Mikrotik web proxy simple configuration - Web Proxy is one of the features in mikrotik router. By using this web proxy feature, you can save internet bandwidth and speed up the connection, because when you and your users accessing a website, some of the content of the website will be cache in memory...
setup web proxy enepol
set ip
go to fierfill set nat
loock here
setup web proxy enepol
set ip
go to fierfill set nat
loock here
/ip firewall nat
add action=redirect chain=dstnat comment="\CE\C7\D5 \C8\C7\E1\DF\C7\D4" disabled=no dst-address-type=!local dst-port=80 \
protocol=tcp src-address=1.1.1.0/24 to-ports=8080
/ip proxy
set always-from-cache=no cache-administrator="X-Cache: HIT" cache-hit-dscp=4 cache-on-disk=yes enabled=yes max-cache-size=\
unlimited max-client-connections=600 max-fresh-time=3d max-server-connections=600 parent-proxy=0.0.0.0 \
parent-proxy-port=0 port=8080 serialize-connections=no src-address=0.0.0.0
/ip proxy cache
add action=allow comment="\E3\E4\DA \E5\D0\C9 \C7\E1\C5\E3\CA\CF\C7\CF\CA \E3\E4 \CF\CE\E6\E1 \C7\E1\DF\C7\D4" disabled=no \
dst-port="" path=*.mp3
add action=allow disabled=no dst-port="" path=*.mp4
add action=allow disabled=no dst-port="" path=*.3gp
add action=allow disabled=no dst-port="" path=*.flv
add action=deny disabled=no dst-port="" path=*.PPTX
add action=deny disabled=no dst-port="" path=*.IMG
add action=deny disabled=no dst-port="" path=*.ISO
add action=deny disabled=no dst-port="" path=*.NRG
add action=deny disabled=no dst-port="" path=*.GHO
add action=deny disabled=no dst-port="" path=*.tar.gz
add action=deny disabled=no dst-port="" path=*.DMG
add action=deny disabled=no dst-port="" path=*.deb
add action=deny disabled=no dst-port="" path=*.ace
add action=deny disabled=no dst-port="" path=*.BIN
add action=allow disabled=no dst-port="" path=*.rm
add action=allow disabled=no dst-port="" path=*.rmvb
add action=deny disabled=no dst-port="" path=*.mpge
add action=allow disabled=no dst-port="" path=*.avi
add action=deny disabled=no dst-port="" path=*.ogg
add action=deny disabled=no dst-port="" path=*.pdf
add action=deny disabled=no dst-port="" path=*.dsk
add action=deny disabled=no dst-port="" path=*.vdi
add action=deny disabled=no dst-port="" path=*.vsv
add action=deny disabled=no dst-port="" path=*.vmdk
add action=deny disabled=no dst-port="" path=*.vud
add action=deny disabled=no dst-port="" path=*.vmc
add action=deny disabled=no dst-port="" path=*.vhd
add action=deny disabled=no dst-port="" path=*.AVCHD
add action=deny disabled=no dst-port="" path=*.vfd
add action=deny disabled=no dst-port="" path=*.MP2
add action=deny disabled=no dst-port="" path=*.ASF
add action=deny disabled=no dst-port="" path=*.AMR
add action=deny disabled=no dst-port="" path=*.WMV
add action=deny disabled=no dst-port="" path=*.WMA
add action=deny disabled=no dst-port="" path=*.WAV
add action=deny disabled=no dst-port="" path=*.RAW
add action=deny disabled=no dst-port="" path=*.exe
add action=deny disabled=no dst-port="" path=*.zip
add action=deny disabled=no dst-port="" path=*.rar
add action=deny disabled=no dst-port="" path=*.7z
add action=deny disabled=no dst-port="" path=*.cab
add action=deny disabled=no dst-port="" path=*.ppt
add action=deny disabled=no dst-port="" path=*.doc
add action=allow disabled=no dst-port="" path=*.swf
/ip firewall filter
add action=drop chain=input comment="::::TO BLOCK PROXY ACCESS PORT 8080 / ATTACK on WAN INTERFACE" disabled=no dst-port=\
8080 in-interface=Wan protocol=tcp
/ip firewall mangle
add action=mark-connection chain=output comment="\CE\C7\D5 \C8\C7\E1\DF\C7\D4" content="X-Cache: HIT" disabled=no \
new-connection-mark=Cache-Connection passthrough=yes protocol=tcp src-port=8080
add action=mark-packet chain=output comment="\CE\C7\D5 \C8\C7\E1\DF\C7\D4" connection-mark=Cache-Connection disabled=no \
new-packet-mark=Cache-Packet passthrough=yes
/queue tree
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 max-limit=0 name=CACHE-FULL packet-mark=\
Cache-Packet parent=global-out priority=8 queue=ethernet-default
ليست هناك تعليقات:
إرسال تعليق