Mungkin ada yang masih menggunakan mikrotik versi 2.9.27 yang crack, tapi ingin meng-update ke versi 3.22, atau ingin mencicipi vasilitas yang ada di versi 3. Ada baiknya update mikrotik anda ke versi 3.22. Sebenernya saya lebih ingin tahu cara cracknya timbang hanya memakai cracknya..!.
Dan lumayan juga tuk jadi bahan coba coba plus menambah pengetahuan tentang router mikrotik
Saran : Belilah product aslinya / routerboar ratusan ribu kok...!
ini dia caranya
[HIDE-THANKS]Caranya :
1. Download Mikrotik versi 2.9.51 , dan download SoftwareID-crack.npk lalu download juga mikrotik versi 3.22 untuk update terakhir terserah dimana downloadnya cari di google masih banyak yang menyimpannya. (atau lihat link downloadnya di bawah )
2. Buka Winbox dan login Drag semua file Mikrotik 2.9.51 ke dalam mikrotik dan tempatkan di dalam FILE (tempat file kita biasa membackups mikrotik)
3. Restart mikrotik 2.9.27 agar file upgradean terinstall
4. Setelah restart Buka Lagi WINBOX -> FILE drag file crack SoftwareID-crack.npk
5. Restart lagi mikrotik agar SoftwareID-crack.npk terinstall
6. Setelah Restart buka lagi Winbox -> New Terminal
7. Ketikkan ” mikrotik ” lalu ENTER lalu ketik “ generate “
8. Tunggu sampai software-ID yang keluar Sesuai dengan LEVEL 6 yang ada di list KEY di bawah ini, Karena cuma level 6 yang terbuka semua servicenya, untuk level 5 ada bebera servicenya masih disable. Jadi tunggu saja sampai anda temukan software – ID untuk level 6. Selain software id yang di tampilkan di bawah ini jangan lanjut ke langkah berikutnya. Software idnya yang ini : 798Y-K0N dan AK73-PET atau NNFT-86N
9. Setelah anda temukan Software ID level 6 saat crack berjalan langsung Klik di mikrotik SYSTEM -> LICENSE dan copy key nya untuk software id yang tersedia di bawah ini lalu klik tombol PASTE KEY –> mikrotik akan minta reboot. Lalu reboot. Jreng…..!! mikrotik anda sudah level 6 pada versi mikrotik 2.9.51
10. Nah sekarang Buka File File Mikrotik v 3.22 Dan paste ke dalam FILE di Mikrotik dan restart lagi..!! mikrotik anda telah berubah jadi versi 3.22
11. Sesuaikan setting yang ada. Biasanya untuk load balancing 2 line cuma mengubah nth di mangle yang ada menjadi 2.1 dan 1.1
12. Kalau langkah 7 tidak berjalan dan mikrotik tidak menemukan software idnya coba cara berikut ini, ganti commandnya jadi
mikrotik [enter, lalu] hdb
mikrotik [enter, lalu] hdc
mikrotik [enter, lalu] hdd
mikrotik [enter, lalu] sda
mikrotik [enter, lalu] sdb
mikrotik [enter, lalu] sdc
Tidak juga menemukan keynya sementar proses crack sudah done, coba ganti posisi hardisk dari master ke slave atau slave ke master.
Ini Key yang anda butuhkan
Level 6 Keys
798Y-K0N
—–BEGIN MIKROTIK SOFTWARE KEY————
rVV1e2RYxT/OM9SZe9OK/0ij55RlWZIYLLmF2DCnMYlo
RbZUCWy+9YIVHRJuVgb9asNXHTAQ/IcHYiQrpBXvvA==
—–END MIKROTIK SOFTWARE KEY————–
AK73-PET
—–BEGIN MIKROTIK SOFTWARE KEY————
x+QmBpjxS9quN4UyI2tP2AdybCYZdYWDpKhnkmVWmBZf
31hfbRA2X7ncrHoUI3yAjl6H6ZLwSJKiHXSf6bJAiD==
—–END MIKROTIK SOFTWARE KEY————–
NNFT-86N
—–BEGIN MIKROTIK SOFTWARE KEY————
QcmFFDMuzh87/l2ngPSvD513huBKwgOLXu5tL8yhqPEl
Jns9gKAjxuZ6/Uy9YVFW09riSb1jrvZ7g0uSTVQkhC==
—–END MIKROTIK SOFTWARE KEY————–
———————————————————————————————
download :
1. Software ID Crack
2. Download mikrotik http://www.shelbywireless.com/files/...x86-2.9.51.zip
3. Download mikrotik Versi 3.22 disini http://files.quicklinkwireless.com/m...s-x86-3.22.zip
NB :
Jangan di update ke versi 3.20 katanya saya belum coba sih.
Mohon maaf bila ada yang terganggu dengan tulisan ini.
Rabu, 21 September 2011
Install Mikrotik With WINBOX
Install Mikrotik Dengan Winbox
MikroTik RouterOS™ adalah sistem operasi dan yang dapat digunakan untuk menjadikan komputer
manjadi router network yang handal, mencakup berbagai fitur lengkap untuk network dan wireless.
Kemudian di extrack dan kemudian burn ke CD itu file ISO nya.
Kemudian di extrack dan kemudian burn ke CD itu file ISO nya.
1. Install Mikrotik OS
– Siapkan PC, minimal Pentium I juga gak papa RAM 64,HD 500M atau pake flash memory 64
– Di server / PC kudu ada minimal 2 ethernet, 1 ke arah luar dan 1 lagi ke Network local
– Burn Source CD Mikrotik OS masukan ke CDROM
– Boot dari CDROM
– Ikuti petunjuk yang ada, gunakan syndrom next-next dan default
– Install paket2 utama, lebih baiknya semua packet dengan cara menandainya (mark)
– Setelah semua paket ditandai maka untuk menginstallnya tekan “I”
– Lama Install normalnya ga sampe 15menit, kalo lebih berarti gagal, ulangi ke step awal
– Setelah diinstall beres, PC restart akan muncul tampilan login
2. Setting dasar mikrotik
Langkah awal dari semua langkah konfigurasi mikrotik adalah setting ip
Hal ini bertujuan agar mikrotik bisa di remote dan dengan winbox dan memudahkan kita untuk
melakukan berbagai macam konfigurasi
– Login sebaga admin degan default password ga usah diisi langsung enter
Gantilah dengan ip address anda dan interface yg akan digunakan untuk meremote sementara
Di sini akan saya terangkan dengan menggunakan 2 cara yaitu dengan dengan text dan winbox.
I. Langkah setting Mikrotik TEXT
————————————————
Mari kita mulai dengan asumsi proses install sudah berhasil
1. Install – OK
2. Setting IP eth1 222.124.xxx.xxx (dari ISP)
perintah :
ip address add address 222.124.xxx.xxx netmask 255.255.255.xxx interface ether1
IP tersebut adalah IP public / IP yang yang ada koneksi Internet
3. Setting IP eth2 192.168.1.254
perintah :
ip address add address 192.168.1.254 netmask 255.255.255.0 interface ether2
IP tersebut adalah IP Local anda.
Sekarang lakukan ping ke dan dari komputer lain, setelah konek lanjutkan ke langkah
berikutnya, kalo belum ulangi dari langkah no 2.
4. Setting Gateway
perintah :
ip route add gateway=222.124.xxx.xxx (dari ISP)
5. Setting Primary DNS
perintah :
ip dns set primary-dns=203.130.208.18 (dari ISP)
6. Setting Secondary DNS
perintah :
ip dns set secondary-dns=202.134.0.155 (dari ISP)
7. Setting Routing masquerade ke eth1
perintah :
ip firewall nat add chain=srcnat action=masquerade out-interface=ether1
Untuk terakhir lakukan test ping ke Gateway / ke yahoo.com, bila konek maka Mikrotik anda dah siap
di gunakan.
II. Langkah setting Mikrotik Via WinBox
———————————————————-
1. Setelah install Mikrotik sudah OK, selanjutnya masukkan IP sembarang untuk remote.
Misal
ip address add address 192.168.1.254 netmask 255.255.255.0 interface ether2
Kemudian buka browser dengan alamat IP tadi, dan download Winbox
2. Buka Winbox yang telah di download tadi
3. Di tampilan Winbox, pada kolom Connect To masukkan no IP tadi (192.168.1.254) dengan
Login : admin password : kosong. Kemudian klik tombol Connect
4. Login ke Mikrotik Via Winbox berhasil
5. Klik IP —> ADDRESS
6. Ini adalah tampilan dari address
7. Kemudian masukkan IP public (dari ISP)
8. Ini daftar IP pada 2 ethernet
9. Setting Gateway, IP —> Routes
10. Masukkan IP GATEWAY (dari ISP)
11. Hasil ROUTING
12. Masukkan Primary DNS dan Secondary DNS (dari ISP)
Kemudian klik Apply dan OK
13. Setting MASQUERADE
14. Klik IP —> Firewall
15. Kemudian pilih NAT
16. Pada tab General
pada Chain pilih srcnat
pada Out. Interface pilih ether1
pada tab Action pilih masquerade
Kemudian klik Apply dan OK
squid-head dynamic caching
[compile & configure opts]
CHOST="i686-pc-linux-gnu" \
CFLAGS="-march=native -O2 -pipe -fomit-frame-pointer" \
./configure --prefix=/usr --exec_prefix=/usr --bindir=/usr/sbin --sbindir=/usr/sbin --libexecdir=/usr/lib/squid --sysconfdir=/etc/squid \
--localstatedir=/var/spool/squid --datadir=/usr/share/squid --enable-async-io=16 --with-aufs-threads=16 --with-pthreads --enable-storeio=aufs \
--enable-linux-netfilter --enable-arp-acl --enable-epoll --enable-removal-policies=heap --with-aio --with-dl --enable-snmp \
--enable-delay-pools --enable-htcp --enable-cache-digests --disable-unlinkd --enable-large-cache-files --with-large-files \
--enable-err-languages=English --enable-default-err-language=English --with-maxfd=65536
[squid.conf]
# ==============================$
# squid2-head dynamic caching
# faisal reza - jan 2011
# ==============================$
# Port Configuration
http_port 3128 transparent
#icp_port 3130
icp_port 0
htcp_port 0
snmp_port 0
# Logfile & Directory Location
access_log /var/log/squid/access.log
cache_log /var/log/squid/cache.log
cache_store_log none
error_directory /usr/share/squid/errors/English
icon_directory /usr/share/squid/icons
pid_filename /var/run/squid.pid
logfile_rotate 2
#DNS Lookup
#dns_nameservers 127.0.0.1
# Tuning Memory Parameters
max_filedescriptors 4096
cache_mem 16 MB
maximum_object_size_in_memory 768 bytes
memory_replacement_policy heap GDSF
cache_replacement_policy heap LFUDA
minimum_object_size 0 bytes
maximum_object_size 320 MB
offline_mode off
memory_pools off
cache_swap_low 96
cache_swap_high 97
# Cache Storage Locations
cache_dir aufs /cache/dir01 10240 32 256
cache_dir aufs /cache/dir02 10240 32 256
cache_dir aufs /cache/dir03 10240 32 256
# Default ACL
acl all src 0.0.0.0/0.0.0.0
acl localhost src 127.0.0.1/255.255.255.255
acl safeports port 21 70 80 210 280 443 488 563 591 631 777 901 81 3128 1025-65535
acl sslports port 443 563 81
acl manager proto cache_object
acl purge method PURGE
acl connect method CONNECT
acl dynamic urlpath_regex cgi-bin \?
http_access allow manager localhost
http_access deny manager
http_access allow purge localhost
http_access deny purge
http_access deny !safeports
http_access deny CONNECT !sslports
# ACL Acces
acl lan src 192.168.0.0/16 172.16.0.0/12 10.0.0.0/8
# Always allow localhost connections
http_access allow localhost
http_access allow lan
http_access deny all
# Include Rewrite & Refresh Pattern configuration
include /etc/squid/rewrite.conf
include /etc/squid/refresh.conf
# Misc
server_http11 on
client_persistent_connections off
server_persistent_connections on
half_closed_clients off
strip_query_terms off
quick_abort_min 0 KB
quick_abort_max 0 KB
quick_abort_pct 100
vary_ignore_expire on
reload_into_ims on
pipeline_prefetch on
#range_offset_limit 50 KB
read_timeout 30 minutes
client_lifetime 2 hours
negative_ttl 30 seconds
positive_dns_ttl 6 hours
negative_dns_ttl 60 seconds
pconn_timeout 15 seconds
request_timeout 1 minute
#store_avg_object_size 13 KB
log_icp_queries off
ipcache_size 16384
ipcache_low 98
ipcache_high 99
log_fqdn off
fqdncache_size 16384
uri_whitespace strip
shutdown_lifetime 7 seconds
# User Management
cache_effective_user proxy
cache_effective_group proxy
#cachemgr_passwd none info
cachemgr_passwd none all
client_db on
visible_hostname www.medanexchange.net
cache_mgr medanexchange.net
# High Anonymous Config
header_access Accept-Encoding deny all
forwarded_for off
via off
# Zero Penalty Hit
zph_mode tos
zph_local 0x30
#zph_parent 0
#zph_option 136
[rewrite.conf]
# rewrite.conf
# don't forget to included in squid.conf
storeurl_rewrite_program /etc/squid/storeurl.pl
storeurl_rewrite_children 7
storeurl_rewrite_concurrency 10
acl store_rewrite_list urlpath_regex \/(get_video|videoplayback\?id|videoplayback.*id)
acl store_rewrite_list urlpath_regex \.(jp(e?g|e|2)|gif|png|tiff?|bmp|ico|flv|wmv|3gp|mp(4|3)|exe|msi|zip|on2|mar)\?
acl store_rewrite_list_domain url_regex ^http:\/\/([a-zA-Z-]+[0-9-]+)\.[A-Za-z]*\.[A-Za-z]*
acl store_rewrite_list_domain url_regex (([a-z]{1,2}[0-9]{1,3})|([0-9]{1,3}[a-z]{1,2}))\.[a-z]*[0-9]?\.[a-z]{3}
acl store_rewrite_list_path urlpath_regex \.(jp(e?g|e|2)|gif|png|tiff?|bmp|ico|flv|avc|zip|mp3|3gp|rar|on2|mar|exe)$
acl store_rewrite_list_domain_CDN url_regex \.rapidshare\.com.*\/[0-9]*\/.*\/[^\/]* ^http:\/\/(www\.ziddu\.com.*\.[^\/]{3,4})\/(.*) \.doubleclick\.net.*
acl store_rewrite_list_domain_CDN url_regex ^http:\/\/[.a-z0-9]*\.photobucket\.com.*\.[a-z]{3}$ quantserve\.com
acl store_rewrite_list_domain_CDN url_regex ^http:\/\/[a-z]+[0-9]\.google\.co(m|\.id)
acl store_rewrite_list_domain_CDN url_regex ^http:\/\/\.www[0-9][0-9]\.indowebster\.com\/(.*)(rar|zip|flv|wm(a|v)|3gp|mp(4|3)|exe|msi|avi|(mp(e?g|a|e|1|2|3|4))|cab|exe)
acl dontrewrite url_regex redbot\.org \.php
acl getmethod method GET
storeurl_access deny dontrewrite
storeurl_access deny !getmethod
storeurl_access allow store_rewrite_list_domain_CDN
storeurl_access allow store_rewrite_list
storeurl_access allow store_rewrite_list_domain
storeurl_access allow store_rewrite_list_path
storeurl_access deny all
header_access X-Forwarded-For deny all
[refresh.conf]
# refresh.conf
# don't forget to included in squid.conf
# 1 year = 525600 mins, 1 month = 43800 mins
refresh_pattern imeem.*\.flv 0 0% 0 override-lastmod override-expire store-stale
refresh_pattern \.rapidshare.*\/[0-9]*\/.*\/[^\/]* 161280 90% 161280 ignore-reload store-stale
refresh_pattern (get_video\?|videoplayback\?|videodownload\?|\.flv?) 129600 99% 129600 ignore-no-cache ignore-no-store ignore-private override-expire override-lastmod reload-into-ims store-stale
refresh_pattern (get_video\?|videoplayback\?id|videoplayback.*id|videodownload\?|\.flv?) 129600 99% 129600 ignore-no-cache ignore-no-store ignore-private override-expire override-lastmod reload-into-ims store-stale
refresh_pattern \.(ico|video-stats) 129600 99% 129600 override-expire ignore-reload ignore-no-cache ignore-no-store ignore-private ignore-auth override-lastmod ignore-must-revalidate negative-ttl=10080 store-stale
refresh_pattern \.etology\? 129600 99% 129600 override-expire ignore-reload ignore-no-cache store-stale
refresh_pattern galleries\.video(\?|sz) 129600 99% 129600 override-expire ignore-reload ignore-no-cache store-stale
refresh_pattern brazzers\? 129600 99% 129600 override-expire ignore-reload ignore-no-cache store-stale
refresh_pattern \.adtology\? 129600 99% 129600 override-expire ignore-reload ignore-no-cache store-stale
refresh_pattern ^.*(utm\.gif|ads\?|rmxads\.com|ad\.z5x\.net|bh\.contextweb\.com|bstats\.adbrite\.com|a1\.interclick\.com|ad\.trafficmp\.com|ads\.cubics\.com|ad\.xtendmedia\.com|\.googlesyndication\.com|advertising\.com|yieldmanager|game-advertising\.com|pixel\.quantserve\.com|adperium\.com|doubleclick\.net|adserving\.cpxinteractive\.com|syndication\.com|media.fastclick.net).* 129600 20% 129600 ignore-no-cache ignore-no-store ignore-private override-expire ignore-reload ignore-auth ignore-must-revalidate store-stale negative-ttl=40320 max-stale=10
refresh_pattern ^.*safebrowsing.*google 129600 99% 129600 override-expire ignore-reload ignore-no-cache ignore-private ignore-auth ignore-must-revalidate negative-ttl=10080 store-stale
refresh_pattern ^http://((cbk|mt|khm|mlt)[0-9]?)\.google\.co(m|\.uk) 129600 99% 129600 override-expire ignore-reload ignore-private store-stale negative-ttl=10080
refresh_pattern ytimg\.com.*\.jpg 129600 99% 129600 override-expire ignore-reload store-stale
refresh_pattern images\.friendster\.com.*\.(png|gif) 129600 99% 129600 override-expire ignore-reload store-stale
refresh_pattern garena\.com 129600 99% 129600 override-expire reload-into-ims store-stale
refresh_pattern photobucket.*\.(jp(e?g|e|2)|tiff?|bmp|gif|png) 129600 99% 129600 override-expire ignore-reload store-stale
refresh_pattern vid\.akm\.dailymotion\.com.*\.on2\? 129600 99% 129600 ignore-no-cache override-expire override-lastmod store-stale
refresh_pattern mediafire.com\/images.*\.(jp(e?g|e|2)|tiff?|bmp|gif|png) 129600 99% 129600 reload-into-ims override-expire ignore-private store-stale
refresh_pattern ^http:\/\/images|pics|thumbs[0-9]\. 129600 99% 129600 reload-into-ims ignore-no-cache ignore-no-store ignore-reload override-expire store-stale
refresh_pattern ^http:\/\/www.onemanga.com.*\/ 129600 99% 129600 reload-into-ims ignore-no-cache ignore-no-store ignore-reload override-expire store-stale
# Antivirus Update
refresh_pattern guru.avg.com/.*\.(bin) 43200 99% 43200 ignore-no-cache ignore-no-store ignore-reload reload-into-ims store-stale
refresh_pattern (avgate|avira).*(idx|gz)$ 43200 99% 43200 ignore-no-cache ignore-no-store ignore-reload reload-into-ims store-stale
refresh_pattern kaspersky.*\.avc$ 43200 99% 43200 ignore-no-cache ignore-no-store ignore-reload reload-into-ims store-stale
refresh_pattern kaspersky 43200 99% 43200 ignore-no-cache ignore-no-store ignore-reload reload-into-ims store-stale
refresh_pattern update.nai.com/.*\.(gem|zip|mcs) 43200 99% 43200 ignore-no-cache ignore-no-store ignore-reload reload-into-ims store-stale
refresh_pattern ^http:\/\/liveupdate.symantecliveupdate.com.*\(zip) 43200 99% 43200 ignore-no-cache ignore-no-store ignore-reload reload-into-ims store-stale
# Windows Update
refresh_pattern windowsupdate.com/.*\.(cab|exe) 43200 99% 129600 ignore-no-cache ignore-no-store ignore-reload reload-into-ims store-stale
refresh_pattern update.microsoft.com/.*\.(cab|exe) 43200 99% 129600 ignore-no-cache ignore-no-store ignore-reload reload-into-ims store-stale
refresh_pattern download.microsoft.com/.*\.(cab|exe) 43200 99% 129600 ignore-no-cache ignore-no-store ignore-reload reload-into-ims store-stale
# Images facebook
refresh_pattern ((facebook.com)|(85.131.151.39)).*\.(jpg|png|gif) 129600 99% 129600 ignore-reload override-expire ignore-no-cache ignore-no-store store-stale
refresh_pattern -i \.fbcdn.net.*\.(jpg|gif|png|swf|mp3) 129600 99% 129600 ignore-reload override-expire ignore-no-cache ignore-no-store store-stale
refresh_pattern static\.ak\.fbcdn\.net*\.(jpg|gif|png) 129600 99% 129600 ignore-reload override-expire ignore-no-cache ignore-no-store store-stale
refresh_pattern ^http:\/\/profile\.ak\.fbcdn.net*\.(jpg|gif|png) 129600 99% 129600 ignore-reload override-expire ignore-no-cache ignore-no-store store-stale
# Banner IIX
refresh_pattern ^http:\/\/openx.*\.(jp(e?g|e|2)|gif|pn[pg]|swf|ico|css|tiff?) 129600 99999% 129600 reload-into-ims ignore-reload override-expire ignore-no-cache ignore-no-store store-stale
refresh_pattern ^http:\/\/ads(1|2|3).kompas.com.*\/ 43200 99% 129600 reload-into-ims ignore-reload override-expire ignore-no-cache ignore-no-store store-stale
refresh_pattern ^http:\/\/img.ads.kompas.com.*\/ 43200 99% 129600 reload-into-ims ignore-reload override-expire ignore-no-cache ignore-no-store store-stale
refresh_pattern .kompasimages.com.*\.(jpg|gif|png|swf) 43200 99% 129600 reload-into-ims ignore-reload override-expire ignore-no-cache ignore-no-store store-stale
refresh_pattern ^http:\/\/openx.kompas.com.*\/ 43200 99% 129600 reload-into-ims ignore-reload override-expire ignore-no-cache ignore-no-store store-stale
refresh_pattern kaskus.\us.*\.(jp(e?g|e|2)|gif|png|swf) 43200 99% 129600 reload-into-ims ignore-reload override-expire ignore-no-cache ignore-no-store store-stale
refresh_pattern ^http:\/\/img.kaskus.us.*\.(jpg|gif|png|swf) 43200 99% 129600 reload-into-ims ignore-reload override-expire ignore-no-cache ignore-no-store store-stale
# OpenIXP Download
refresh_pattern ^http:\/\/\.www[0-9][0-9]\.indowebster\.com\/(.*)(mp3|rar|zip|flv|wmv|3gp|mp(4|3)|exe|msi|zip) 43200 99999% 129600 reload-into-ims ignore-reload override-expire ignore-no-cache ignore-no-store store-stale ignore-auth
# All File
refresh_pattern -i \.(3gp|7z|ace|asx|avi|bin|cab|dat|deb|divx|dvr-ms) 129600 99% 129600 ignore-no-cache ignore-no-store ignore-private override-expire override-lastmod reload-into-ims store-stale
refresh_pattern -i \.(rar|jar|gz|tgz|bz2|iso|m1v|m2(v|p)|mo(d|v)) 129600 99% 129600 ignore-no-cache ignore-no-store ignore-private override-expire override-lastmod reload-into-ims store-stale
refresh_pattern -i \.(jp(e?g|e|2)|gif|pn[pg]|bm?|tiff?|ico|swf|css|js) 129600 99% 129600 ignore-no-cache ignore-no-store ignore-private override-expire override-lastmod reload-into-ims store-stale
refresh_pattern -i \.(mp(e?g|a|e|1|2|3|4)|mk(a|v)|ms(i|u|p)|og(x|v|a|g)|rar|rm|r(a|p)m|snd|vob|wav) 129600 99% 129600 ignore-no-cache ignore-private override-expire override-lastmod reload-into-ims store-stale
refresh_pattern -i \.(pp(s|t)|wax|wm(a|v)|wmx|wpl|zip|cb(r|z|t)) 129600 99% 43200 ignore-no-cache ignore-private override-expire override-lastmod reload-into-ims store-stale
refresh_pattern (cgi-bin|\?) 0 0% 0
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern ^ftp: 10080 95% 43200 override-lastmod reload-into-ims store-stale
refresh_pattern . 180 95% 43200 override-lastmod reload-into-ims store-stale
[sysctl.conf]
# /etc/sysctl.conf - Configuration file for setting system variables
# See /etc/sysctl.d/ for additional system variables.
# See sysctl.conf (5) for information.
#
#kernel.domainname = example.com
# Uncomment the following to stop low-level messages on console
#kernel.printk = 4 4 1 7
##############################################################3
# Functions previously found in netbase
#
# Uncomment the next two lines to enable Spoof protection (reverse-path filter)
# Turn on Source Address Verification in all interfaces to
# prevent some spoofing attacks
#net.ipv4.conf.default.rp_filter=1
#net.ipv4.conf.all.rp_filter=1
# Uncomment the next line to enable TCP/IP SYN cookies
#net.ipv4.tcp_syncookies=1
# Uncomment the next line to enable packet forwarding for IPv4
#net.ipv4.ip_forward=1
# Uncomment the next line to enable packet forwarding for IPv6
#net.ipv6.conf.all.forwarding=1
###################################################################
# Additional settings - these settings can improve the network
# security of the host and prevent against some network attacks
# including spoofing attacks and man in the middle attacks through
# redirection. Some network environments, however, require that these
# settings are disabled so review and enable them as needed.
#
# Ignore ICMP broadcasts
#net.ipv4.icmp_echo_ignore_broadcasts = 1
#
# Ignore bogus ICMP errors
#net.ipv4.icmp_ignore_bogus_error_responses = 1
#
# Do not accept ICMP redirects (prevent MITM attacks)
#net.ipv4.conf.all.accept_redirects = 0
#net.ipv6.conf.all.accept_redirects = 0
# _or_
# Accept ICMP redirects only for gateways listed in our default
# gateway list (enabled by default)
# net.ipv4.conf.all.secure_redirects = 1
#
# Do not send ICMP redirects (we are not a router)
#net.ipv4.conf.all.send_redirects = 0
#
# Do not accept IP source route packets (we are not a router)
#net.ipv4.conf.all.accept_source_route = 0
#net.ipv6.conf.all.accept_source_route = 0
#
# Log Martian Packets
#net.ipv4.conf.all.log_martians = 1
# Custom Tuning
fs.file-max=65536
#net.netfilter.nf_conntrack_acct=1
#kernel.domainname = cafe-netter.com
vm.drop_caches = 3
vm.swappiness = 3
net.netfilter.nf_conntrack_acct= 1
net.ipv4.netfilter.ip_conntrack_max = 16777216
#net.ipv4.ip_nonlocal_bind=1
net.ipv4.tcp_keepalive_time = 60
net.ipv4.tcp_keepalive_intvl = 10
net.ipv4.tcp_keepalive_probes = 6
net.ipv4.tcp_timestamps = 0
net.ipv4.tcp_sack = 0
net.ipv4.tcp_synack_retries = 2
net.ipv4.tcp_syn_retries = 2
net.ipv4.tcp_max_tw_buckets = 1440000
net.ipv4.ip_local_port_range = 16384 65536
#net.ipv4.ip_local_port_range = 1024 65000
net.core.rmem_max=16777216
net.core.wmem_max=16777216
net.ipv4.tcp_rmem=4096 87380 16777216
net.ipv4.tcp_wmem=4096 65536 16777216
net.ipv4.tcp_fin_timeout = 3
net.core.netdev_max_backlog = 30000
net.ipv4.tcp_no_metrics_save=1
net.core.somaxconn = 262144
net.ipv4.tcp_syncookies = 0
net.ipv4.tcp_max_orphans = 262144
net.ipv4.tcp_max_syn_backlog = 262144
net.ipv4.tcp_tw_reuse = 1
net.ipv4.tcp_tw_recycle = 1
# Controls source route verification
net.ipv4.conf.default.rp_filter = 1
net.ipv4.conf.default.accept_source_route = 0
kernel.sysrq = 0
kernel.core_uses_pid = 1
kernel.msgmnb = 65536
kernel.msgmax = 65536
kernel.shmmax = 4294967295
kernel.shmall = 268435456
net.ipv6.conf.all.disable_ipv6 = 1
net.ipv6.conf.default.disable_ipv6 = 1
net.ipv6.conf.lo.disable_ipv6 = 1
[/etc/fstab]
noatime,data=writeback
CHOST="i686-pc-linux-gnu" \
CFLAGS="-march=native -O2 -pipe -fomit-frame-pointer" \
./configure --prefix=/usr --exec_prefix=/usr --bindir=/usr/sbin --sbindir=/usr/sbin --libexecdir=/usr/lib/squid --sysconfdir=/etc/squid \
--localstatedir=/var/spool/squid --datadir=/usr/share/squid --enable-async-io=16 --with-aufs-threads=16 --with-pthreads --enable-storeio=aufs \
--enable-linux-netfilter --enable-arp-acl --enable-epoll --enable-removal-policies=heap --with-aio --with-dl --enable-snmp \
--enable-delay-pools --enable-htcp --enable-cache-digests --disable-unlinkd --enable-large-cache-files --with-large-files \
--enable-err-languages=English --enable-default-err-language=English --with-maxfd=65536
[squid.conf]
# ==============================$
# squid2-head dynamic caching
# faisal reza - jan 2011
# ==============================$
# Port Configuration
http_port 3128 transparent
#icp_port 3130
icp_port 0
htcp_port 0
snmp_port 0
# Logfile & Directory Location
access_log /var/log/squid/access.log
cache_log /var/log/squid/cache.log
cache_store_log none
error_directory /usr/share/squid/errors/English
icon_directory /usr/share/squid/icons
pid_filename /var/run/squid.pid
logfile_rotate 2
#DNS Lookup
#dns_nameservers 127.0.0.1
# Tuning Memory Parameters
max_filedescriptors 4096
cache_mem 16 MB
maximum_object_size_in_memory 768 bytes
memory_replacement_policy heap GDSF
cache_replacement_policy heap LFUDA
minimum_object_size 0 bytes
maximum_object_size 320 MB
offline_mode off
memory_pools off
cache_swap_low 96
cache_swap_high 97
# Cache Storage Locations
cache_dir aufs /cache/dir01 10240 32 256
cache_dir aufs /cache/dir02 10240 32 256
cache_dir aufs /cache/dir03 10240 32 256
# Default ACL
acl all src 0.0.0.0/0.0.0.0
acl localhost src 127.0.0.1/255.255.255.255
acl safeports port 21 70 80 210 280 443 488 563 591 631 777 901 81 3128 1025-65535
acl sslports port 443 563 81
acl manager proto cache_object
acl purge method PURGE
acl connect method CONNECT
acl dynamic urlpath_regex cgi-bin \?
http_access allow manager localhost
http_access deny manager
http_access allow purge localhost
http_access deny purge
http_access deny !safeports
http_access deny CONNECT !sslports
# ACL Acces
acl lan src 192.168.0.0/16 172.16.0.0/12 10.0.0.0/8
# Always allow localhost connections
http_access allow localhost
http_access allow lan
http_access deny all
# Include Rewrite & Refresh Pattern configuration
include /etc/squid/rewrite.conf
include /etc/squid/refresh.conf
# Misc
server_http11 on
client_persistent_connections off
server_persistent_connections on
half_closed_clients off
strip_query_terms off
quick_abort_min 0 KB
quick_abort_max 0 KB
quick_abort_pct 100
vary_ignore_expire on
reload_into_ims on
pipeline_prefetch on
#range_offset_limit 50 KB
read_timeout 30 minutes
client_lifetime 2 hours
negative_ttl 30 seconds
positive_dns_ttl 6 hours
negative_dns_ttl 60 seconds
pconn_timeout 15 seconds
request_timeout 1 minute
#store_avg_object_size 13 KB
log_icp_queries off
ipcache_size 16384
ipcache_low 98
ipcache_high 99
log_fqdn off
fqdncache_size 16384
uri_whitespace strip
shutdown_lifetime 7 seconds
# User Management
cache_effective_user proxy
cache_effective_group proxy
#cachemgr_passwd none info
cachemgr_passwd none all
client_db on
visible_hostname www.medanexchange.net
cache_mgr medanexchange.net
# High Anonymous Config
header_access Accept-Encoding deny all
forwarded_for off
via off
# Zero Penalty Hit
zph_mode tos
zph_local 0x30
#zph_parent 0
#zph_option 136
[rewrite.conf]
# rewrite.conf
# don't forget to included in squid.conf
storeurl_rewrite_program /etc/squid/storeurl.pl
storeurl_rewrite_children 7
storeurl_rewrite_concurrency 10
acl store_rewrite_list urlpath_regex \/(get_video|videoplayback\?id|videoplayback.*id)
acl store_rewrite_list urlpath_regex \.(jp(e?g|e|2)|gif|png|tiff?|bmp|ico|flv|wmv|3gp|mp(4|3)|exe|msi|zip|on2|mar)\?
acl store_rewrite_list_domain url_regex ^http:\/\/([a-zA-Z-]+[0-9-]+)\.[A-Za-z]*\.[A-Za-z]*
acl store_rewrite_list_domain url_regex (([a-z]{1,2}[0-9]{1,3})|([0-9]{1,3}[a-z]{1,2}))\.[a-z]*[0-9]?\.[a-z]{3}
acl store_rewrite_list_path urlpath_regex \.(jp(e?g|e|2)|gif|png|tiff?|bmp|ico|flv|avc|zip|mp3|3gp|rar|on2|mar|exe)$
acl store_rewrite_list_domain_CDN url_regex \.rapidshare\.com.*\/[0-9]*\/.*\/[^\/]* ^http:\/\/(www\.ziddu\.com.*\.[^\/]{3,4})\/(.*) \.doubleclick\.net.*
acl store_rewrite_list_domain_CDN url_regex ^http:\/\/[.a-z0-9]*\.photobucket\.com.*\.[a-z]{3}$ quantserve\.com
acl store_rewrite_list_domain_CDN url_regex ^http:\/\/[a-z]+[0-9]\.google\.co(m|\.id)
acl store_rewrite_list_domain_CDN url_regex ^http:\/\/\.www[0-9][0-9]\.indowebster\.com\/(.*)(rar|zip|flv|wm(a|v)|3gp|mp(4|3)|exe|msi|avi|(mp(e?g|a|e|1|2|3|4))|cab|exe)
acl dontrewrite url_regex redbot\.org \.php
acl getmethod method GET
storeurl_access deny dontrewrite
storeurl_access deny !getmethod
storeurl_access allow store_rewrite_list_domain_CDN
storeurl_access allow store_rewrite_list
storeurl_access allow store_rewrite_list_domain
storeurl_access allow store_rewrite_list_path
storeurl_access deny all
header_access X-Forwarded-For deny all
[refresh.conf]
# refresh.conf
# don't forget to included in squid.conf
# 1 year = 525600 mins, 1 month = 43800 mins
refresh_pattern imeem.*\.flv 0 0% 0 override-lastmod override-expire store-stale
refresh_pattern \.rapidshare.*\/[0-9]*\/.*\/[^\/]* 161280 90% 161280 ignore-reload store-stale
refresh_pattern (get_video\?|videoplayback\?|videodownload\?|\.flv?) 129600 99% 129600 ignore-no-cache ignore-no-store ignore-private override-expire override-lastmod reload-into-ims store-stale
refresh_pattern (get_video\?|videoplayback\?id|videoplayback.*id|videodownload\?|\.flv?) 129600 99% 129600 ignore-no-cache ignore-no-store ignore-private override-expire override-lastmod reload-into-ims store-stale
refresh_pattern \.(ico|video-stats) 129600 99% 129600 override-expire ignore-reload ignore-no-cache ignore-no-store ignore-private ignore-auth override-lastmod ignore-must-revalidate negative-ttl=10080 store-stale
refresh_pattern \.etology\? 129600 99% 129600 override-expire ignore-reload ignore-no-cache store-stale
refresh_pattern galleries\.video(\?|sz) 129600 99% 129600 override-expire ignore-reload ignore-no-cache store-stale
refresh_pattern brazzers\? 129600 99% 129600 override-expire ignore-reload ignore-no-cache store-stale
refresh_pattern \.adtology\? 129600 99% 129600 override-expire ignore-reload ignore-no-cache store-stale
refresh_pattern ^.*(utm\.gif|ads\?|rmxads\.com|ad\.z5x\.net|bh\.contextweb\.com|bstats\.adbrite\.com|a1\.interclick\.com|ad\.trafficmp\.com|ads\.cubics\.com|ad\.xtendmedia\.com|\.googlesyndication\.com|advertising\.com|yieldmanager|game-advertising\.com|pixel\.quantserve\.com|adperium\.com|doubleclick\.net|adserving\.cpxinteractive\.com|syndication\.com|media.fastclick.net).* 129600 20% 129600 ignore-no-cache ignore-no-store ignore-private override-expire ignore-reload ignore-auth ignore-must-revalidate store-stale negative-ttl=40320 max-stale=10
refresh_pattern ^.*safebrowsing.*google 129600 99% 129600 override-expire ignore-reload ignore-no-cache ignore-private ignore-auth ignore-must-revalidate negative-ttl=10080 store-stale
refresh_pattern ^http://((cbk|mt|khm|mlt)[0-9]?)\.google\.co(m|\.uk) 129600 99% 129600 override-expire ignore-reload ignore-private store-stale negative-ttl=10080
refresh_pattern ytimg\.com.*\.jpg 129600 99% 129600 override-expire ignore-reload store-stale
refresh_pattern images\.friendster\.com.*\.(png|gif) 129600 99% 129600 override-expire ignore-reload store-stale
refresh_pattern garena\.com 129600 99% 129600 override-expire reload-into-ims store-stale
refresh_pattern photobucket.*\.(jp(e?g|e|2)|tiff?|bmp|gif|png) 129600 99% 129600 override-expire ignore-reload store-stale
refresh_pattern vid\.akm\.dailymotion\.com.*\.on2\? 129600 99% 129600 ignore-no-cache override-expire override-lastmod store-stale
refresh_pattern mediafire.com\/images.*\.(jp(e?g|e|2)|tiff?|bmp|gif|png) 129600 99% 129600 reload-into-ims override-expire ignore-private store-stale
refresh_pattern ^http:\/\/images|pics|thumbs[0-9]\. 129600 99% 129600 reload-into-ims ignore-no-cache ignore-no-store ignore-reload override-expire store-stale
refresh_pattern ^http:\/\/www.onemanga.com.*\/ 129600 99% 129600 reload-into-ims ignore-no-cache ignore-no-store ignore-reload override-expire store-stale
# Antivirus Update
refresh_pattern guru.avg.com/.*\.(bin) 43200 99% 43200 ignore-no-cache ignore-no-store ignore-reload reload-into-ims store-stale
refresh_pattern (avgate|avira).*(idx|gz)$ 43200 99% 43200 ignore-no-cache ignore-no-store ignore-reload reload-into-ims store-stale
refresh_pattern kaspersky.*\.avc$ 43200 99% 43200 ignore-no-cache ignore-no-store ignore-reload reload-into-ims store-stale
refresh_pattern kaspersky 43200 99% 43200 ignore-no-cache ignore-no-store ignore-reload reload-into-ims store-stale
refresh_pattern update.nai.com/.*\.(gem|zip|mcs) 43200 99% 43200 ignore-no-cache ignore-no-store ignore-reload reload-into-ims store-stale
refresh_pattern ^http:\/\/liveupdate.symantecliveupdate.com.*\(zip) 43200 99% 43200 ignore-no-cache ignore-no-store ignore-reload reload-into-ims store-stale
# Windows Update
refresh_pattern windowsupdate.com/.*\.(cab|exe) 43200 99% 129600 ignore-no-cache ignore-no-store ignore-reload reload-into-ims store-stale
refresh_pattern update.microsoft.com/.*\.(cab|exe) 43200 99% 129600 ignore-no-cache ignore-no-store ignore-reload reload-into-ims store-stale
refresh_pattern download.microsoft.com/.*\.(cab|exe) 43200 99% 129600 ignore-no-cache ignore-no-store ignore-reload reload-into-ims store-stale
# Images facebook
refresh_pattern ((facebook.com)|(85.131.151.39)).*\.(jpg|png|gif) 129600 99% 129600 ignore-reload override-expire ignore-no-cache ignore-no-store store-stale
refresh_pattern -i \.fbcdn.net.*\.(jpg|gif|png|swf|mp3) 129600 99% 129600 ignore-reload override-expire ignore-no-cache ignore-no-store store-stale
refresh_pattern static\.ak\.fbcdn\.net*\.(jpg|gif|png) 129600 99% 129600 ignore-reload override-expire ignore-no-cache ignore-no-store store-stale
refresh_pattern ^http:\/\/profile\.ak\.fbcdn.net*\.(jpg|gif|png) 129600 99% 129600 ignore-reload override-expire ignore-no-cache ignore-no-store store-stale
# Banner IIX
refresh_pattern ^http:\/\/openx.*\.(jp(e?g|e|2)|gif|pn[pg]|swf|ico|css|tiff?) 129600 99999% 129600 reload-into-ims ignore-reload override-expire ignore-no-cache ignore-no-store store-stale
refresh_pattern ^http:\/\/ads(1|2|3).kompas.com.*\/ 43200 99% 129600 reload-into-ims ignore-reload override-expire ignore-no-cache ignore-no-store store-stale
refresh_pattern ^http:\/\/img.ads.kompas.com.*\/ 43200 99% 129600 reload-into-ims ignore-reload override-expire ignore-no-cache ignore-no-store store-stale
refresh_pattern .kompasimages.com.*\.(jpg|gif|png|swf) 43200 99% 129600 reload-into-ims ignore-reload override-expire ignore-no-cache ignore-no-store store-stale
refresh_pattern ^http:\/\/openx.kompas.com.*\/ 43200 99% 129600 reload-into-ims ignore-reload override-expire ignore-no-cache ignore-no-store store-stale
refresh_pattern kaskus.\us.*\.(jp(e?g|e|2)|gif|png|swf) 43200 99% 129600 reload-into-ims ignore-reload override-expire ignore-no-cache ignore-no-store store-stale
refresh_pattern ^http:\/\/img.kaskus.us.*\.(jpg|gif|png|swf) 43200 99% 129600 reload-into-ims ignore-reload override-expire ignore-no-cache ignore-no-store store-stale
# OpenIXP Download
refresh_pattern ^http:\/\/\.www[0-9][0-9]\.indowebster\.com\/(.*)(mp3|rar|zip|flv|wmv|3gp|mp(4|3)|exe|msi|zip) 43200 99999% 129600 reload-into-ims ignore-reload override-expire ignore-no-cache ignore-no-store store-stale ignore-auth
# All File
refresh_pattern -i \.(3gp|7z|ace|asx|avi|bin|cab|dat|deb|divx|dvr-ms) 129600 99% 129600 ignore-no-cache ignore-no-store ignore-private override-expire override-lastmod reload-into-ims store-stale
refresh_pattern -i \.(rar|jar|gz|tgz|bz2|iso|m1v|m2(v|p)|mo(d|v)) 129600 99% 129600 ignore-no-cache ignore-no-store ignore-private override-expire override-lastmod reload-into-ims store-stale
refresh_pattern -i \.(jp(e?g|e|2)|gif|pn[pg]|bm?|tiff?|ico|swf|css|js) 129600 99% 129600 ignore-no-cache ignore-no-store ignore-private override-expire override-lastmod reload-into-ims store-stale
refresh_pattern -i \.(mp(e?g|a|e|1|2|3|4)|mk(a|v)|ms(i|u|p)|og(x|v|a|g)|rar|rm|r(a|p)m|snd|vob|wav) 129600 99% 129600 ignore-no-cache ignore-private override-expire override-lastmod reload-into-ims store-stale
refresh_pattern -i \.(pp(s|t)|wax|wm(a|v)|wmx|wpl|zip|cb(r|z|t)) 129600 99% 43200 ignore-no-cache ignore-private override-expire override-lastmod reload-into-ims store-stale
refresh_pattern (cgi-bin|\?) 0 0% 0
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern ^ftp: 10080 95% 43200 override-lastmod reload-into-ims store-stale
refresh_pattern . 180 95% 43200 override-lastmod reload-into-ims store-stale
[sysctl.conf]
# /etc/sysctl.conf - Configuration file for setting system variables
# See /etc/sysctl.d/ for additional system variables.
# See sysctl.conf (5) for information.
#
#kernel.domainname = example.com
# Uncomment the following to stop low-level messages on console
#kernel.printk = 4 4 1 7
##############################################################3
# Functions previously found in netbase
#
# Uncomment the next two lines to enable Spoof protection (reverse-path filter)
# Turn on Source Address Verification in all interfaces to
# prevent some spoofing attacks
#net.ipv4.conf.default.rp_filter=1
#net.ipv4.conf.all.rp_filter=1
# Uncomment the next line to enable TCP/IP SYN cookies
#net.ipv4.tcp_syncookies=1
# Uncomment the next line to enable packet forwarding for IPv4
#net.ipv4.ip_forward=1
# Uncomment the next line to enable packet forwarding for IPv6
#net.ipv6.conf.all.forwarding=1
###################################################################
# Additional settings - these settings can improve the network
# security of the host and prevent against some network attacks
# including spoofing attacks and man in the middle attacks through
# redirection. Some network environments, however, require that these
# settings are disabled so review and enable them as needed.
#
# Ignore ICMP broadcasts
#net.ipv4.icmp_echo_ignore_broadcasts = 1
#
# Ignore bogus ICMP errors
#net.ipv4.icmp_ignore_bogus_error_responses = 1
#
# Do not accept ICMP redirects (prevent MITM attacks)
#net.ipv4.conf.all.accept_redirects = 0
#net.ipv6.conf.all.accept_redirects = 0
# _or_
# Accept ICMP redirects only for gateways listed in our default
# gateway list (enabled by default)
# net.ipv4.conf.all.secure_redirects = 1
#
# Do not send ICMP redirects (we are not a router)
#net.ipv4.conf.all.send_redirects = 0
#
# Do not accept IP source route packets (we are not a router)
#net.ipv4.conf.all.accept_source_route = 0
#net.ipv6.conf.all.accept_source_route = 0
#
# Log Martian Packets
#net.ipv4.conf.all.log_martians = 1
# Custom Tuning
fs.file-max=65536
#net.netfilter.nf_conntrack_acct=1
#kernel.domainname = cafe-netter.com
vm.drop_caches = 3
vm.swappiness = 3
net.netfilter.nf_conntrack_acct= 1
net.ipv4.netfilter.ip_conntrack_max = 16777216
#net.ipv4.ip_nonlocal_bind=1
net.ipv4.tcp_keepalive_time = 60
net.ipv4.tcp_keepalive_intvl = 10
net.ipv4.tcp_keepalive_probes = 6
net.ipv4.tcp_timestamps = 0
net.ipv4.tcp_sack = 0
net.ipv4.tcp_synack_retries = 2
net.ipv4.tcp_syn_retries = 2
net.ipv4.tcp_max_tw_buckets = 1440000
net.ipv4.ip_local_port_range = 16384 65536
#net.ipv4.ip_local_port_range = 1024 65000
net.core.rmem_max=16777216
net.core.wmem_max=16777216
net.ipv4.tcp_rmem=4096 87380 16777216
net.ipv4.tcp_wmem=4096 65536 16777216
net.ipv4.tcp_fin_timeout = 3
net.core.netdev_max_backlog = 30000
net.ipv4.tcp_no_metrics_save=1
net.core.somaxconn = 262144
net.ipv4.tcp_syncookies = 0
net.ipv4.tcp_max_orphans = 262144
net.ipv4.tcp_max_syn_backlog = 262144
net.ipv4.tcp_tw_reuse = 1
net.ipv4.tcp_tw_recycle = 1
# Controls source route verification
net.ipv4.conf.default.rp_filter = 1
net.ipv4.conf.default.accept_source_route = 0
kernel.sysrq = 0
kernel.core_uses_pid = 1
kernel.msgmnb = 65536
kernel.msgmax = 65536
kernel.shmmax = 4294967295
kernel.shmall = 268435456
net.ipv6.conf.all.disable_ipv6 = 1
net.ipv6.conf.default.disable_ipv6 = 1
net.ipv6.conf.lo.disable_ipv6 = 1
[/etc/fstab]
noatime,data=writeback
Langganan:
Postingan (Atom)