[REQ]HOW to Setup All IP redirect automatically to Web Proxy??
Ip address print>
192.168.0.2/24 to Internet
10.0.0.1/24 to Local
I was setting up ip dns, ip webproxy, ip address, mangle, queue, snmp, firewall src-nat.
Please tell me the way out…thanks before…I really appreciate it.
I’m not completly sure what you’re trying to do.. but…
To redirect all port 80 traffic to some other port (like 8080) you could probably do something like this
/ip firewall nat add src-address=!<MT-IP>/32:80 protocol=tcp action=redirect to-dst-port=8080
or to an external web-proxy
/ip firewall nat add src-address=!<MT-IP>/32:80 protocol=tcp action=redirect to-dst-address=<Proxy-IP>/32:8080
now.. I’m not 100% sure about the above but it looks logical 
bro thanks…but i’m used OSMikrotik 2.8.26…coz in firewall don’t have nat like you said.[admin@MikroTik] ip firewall> nat
ERROR: no such command or directory (nat)
bro thanks…but i’m used OSMikrotik 2.8.26…coz in firewall don’t have nat like you said.> [admin@MikroTik] ip firewall> nat
ERROR: no such command or directory (nat)
probably
ip firewall dst-nat add dst-address=!1.1.1.1/32:80 to-dst-address=2.2.2.2/32:8080 action=redirect
where 1.1.1.1 is MT management ip and 2.2.2.2 is a external webproxy.
Ofcourse, I recommend reading the manual
Anyways.. it is possible.. just need to findout how
probably
ip firewall dst-nat add dst-address=!1.1.1.1/32:80 to-dst-address=2.2.2.2/32:8080 action=redirect
>
> where 1.1.1.1 is MT management ip and 2.2.2.2 is a external webproxy.
>
> Ofcourse, I recommend reading the > [manual](http://www.mikrotik.com/docs/ros/2.8/ip/nat)
>
> Anyways.. it is possible.. just need to findout how > :wink:
Bro...i had fill my terminal OS MT 2.8.26
like you said so :
[admin@MikroTik] ip firewall dst-nat> add dst-address=192.168.0.2/32:80 to-dst-ad
dress=192.168.0.1/32:8080
ERROR: invalid ip value
what I have suppose to do..now? i'm so confused..please help me...ip firewall dst-nat add dst-address=!1.1.1.1/32:80 to-dst-address=2.2.2.2/32:8080 action=redirect
is incorrect.. you need to specify the dst-port=8080
you cant specify the port in the dst-address field its incorrect syntax and you’ll get an error everytime..
Again, if you had at least looked at the manual you might have picked this up.
Bro…let say…Ip Public for internet : 203.74.221.82
adn for my computer 192.168.0.2
please give the way…
[admin@MikroTik] ip web-proxy> print
enabled: yes
src-address: 0.0.0.0
port: 8080
hostname: Proweb
transparent-proxy: yes
parent-proxy: 0.0.0.0:0
cache-administrator: Sales@Proweb.Org
max-object-size: 4096 kB
cache-drive: system
max-cache-size: unlimited
status: running
reserved-for-cache: 5146 MB
question 2:
how to protect other client hacking my access if the know my proxy list and port?
Thanks once again.
This is documented STEP BY STEP:
http://www.mikrotik.com/docs/ros/2.9/ip/webproxy
It has been suggested at least in 2 places in this thread that you READ THE DOCUMENTATION.
Of course, there are probably people out there that are willing to do it for you:
http://www.mikrotik.com/consultants.html
(Don’t contact me for this, as you have already asked me for something illegal which I will NOT provide you.)
question 2:
how to protect other client hacking my access if the know my proxy list and port?
Set up a firewall.
Try this
/ ip firewall dst-nat
add in-interface=Ether1 dst-address=:80 protocol=tcp action=redirect
to-dst-address=203.74.221.82 to-dst-port=8080 comment=“” disabled=no
thanks man…it’s work…