+ Responder ao Tópico



  1. #25

    Padrão ^n Consegui colocar pra rodar...

    amigos tentei de todas as formas mais ñ onsegui colocar pra rodar algum poderia me dá uma ajuda.
    uso a versão 2.9.27. ether1 ( Link ) e ether2 ( clientes.)

    / ip firewall mangle

    add chain=output protocol=tcp src-port=3128 content="X-Cache: HIT" action=mark-connection new-connection-mark=squid-connection-HIT passthrough=yes comment="Cache-squid" disabled=no
    add chain=output connection-mark=squid-connection-HIT action=mark-packet new-packet-mark=squid-packet-HIT passthrough=no comment="" disabled=no
    add chain=prerouting in-interface=ether2 src-address=10.10.0.0/24 action=mark-packet new-packet-mark=test-up passthrough=no comment="UP TRAFFIC" disabled=no
    add chain=forward src-address=10.10.0.0/24 action=mark-connection new-connection-mark=test-conn passthrough=yes comment="CONN-MARK" disabled=no
    add chain=forward in-interface=ether1 connection-mark=test-conn action=mark-packet new-packet-mark=test-down passthrough=no comment="DOWN-DIRECT CONNECTION" disabled=no
    add chain=output out-interface=ether2 dst-address=10.10.0.0/24 action=mark-packet new-packet-mark=test-down passthrough=no comment="DOWN-VIA PROXY
    disabled=no

    / queue tree

    add name="downstream" parent=global-in packet-mark=test-down limit-at=1024000 queue=default priority=1 max-limit=1024000 burst-limit=0 burst-threshold=0 burst-time=0s disabled=no
    add name="upstream" parent=global-in packet-mark=test-up limit-at=512000 queue=default priority=1 max-limit=512000 burst-limit=0 burst-threshold=0 burst-time=0s disabled=no
    add name="Cache-full" parent=global-out packet-mark=squid-packet-HIT limit-at=2000000 queue=default priority=8 max-limit=2000000 burst-limit=0 burst-threshold=0 burst-time=0s disabled=no

    Sempre lendo e aprendendo e quando possivel ajudando....

  2. #26

    Padrão

    galeta depois de muita luta consegui cache full tow em teste....


    brigadão quem pode ajudar




    sempre lendo e aprendendo.......



  3. #27

    Padrão

    Citação Postado originalmente por talesarconet Ver Post
    amigo estow com uma duvida que está marcado de vermelho e e fiquei com uma broquinha para o up do server qd desabilito o cache full fica blz.

    Alguem poderia olha estas regras?

    / ip firewall mangle

    add chain=output protocol=tcp src-port=3128 content="X-Cache: HIT" action=mark-connection new-connection-mark=squid-connection-HIT passthrough=yes comment="Cache-squid" disabled=no
    add chain=output connection-mark=squid-connection-HIT action=mark-packet new-packet-mark=squid-packet-HIT passthrough=no comment="" disabled=no
    add chain=prerouting in-interface=ether2 src-address=10.10.0.0/24 action=mark-packet new-packet-mark=test-up passthrough=no comment="UP TRAFFIC" disabled=no
    add chain=forward src-address=10.10.0.0/24 action=mark-connection new-connection-mark=test-conn passthrough=yes comment="CONN-MARK" disabled=no
    add chain=forward in-interface=ether1 connection-mark=test-conn action=mark-packet new-packet-mark=test-down passthrough=no comment="DOWN-DIRECT CONNECTION" disabled=no
    add chain=output out-interface=ether2 dst-address=10.10.0.0/24 action=mark-packet new-packet-mark=test-down passthrough=no comment="DOWN-VIA PROXY
    disabled=no

    / queue tree

    add name="downstream" parent=aq uso oq packet-mark=test-down limit-at=1024000 queue=default priority=1 max-limit=1024000 burst-limit=0 burst-threshold=0 burst-time=0s disabled=no
    add name="upstream" parent=global-in packet-mark=test-up limit-at=512000 queue=default priority=1 max-limit=512000 burst-limit=0 burst-threshold=0 burst-time=0s disabled=no
    add name="Cache-full" parent=global-out packet-mark=squid-packet-HIT limit-at=2000000 queue=default priority=8 max-limit=2000000 burst-limit=0 burst-threshold=0 burst-time=0s disabled=no

    agradeço a todos do under sempre nos ajudando

    ai vc coloca o nome da sua interface de saida por exemplo (cliente)

  4. #28

    Padrão

    na regra do amigo josafa estava faltando um (acentos) rsrsrs ne meu deu certo!


    / ip firewall mangle
    add chain=output protocol=tcp src-port=3128 content="X-Cache: HIT" action=mark-connection new-connection-mark=squid-connection-HIT passthrough=yes \
    comment="Cache-squid" disabled=no
    add chain=output connection-mark=squid-connection-HIT action=mark-packet new-packet-mark=squid-packet-HIT passthrough=no comment="" disabled=no
    add chain=prerouting in-interface=Cliente src-address=192.168.1.0/24 action=mark-packet new-packet-mark=test-up passthrough=no comment="UP TRAFFIC" \
    disabled=no
    add chain=forward src-address=192.168.1.0/24 action=mark-connection new-connection-mark=test-conn passthrough=yes comment="CONN-MARK" disabled=no
    add chain=forward in-interface=Link connection-mark=test-conn action=mark-packet new-packet-mark=test-down passthrough=no comment="DOWN-DIRECT \
    CONNECTION" disabled=no
    add chain=output out-interface=Cliente dst-address=192.168.1.0/24 action=mark-packet new-packet-mark=test-down passthrough=no comment="DOWN-VIA PROXY" \
    disabled=no
    / queue tree
    add name="downstream" parent=Cliente packet-mark=test-down limit-at=1024000 queue=default priority=1 max-limit=1024000 burst-limit=0 burst-threshold=0 \
    burst-time=0s disabled=no
    add name="upstream" parent=global-in packet-mark=test-up limit-at=512000 queue=default priority=1 max-limit=512000 burst-limit=0 burst-threshold=0 \
    burst-time=0s disabled=no
    add name="Cache-full" parent=global-out packet-mark=squid-packet-HIT limit-at=2000000 queue=default priority=8 max-limit=2000000 burst-limit=0 \
    burst-threshold=0 burst-time=0s disabled=no


    em vermelho e a interface de saida que no meu caso e (Cliente)
    em azul e a faixa de ip que vc usa
    em verde e a interface de entrada que no meu caso e (Link)



  5. #29

    Padrão

    Olá amigos do Fórum!

    como faço para aplicar essas regras, sou novo no mk, e não sei onde colocar esses scripst.

    ah, queria dizer que tenho o mk funcionando com DHCP, PPPoE. Só que só pega a net quando é discado o pppoe, queria saber se esse CACHE-FULL funciona para quem usa PPPoE?

    obrigado

    obrigado.

  6. #30

    Padrão

    funciona com pppoe sim, mas tem q efetuar a regra de firewall para as conexões pppoe passarem pela porta do proxy!