Networking: 2 ISP dalam 1 Router

2 ISP dalam 1 Router

Disini penulis mencoba mengaplikasikan pada sebuah client yang menggunakan 2 ISP sekaligus dalam 1 router dan menggunakan fail over. Berikut dibawah ini penulis membagi koneksi link untuk setiap LAN mana saja yang lewat ISP X dan mana saja yang lewat ISP Y.

2 ISP dlm 1 Router, dan Membagi routing dengan address-list

IP ADDRESS

WAN ISP X 172.16.17.28/29 ETH0

WAN ISP Y 10.0.0.10/24 ETH1

LAN 1 192.168.0.1/24 ETH 3

LAN 2 192.168.2.1/24 ETH 4

LAN 3 192.168.4.1/24 ETH 5

1. Setting Nat Masquerade:

chain=srcnat action=masquerade

2. Setting Mangle Untuk membuat Routing Mark :

/chain=prerouting action=mark-routing new-routing-mark=ISP-Y passthrough=yes protocol=tcp src-address=192.168.4.0/24 dst-port=80-6550

/chain=prerouting action=mark-routing new-routing-mark=ISP-X- Route passthrough=yes protocol=tcp src-address=192.168.4.0/24 src-address-list=ListX dst-port=80-6550

/chain=prerouting action=mark-routing new-routing-mark=ISP-Y-Route passthrough=yes protocol=tcp src-address-list=ListY dst-port=80-6550

NOTE : Untuk protocol tcp dan port 80-6550 digunakan agar acces email terbuka

3. Setting IP Route

/dst-address=0.0.0.0/0 gateway=10.0.0.2 gateway-status=10.0.0.2 reachable via ether1 check-gateway=ping distance=1 scope=30 target-scope=10 routing-mark= ISP-Y-Route

/dst-address=192.168.4.0/24 gateway=10.0.0.2 gateway-status=10.0.0.2 reachable via ether1 distance=1 scope=30 target-scope=10 routing-mark= ISP-Y-Route

/dst-address=0.0.0.0/0 gateway=202.148.23.169 gateway-status=202.148.23.169 reachable via ether2 check-gateway=ping distance=2 scope=255 target-scope=10 routing-mark= ISP-X- Route

/dst-address=0.0.0.0/0 gateway=202.148.23.169 gateway-status=202.148.23.169 reachable via ether2 check-gateway=ping distance=2 scope=255 target-scope=10

/dst-address=119.82.227.69/32 gateway=202.148.23.169 gateway-status=202.148.23.169 reachable via ether2 check-gateway=ping distance=2 scope=255 target-scope=10

4. Address-List Untuk Koneksi Routing ISP X

add address=192.168.0.20 disabled=no list= ListX

add address=192.168.0.21 disabled=no list= ListX

add address=192.168.0.22 disabled=no list= ListX

add address=192.168.0.23 disabled=no list= ListX

5. Address-List Untuk Koneksi Routing ISP Y

add address=192.168.0.2 disabled=no list= ListY

add address=192.168.0.3 disabled=no list= ListY

add address=192.168.0.4 disabled=no list= ListY

add address=192.168.0.5 disabled=no list= ListY

1 comments:

hennry wijaya December 20, 2015 at 9:19 PM: Good

1 comments:

Post a Comment