+ Responder ao Tópico

  1. Pessoal , podem me ajudar? Utilizei o programa , várias versões, e continuo com um problema de lentidão para navegação. Peço que dêem uma olhada nas minhas configurações. Se coloco uma adsl direto no server , fica bem mais rápido, mas o link fica no talo. Estou com receio que o link dedicado seja instalado sem que o PCC funcione corretamente, pois ainda vou precisar mesclar com adsl por um tempo, antes de me livrar dele.

    3 links adsl ===>RB750===>ServerMK===>clientes


    /interface ethernet
    set 0 arp=enabled auto-negotiation=yes comment="" disabled=no full-duplex=yes \
    l2mtu=1526 mac-address=00:0C:42:58:0C5 mtu=1500 name=ether1 speed=\
    100Mbps
    set 1 arp=enabled auto-negotiation=yes bandwidth=unlimited/unlimited comment=\
    "" disabled=no full-duplex=yes l2mtu=1524 mac-address=00:0C:42:58:0C6 \
    master-port=none mtu=1500 name=ether2 speed=100Mbps
    set 2 arp=enabled auto-negotiation=yes bandwidth=unlimited/unlimited comment=\
    "" disabled=no full-duplex=yes l2mtu=1524 mac-address=00:0C:42:58:0C7 \
    master-port=none mtu=1500 name=ether3 speed=100Mbps
    set 3 arp=enabled auto-negotiation=yes bandwidth=unlimited/unlimited comment=\
    "" disabled=no full-duplex=yes l2mtu=1524 mac-address=00:0C:42:58:0C8 \
    master-port=none mtu=1500 name=ether4 speed=100Mbps
    set 4 arp=enabled auto-negotiation=yes bandwidth=unlimited/unlimited comment=\
    "" disabled=no full-duplex=yes l2mtu=1524 mac-address=00:0C:42:58:0C9 \
    master-port=none mtu=1500 name=ether5 speed=100Mbps

    /ip pool
    add name=pool1 ranges=192.168.50.10-192.168.50.20

    /ip dhcp-server
    add address-pool=pool1 authoritative=after-2sec-delay bootp-support=static \
    disabled=no interface=ether5 lease-time=1m name=server1

    /ppp profile
    set default change-tcp-mss=yes comment="" name=default only-one=default \
    use-compression=default use-encryption=default use-vj-compression=default
    set default-encryption change-tcp-mss=yes comment="" name=default-encryption \
    only-one=default use-compression=default use-encryption=yes \
    use-vj-compression=default

    /interface pppoe-client
    add ac-name="" add-default-route=no allow=pap,chap,mschap1,mschap2 comment="" \
    dial-on-demand=no disabled=no interface=ether1 max-mru=1480 max-mtu=1480 \
    mrru=disabled name=ether1adsl password=2226434343 profile=default \
    service-name="" use-peer-dns=no user=2226434343@telemar.com.br
    add ac-name="" add-default-route=no allow=pap,chap,mschap1,mschap2 comment="" \
    dial-on-demand=no disabled=no interface=ether2 max-mru=1480 max-mtu=1480 \
    mrru=disabled name=ether2adsl password=2226434343 profile=default \
    service-name="" use-peer-dns=no user=2226434343@telemar.com.br
    add ac-name="" add-default-route=no allow=pap,chap,mschap1,mschap2 comment="" \
    dial-on-demand=no disabled=no interface=ether3 max-mru=1480 max-mtu=1480 \
    mrru=disabled name=ether3adsl password=2226434343 profile=default \
    service-name="" use-peer-dns=no user=2226434343@telemar.com.br



    /interface bridge settings
    set use-ip-firewall=no use-ip-firewall-for-pppoe=no use-ip-firewall-for-vlan=\
    no

    /ip address
    add address=192.168.50.1/24 broadcast=192.168.50.255 comment="" disabled=no \
    interface=ether5 network=192.168.50.0

    /ip dhcp-server config
    set store-leases-disk=5m

    /ip dhcp-server lease
    add address=192.168.50.11 client-id=1:0:4:75:7d:67:b comment="" disabled=no \
    mac-address=00:04:75:7D:67:0B server=server1
    add address=192.168.50.10 client-id=1:0:d0:9:f3:76:89 comment="" disabled=no \
    mac-address=000:09:F3:76:89 server=server1

    /ip dhcp-server network
    add address=192.168.50.0/24 comment="" gateway=192.168.50.1

  2. /ip dns
    set allow-remote-requests=yes cache-max-ttl=1w cache-size=2048KiB \
    max-udp-packet-size=512 primary-dns=200.149.55.142 secondary-dns=\
    200.165.132.154

    /ip dns static
    add address=192.168.50.1 disabled=no name=PointNet.com ttl=1d

    /ip firewall address-list
    add address=200.155.80.0-200.155.255.255 comment=BRADESCO disabled=no list=\
    loopback
    add address=200.220.186.0/24 comment=BRADESCO disabled=no list=loopback
    add address=200.220.178.0/24 comment=BRADESCO disabled=no list=loopback
    add address=64.38.29.0/24 comment=RapidShare disabled=no list=loopback
    add address=208.69.32.0/24 comment="" disabled=no list=loopback
    add address=208.67.217.0/24 comment="" disabled=no list=loopback
    add address=201.7.178.0/24 comment="" disabled=no list=loopback
    add address=201.7.176.0/24 comment="" disabled=no list=loopback
    add address=200.159.128.0/24 comment=BRADESCO disabled=no list=loopback
    add address=201.7.176.0/20 comment="Vdeos - Globo" disabled=no list=loopback
    add address=208.84.247.0/24 comment="Vdeos - terratv" disabled=no list=\
    loopback
    add address=200.154.56.0/24 comment="Vdeos - terratv" disabled=no list=\
    loopback
    add address=200.201.160.0/24 comment="Caixa Economica Federal" disabled=no \
    list=loopback
    add address=200.201.166.0/24 comment="" disabled=no list=loopback
    add address=200.201.173.0/24 comment="" disabled=no list=loopback
    add address=200.201.174.0/24 comment="" disabled=no list=loopback
    add address=200.141.207.3 comment=Detran disabled=no list=loopback

    /ip firewall filter
    add action=drop chain=forward comment="BLOQUEIO DE DNS REVERSO" content=\
    veloxzone disabled=no

    /ip firewall mangle
    add action=accept chain=prerouting comment="HTTPS FORA DO LOADBALACED" \
    disabled=no dst-port=443 in-interface=ether5 protocol=tcp
    add action=accept chain=prerouting comment="FORA DO LOADBALACED" disabled=no \
    dst-address-list=loopback in-interface=ether5
    add action=change-ttl chain=forward comment="Filtro Tracert / Traceroute" \
    disabled=no new-ttl=set:30 protocol=icmp
    add action=mark-connection chain=prerouting comment="" disabled=no \
    in-interface=ether1adsl new-connection-mark=ether1adsl_conn passthrough=\
    yes
    add action=mark-connection chain=prerouting comment="" disabled=no \
    in-interface=ether2adsl new-connection-mark=ether2adsl_conn passthrough=\
    yes
    add action=mark-connection chain=prerouting comment="" disabled=no \
    in-interface=ether3adsl new-connection-mark=ether3adsl_conn passthrough=\
    yes
    add action=mark-routing chain=output comment="" connection-mark=\
    ether1adsl_conn disabled=no new-routing-mark=to_ether1adsl passthrough=\
    yes
    add action=mark-routing chain=output comment="" connection-mark=\
    ether2adsl_conn disabled=no new-routing-mark=to_ether2adsl passthrough=\
    yes
    add action=mark-routing chain=output comment="" connection-mark=\
    ether3adsl_conn disabled=no new-routing-mark=to_ether3adsl passthrough=\
    yes
    add action=mark-connection chain=prerouting comment="" connection-state=new \
    disabled=no dst-address-type=!local in-interface=ether5 \
    new-connection-mark=ether1adsl_conn passthrough=yes \
    per-connection-classifier=both-addresses-and-ports:3/0
    add action=mark-connection chain=prerouting comment="" connection-state=new \
    disabled=no dst-address-type=!local in-interface=ether5 \
    new-connection-mark=ether2adsl_conn passthrough=yes \
    per-connection-classifier=both-addresses-and-ports:3/1
    add action=mark-connection chain=prerouting comment="" connection-state=new \
    disabled=no dst-address-type=!local in-interface=ether5 \
    new-connection-mark=ether3adsl_conn passthrough=yes \
    per-connection-classifier=both-addresses-and-ports:3/2
    add action=mark-routing chain=prerouting comment="" connection-mark=\
    ether1adsl_conn disabled=no in-interface=ether5 new-routing-mark=\
    to_ether1adsl passthrough=yes
    add action=mark-routing chain=prerouting comment="" connection-mark=\
    ether2adsl_conn disabled=no in-interface=ether5 new-routing-mark=\
    to_ether2adsl passthrough=yes
    add action=mark-routing chain=prerouting comment="" connection-mark=\
    ether3adsl_conn disabled=no in-interface=ether5 new-routing-mark=\
    to_ether3adsl passthrough=yes



  3. /ip firewall nat
    add action=masquerade chain=srcnat comment="" disabled=no out-interface=\
    ether1adsl
    add action=masquerade chain=srcnat comment="" disabled=no out-interface=\
    ether2adsl
    add action=masquerade chain=srcnat comment="" disabled=no out-interface=\
    ether3adsl

    /ip route
    add comment=Link1 disabled=no distance=1 dst-address=0.0.0.0/0 gateway=\
    ether2adsl routing-mark=to_ether2adsl
    add comment=Link2 disabled=no distance=1 dst-address=0.0.0.0/0 gateway=\
    ether3adsl routing-mark=to_ether3adsl
    add comment=Link0 disabled=no distance=1 dst-address=0.0.0.0/0 gateway=\
    ether1adsl
    add comment=Link0 disabled=no distance=1 dst-address=0.0.0.0/0 gateway=\
    ether1adsl routing-mark=to_ether1adsl
    add comment=Link1 disabled=no distance=2 dst-address=0.0.0.0/0 gateway=\
    ether2adsl
    add comment=Link2 disabled=no distance=3 dst-address=0.0.0.0/0 gateway=\
    ether3adsl

    /system script
    add name=Link0Dow policy=\
    ftp,reboot,read,write,policy,test,winbox,password,sniff,sensitive source="\
    /ip firewall filter set [find comment=\"Link0\"] disable=yes;\r\
    \n/ip firewall nat set [find comment=\"Link0\"] disable=yes;\r\
    \n/ip firewall mangle set [find comment=\"Link0\"] disable=yes;\r\
    \n/ip route set [find comment=\"Link0\"] disable=yes;"
    add name=Link1Dow policy=\
    ftp,reboot,read,write,policy,test,winbox,password,sniff,sensitive source="\
    /ip firewall filter set [find comment=\"Link1\"] disable=yes;\r\
    \n/ip firewall nat set [find comment=\"Link1\"] disable=yes;\r\
    \n/ip firewall mangle set [find comment=\"Link1\"] disable=yes;\r\
    \n/ip route set [find comment=\"Link1\"] disable=yes;"
    add name=Link2Dow policy=\
    ftp,reboot,read,write,policy,test,winbox,password,sniff,sensitive source="\
    /ip firewall filter set [find comment=\"Link2\"] disable=yes;\r\
    \n/ip firewall nat set [find comment=\"Link2\"] disable=yes;\r\
    \n/ip firewall mangle set [find comment=\"Link2\"] disable=yes;\r\
    \n/ip route set [find comment=\"Link2\"] disable=yes;"
    add name=Link0Up policy=\
    ftp,reboot,read,write,policy,test,winbox,password,sniff,sensitive source="\
    /ip firewall filter set [find comment=\"Link0\"] disable=no;\r\
    \n/ip firewall nat set [find comment=\"Link0\"] disable=no;\r\
    \n/ip firewall mangle set [find comment=\"Link0\"] disable=no;\r\
    \n/ip route set [find comment=\"Link0\"] disable=no;"
    add name=Link1Up policy=\
    ftp,reboot,read,write,policy,test,winbox,password,sniff,sensitive source="\
    /ip firewall filter set [find comment=\"Link1\"] disable=no;\r\
    \n/ip firewall nat set [find comment=\"Link1\"] disable=no;\r\
    \n/ip firewall mangle set [find comment=\"Link1\"] disable=no;\r\
    \n/ip route set [find comment=\"Link1\"] disable=no;"
    add name=Link2Up policy=\
    ftp,reboot,read,write,policy,test,winbox,password,sniff,sensitive source="\
    /ip firewall filter set [find comment=\"Link2\"] disable=no;\r\
    \n/ip firewall nat set [find comment=\"Link2\"] disable=no;\r\
    \n/ip firewall mangle set [find comment=\"Link2\"] disable=no;\r\
    \n/ip route set [find comment=\"Link2\"] disable=no;"

  4. Também está lento o acesso a RB em muitas ocasiões

  5. Citação Postado originalmente por scan Ver Post
    Debian Lenny 5
    Scan, não sei se o assunto se desviou um pouco ou não. Por isso já peço desculpas se estou errado.
    Mas esta indicação de Debian Lenny5 seria para fazer o servidor de DNS?
    Onde eu encontro esta versão do debian. No site oficial tem vários links, e eu procuro uma versão bem mais enxuta pois não vou precisar de todos os recursos. Qual daqueles links tem a versão mais básica?

    Eu baixei um iso com cerca de 147 mega, mas deu sempre um erro no mesmo ponto.
    Última edição por 1929; 23-07-2010 às 23:53.






Tags para este Tópico

Visite: BR-Linux ·  VivaOLinux ·  Dicas-L