Tak perlu panjang lebar, berikut adalah langkah-langkah untuk Konfigurasi PCC Loadbalancing di Mikrotik:
Konfigurasi interface
/interface
set name=ISP1 ether1
set name=ISP2 ether2
set name=LOCAL ether3
Konfigurasi alamat IP Address di Mikrotik
/ip address
add address=192.168.1.2/24 interface=ISP1
add address=192.168.2.2/24 interface=ISP2
add address=192.168.0.1/24 interface=LOCAL
Konfigurasi DNS Server
/ip dns set servers=8.8.8.8,8.8.4.4 allow-remote-requests=yes max-udp-packet-size=512 cache-size=5000KiB
Memberikan stempel (Mangle) untuk memisahkan atau memilah paket yang masuk (input) maupun yang keluar (output).
/ip firewall mangle
add chain=input in-interface=ISP1 action=mark-connection new-connection-mark=ISP1-Koneksi
add chain=input in-interface=ISP2 action=mark-connection new-connection-mark=ISP2-Koneksi
add chain=output connection-mark=ISP1-Koneksi action=mark-routing new-routing-mark=ke-ISP1
add chain=output connection-mark=ISP2-Koneksi action=mark-routing new-routing-mark=ke-ISP2
Ditambahkan juga di mangle tanda untuk paket yang AKAN memasuki router (prerouting)
add chain=prerouting dst-address=192.168.1.0/24 action=accept in-interface=LOCAL
add chain=prerouting dst-address=192.168.2.0/24 action=accept in-interface=LOCAL
Nah disinilah penerapan yang perlu di perhatikan untuk PCC Load Balancing.
add chain=prerouting dst-address-type=!local in-interface=LOCAL per-connection-classifier=both-addresses-and-ports:2/0 action=mark-connection new-connection-mark=ISP1-Koneksi passthrough=yes
add chain=prerouting dst-address-type=!local in-interface=LOCAL per-connection-classifier=both-addresses-and-ports:2/1 action=mark-connection new-connection-mark=ISP2-Koneksi passthrough=yes
add chain=prerouting connection-mark=ISP1-Koneksi in-interface=LOCAL action=mark-routing new-routing-mark=ke-ISP1
add chain=prerouting connection-mark=ISP2-Koneksi in-interface=LOCAL action=mark-routing new-routing-mark=ke-ISP2
Penambahan Gateway yang harus disesuaikan dengan Routing Marknya. Jangan sampai terbalik.
/ip route
add dst-address=0.0.0.0/0 gateway=192.168.1.1 routing-mark=ke-ISP1 check-gateway=ping
add dst-address=0.0.0.0/0 gateway=192.168.2.1 routing-mark=ke-ISP2 check-gateway=ping
Bagian ini untuk Fail Over jika salah satu link ke ISP mati.
add dst-address=0.0.0.0/0 gateway=192.168.1.1 distance=11 check-gateway=ping
add dst-address=0.0.0.0/0 gateway=192.168.2.1 distance=12 check-gateway=ping
Konfigurasi NAT dengan menentukan Out Interface yang berbeda.
/ip firewall nat
add chain=srcnat out-interface=ISP1 action=masquerade
add chain=srcnat out-interface=ISP2 action=masquerade
Jika menggunakan WAN Link dengan Bandwidth yang berbeda semisal WAN1 mempunyai bandwidth 2MB dan WAN2 mempunyai bandwidth 4MB, maka tambahkan lagi rule marking PCC di WAN2.
add chain=prerouting dst-address-type=!local in-interface=Local per-connection-classifier=both-addresses-and-ports:2/0 action=mark-connection new-connection-mark=ISP1-Koneksi passthrough=yes
add chain=prerouting dst-address-type=!local in-interface=Local per-connection-classifier=both-addresses-and-ports:2/1 action=mark-connection new-connection-mark=ISP2-Koneksi passthrough=yes
add chain=prerouting dst-address-type=!local in-interface=Local per-connection-classifier=both-addresses-and-ports:2/2 action=mark-connection new-connection-mark=ISP2-Koneksi passthrough=yes
Khusus untuk yang menggunakan Hotspot, jika terjadi masalah seperti sulit untuk login, tambahkan rule dibawah ini.
/ip firewall nat add action=accept chain=pre-hotspot disabled=no dst-address-type=!local hotspot=auth
End of Configuration... Thanks...
Referensi: Mikrotik DUAL WAN Load Balancing using PCC method
No comments:
Post a Comment