Re: Balance PCC com Failover Avançado (Sem Script)
bom dia senhores, alguem poderia me ajudar, fiz esse balance numa rb, porem dentro da rb tem net mas nao navega de maneira alguma.
MikroTik RouterOS 6.34.3 (c) 1999-2015 http://www.mikrotik.com/
/ip pool
add name="P00L _DHCP" ranges=192.168.66.2
add name=dhcp_pool1 ranges=0.0.0.2-255.255.255.254
add name=dhcp_pool2 ranges=192.168.66.2
/ip address
add address=192.168.66.1/30 interface="wi-fi zone" network=192.168.66.0
add address=192.168.1.2/24 interface="link 50mb modem roteado" network=192.168.1.0
/ip dhcp-server
add address-pool="P00L _DHCP" disabled=no interface="wi-fi zone" name=dhcp1
/ip dhcp-server network
add address=192.168.1.0/30 dns-server=192.168.1.1,208.67.222.222 gateway=192.168.1.1
add address=192.168.66.0/30 gateway=192.168.66.1
/ip dns
set allow-remote-requests=yes cache-size=10240KiB max-udp-packet-size=512 servers=208.67.222.222,189.38.95.95
/ip firewall filter
add action=drop chain=output comment="XXX NAO ACETAR CONEX\D5ES INVALIDAS XXX" connection-state=invalid
/ip firewall mangle
add action=mark-connection chain=prerouting comment="XXX MARCA\C7\D5ES DE CONEXA\C7\D5ES XXX" in-interface="wi-fi zone" new-connection-mark=LINK1_CONN \
per-connection-classifier=both-addresses-and-ports:3/0
add action=mark-connection chain=prerouting in-interface="wi-fi zone" new-connection-mark=LINK2_CONN per-connection-classifier=both-addresses-and-ports:3/1
add action=mark-connection chain=prerouting in-interface="wi-fi zone" new-connection-mark=LINK3_CONN per-connection-classifier=both-addresses-and-ports:3/2
add action=mark-connection chain=prerouting comment="XXX ENTRADA E SAIDA CLIENTES PELO MESMO LINK XXX" in-interface="wi-fi zone" new-connection-mark=LINK1_OUT
add action=mark-connection chain=prerouting in-interface="wi-fi zone" new-connection-mark=LINK2_OUT
add action=mark-connection chain=prerouting in-interface="wi-fi zone" new-connection-mark=LINK3_OUT
add action=mark-routing chain=prerouting comment="XXX MARCA\C7\D5ES ROTAS XXX" connection-mark=LINK1_CONN in-interface="wi-fi zone" new-routing-mark=LINK1_ROUT
add action=mark-routing chain=prerouting connection-mark=LINK2_CONN in-interface="wi-fi zone" new-routing-mark=LINK2_ROUT
add action=mark-routing chain=prerouting connection-mark=LINK3_CONN in-interface="wi-fi zone" new-routing-mark=LINK3_ROUT
/ip firewall nat
add action=masquerade chain=srcnat comment=NAT out-interface="!wi-fi zone"
/ip route
add distance=1 gateway=192.168.1.1 routing-mark=LINK1_ROUT
add distance=1 gateway=pppoe-out15mb routing-mark=LINK2_ROUT
add distance=1 gateway=pppoe-out10mb routing-mark=LINK3_ROUT
add check-gateway=ping distance=1 gateway=192.168.1.1
add check-gateway=ping distance=2 gateway=pppoe-out15mb
add check-gateway=ping distance=3 gateway=pppoe-out10mb
/ip service
set telnet disabled=yes
set ftp disabled=yes
set ssh disabled=yes
set api disabled=yes
set api-ssl disabled=yes
[admin@BALANCE NOVO] /ip>
Re: Balance PCC com Failover Avançado (Sem Script)
Pessoal, eu to com dois links roteados, um de 10 mega e outro de 3 mega, eu fiz
3 marcações para o link de 10 e 1 marcação para o link de 3 mega, para o balance eu usei uma regra que eu peguei hoje no site da mikrotik, o meu problema é que só ta usando a carga do link 1 e o link 2 só entra em ação se eu irar o cabo do link 1
abaixo esta minha configuração do balance PCC:
/interface ethernet
set [ find default-name=ether1 ] name=ISP1
set [ find default-name=ether2 ] name=ISP2
set [ find default-name=ether3 ] name=LAN
/ip pool
add name=dhcp_pool1 ranges=192.168.20.2-192.168.20.254
/ip dhcp-server
add address-pool=dhcp_pool1 disabled=no interface=LAN name=dhcp1
/ip address
add address=192.168.20.1/24 interface=LAN network=192.168.20.0
add address=172.0.0.2/24 interface=ISP1 network=172.0.0.0
add address=10.0.0.2/24 interface=ISP2 network=10.0.0.0
/ip dhcp-server network
add address=192.168.20.0/24 dns-server=8.8.8.8,8.8.4.4 gateway=192.168.20.1
/ip firewall mangle
add chain=prerouting comment="****** FORA DO BALANCE ******" dst-port=443 in-interface=LAN protocol=tcp
add chain=prerouting comment="****** ACEITAR TRAFEGO DA REDE INTERNA ******" dst-address=172.0.0.0/24 in-interface=LAN
add chain=prerouting dst-address=10.0.0.0/24 in-interface=LAN
add action=mark-connection chain=prerouting comment="****** MARCA\C7\C3O LINK1 E LINK2 ******" connection-mark=no-mark in-interface=ISP1 new-connection-mark=ISP1_conn
add action=mark-connection chain=prerouting connection-mark=no-mark in-interface=ISP2 new-connection-mark=ISP2_conn
add action=mark-connection chain=prerouting comment="****** DIVISAO DE CARGAS LINK 10MEGA ******" connection-mark=no-mark dst-address-type=!local in-interface=LAN new-connection-mark=ISP1_conn \
per-connection-classifier=both-addresses:4/0
add action=mark-connection chain=prerouting connection-mark=no-mark dst-address-type=!local in-interface=LAN new-connection-mark=ISP1_conn per-connection-classifier=both-addresses:4/1
add action=mark-connection chain=prerouting connection-mark=no-mark dst-address-type=!local in-interface=LAN new-connection-mark=ISP1_conn per-connection-classifier=both-addresses:4/2
add action=mark-connection chain=prerouting comment="****** DIVISAO DE CARGAS LINK 3MEGA ******" connection-mark=no-mark dst-address-type=!local in-interface=LAN new-connection-mark=ISP2_conn \
per-connection-classifier=both-addresses:4/3
add action=mark-routing chain=prerouting comment="******MARCA\C7\C3O DE ROTAS DE ENTRADA ******" connection-mark=ISP1_conn in-interface=LAN new-routing-mark=to_ISP1
add action=mark-routing chain=prerouting connection-mark=ISP2_conn in-interface=LAN new-routing-mark=to_ISP2
add action=mark-routing chain=output comment="******MARCA\C7\C3O DE ROTAS DE SA\CDDA ******" connection-mark=ISP1_conn new-routing-mark=to_ISP1
add action=mark-routing chain=output connection-mark=ISP2_conn new-routing-mark=to_ISP2
/ip firewall nat
add action=masquerade chain=srcnat out-interface=ISP1
add action=masquerade chain=srcnat out-interface=ISP2
/ip route
add check-gateway=ping distance=1 gateway=172.0.0.1 routing-mark=to_ISP1
add check-gateway=ping distance=1 gateway=10.0.0.1 routing-mark=to_ISP2
add check-gateway=ping distance=1 gateway=172.0.0.1
add check-gateway=ping distance=2 gateway=10.0.0.1
o que tem de errado que nao ta acontecendo a divisao dos links ?
Re: Balance PCC com Failover Avançado (Sem Script)
Citação:
Postado originalmente por
telthebest
bom dia senhores, alguem poderia me ajudar, fiz esse balance numa rb, porem dentro da rb tem net mas nao navega de maneira alguma.
MikroTik RouterOS 6.34.3 (c) 1999-2015 http://www.mikrotik.com/
/ip pool
add name="P00L _DHCP" ranges=192.168.66.2
add name=dhcp_pool1 ranges=0.0.0.2-255.255.255.254
add name=dhcp_pool2 ranges=192.168.66.2
/ip address
add address=192.168.66.1/30 interface="wi-fi zone" network=192.168.66.0
add address=192.168.1.2/24 interface="link 50mb modem roteado" network=192.168.1.0
/ip dhcp-server
add address-pool="P00L _DHCP" disabled=no interface="wi-fi zone" name=dhcp1
/ip dhcp-server network
add address=192.168.1.0/30 dns-server=192.168.1.1,208.67.222.222 gateway=192.168.1.1
add address=192.168.66.0/30 gateway=192.168.66.1
/ip dns
set allow-remote-requests=yes cache-size=10240KiB max-udp-packet-size=512 servers=208.67.222.222,189.38.95.95
/ip firewall filter
add action=drop chain=output comment="XXX NAO ACETAR CONEX\D5ES INVALIDAS XXX" connection-state=invalid
/ip firewall mangle
add action=mark-connection chain=prerouting comment="XXX MARCA\C7\D5ES DE CONEXA\C7\D5ES XXX" in-interface="wi-fi zone" new-connection-mark=LINK1_CONN \
per-connection-classifier=both-addresses-and-ports:3/0
add action=mark-connection chain=prerouting in-interface="wi-fi zone" new-connection-mark=LINK2_CONN per-connection-classifier=both-addresses-and-ports:3/1
add action=mark-connection chain=prerouting in-interface="wi-fi zone" new-connection-mark=LINK3_CONN per-connection-classifier=both-addresses-and-ports:3/2
add action=mark-connection chain=prerouting comment="XXX ENTRADA E SAIDA CLIENTES PELO MESMO LINK XXX" in-interface="wi-fi zone" new-connection-mark=LINK1_OUT
add action=mark-connection chain=prerouting in-interface="wi-fi zone" new-connection-mark=LINK2_OUT
add action=mark-connection chain=prerouting in-interface="wi-fi zone" new-connection-mark=LINK3_OUT
add action=mark-routing chain=prerouting comment="XXX MARCA\C7\D5ES ROTAS XXX" connection-mark=LINK1_CONN in-interface="wi-fi zone" new-routing-mark=LINK1_ROUT
add action=mark-routing chain=prerouting connection-mark=LINK2_CONN in-interface="wi-fi zone" new-routing-mark=LINK2_ROUT
add action=mark-routing chain=prerouting connection-mark=LINK3_CONN in-interface="wi-fi zone" new-routing-mark=LINK3_ROUT
/ip firewall nat
add action=masquerade chain=srcnat comment=NAT out-interface="!wi-fi zone"
/ip route
add distance=1 gateway=192.168.1.1 routing-mark=LINK1_ROUT
add distance=1 gateway=pppoe-out15mb routing-mark=LINK2_ROUT
add distance=1 gateway=pppoe-out10mb routing-mark=LINK3_ROUT
add check-gateway=ping distance=1 gateway=192.168.1.1
add check-gateway=ping distance=2 gateway=pppoe-out15mb
add check-gateway=ping distance=3 gateway=pppoe-out10mb
/ip service
set telnet disabled=yes
set ftp disabled=yes
set ssh disabled=yes
set api disabled=yes
set api-ssl disabled=yes
[admin@BALANCE NOVO] /ip>
ja conseguiu por pra navegar ?
Re: Balance PCC com Failover Avançado (Sem Script)
Citação:
Postado originalmente por
telthebest
bom dia senhores, alguem poderia me ajudar, fiz esse balance numa rb, porem dentro da rb tem net mas nao navega de maneira alguma.
MikroTik RouterOS 6.34.3 (c) 1999-2015 http://www.mikrotik.com/
/ip pool
add name="P00L _DHCP" ranges=192.168.66.2
add name=dhcp_pool1 ranges=0.0.0.2-255.255.255.254
add name=dhcp_pool2 ranges=192.168.66.2
/ip address
add address=192.168.66.1/30 interface="wi-fi zone" network=192.168.66.0
add address=192.168.1.2/24 interface="link 50mb modem roteado" network=192.168.1.0
/ip dhcp-server
add address-pool="P00L _DHCP" disabled=no interface="wi-fi zone" name=dhcp1
/ip dhcp-server network
add address=192.168.1.0/30 dns-server=192.168.1.1,208.67.222.222 gateway=192.168.1.1
add address=192.168.66.0/30 gateway=192.168.66.1
/ip dns
set allow-remote-requests=yes cache-size=10240KiB max-udp-packet-size=512 servers=208.67.222.222,189.38.95.95
/ip firewall filter
add action=drop chain=output comment="XXX NAO ACETAR CONEX\D5ES INVALIDAS XXX" connection-state=invalid
/ip firewall mangle
add action=mark-connection chain=prerouting comment="XXX MARCA\C7\D5ES DE CONEXA\C7\D5ES XXX" in-interface="wi-fi zone" new-connection-mark=LINK1_CONN \
per-connection-classifier=both-addresses-and-ports:3/0
add action=mark-connection chain=prerouting in-interface="wi-fi zone" new-connection-mark=LINK2_CONN per-connection-classifier=both-addresses-and-ports:3/1
add action=mark-connection chain=prerouting in-interface="wi-fi zone" new-connection-mark=LINK3_CONN per-connection-classifier=both-addresses-and-ports:3/2
add action=mark-connection chain=prerouting comment="XXX ENTRADA E SAIDA CLIENTES PELO MESMO LINK XXX" in-interface="wi-fi zone" new-connection-mark=LINK1_OUT
add action=mark-connection chain=prerouting in-interface="wi-fi zone" new-connection-mark=LINK2_OUT
add action=mark-connection chain=prerouting in-interface="wi-fi zone" new-connection-mark=LINK3_OUT
add action=mark-routing chain=prerouting comment="XXX MARCA\C7\D5ES ROTAS XXX" connection-mark=LINK1_CONN in-interface="wi-fi zone" new-routing-mark=LINK1_ROUT
add action=mark-routing chain=prerouting connection-mark=LINK2_CONN in-interface="wi-fi zone" new-routing-mark=LINK2_ROUT
add action=mark-routing chain=prerouting connection-mark=LINK3_CONN in-interface="wi-fi zone" new-routing-mark=LINK3_ROUT
/ip firewall nat
add action=masquerade chain=srcnat comment=NAT out-interface="!wi-fi zone"
/ip route
add distance=1 gateway=192.168.1.1 routing-mark=LINK1_ROUT
add distance=1 gateway=pppoe-out15mb routing-mark=LINK2_ROUT
add distance=1 gateway=pppoe-out10mb routing-mark=LINK3_ROUT
add check-gateway=ping distance=1 gateway=192.168.1.1
add check-gateway=ping distance=2 gateway=pppoe-out15mb
add check-gateway=ping distance=3 gateway=pppoe-out10mb
/ip service
set telnet disabled=yes
set ftp disabled=yes
set ssh disabled=yes
set api disabled=yes
set api-ssl disabled=yes
[admin@BALANCE NOVO] /ip>
desculpa por nao ter respondido antes, é que eu só fui entrar hoje no under linux
enquanto ao seu balance eu nao vou poder te ajudar, pois eu também to aprendendo a fazer balanceamento, mas enquanto a navegação, tente fazer isso pra ver se navega:
vai em ip address e apague o ip que ta na interface que vai distribuir o dhcp na sua rede
e depois em new terminal, acrecente essa regra:
só que voce precisa editar a regra abaixo, onde esta "LAN", voce coloca o nome que ta na interface que vai distribuir o dhcp
/ip address
add address=192.168.66.1/24 interface=LAN network=192.168.20.0
em ip pool voce apaga os pool que voce tem e depois vai em new terminal e jogue essa regra:
/ip pool
add name=dhcp_pool1 ranges=192.168.66.2-192.168.66.254
em ip dhcp-server voce apaga os servidor que voce tem criado e joga essa regra em new terminal:
lembrando de editar antes de jogar em new terminal. onde ta "LAN", voce cola o nome da interface que vai distribuir o seu dhcp
/ip dhcp-server
add address-pool=dhcp_pool1 disabled=no interface=LAN name=dhcp1
em ip dhcp-server network voce apaga o que voce tem aí e depois joga essa regra em new terminal:
/ip dhcp-server network
add address=192.168.66.0/24 dns-server=8.8.8.8,8.8.4.4 gateway=192.168.66.1
depois vai em ip firewall nat e apague os nat que tiver na sua rb, depois vai em new terminal e joga essa regra:
lembrando de editar a regra antes de jogar em new terminal, onde ta "ISP1", voce cola o nome da interface onde esta conectado o seu modem 1 e onde ta "ISP2" você cola o nome da interface onde esta conectado o seu modem 2, se for modem em bridge voce tem que coloca o nome que ta no discador pppoe cliente da sua rb
exemplo "pppoe-out1" para o modem 1 e "pppoe-out2" para modem 2, cada regra com o seu devido nome do pppoe cliente
/ip firewall nat
add action=masquerade chain=srcnat out-interface=ISP1
add action=masquerade chain=srcnat out-interface=ISP2
agora por ultimo pra finalizar
troque os ips, onde ta "192.168.1.1", voce coloca o ip do seu modem 1 e onde ta "192.168.2.1", voce coloca o ip do seu modem 2
/ip route
add comment=rota_modem1 distance=1 gateway=192.168.1.1
add comment=rota_modem2 distance=1 gateway=192.168.2.1
lembrando que se seu modem tiver em bridge e voce tiver marcado a opçao de default router no pppoe cliente da sua rb, entao esse ultimo passo voce nao precisa fazer.
comenta aí se isso resolveu o seu problema pra que possamos ajudar em algo mais
Re: Balance PCC com Failover Avançado (Sem Script)
boa tarde pessoal sou novo no forum estou com balance aqui que beguei um becap com um amigo porem o mesmo nao esta funcionando tao bem gostaria de comfigurar um do zero para 4 links velox de 15mb e com modens em bridge se alguem poder da uma força eu agradeço muito