Silahkan di Pelajari Scriptnya..... ini berdasarkan pengalaman Pribadi, Selalu Teliti dalam mengkonfigurasi....
hanya untuk profesional, mengerti alurnya.... IP dan Lain2 sesuaikan dengan keinginan agan
/interface ethernet
set [ find default-name=wlan1 ] name="wlan1 - Wan"
set [ find default-name=ether1 ] name="ether1 - Lan"
/ip firewall layer7-protocol
add name=EXE regexp="\\x4d\\x5a(\\x90\\x03|\\x50\\x02)\\x04"
add name=ZIP regexp="pk\\x03\\x04\\x14"
add name=MP4 regexp="\\x18\\x66\\x74\\x79\\x70"
add name=RAR regexp="Rar\\x21\\x1a\\x07"
add name=youtube regexp="r[0-9]+---[a-z]+-+[a-z0-9-]+\\.googlevideo\\.com"
/queue type
add kind=pcq name=down_pcq pcq-classifier=dst-address pcq-dst-address6-mask=\
64 pcq-src-address6-mask=64
add kind=pcq name=up_pcq pcq-classifier=src-address pcq-dst-address6-mask=64 \
pcq-src-address6-mask=64
/queue tree
add name="Global Traffic" parent=global queue=default
add max-limit=1500k name=Download parent="Global Traffic" queue=default
add max-limit=1500k name=Upload parent="Global Traffic"
add limit-at=512k max-limit=1500k name="1. Game" packet-mark=games_down parent=\
Download priority=1 queue=down_pcq
add limit-at=64k max-limit=1500k name="2. Icmp" packet-mark=icmp_down parent=\
Download priority=1 queue=down_pcq
add limit-at=64k max-limit=1500k name="3. Dns" packet-mark=dns_down parent=\
Download priority=1 queue=down_pcq
add max-limit=1500k name="5. Download Traffic" parent=Download queue=default
add max-limit=1500k name="1. Small Browsing" packet-mark=small_browsing_down \
parent="5. Download Traffic" priority=5 queue=down_pcq
add max-limit=1500k name="2. Heavy Browsing" packet-mark=heavy_browsing_down \
parent="5. Download Traffic" priority=7 queue=down_pcq
add limit-at=512k max-limit=1500k name="4. Remote" packet-mark=remote_down \
parent=Download priority=3 queue=down_pcq
add max-limit=1500k name="3. YouTube" packet-mark=youtube_down parent=\
"5. Download Traffic" priority=7 queue=down_pcq
add max-limit=1500k name="4. Extensi" packet-mark=extensi_down parent=\
"5. Download Traffic" queue=down_pcq
add limit-at=256k max-limit=1500k name="1. game" packet-mark=games_up parent=\
Upload priority=1 queue=up_pcq
add limit-at=32k max-limit=1500k name="2. icmp" packet-mark=icmp_up parent=\
Upload priority=1 queue=up_pcq
add limit-at=32k max-limit=1500k name="3. dns" packet-mark=dns_up parent=\
Upload priority=1 queue=up_pcq
add limit-at=256k max-limit=1500k name="4. remote" packet-mark=remote_up \
parent=Upload priority=3 queue=up_pcq
add max-limit=1500k name="5. Upload Traffic" parent=Upload queue=default
add max-limit=1500k name="1. small browsing" packet-mark=small_browsing_up \
parent="5. Upload Traffic" priority=5 queue=up_pcq
add max-limit=1500k name="2. heavy browsing" packet-mark=heavy_browsing_up \
parent="5. Upload Traffic" priority=7 queue=up_pcq
add max-limit=1500k name="3. youtube" packet-mark=youtube_up parent=\
"5. Upload Traffic" priority=7 queue=up_pcq
add max-limit=1500k name="4. extensi" packet-mark=extensi_up parent=\
"5. Upload Traffic" queue=up_pcq
/ip firewall address-list
add address=192.168.0.0/16 list=Private_IPv4
add address=172.0.2.0/24 list=private_IPv4
add address=10.0.0.0/8 disabled=yes list=private_IPv4
add address=9.8.7.224/27 list=privatE_IPv4
/ip firewall mangle
add action=accept chain=prerouting comment="Bypass Local Traffic" \
dst-address-list=private_IPv4 src-address-list=private_IPv4
add action=accept chain=forward dst-address-list=private_IPv4 \
src-address-list=private_IPv4
add action=mark-connection chain=forward comment="Games Traffic" dst-port=\
30050-30150 new-connection-mark=games passthrough=yes protocol=tcp \
src-address-list=private_IPv4
add action=mark-connection chain=forward dst-port=5000-5570 \
new-connection-mark=games passthrough=yes protocol=tcp src-address-list=\
private_IPv4
add action=mark-connection chain=forward dst-port=5000-5570 \
new-connection-mark=games passthrough=yes protocol=udp src-address-list=\
private_IPv4
add action=mark-packet chain=forward connection-mark=games in-interface=\
"wlan1 - Wan" new-packet-mark=games_down passthrough=no
add action=mark-packet chain=forward connection-mark=games in-interface=\
"ether1 - Lan" new-packet-mark=games_up passthrough=no
add action=mark-connection chain=forward comment="ICMP Traffic" \
new-connection-mark=icmp passthrough=yes protocol=icmp src-address-list=\
private_IPv4
add action=mark-packet chain=forward connection-mark=icmp in-interface=\
"wlan1 - Wan" new-packet-mark=icmp_down passthrough=no protocol=icmp
add action=mark-packet chain=forward connection-mark=icmp in-interface=\
"ether1 - Lan" new-packet-mark=icmp_up passthrough=no protocol=icmp
add action=mark-connection chain=forward comment="DNS Traffic" dst-port=53 \
new-connection-mark=dns passthrough=yes protocol=udp src-address-list=\
private_IPv4
add action=mark-packet chain=forward connection-mark=dns in-interface=\
"wlan1 - Wan" new-packet-mark=dns_down passthrough=no protocol=udp
add action=mark-packet chain=forward connection-mark=dns in-interface=\
"ether1 - Lan" new-packet-mark=dns_up passthrough=no protocol=udp
add action=mark-connection chain=forward comment="Remote Traffic" dst-port=\
22,23,8291,5938,4899 new-connection-mark=remote passthrough=yes protocol=\
tcp src-address-list=private_IPv4
add action=mark-packet chain=forward connection-mark=remote in-interface=\
"wlan1 - Wan" new-packet-mark=remote_down passthrough=no
add action=mark-packet chain=forward connection-mark=remote in-interface=\
"ether1 - Lan" new-packet-mark=remote_up passthrough=no
add action=mark-connection chain=forward comment="YouTube Traffic" \
layer7-protocol=youtube new-connection-mark=youtube passthrough=yes \
src-address-list=private_IPv4
add action=mark-packet chain=forward connection-mark=youtube in-interface=\
"wlan1 - Wan" new-packet-mark=youtube_down passthrough=no
add action=mark-packet chain=forward connection-mark=youtube in-interface=\
"ether1 - Lan" new-packet-mark=youtube_up passthrough=no
add action=mark-connection chain=forward comment="Extension Layer7" \
layer7-protocol=EXE new-connection-mark=extensi passthrough=yes
add action=mark-connection chain=forward layer7-protocol=ZIP \
new-connection-mark=extensi passthrough=yes
add action=mark-connection chain=forward layer7-protocol=RAR \
new-connection-mark=extensi passthrough=yes
add action=mark-packet chain=forward connection-mark=extensi in-interface=\
"wlan1 - Wan" new-packet-mark=extensi_down passthrough=no
add action=mark-packet chain=forward connection-mark=extensi in-interface=\
"ether1 - Lan" new-packet-mark=extensi_up passthrough=no
add action=mark-connection chain=forward comment="Browsing Traffic" \
connection-mark=!heavy_traffic new-connection-mark=browsing passthrough=\
yes src-address-list=private_IPv4
add action=mark-connection chain=forward comment="Heavy Traffic" \
connection-bytes=1024000-0 connection-mark=browsing connection-rate=\
256k-102400k new-connection-mark=heavy_traffic passthrough=yes protocol=\
tcp
add action=mark-connection chain=forward connection-bytes=1024000-0 \
connection-mark=browsing connection-rate=256k-102400k \
new-connection-mark=heavy_traffic passthrough=yes protocol=udp
add action=mark-packet chain=forward connection-mark=heavy_traffic \
in-interface="wlan1 - Wan" new-packet-mark=heavy_browsing_down \
passthrough=no
add action=mark-packet chain=forward connection-mark=heavy_traffic \
in-interface="ether1 - Lan" new-packet-mark=heavy_browsing_up \
passthrough=no
add action=mark-packet chain=forward connection-mark=browsing in-interface=\
"wlan1 - Wan" new-packet-mark=small_browsing_down passthrough=no
add action=mark-packet chain=forward connection-mark=browsing in-interface=\
"ether1 - Lan" new-packet-mark=small_browsing_up passthrough=no
