Hello everyone!
I am new to mikrotik but I am amazed with what it can do. I am running a Community Hotspot and using Mikrotik Router.
My current setup is this:
RBHAP-Lite (for Dual WAN PCC) + RB951G-2Hnd (for HotSpot users)
WAN1 is 2.5 Mbps down and 600kbps Up
WAN2 is 10Mbps download and 300 kbps upload
The bandwidth I allocate per user is 350kbps download and 250kbps upload maximum of 10 concurrent users but I have 15 registered users in the community.
What I am thinking is to insert Squid transparent proxy server somewhere within the network. I have a spare netbook with 1 GLan and I’m thinking of getting two more usb Lan or a mini pcie lan. I can install Ubuntu in the netbook and run the Squid proxy there.
The problem is I have no Idea how to connect the Dquid Proxy in the network and how to configure the scripts on my two Mikrotik routers.
Maybe you can share your thoughts and I would appreciate if you can help me make this project work.
The scripts that I am Currently using for Mikrotik HAPLite is:
/ip pool
add name=dhcp_pool1 ranges=192.168.9.2-192.168.9.254
/ip dhcp-server
add address-pool=dhcp_pool1 disabled=no interface=Local name=dhcp1
/ip address
add address=192.168.1.2/24 interface=WAN1
add address=192.168.2.2/24 interface=WAN2
add address=192.168.9.1/24 interface=Local
/ip dhcp-server network
add address=192.168.9.0/24 gateway=192.168.9.1
/ip dns
set allow-remote-requests=yes cache-size=5000KiB max-udp-packet-size=2048 servers=8.8.8.8,8.8.4.4
/ip firewall mangle
add chain=input in-interface=WAN1 action=mark-connection new-connection-mark=WAN1_conn
add chain=input in-interface=WAN2 action=mark-connection new-connection-mark=WAN2_conn
add action=mark-routing chain=output connection-mark=WAN1_conn new-routing-mark=to_WAN1
add action=mark-routing chain=output connection-mark=WAN2_conn new-routing-mark=to_WAN2
add chain=prerouting dst-address=192.168.1.0/24 in-interface=Local
add chain=prerouting dst-address=192.168.2.0/24 in-interface=Local
add action=mark-connection chain=prerouting dst-address-type=!local hotspot=auth in-interface=Local new-connection-mark=WAN1_conn per-connection-classifier=both-addresses-and-ports:3/0
add action=mark-connection chain=prerouting dst-address-type=!local hotspot=auth in-interface=Local new-connection-mark=WAN2_conn per-connection-classifier=both-addresses-and-ports:3/1
add action=mark-connection chain=prerouting dst-address-type=!local hotspot=auth in-interface=Local new-connection-mark=WAN1_conn per-connection-classifier=both-addresses-and-ports:3/2
add action=mark-routing chain=prerouting connection-mark=WAN1_conn in-interface=Local new-routing-mark=to_WAN1
add action=mark-routing chain=prerouting connection-mark=WAN2_conn in-interface=Local new-routing-mark=to_WAN2
/ip firewall nat
add action=masquerade chain=srcnat out-interface=WAN1
add action=masquerade chain=srcnat out-interface=WAN2
/ip route
add check-gateway=ping distance=1 gateway=192.168.1.1 routing-mark=to_WAN1
add check-gateway=ping distance=1 gateway=192.168.2.1 routing-mark=to_WAN2
add check-gateway=ping distance=1 gateway=192.168.1.1
add check-gateway=ping distance=2 gateway=192.168.2.1
Thank you.