A couple check boxes on the trusted network setup and a little script to include these into the two programs, maybe. I’d actually be interested in helping modify the interface so we could select inclusion as local network into Bandwidthd and ntop for each of our trusted networks. Do you happen to know if there is a similar way to configure bandwidthd? I’m getting no useful data from it, probably because my server is on a separate subnet from any of my users I’m guessing, so nethserver is the only traffic listed. Giacomo, you’re a lifesaver! I’ll try this out. ip route add dst-address=0.0.0.0/0 gateway=10.21.0.2 routing-mark=route-proxy comment=“routing for proxy” ip firewall mangle add chain=prerouting protocol=tcp dst-port=80,8080 src-address-list=proxy-src-include dst-address-list=!prox-dst-exclude action=mark-routing new-routing-mark=route-proxy ip firewall address-list add name=proxy-src-include address=10.20.150.0/24 ip firewall address-list add name=proxy-src-include address=10.20.120.0/24 ip firewall address-list add name=proxy-src-include address=10.20.110.0/24 ip firewall address-list add name=proxy-src-include address=10.20.0.0/24 ip firewall address-list add name=proxy-dst-exclude address=10.21.0.0/16 comment=“all 10.21.x.x for servers” ip firewall address-list add name=proxy-dst-exclude address=10.20.0.1 comment=“router config” ip firewall address-list add name=mgmt-net address=10.20.0.0/24 You can also use the MikroTik proxy with Nethserver as the second proxy, but you loose client identity to the Nethserver with taht setup. This is for Nethserver on transparent proxy. In this run, I had a single interface Nethserver on green interface. This is where I have my full setup notes that I have repeated successfully multiple times… so full notes on NethServer settings as well as MikroTik settings will have to wait until I have more time for formatting… but here is the simple policy route setup on the Mikrotik side. Copying spreadsheet notes into here doesn’t work.
0 Comments
Leave a Reply. |