Início
ENDEREÇOS DOS LINKS E SAIDA ALTERAR NAS REGRAS CONFOME ENDEREÇOS DO SEUS LINKS
/ip address
add address=10.2.2.2/24 comment="Copel dsl" disabled=no in-interface=Link1
add address=10.2.3.2/24 comment="Copel dsl" in-interface=Link2
add address=189.85.19.226/28 comment="Dedicado" in-interface=Link3
add address=192.168.254.1/30 comment="" in-interface=BackBone network=192.168.88.0
BALANCE PCC
/ip firewall mangle
add chain=prerouting comment="===============================Sem Load Balance https list=================" dst-address-list=loopback dst-port=443 protocol=tcp in-interface=BackBone
add action=accept chain=prerouting comment="====================================================================" disabled=no dst-address=192.168.254.0/30 in-interface=BackBone
add action=accept chain=prerouting comment="" disabled=no dst-address=10.2.2.0/24 in-interface=BackBone
add action=accept chain=prerouting comment="" disabled=no dst-address=10.2.3.0/24 in-interface=BackBone
add action=accept chain=prerouting comment="" disabled=no dst-address=189.85.19.224/28 in-interface=BackBone
add action=mark-connection chain=prerouting comment="====================================================================" connection-mark=no-mark disabled=no in-interface=Link1 new-connection-mark=Link1_conn passthrough=yes
add action=mark-connection chain=prerouting comment="" connection-mark=no-mark disabled=no in-interface=Link2 new-connection-mark=Link2_conn passthrough=yes
add action=mark-connection chain=prerouting comment="" connection-mark=no-mark disabled=no in-interface=Link3 new-connection-mark=Link3_conn passthrough=yes
add action=jump chain=prerouting comment="====================================================================" connection-mark=no-mark disabled=no in-interface=BackBone jump-target=policy_router
add action=mark-routing chain=prerouting comment="====================================================================" connection-mark=Link1_conn disabled=no new-routing-mark=Link1_trafic passthrough=yes in-interface=BackBone
add action=mark-routing chain=prerouting comment="" connection-mark=Link2_conn disabled=no new-routing-mark=Link2_trafic passthrough=yes in-interface=BackBone
add action=mark-routing chain=prerouting comment="" connection-mark=Link3_conn disabled=no new-routing-mark=Link3_trafic passthrough=yes in-interface=BackBone
add action=mark-routing chain=output comment="====================================================================" connection-mark=Link1_conn disabled=no new-routing-mark=Link1_trafic passthrough=yes
add action=mark-routing chain=output comment="" connection-mark=Link2_conn disabled=no new-routing-mark=Link2_trafic passthrough=yes
add action=mark-routing chain=output comment="" connection-mark=Link3_conn disabled=no new-routing-mark=Link3_trafic passthrough=yes
add action=mark-connection chain=policy_router comment="====================================================================" disabled=no dst-address-type=!local new-connection-mark=Link1_conn passthrough=yes per-connection-classifier=both-addresses:3/0
add action=mark-connection chain=policy_router comment="" disabled=no dst-address-type=!local new-connection-mark=Link2_conn passthrough=yes per-connection-classifier=both-addresses:3/1
add action=mark-connection chain=policy_router comment="" disabled=no dst-address-type=!local new-connection-mark=Link3_conn passthrough=yes per-connection-classifier=both-addresses:3/2
LISTA DE ENDEREÇOS FORA DO BALANCEAMENTO PCC
/ip firewall address-list
add address=200.155.0.0/16 comment=Bradesco list=loopback
add address=200.201.0.0/16 comment="Caixa Economica Federal" list=loopback
add address=170.66.0.0/24 comment="Banco do Brasil" list=loopback
add address=200.220.0.0/16 comment=Santander list=loopback
add address=200.196.0.0/16 comment=Itau list=loopback
add address=189.56.0.0/16 comment="Nossa Caixa" list=loopback
add address=161.113.0.0/24 comment=HSBC list=loopback
add address=200.155.80.0-200.155.255.255 comment=Bradesco list=loopback
add address=200.220.186.0/24 comment=Bradesco list=loopback
add address=200.220.178.0/24 comment=Bradesco list=loopback
add address=200.159.128.0/24 comment=Bradesco list=loopback
add address=200.201.160.0/24 comment="Caixa Economica Federal" list=loopback
add address=200.201.166.0/24 comment="Caixa Economica Federal" list=loopback
add address=200.201.173.0/24 comment="Caixa Economica Federal" list=loopback
add address=200.201.174.0/24 comment="Caixa Economica Federal" list=loopback
ABRINDO PORTAS NO BALANCE PCC
/ip firewall nat
add action=dst-nat chain=dstnat comment="Abre porta claudio viana dstnat sempre antes do srcnat" dst-port=7070 protocol=tcp to-addresses=192.168.254.2 to-ports=8080
add action=dst-nat chain=dstnat dst-port=7550 protocol=tcp to-addresses=192.168.254.2 to-ports=7550
add action=dst-nat chain=dstnat dst-port=7500 protocol=tcp to-addresses=192.168.254.2 to-ports=7500
MASQUEREDE BALANCE PCC
/ip firewall nat
add action=masquerade chain=srcnat comment="" disabled=no out-in-interface=Link1
add action=masquerade chain=srcnat comment="" disabled=no out-in-interface=Link2
add action=masquerade chain=srcnat comment="" disabled=no out-in-interface=Link3
ROUTER LINKS E MARCAÇOES PCC
/ip route
add comment="" disabled=no distance=1 dst-address=0.0.0.0/0 gateway=10.2.2.1 routing-mark=Link1_trafic scope=30 target-scope=10
add comment="" disabled=no distance=1 dst-address=0.0.0.0/0 gateway=10.2.3.1 routing-mark=Link2_trafic scope=30 target-scope=10
add comment="" disabled=no distance=1 dst-address=0.0.0.0/0 gateway=189.85.19.225 routing-mark=Link3_trafic scope=30 target-scope=10
add comment="" disabled=no distance=2 dst-address=0.0.0.0/0 gateway=10.2.2.1 scope=30 target-scope=10
add comment="" disabled=no distance=3 dst-address=0.0.0.0/0 gateway=10.2.3.1 scope=30 target-scope=10
add comment="" disabled=no distance=4 dst-address=0.0.0.0/0 gateway=189.85.19.225 scope=30 target-scope=10
CACHE DNS
/ip dns
set allow-remote-requests=no cache-max-ttl=1w cache-size=2048KiB \
max-udp-packet-size=512 servers=8.8.8.8,8.8.4.4
/ip address
add address=10.2.2.2/24 comment="Copel dsl" disabled=no in-interface=Link1
add address=10.2.3.2/24 comment="Copel dsl" in-interface=Link2
add address=189.85.19.226/28 comment="Dedicado" in-interface=Link3
add address=192.168.254.1/30 comment="" in-interface=BackBone network=192.168.88.0
BALANCE PCC
/ip firewall mangle
add chain=prerouting comment="===============================Sem Load Balance https list=================" dst-address-list=loopback dst-port=443 protocol=tcp in-interface=BackBone
add action=accept chain=prerouting comment="====================================================================" disabled=no dst-address=192.168.254.0/30 in-interface=BackBone
add action=accept chain=prerouting comment="" disabled=no dst-address=10.2.2.0/24 in-interface=BackBone
add action=accept chain=prerouting comment="" disabled=no dst-address=10.2.3.0/24 in-interface=BackBone
add action=accept chain=prerouting comment="" disabled=no dst-address=189.85.19.224/28 in-interface=BackBone
add action=mark-connection chain=prerouting comment="====================================================================" connection-mark=no-mark disabled=no in-interface=Link1 new-connection-mark=Link1_conn passthrough=yes
add action=mark-connection chain=prerouting comment="" connection-mark=no-mark disabled=no in-interface=Link2 new-connection-mark=Link2_conn passthrough=yes
add action=mark-connection chain=prerouting comment="" connection-mark=no-mark disabled=no in-interface=Link3 new-connection-mark=Link3_conn passthrough=yes
add action=jump chain=prerouting comment="====================================================================" connection-mark=no-mark disabled=no in-interface=BackBone jump-target=policy_router
add action=mark-routing chain=prerouting comment="====================================================================" connection-mark=Link1_conn disabled=no new-routing-mark=Link1_trafic passthrough=yes in-interface=BackBone
add action=mark-routing chain=prerouting comment="" connection-mark=Link2_conn disabled=no new-routing-mark=Link2_trafic passthrough=yes in-interface=BackBone
add action=mark-routing chain=prerouting comment="" connection-mark=Link3_conn disabled=no new-routing-mark=Link3_trafic passthrough=yes in-interface=BackBone
add action=mark-routing chain=output comment="====================================================================" connection-mark=Link1_conn disabled=no new-routing-mark=Link1_trafic passthrough=yes
add action=mark-routing chain=output comment="" connection-mark=Link2_conn disabled=no new-routing-mark=Link2_trafic passthrough=yes
add action=mark-routing chain=output comment="" connection-mark=Link3_conn disabled=no new-routing-mark=Link3_trafic passthrough=yes
add action=mark-connection chain=policy_router comment="====================================================================" disabled=no dst-address-type=!local new-connection-mark=Link1_conn passthrough=yes per-connection-classifier=both-addresses:3/0
add action=mark-connection chain=policy_router comment="" disabled=no dst-address-type=!local new-connection-mark=Link2_conn passthrough=yes per-connection-classifier=both-addresses:3/1
add action=mark-connection chain=policy_router comment="" disabled=no dst-address-type=!local new-connection-mark=Link3_conn passthrough=yes per-connection-classifier=both-addresses:3/2
LISTA DE ENDEREÇOS FORA DO BALANCEAMENTO PCC
/ip firewall address-list
add address=200.155.0.0/16 comment=Bradesco list=loopback
add address=200.201.0.0/16 comment="Caixa Economica Federal" list=loopback
add address=170.66.0.0/24 comment="Banco do Brasil" list=loopback
add address=200.220.0.0/16 comment=Santander list=loopback
add address=200.196.0.0/16 comment=Itau list=loopback
add address=189.56.0.0/16 comment="Nossa Caixa" list=loopback
add address=161.113.0.0/24 comment=HSBC list=loopback
add address=200.155.80.0-200.155.255.255 comment=Bradesco list=loopback
add address=200.220.186.0/24 comment=Bradesco list=loopback
add address=200.220.178.0/24 comment=Bradesco list=loopback
add address=200.159.128.0/24 comment=Bradesco list=loopback
add address=200.201.160.0/24 comment="Caixa Economica Federal" list=loopback
add address=200.201.166.0/24 comment="Caixa Economica Federal" list=loopback
add address=200.201.173.0/24 comment="Caixa Economica Federal" list=loopback
add address=200.201.174.0/24 comment="Caixa Economica Federal" list=loopback
ABRINDO PORTAS NO BALANCE PCC
/ip firewall nat
add action=dst-nat chain=dstnat comment="Abre porta claudio viana dstnat sempre antes do srcnat" dst-port=7070 protocol=tcp to-addresses=192.168.254.2 to-ports=8080
add action=dst-nat chain=dstnat dst-port=7550 protocol=tcp to-addresses=192.168.254.2 to-ports=7550
add action=dst-nat chain=dstnat dst-port=7500 protocol=tcp to-addresses=192.168.254.2 to-ports=7500
MASQUEREDE BALANCE PCC
/ip firewall nat
add action=masquerade chain=srcnat comment="" disabled=no out-in-interface=Link1
add action=masquerade chain=srcnat comment="" disabled=no out-in-interface=Link2
add action=masquerade chain=srcnat comment="" disabled=no out-in-interface=Link3
ROUTER LINKS E MARCAÇOES PCC
/ip route
add comment="" disabled=no distance=1 dst-address=0.0.0.0/0 gateway=10.2.2.1 routing-mark=Link1_trafic scope=30 target-scope=10
add comment="" disabled=no distance=1 dst-address=0.0.0.0/0 gateway=10.2.3.1 routing-mark=Link2_trafic scope=30 target-scope=10
add comment="" disabled=no distance=1 dst-address=0.0.0.0/0 gateway=189.85.19.225 routing-mark=Link3_trafic scope=30 target-scope=10
add comment="" disabled=no distance=2 dst-address=0.0.0.0/0 gateway=10.2.2.1 scope=30 target-scope=10
add comment="" disabled=no distance=3 dst-address=0.0.0.0/0 gateway=10.2.3.1 scope=30 target-scope=10
add comment="" disabled=no distance=4 dst-address=0.0.0.0/0 gateway=189.85.19.225 scope=30 target-scope=10
CACHE DNS
/ip dns
set allow-remote-requests=no cache-max-ttl=1w cache-size=2048KiB \
max-udp-packet-size=512 servers=8.8.8.8,8.8.4.4
