Início
Boa tarde, estou com dificuldades na implantação do Thundercahe em minha rede e gostaria da ajuda de vcs.
esta da seguinte forma:
link----rb------thunder
|
|_____clientes
rb ether1 192.168.88.1
thunder 192.168.88.2
rb ether3 192.168.8.1
fiz o nat na rb para sair internet para o thunder e outro para os clientes
segui estas regras aqui mas quando o mangle REDIRECT THUNDERCACHE esta ativado a net cai para o cliente
/ip route
add disabled=no distance=1 dst-address=0.0.0.0/0 gateway=192.168.88.2 \
routing-mark=Thunder_router scope=30 target-scope=10
/ip firewall nat
add action=masquerade chain=srcnat disabled=no src-address=192.168.8.0/24
/ip firewall nat
add action=masquerade chain=srcnat comment="MASCARAMENTO DO THUNDER CACHE 7" \
disabled=no src-address=192.168.88.0/24
/ip firewall nat
add action=dst-nat chain=dstnat comment="ACESSO EXTERNO THUNDERCACHE" disabled=no dst-port=82 \
protocol=tcp to-addresses=192.168.88.2 to-ports=82
/ip firewall mangle
add action=mark-routing chain=prerouting comment="REDIRECT THUNDERCACHE" \
disabled=no dst-address-list=!NO_CACHE dst-port=80 in-interface=!ether1 \
new-routing-mark=Thunder_router passthrough=no protocol=tcp src-address=\
192.168.8.0/24
add action=mark-packet chain=postrouting comment="CACHE FULL THUNDER 7" \
disabled=no dscp=18 new-packet-mark="cache full" passthrough=yes
/queue type
add kind=pcq name=Thunder pcq-classifier=dst-address pcq-limit=50 pcq-rate=0 \
pcq-total-limit=5000000
set default-small kind=pfifo name=default-small pfifo-limit=10
/queue tree
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=10M name="CACHE FULL" packet-mark="cache full" parent=\
global-out priority=8 queue=Thunder
/tool netwatch
add comment="status proxy" disabled=no down-script="/ip firewall mangle set [f\
ind comment="REDIRECT THUNDERCACHE"] disabled=yes" host=192.168.88.2 \
interval=1m timeout=1s up-script="/ip firewall mangle set [find comment="\
REDIRECT THUNDERCACHE"] disabled=no"
no clienet consigo acessar o thunder normal
esta da seguinte forma:
link----rb------thunder
|
|_____clientes
rb ether1 192.168.88.1
thunder 192.168.88.2
rb ether3 192.168.8.1
fiz o nat na rb para sair internet para o thunder e outro para os clientes
segui estas regras aqui mas quando o mangle REDIRECT THUNDERCACHE esta ativado a net cai para o cliente
/ip route
add disabled=no distance=1 dst-address=0.0.0.0/0 gateway=192.168.88.2 \
routing-mark=Thunder_router scope=30 target-scope=10
/ip firewall nat
add action=masquerade chain=srcnat disabled=no src-address=192.168.8.0/24
/ip firewall nat
add action=masquerade chain=srcnat comment="MASCARAMENTO DO THUNDER CACHE 7" \
disabled=no src-address=192.168.88.0/24
/ip firewall nat
add action=dst-nat chain=dstnat comment="ACESSO EXTERNO THUNDERCACHE" disabled=no dst-port=82 \
protocol=tcp to-addresses=192.168.88.2 to-ports=82
/ip firewall mangle
add action=mark-routing chain=prerouting comment="REDIRECT THUNDERCACHE" \
disabled=no dst-address-list=!NO_CACHE dst-port=80 in-interface=!ether1 \
new-routing-mark=Thunder_router passthrough=no protocol=tcp src-address=\
192.168.8.0/24
add action=mark-packet chain=postrouting comment="CACHE FULL THUNDER 7" \
disabled=no dscp=18 new-packet-mark="cache full" passthrough=yes
/queue type
add kind=pcq name=Thunder pcq-classifier=dst-address pcq-limit=50 pcq-rate=0 \
pcq-total-limit=5000000
set default-small kind=pfifo name=default-small pfifo-limit=10
/queue tree
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=10M name="CACHE FULL" packet-mark="cache full" parent=\
global-out priority=8 queue=Thunder
/tool netwatch
add comment="status proxy" disabled=no down-script="/ip firewall mangle set [f\
ind comment="REDIRECT THUNDERCACHE"] disabled=yes" host=192.168.88.2 \
interval=1m timeout=1s up-script="/ip firewall mangle set [find comment="\
REDIRECT THUNDERCACHE"] disabled=no"
no clienet consigo acessar o thunder normal
