mark-client1
2 chain=prerouting action=mark-connection newconnectionmark=mark-client2
passthrough=yes srcaddress=192.168.1.3
passthrough=yes connection-mark=mark-client1
2 chain=prerouting action=mark-connection newconnectionmark=mark-client2
passthrough=yes srcaddress=192.168.1.3
3
chain=prerouting action=mark-packet new-packet-mark=client2
passthrough=yes connection-mark=mark-client2
[admin@MikroTik] /ip firewall mangle>
passthrough=yes connection-mark=mark-client2
[admin@MikroTik] /ip firewall mangle>
d. Konfigurasi queue tree untuk client 2
[admin@MikroTik] /ip firewall mangle> /queue tree
[admin@MikroTik] /queue tree> add name=client2-downlink parent=lan
limit-at=96000 packet-mark=client2 max-limit=192000
[admin@MikroTik] /queue tree> add name=client2-uplink parent=wan
limit-at=32000 packet-mark=client2 max-limit=64000
[admin@MikroTik] /queue tree> print
Flags: X – disabled, I – invalid
0 name=”client1-downlink” parent=local packet-mark=client1
limit-at=96k queue=default priority=8 max-limit=192k burstlimit=0 burst-threshold=0 burst-time=0s
[admin@MikroTik] /queue tree> add name=client2-downlink parent=lan
limit-at=96000 packet-mark=client2 max-limit=192000
[admin@MikroTik] /queue tree> add name=client2-uplink parent=wan
limit-at=32000 packet-mark=client2 max-limit=64000
[admin@MikroTik] /queue tree> print
Flags: X – disabled, I – invalid
0 name=”client1-downlink” parent=local packet-mark=client1
limit-at=96k queue=default priority=8 max-limit=192k burstlimit=0 burst-threshold=0 burst-time=0s
1 name=”client1-uplink” parent=public
packet-mark=client1
limitat=32k queue=default priority=8 max-limit=64k burstlimit=0 burst-threshold=0 burst-time=0s
limitat=32k queue=default priority=8 max-limit=64k burstlimit=0 burst-threshold=0 burst-time=0s
2 name=”client2-downlink” parent=local
packet-mark=client2
limit-at=96k queue=default priority=8 max-limit=192k burstlimit=0 burst-threshold=0 burst-time=0s
limit-at=96k queue=default priority=8 max-limit=192k burstlimit=0 burst-threshold=0 burst-time=0s
3 name=”client2-uplink” parent=public
packet-mark=client2
limitat=32k queue=default priority=8 max-limit=64k burstlimit=0
burst-threshold=0 burst-time=0s
limitat=32k queue=default priority=8 max-limit=64k burstlimit=0
burst-threshold=0 burst-time=0s
e. Konfigurasi mangle untuk client 3
[admin@MikroTik] /queue tree> /ip firewall mangle
[admin@MikroTik] /ip firewall mangle> add
srcaddress=192.168.1.4/32 action=mark-connection newconnectionmark=mark-client3 chain=prerouting
[admin@MikroTik] /ip firewall mangle> add
srcaddress=192.168.1.4/32 action=mark-connection newconnectionmark=mark-client3 chain=prerouting
[admin@MikroTik] /ip firewall mangle> add
connectionmark=markclient3
action=mark-packet new-packet-mark=client3 chain=prerouting
action=mark-packet new-packet-mark=client3 chain=prerouting
[admin@MikroTik] /ip firewall mangle> print
Flags: X – disabled, I – invalid, D – dynamic
0 chain=prerouting action=mark-connection new-
connectionmark=mark-client1 passthrough=yes srcaddress=192.168.1.2
connectionmark=mark-client1 passthrough=yes srcaddress=192.168.1.2
1
chain=prerouting action=mark-packet new-packet-mark=client1
passthrough=yes connection-mark=mark-client1
2 chain=prerouting action=mark-connection newconnectionmark=mark-client2
passthrough=yes srcaddress=192.168.1.3
passthrough=yes connection-mark=mark-client1
2 chain=prerouting action=mark-connection newconnectionmark=mark-client2
passthrough=yes srcaddress=192.168.1.3
3
chain=prerouting action=mark-packet new-packet-mark=client2
passthrough=yes connection-mark=mark-client2
4 chain=prerouting action=mark-connection newconnectionmark=mark-client3
passthrough=yes src-address=192.168.1.4
5 chain=prerouting action=mark-packet new-packet-mark=client3
passthrough=yes connection-mark=mark-client3
passthrough=yes connection-mark=mark-client2
4 chain=prerouting action=mark-connection newconnectionmark=mark-client3
passthrough=yes src-address=192.168.1.4
5 chain=prerouting action=mark-packet new-packet-mark=client3
passthrough=yes connection-mark=mark-client3
f. Konfigurasi queue tree untuk client 3
[admin@MikroTik] /ip firewall mangle> /queue tree
[admin@MikroTik] /queue tree> add name=client3-downlink parent=lan
limit-at=96000 packet-mark=client3 max-limit=192000
[admin@MikroTik] /queue tree> add name=client3-uplink parent=wan
limit-at=32000 packet-mark=client3 max-limit=64000
[admin@MikroTik] /queue tree> print
[admin@MikroTik] /queue tree> add name=client3-downlink parent=lan
limit-at=96000 packet-mark=client3 max-limit=192000
[admin@MikroTik] /queue tree> add name=client3-uplink parent=wan
limit-at=32000 packet-mark=client3 max-limit=64000
[admin@MikroTik] /queue tree> print
Flags: X – disabled, I – invalid
0 name=”client1-downlink” parent=lan
packet-mark=client1
limitat=96k queue=default priority=8 max-limit=192k burstlimit=0
burst-threshold=0 burst-time=0s
limitat=96k queue=default priority=8 max-limit=192k burstlimit=0
burst-threshold=0 burst-time=0s
1 name=”client1-uplink” parent=wan
packet-mark=client1
limitat=32k queue=default priority=8 max-limit=64k burstlimit=0
burst-threshold=0 burst-time=0s
limitat=32k queue=default priority=8 max-limit=64k burstlimit=0
burst-threshold=0 burst-time=0s
2 name=”client2-downlink” parent=lan
packet-mark=client2
limitat=96k queue=default priority=8 max-limit=192k burstlimit=0
burst-threshold=0 burst-time=0s
limitat=96k queue=default priority=8 max-limit=192k burstlimit=0
burst-threshold=0 burst-time=0s
3 name=”client2-uplink” parent=wan
packet-mark=client2
limitat=32k queue=default priority=8 max-limit=64k burstlimit=0
burst-threshold=0 burst-time=0s
limitat=32k queue=default priority=8 max-limit=64k burstlimit=0
burst-threshold=0 burst-time=0s
4 name=”client3-uplink” parent=wan
packet-mark=client3
limitat=32k queue=default priority=8 max-limit=64k burst-
limit=0 burst-threshold=0 burst-time=0s
limitat=32k queue=default priority=8 max-limit=64k burst-
limit=0 burst-threshold=0 burst-time=0s
5 name=”client3-downlink” parent=lan
packet-mark=client3
limitat=96k queue=default priority=8 max-limit=192k burstlimit=0
burst-threshold=0 burst-time=0s
limitat=96k queue=default priority=8 max-limit=192k burstlimit=0
burst-threshold=0 burst-time=0s
[admin@MikroTik] /queue tree>
0 komentar:
Posting Komentar