BW Management sebuah GameNet dan Warnet

Pertama siapkan 3 buah NIC masing-masing:

ether1=192.168.0.1 (IP Public)
ether2=192.168..1/24 (IP Lan)
ether3=192.168.10.10/24 (IP ke proxy external)
Asumsi router sudah jalan,baik remote dns maupun masquerade nya
Kedua bikin BW management menggunakan queue tree supaya pembagian bw merata
tidak saling rebutan jika salah satu klien sedang rakus membuka tab browser,tentu masih
ada jaminan bw buat semua klien untuk bermain game.
A. Bikin mangle terlebih dahulu untuk menandai packet-packet yang akan di manage
menandai packet ICMP
/ip firewall mangle
add action=mark-connection chain=prerouting comment=ICMP disabled=no
new-connection-mark=ICMP-CM \
passthrough=yes protocol=icmp
add action=mark-connection chain=forward comment="" disabled=no newconnection-mark=ICMP-CM passthrough=\
yes protocol=icmp
add action=change-ttl chain=prerouting comment="" connection-mark=ICMPCM disabled=no new-ttl=set:60 \
protocol=icmp
add action=change-ttl chain=forward comment="" connection-mark=ICMP-CM
disabled=no new-ttl=set:60 protocol=\
icmp
add action=mark-packet chain=prerouting comment="" connection-mark=ICMPCM disabled=no new-packet-mark=\
PRE-ICMP-PM passthrough=no protocol=icmp
add action=mark-packet chain=forward comment="" connection-mark=ICMP-CM
disabled=no new-packet-mark=\
POST-ICMP-PM passthrough=no protocol=icmp

menandai Call All Connection dan bypass ICMP

/ip firewall mangle

add action=mark-connection chain=prerouting comment=C.ALL-CN disabled=no
new-connection-mark=ALL-CN-PRE \
passthrough=yes protocol=!icmp src-address=192.168.1.0/24
add action=mark-connection chain=forward comment="" disabled=no dstaddress=192.168.1.0/24 \
new-connection-mark=ALL-CN-POST passthrough=yes protocol=!icmp
add action=mark-packet chain=prerouting comment=C.ALL-P connectionmark=ALL-CN-PRE disabled=no \
new-packet-mark=C.ALL-PRE passthrough=yes src-address=192.168.1.0/24
add action=mark-packet chain=forward comment="" connection-mark=ALL-CNPOST disabled=no dst-address=\
192.168.1.0/24 new-packet-mark=C.ALL-POST passthrough=yes

setelah packet All Connection (ALL-CN) tertandai seharusnya MikroTik sudah

mengcounter traffic

lihat pada gambar :

B. Selanjutnya tinggal bikin mangle per klien ini saya buat sampel 2 IP saja
selanjutnya tinggal menyesuaikan dan mengurutkan ke masing-masing network anda

menandai klien IP 192.168.1.2

/ip firewall mangle

add action=mark-packet chain=prerouting comment=SERVER connection-mark=ALLCN-PRE disabled=no \
new-packet-mark=SERVER-PRE passthrough=no src-address=192.168.1.2
add action=mark-packet chain=forward comment="" connection-mark=ALL-CN-POST
disabled=no dst-address=\
192.168.1.2 new-packet-mark=SERVER-POST passthrough=no
add action=mark-packet chain=prerouting comment=client01 connection-mark=ALLCN-PRE disabled=no \
new-packet-mark=client01-PRE passthrough=no src-address=192.168.1.3
add action=mark-packet chain=forward comment="" connection-mark=ALL-CN-POST
disabled=no dst-address=\
192.168.1.3 new-packet-mark=client01-POST passthrough=no
add action=mark-packet chain=prerouting comment=client02 connectionmark=ALL-CN-PRE disabled=no \
new-packet-mark=client02-PRE passthrough=no src-address=192.168.1.4
add action=mark-packet chain=forward comment="" connection-mark=ALL-CNPOST disabled=no dst-address=\
192.168.1.4 new-packet-mark=client02-POST passthrough=no
add action=mark-packet chain=prerouting comment=client03 connectionmark=ALL-CN-PRE disabled=no \
new-packet-mark=client03-PRE passthrough=no src-address=192.168.1.5
add action=mark-packet chain=forward comment="" connection-mark=ALL-CNPOST disabled=no dst-address=\
192.168.1.5 new-packet-mark=client03-POST passthrough=no
add action=mark-packet chain=prerouting comment=client04 connectionmark=ALL-CN-PRE disabled=no \
new-packet-mark=client04-PRE passthrough=no src-address=192.168.1.6
add action=mark-packet chain=forward comment="" connection-mark=ALL-CNPOST disabled=no dst-address=\
192.168.1.6 new-packet-mark=client04-POST passthrough=no
add action=mark-packet chain=prerouting comment=client05 connectionmark=ALL-CN-PRE disabled=no \
new-packet-mark=client05-PRE passthrough=no src-address=192.168.1.7
add action=mark-packet chain=forward comment="" connection-mark=ALL-CNPOST disabled=no dst-address=\
192.168.1.7 new-packet-mark=client05-POST passthrough=no
add action=mark-packet chain=prerouting comment=client06 connectionmark=ALL-CN-PRE disabled=no \
new-packet-mark=client06-PRE passthrough=no src-address=192.168.1.8

add action=mark-packet chain=forward comment="" connection-mark=ALL-CNPOST disabled=no dst-address=\

192.168.1.8 new-packet-mark=client06-POST passthrough=no
add action=mark-packet chain=prerouting comment=client07 connectionmark=ALL-CN-PRE disabled=no \
new-packet-mark=client07-PRE passthrough=no src-address=192.168.1.9
add action=mark-packet chain=forward comment="" connection-mark=ALL-CNPOST disabled=no dst-address=\
192.168.1.9 new-packet-mark=client07-POST passthrough=no
add action=mark-packet chain=prerouting comment=client08 connectionmark=ALL-CN-PRE disabled=no \
new-packet-mark=client08-PRE passthrough=no src-address=192.168.1.10
add action=mark-packet chain=forward comment="" connection-mark=ALL-CNPOST disabled=no dst-address=\
192.168.1.10 new-packet-mark=client08-POST passthrough=no
add action=mark-packet chain=prerouting comment=client09 connectionmark=ALL-CN-PRE disabled=no \
new-packet-mark=client09-PRE passthrough=no src-address=192.168.1.11
add action=mark-packet chain=forward comment="" connection-mark=ALL-CNPOST disabled=no dst-address=\
192.168.1.11 new-packet-mark=client09-POST passthrough=no
add action=mark-packet chain=prerouting comment=client10 connectionmark=ALL-CN-PRE disabled=no \
new-packet-mark= client10-PRE passthrough=no src-address=192.168.1.12
add action=mark-packet chain=forward comment="" connection-mark=ALL-CNPOST disabled=no dst-address=\
192.168.1.12 new-packet-mark=client10-POST passthrough=no
add action=mark-packet chain=prerouting comment=client11 connectionmark=ALL-CN-PRE disabled=no \
new-packet-mark=client11-PRE passthrough=no src-address=192.168.1.13
add action=mark-packet chain=forward comment="" connection-mark=ALL-CNPOST disabled=no dst-address=\
192.168.1.13 new-packet-mark=client11-POST passthrough=no
add action=mark-packet chain=prerouting comment=client12 connectionmark=ALL-CN-PRE disabled=no \
new-packet-mark= client12-PRE passthrough=no src-address=192.168.1.14
add action=mark-packet chain=forward comment="" connection-mark=ALL-CNPOST disabled=no dst-address=\
192.168.1.14 new-packet-mark=client12-POST passthrough=no
add action=mark-packet chain=prerouting comment=client13 connectionmark=ALL-CN-PRE disabled=no \
new-packet-mark= client13-PRE passthrough=no src-address=192.168.1.15
add action=mark-packet chain=forward comment="" connection-mark=ALL-CNPOST disabled=no dst-address=\
192.168.1.15 new-packet-mark=client13-POST passthrough=no
add action=mark-packet chain=prerouting comment=client14 connectionmark=ALL-CN-PRE disabled=no \
new-packet-mark= client14-PRE passthrough=no src-address=192.168.1.16
add action=mark-packet chain=forward comment="" connection-mark=ALL-CNPOST disabled=no dst-address=\
192.168.1.16 new-packet-mark=client14-POST passthrough=no
add action=mark-packet chain=prerouting comment=client15 connectionmark=ALL-CN-PRE disabled=no \
new-packet-mark=client15-PRE passthrough=no src-address=192.168.1.17
add action=mark-packet chain=forward comment="" connection-mark=ALL-CNPOST disabled=no dst-address=\
192.168.1.17 new-packet-mark=client15-POST passthrough=no

add action=mark-packet chain=prerouting comment=client16 connectionmark=ALL-CN-PRE disabled=no \

new-packet-mark=client16-PRE passthrough=no src-address=192.168.1.18
add action=mark-packet chain=forward comment="" connection-mark=ALL-CNPOST disabled=no dst-address=\
192.168.1.18 new-packet-mark=client16-POST passthrough=no

selesai sudah kita bikin manglenya

C. Ok di lanjutgan dengan membuat queue tree ,value disini jangan di jadikan petokan
silahkan rubah valuenya sesuai bw yang tersedia di network anda.
ini saya ambil contoh dengan bw dari isp 3M di bagi rata ke klien max masing-masing
mendapat 384k download 256k upload dengan jaminan bw 128k untuk menjaga biar
yang main game tidak terganggu

/queue tree
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0
max-limit=0 name=ALL-DN \
packet-mark=C.ALL-POST parent=global-out priority=8
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0
max-limit=0 name=ALL-UP \
packet-mark=C.ALL-PRE parent=global-in priority=8

add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limitat=128000 max-limit=256000 name=SERVER-DN \

packet-mark=SERVER-POST parent=ALL-DN priority=8 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limitat=128000 max-limit=256000 name=client01-DN \
packet-mark=client01-POST parent=ALL-DN priority=8 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limitat=128000 max-limit=256000 name=client02-DN \
packet-mark=client02-POST parent=ALL-DN priority=8 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limitat=128000 max-limit=256000 name=client03-DN \
packet-mark=client03-POST parent=ALL-DN priority=8 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limitat=128000 max-limit=256000 name=client04-DN \
packet-mark=client04-POST parent=ALL-DN priority=8 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limitat=128000 max-limit=256000 name=client05-DN \
packet-mark=client05-POST parent=ALL-DN priority=8 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limitat=128000 max-limit=256000 name=client06-DN \
packet-mark=client06-POST parent=ALL-DN priority=8 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limitat=128000 max-limit=256000 name=client07-DN \
packet-mark=client07-POST parent=ALL-DN priority=8 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limitat=128000 max-limit=256000 name=client08-DN \
packet-mark=client08-POST parent=ALL-DN priority=8 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limitat=128000 max-limit=256000 name=client09-DN \
packet-mark=client09-POST parent=ALL-DN priority=8 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limitat=128000 max-limit=256000 name=client10-DN \
packet-mark=client10-POST parent=ALL-DN priority=8 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limitat=128000 max-limit=256000 name=client11-DN \
packet-mark=client11-POST parent=ALL-DN priority=8 queue=default

add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limitat=128000 max-limit=256000 name=client12-DN \

packet-mark=client12-POST parent=ALL-DN priority=8 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limitat=128000 max-limit=256000 name=client13-DN \
packet-mark=client13-POST parent=ALL-DN priority=8 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limitat=128000 max-limit=256000 name=client14-DN \
packet-mark=client14-POST parent=ALL-DN priority=8 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limitat=128000 max-limit=256000 name=client15-DN \
packet-mark=client15-POST parent=ALL-DN priority=8 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limitat=128000 max-limit=256000 name=client16-DN \
packet-mark=client16-POST parent=ALL-DN priority=8 queue=default

add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limitat=128000 max-limit=256000 name=SERVER-UP \

packet-mark=SERVER-PRE parent=ALL-UP priority=8 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limitat=64000 max-limit=64000 name=client01-UP \
packet-mark=client01-PRE parent=ALL-UP priority=8 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limitat=64000 max-limit=64000 name=client02-UP \
packet-mark=client02-PRE parent=ALL-UP priority=8 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limitat=64000 max-limit=64000 name=client03-UP \
packet-mark=client03-PRE parent=ALL-UP priority=8 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limitat=64000 max-limit=64000 name=client04-UP \
packet-mark=client04-PRE parent=ALL-UP priority=8 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limitat=64000 max-limit=64000 name=client05-UP \
packet-mark=client05-PRE parent=ALL-UP priority=8 queue=default

add burst-limit=0 burst-threshold=0 burst-time=0s

at=64000 max-limit=64000 name=client06-UP \
packet-mark=client06-PRE parent=ALL-UP priority=8
add burst-limit=0 burst-threshold=0 burst-time=0s
at=64000 max-limit=64000 name=client07-UP \
packet-mark=client07-PRE parent=ALL-UP priority=8
add burst-limit=0 burst-threshold=0 burst-time=0s
at=64000 max-limit=64000 name=client08-UP \
packet-mark=client08-PRE parent=ALL-UP priority=8
add burst-limit=0 burst-threshold=0 burst-time=0s
at=64000 max-limit=64000 name=client09-UP \
packet-mark=client09-PRE parent=ALL-UP priority=8
add burst-limit=0 burst-threshold=0 burst-time=0s
at=64000 max-limit=64000 name=client10-UP \
packet-mark=client10-PRE parent=ALL-UP priority=8
add burst-limit=0 burst-threshold=0 burst-time=0s
at=64000 max-limit=64000 name=client11-UP \
packet-mark=client11-PRE parent=ALL-UP priority=8
add burst-limit=0 burst-threshold=0 burst-time=0s
at=64000 max-limit=64000 name=client12-UP \
packet-mark=client12-PRE parent=ALL-UP priority=8
add burst-limit=0 burst-threshold=0 burst-time=0s
at=64000 max-limit=64000 name=client13-UP \
packet-mark=client13-PRE parent=ALL-UP priority=8
add burst-limit=0 burst-threshold=0 burst-time=0s
at=64000 max-limit=64000 name=client14-UP \
packet-mark=client14-PRE parent=ALL-UP priority=8
add burst-limit=0 burst-threshold=0 burst-time=0s
at=64000 max-limit=64000 name=client15-UP \
packet-mark=client15-PRE parent=ALL-UP priority=8
add burst-limit=0 burst-threshold=0 burst-time=0s
at=64000 max-limit=64000 name=client16-UP \
packet-mark=client16-PRE parent=ALL-UP priority=8

disabled=no limitqueue=default
disabled=no limitqueue=default
disabled=no limitqueue=default
disabled=no limitqueue=default
disabled=no limitqueue=default
disabled=no limitqueue=default
disabled=no limitqueue=default
disabled=no limitqueue=default
disabled=no limitqueue=default
disabled=no limitqueue=default
disabled=no limitqueue=default

hasilnya screenshootnya :

Sudah selesai silahkan anda test di salah satu klien

jika traffic lagi sepi klien bisa mendapat bw lebih dari 384k dengan begitu pelanggan
akan merasa puas karena browsing lebih lancar

sampai ketemu lagi di firewall filter untuk menyaring packet downloader dan redirect to
proxy external.

IP MODEM port 1
IP LAN MIKROTIL PUBLIC 2
IP LAN MIKROTIL LAN
IP LAN
IP PROXY port 2
#
0
1
2

ADDRESS
192.168.0.1/24
192.168.1.1/24
192.168.10.1/24

NETWORK
192.168.0.0
192.168.1.0
192.168.10.0

: 192.168.0.100
: 192.168.0.1
: 192.168.1.1
: 192.168.1.2
: 192.168.10.1
BROADCAST
192.168.0.255
192.168.1.255
192.168.10.255

INTERFACE
WAN
LAN
PROXY