Scribd Logo
Upload

Welcome to Scribd!

  • Script Untuk Router1

    Uploaded by

    meikel rahim
    77 views2 pages
    The document contains Mikrotik RouterOS script commands to configure a router for remote access VPN and hotspot services. It sets up SSTP VPN clients to multiple servers, configures NTP, DNS, firewall NAT and proxy rules, adds RADIUS authentication, creates IP pools and interfaces, and schedules a task to manage hotspot queues.

    Original Description:

    Original Title

    Script Untuk Router1 (2)

    Copyright

    © © All Rights Reserved

    Available Formats

    TXT, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    The document contains Mikrotik RouterOS script commands to configure a router for remote access VPN and hotspot services. It sets up SSTP VPN clients to multiple servers, configures NTP, DNS, firewall NAT and proxy rules, adds RADIUS authentication, creates IP pools and interfaces, and schedules a task to manage hotspot queues.

    Copyright:

    © All Rights Reserved
    Download as TXT, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    77 views2 pages

    Script Untuk Router1

    Uploaded by

    meikel rahim
    The document contains Mikrotik RouterOS script commands to configure a router for remote access VPN and hotspot services. It sets up SSTP VPN clients to multiple servers, configures NTP, DNS, firewall NAT and proxy rules, adds RADIUS authentication, creates IP pools and interfaces, and schedules a task to manage hotspot queues.

    Copyright:

    © All Rights Reserved
    Download as TXT, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 2

    #COPY PASTE SEMUA SCRIPT DIBAWAH INI KE NEW TERMINAL MIKROTIK

    /interface sstp-client
    rem [find name~"RLRadius"]
    add connect-to=server1.rlradius.com:9443 name="CloudRLRadius1-ID" profile=default-
    encryption \
    user=labalaba1@rlradius.com password=31072021
    add connect-to=server2.rlradius.com:443 name=CloudRLRadius2-ID profile=default-
    encryption \
    user=labalaba1@rlradius.com password=31072021
    add connect-to=server3.rlradius.com:9443 name=CloudRLRadius3-ID profile=default-
    encryption disabled=no\
    user=labalaba1@rlradius.com password=31072021
    add connect-to=server4.rlradius.com:9443 name=CloudRLRadius4-ID profile=default-
    encryption \
    user=labalaba1@rlradius.com password=31072021
    add connect-to=server5.rlradius.com:9443 name=CloudRLRadius5-SG profile=default-
    encryption \
    user=labalaba1@rlradius.com password=31072021
    add connect-to=server6.rlradius.com:9443 name=CloudRLRadius6-SG profile=default-
    encryption \
    user=labalaba1@rlradius.com password=31072021

    /system identity
    set name="R1 LABALABA"

    /system clock
    set time-zone-autodetect=no time-zone-name=Asia/Makassar

    /system ntp client


    set enabled=yes primary-ntp=162.159.200.1 secondary-ntp=162.159.200.123

    /ip dns
    set allow-remote-requests=yes

    /radius
    rem [find]
    add address=172.31.243.1 comment=RLRadius authentication-port=1167 accounting-
    port=1168\
    secret="rl2921419596" service=ppp,login,hotspot timeout=2s500ms

    /ip service
    set api port=8728 disabled=no

    /radius incoming
    set accept=yes port=3799

    /ip hotspot profile


    set [find] use-radius=yes radius-accounting=yes
    set [find] radius-interim-update=0s

    /ip hotspot user profile


    rem [find name=RLRADIUS]
    set [ find default=yes ] insert-queue-before=bottom parent-queue=*8
    add insert-queue-before=bottom keepalive-timeout=10m \
    mac-cookie-timeout=1w name=RLRADIUS shared-users=unlimited \
    status-autorefresh=10m

    /ip hotspot walled-garden


    add dst-host=rlradius.id comment="rlradius"

    /system scheduler
    rem [find name=dinamic_queuee_hotspot_by_rlradius]
    add interval=1m name=dinamic_queuee_hotspot_by_rlradius on-event=\
    "/que sim remove [find name~\"^hs-<\"];" policy=\
    ftp,reboot,read,write,policy,test,password,sniff,sensitive,romon \
    start-date=mar/22/2020 start-time=16:05:04

    /ip pool
    rem [find name="RL-POOL"]
    add comment="Network : 10.200.192.0/20" name=RL-POOL ranges=10.200.192.100-
    10.200.207.254

    /ppp profile
    rem [find name="RLRADIUS"]
    add insert-queue-before=bottom local-address=10.200.192.1 name=RLRADIUS only-
    one=yes remote-address=RL-POOL

    /ppp aaa
    set use-radius=yes accounting=yes
    set interim-update=0s

    /user aaa
    set default-group=full use-radius=yes accounting=no

    #ISOLIR
    /ip firewall nat
    rem [find src-address-list="RL-ISOLIR"]
    add action=redirect chain=dstnat comment="RL ISOLIR" dst-address=\
    !103.146.203.44 dst-port=80,443,8080 protocol=tcp src-address-list=\
    RL-ISOLIR to-ports=3125
    add action=dst-nat chain=dstnat dst-address=!103.146.203.44 dst-port=!53 \
    protocol=udp src-address-list=RL-ISOLIR to-addresses=103.146.203.44 \
    to-ports=12345
    /ip proxy
    set cache-administrator=webmaster@rlradius.com enabled=yes \
    max-cache-object-size=1KiB max-cache-size=none max-client-connections=500 \
    max-fresh-time=5m max-server-connections=500 port=3125
    /ip proxy access
    rem [find]
    add action=deny redirect-to=isolir.rlradius.com src-address=10.200.192.0/20

    You might also like