bom, nao gosto muito de postar regras prontas... pq o que servir pra vc nao vai servir pra outros...pq? pq se a marcação de pesos estiver erada nao funcionara corretamente,mas vamos la
1:zere a rb e remova a configuração defult(isso e importante quando abrir novamente o winbox escolha a opção remover nao pode haver nem uma configuração,ou seja nem ip definido)
obs: modens todos em bridge,ou seja nao podem estar rotiados
abra o new terminal e digite:
yesCódigo :system reset-configuration
2:renomeie as interfaces
Link1
Link2
Link3
Local
3:adicionar ip
4:criar os discadoresCódigo :/ip addressadd address=192.168.100.1/24 disabled=no interface=Local network=\ 192.168.100.0
Código :/interface pppoe-client add ac-name="" add-default-route=no allow=pap,chap,mschap1,mschap2 \ dial-on-demand=no disabled=no interface=Link1 max-mru=1480 max-mtu=1480 \ mrru=disabled name=adsl_Link1 password=sua senha profile=default \ service-name="" use-peer-dns=no user=seu login add ac-name="" add-default-route=no allow=pap,chap,mschap1,mschap2 \ dial-on-demand=no disabled=no interface=Link2 max-mru=1480 max-mtu=1480 \ mrru=disabled name=adsl_Link2 password=sua senha profile=default \ service-name="" use-peer-dns=no user=seu login add ac-name="" add-default-route=no allow=pap,chap,mschap1,mschap2 \ dial-on-demand=no disabled=no interface=Link3 max-mru=1480 max-mtu=1480 \ mrru=disabled name=adsl_Link3 password=sua senha profile=default \ service-name="" use-peer-dns=no user=seu login
5:adicionando dns
Código :/ip dnsset allow-remote-requests=yes cache-max-ttl=1w cache-size=2048KiB \ max-udp-packet-size=512 servers=189.38.95.95,189.38.95.96 /ip dns static add address=192.168.100.1 disabled=no name=DNS ttl=1d
6:Nat's
Código :/ip firewall nat add action=masquerade chain=srcnat comment="Nat's" disabled=no out-interface=\ !Local src-address=0.0.0.0/0
7:marcaçoes
Código :/ip firewall mangle add action=accept chain=prerouting comment="HTTPS FORA DO LOADBALACED" \ disabled=no dst-port=443 in-interface=Local protocol=tcp add action=accept chain=prerouting comment="FORA DO LOADBALACED" disabled=no \ dst-address-list=loopback in-interface=Local add action=change-ttl chain=forward comment="Filtro Tracert / Traceroute" \ disabled=no new-ttl=set:30 passthrough=yes protocol=icmp add action=mark-connection chain=prerouting comment=\ "Marca Novas Conexoes PPPOE" connection-state=new disabled=no in-interface=\ adsl_Link1 new-connection-mark=adsl_Link1_conn passthrough=yes add action=mark-connection chain=prerouting connection-state=new disabled=no \ in-interface=adsl_Link2 new-connection-mark=adsl_Link2_conn passthrough=yes add action=mark-connection chain=prerouting connection-state=new disabled=no \ in-interface=adsl_Link3 new-connection-mark=adsl_Link3_conn passthrough=yes add action=mark-routing chain=output comment="Marca Rotas de Saida" \ connection-mark=adsl_Link1_conn disabled=no new-routing-mark=to_adsl_Link1 \ passthrough=yes add action=mark-routing chain=output connection-mark=adsl_Link2_conn disabled=\ no new-routing-mark=to_adsl_Link2 passthrough=yes add action=mark-routing chain=output connection-mark=adsl_Link3_conn disabled=\ no new-routing-mark=to_adsl_Link3 passthrough=yes add action=mark-connection chain=prerouting comment=\ "Classificadores de Peso PCC" connection-state=new disabled=no \ dst-address-type=!local in-interface=Local new-connection-mark=\ adsl_Link1_conn passthrough=yes per-connection-classifier=\ both-addresses-and-ports:3/0 add action=mark-connection chain=prerouting connection-state=new disa dst-address-type=!local in-interface=Local new-connection-mark=\ adsl_Link2_conn passthrough=yes per-connection-classifier=\ both-addresses-and-ports:3/1 add action=mark-connection chain=prerouting connection-state=new disa dst-address-type=!local in-interface=Local new-connection-mark=\ adsl_Link3_conn passthrough=yes per-connection-classifier=\ both-addresses-and-ports:3/2 add action=mark-routing chain=prerouting comment="Marcando Rotas de E connection-mark=adsl_Link1_conn disabled=no in-interface=Local \ new-routing-mark=to_adsl_Link1 passthrough=yes add action=mark-routing chain=prerouting connection-mark=adsl_Link2_c disabled=no in-interface=Local new-routing-mark=to_adsl_Link2 pas yes add action=mark-routing chain=prerouting connection-mark=adsl_Link3_c disabled=no in-interface=Local new-routing-mark=to_adsl_Link3 pas yes
8:rotas
Código :/ip routeadd comment=Link0 disabled=no distance=1 dst-address=0.0.0.0/0 gateway=adsl_Link1 routing-mark=to_adsl_Link1 scope=30 \ target-scope=10 add comment=Link1 disabled=no distance=1 dst-address=0.0.0.0/0 gateway=adsl_Link2 routing-mark=to_adsl_Link2 scope=30 \ target-scope=10 add comment=Link2 disabled=no distance=1 dst-address=0.0.0.0/0 gateway=adsl_Link3 routing-mark=to_adsl_Link3 scope=30 \ target-scope=10 add comment=Link0 disabled=no distance=1 dst-address=0.0.0.0/0 gateway=adsl_Link1 scope=30 target-scope=10 add comment=Link1 disabled=no distance=2 dst-address=0.0.0.0/0 gateway=adsl_Link2 scope=30 target-scope=10 add comment=Link2 disabled=no distance=3 dst-address=0.0.0.0/0 gateway=adsl_Link3 scope=30 target-scope=10
9:loopback
Código :/ip firewall address-listadd address=200.155.80.0-200.155.255.255 comment=BRADESCO disabled=no list=loopback add address=200.220.186.0/24 comment=BRADESCO disabled=no list=loopback add address=200.220.178.0/24 comment=BRADESCO disabled=no list=loopback add address=64.38.29.0/24 comment=RapidShare disabled=no list=loopback add address=208.69.32.0/24 disabled=no list=loopback add address=208.67.217.0/24 disabled=no list=loopback add address=201.7.178.0/24 disabled=no list=loopback add address=201.7.176.0/24 disabled=no list=loopback add address=200.159.128.0/24 comment=BRADESCO disabled=no list=loopback add address=201.7.176.0/20 comment="Vdeos - Globo" disabled=no list=loopback add address=208.84.247.0/24 comment="Vdeos - terratv" disabled=no list=loopback add address=200.154.56.0/24 comment="Vdeos - terratv" disabled=no list=loopback add address=200.201.160.0/24 comment="Caixa Economica Federal" disabled=no list=loopback add address=200.201.166.0/24 disabled=no list=loopback add address=200.201.173.0/24 disabled=no list=loopback add address=200.201.174.0/24 disabled=no list=loopback add address=200.141.207.3 comment=Detran disabled=no list=loopback add address=200.220.178.3 comment=Santander disabled=no list=loopback add address=201.7.176.0/20 comment="Globo Videos" disabled=no list=loopback add address=201.7.176.0/24 comment="Globo Videos" disabled=no list=loopback add address=186.192.82.107 comment="Globo Videos" disabled=no list=loopback add address=186.192.80.0/20 comment="Globo Videos" disabled=no list=loopback add address=201.7.180.0/24 comment="Globo Videos" disabled=no list=loopback
10:scripts
Código :/system script add name=Link0Dow policy=\ ftp,reboot,read,write,policy,test,winbox,password,sniff,sensitive source="\ /ip firewall filter set [find comment=\"Link0\"] disabled=yes;\r\ \n/ip firewall nat set [find comment=\"Link0\"] disabled=yes;\r\ \n/ip firewall mangle set [find comment=\"Link0\"] disabled=yes;\r\ \n/ip route set [find comment=\"Link0\"] disabled=yes;" /system script add name=Link1Dow policy=\ ftp,reboot,read,write,policy,test,winbox,password,sniff,sensitive source="\ /ip firewall filter set [find comment=\"Link1\"] disabled=yes;\r\ \n/ip firewall nat set [find comment=\"Link1\"] disabled=yes;\r\ \n/ip firewall mangle set [find comment=\"Link1\"] disabled=yes;\r\ \n/ip route set [find comment=\"Link1\"] disabled=yes;" /system script add name=Link2Dow policy=\ ftp,reboot,read,write,policy,test,winbox,password,sniff,sensitive source="\ /ip firewall filter set [find comment=\"Link2\"] disabled=yes;\r\ \n/ip firewall nat set [find comment=\"Link2\"] disabled=yes;\r\ \n/ip firewall mangle set [find comment=\"Link2\"] disabled=yes;\r\ \n/ip route set [find comment=\"Link2\"] disabled=yes;" /system script add name=Link0Up policy=\ ftp,reboot,read,write,policy,test,winbox,password,sniff,sensitive source="\ /ip firewall filter set [find comment=\"Link0\"] disabled=no;\r\ \n/ip firewall nat set [find comment=\"Link0\"] disabled=no;\r\ \n/ip firewall mangle set [find comment=\"Link0\"] disabled=no;\r\ \n/ip route set [find comment=\"Link0\"] disabled=no;" /system script add name=Link1Up policy=\ ftp,reboot,read,write,policy,test,winbox,password,sniff,sensitive source="\ /ip firewall filter set [find comment=\"Link1\"] disabled=no;\r\ \n/ip firewall nat set [find comment=\"Link1\"] disabled=no;\r\ \n/ip firewall mangle set [find comment=\"Link1\"] disabled=no;\r\ \n/ip route set [find comment=\"Link1\"] disabled=no;" /system script add name=Link2Up policy=\ ftp,reboot,read,write,policy,test,winbox,password,sniff,sensitive source="\ /ip firewall filter set [find comment=\"Link2\"] disabled=no;\r\ \n/ip firewall nat set [find comment=\"Link2\"] disabled=no;\r\ \n/ip firewall mangle set [find comment=\"Link2\"] disabled=no;\r\ \n/ip route set [find comment=\"Link2\"] disabled=no;"
lembrando...:
load balance simétrico básico de 3 links exitem melhorias que pode ser adicionadas a esse modelo, cabendo a cada um estudar e adapta-las a cada necessidade ,nao peçam mais regras prontas q nao postarei mais.
boa sorte a todos.