Manajemen Bandwitdh Internet dan Itnranet.pdf
http://education.web.id/site/kategory/os/linux/66-iptables-filter-ip-and-mac-address
http://gr3g3t4n.blogspot.com/2008/08/proteksi-ip-dari-client-yang-suka-ganti.html
2009/6/13 My <ahmy135@gmail.com>:
>
> kira kira topologi jaringanya seperti ini.
>
—> modem (192.168.1.2) –> wireless hub (192.168.1.1)
—-> Server Gateway (192.168.1.102)
—-> Komputer A (192.168.1.10)
—-> Komputer B (192.168.1.11)
—- ………
>
> komputer server di jadiin gateway..
> jadi semua komputer client bakal ngerequest ke server, untuk yang http
> ditampung dulu sama squid, baru di alirin ke modem. selain itu
> langsung.
>
mas, coba pake squid dengan delay pool.
dibawah ini adalah squid.conf nya
perhatikan code setelah
# ————— note —————
itu adalah koncinya bandwith management demi keadilan… hehehe
tertulis disitu artinya kira-kira:
semua client tak terkecuali dapat jatah 12.000 byte per second max sama rata-sama rasa.
kecuali kalau sepi (misal dia sendiri yg browsing) bisa dapat sampai 100.000 byte/second
ini isi squid.conf nya…. (mohon koreksi dari yg lebih faham, in case ada penjelasan yg kurang bener…)
(oya, ini hasil nyoba2 sendiri dan cari di net dengan bantuan mang google).
arahkan semua browser ke IP proxy 192.168.1.102 port 8080
test saja dengan download menggunakan download manager di client yg pakai windows. pasti mentok di 12 kbyte/second atau 12kBps (B besar) atau 12k*8=96kbps (b kecil)… jadi para pendownload tidak akan download semena-mena lagi.
isi squid.conf:
acl all src 192.168.1.0/24
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 # https
acl SSL_ports port 563 # snews
acl SSL_ports port 873 # rsync
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
#acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl Safe_ports port 631 # cups
acl Safe_ports port 873 # rsync
acl Safe_ports port 901 # SWAT
acl Safe_ports port 5100
acl Safe_ports port 5000
acl Safe_ports port 5050
acl purge method PURGE
acl CONNECT method CONNECT
acl QUERY urlpath_regex cgi-bin ?
icp_access allow all
http_port 8080
hierarchy_stoplist cgi-bin ?
acl apache rep_header Server ^Apache
access_log /var/log/squid/access.log squid
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320
cache deny all QUERY
http_access allow manager localhost
http_access allow manager
http_access allow purge localhost
http_access deny purge
http_access allow !Safe_ports
http_access allow CONNECT !SSL_ports
http_access allow localhost
http_access allow all
broken_vary_encoding allow apache
extension_methods REPORT MERGE MKACTIVITY CHECKOUT
cache_mgr <alamat@emailmu.net>
cache_effective_user squid
visible_hostname proxyserver
dns_defnames on
dns_nameservers 192.168.16.1 # <— dns nya modem
hosts_file /etc/hosts
coredump_dir /var/spool/squid
cache_effective_group squid
# ————— note —————
delay_pools 1
delay_class 1 2
delay_parameters 1 -1/-1 12000/100000
delay_access 1 allow all