![1 Isp [PDF]](https://pdfs.asia/img/200x200/1-isp.jpg)
13 0 25 KB
/ip firewall address-list add address=192.168.0.0/16 list=LOKAL /ip firewall address-list add address=172.16.0.0/12 list=LOKAL /ip firewall address-list add address=10.0.0.0/8 list=LOKAL / /ip dns set servers=9.9.9.9,149.112.112.112 / /system ntp client set enabled=yes primary-ntp=202.65.114.202 secondaryntp=212.26.18.41 server-dns-names=asia.pool.ntp.org / /ip firewall filter add action=accept chain=input comment="Allow Established, Related Connections" connection-state=established,related /ip firewall filter add action=accept chain=forward connectionstate=established,related /ip firewall filter add action=drop chain=input comment="Drop Invalid Connections" connection-state=invalid /ip firewall filter add action=drop chain=forward connection-state=invalid / /interface list add name=WAN /interface list member add interface=ether1 list=WAN / /ip firewall nat add action=masquerade chain=srcnat src-address-list=LOKAL /ip firewall nat add action=masquerade chain=srcnat out-interface-list=WAN / /ip firewall mangle add action=accept chain=prerouting comment="[ Copyright \A9 1 ISP Script Proudly Presents by Pejuang GSM ]" dst-address-list=LOKAL src-addresslist=LOKAL /ip firewall mangle add action=accept chain=postrouting dst-address-list=LOKAL srcaddress-list=LOKAL /ip firewall mangle add action=accept chain=forward dst-address-list=LOKAL srcaddress-list=LOKAL /ip firewall mangle add action=accept chain=input dst-address-list=LOKAL srcaddress-list=LOKAL /ip firewall mangle add action=accept chain=output dst-address-list=LOKAL srcaddress-list=LOKAL /ip firewall mangle add action=mark-connection chain=prerouting comment=DNS dstport=53 new-connection-mark="KONEKSI DNS" passthrough=yes protocol=udp /ip firewall mangle add action=mark-packet chain=postrouting connectionmark="KONEKSI DNS" new-packet-mark="DNS DOWNLOAD" passthrough=no /ip firewall mangle add action=mark-packet chain=prerouting connectionmark="KONEKSI DNS" new-packet-mark="DNS UPLOAD" passthrough=no /ip firewall mangle add action=change-dscp chain=prerouting comment=ICMP new-dscp=1 passthrough=yes protocol=icmp /ip firewall mangle add action=change-ttl chain=prerouting in-interface-list=WAN new-ttl=set:64 passthrough=yes /ip firewall mangle add action=mark-connection chain=prerouting new-connectionmark="KONEKSI ICMP" passthrough=yes protocol=icmp /ip firewall mangle add action=mark-packet chain=postrouting connectionmark="KONEKSI ICMP" dst-address-list=LOKAL new-packet-mark="ICMP DOWNLOAD" passthrough=yes src-address-list=!LOKAL /ip firewall mangle add action=mark-packet chain=prerouting connectionmark="KONEKSI ICMP" dst-address-list=!LOKAL new-packet-mark="ICMP UPLOAD" passthrough=yes src-address-list=LOKAL
/ip firewall mangle add action=mark-connection chain=prerouting comment=GAME dstaddress-list=IP-GAME new-connection-mark="KONEKSI GAME" passthrough=yes srcaddress-list=LOKAL /ip firewall mangle add action=mark-packet chain=forward connection-mark="KONEKSI GAME" in-interface-list=WAN new-packet-mark="GAME DOWNLOAD" passthrough=yes /ip firewall mangle add action=mark-packet chain=forward connection-mark="KONEKSI GAME" new-packet-mark="GAME UPLOAD" out-interface-list=WAN passthrough=yes /ip firewall mangle add action=add-dst-to-address-list address-list=IP-GAME address-list-timeout=1m chain=prerouting dst-address-list=!IP-UMUM dst-port=!01023,1194,1723,1935,2083,3478,5050-5061,6666,8777,8000-8081,35915,39397 protocol=tcp src-address-list=LOKAL /ip firewall mangle add action=add-dst-to-address-list address-list=IP-GAME address-list-timeout=1m chain=prerouting dst-address-list=!IP-UMUM dst-port=!01023,1701,1900,3478,5060,5061,5222,5288,5353 protocol=udp src-address-list=LOKAL /ip firewall mangle add action=mark-connection chain=prerouting comment=UMUM connection-mark="!KONEKSI GAME" dst-address-list=!IP-GAME new-connectionmark="KONEKSI UTAMA" passthrough=yes protocol=!icmp src-address-list=LOKAL /ip firewall mangle add action=mark-packet chain=forward connection-mark="KONEKSI UTAMA" in-interface-list=WAN new-packet-mark="UMUM DOWNLOAD" passthrough=yes /ip firewall mangle add action=mark-packet chain=forward connection-mark="KONEKSI UTAMA" new-packet-mark="UMUM UPLOAD" out-interface-list=WAN passthrough=yes /ip firewall mangle add action=add-dst-to-address-list address-list=IP-YOUTUBE address-list-timeout=15s chain=prerouting connection-mark="KONEKSI UTAMA" connection-rate=512k-999M dst-address-list=!IP-GAME dst-port=443 protocol=udp srcaddress-list=LOKAL /ip firewall mangle add action=mark-connection chain=prerouting comment=HIGH connection-mark="KONEKSI GAME" connection-rate=250k-999M new-connectionmark="KONEKSI HIGH" passthrough=yes /ip firewall mangle add action=mark-packet chain=forward connection-mark="KONEKSI HIGH" in-interface-list=WAN new-packet-mark="HIGH DOWNLOAD" passthrough=yes /ip firewall mangle add action=mark-packet chain=forward connection-mark="KONEKSI HIGH" new-packet-mark="HIGH UPLOAD" out-interface-list=WAN passthrough=yes /ip firewall mangle add action=mark-connection chain=postrouting connectionmark="KONEKSI HIGH" connection-rate=0-250k new-connection-mark="KONEKSI GAME" passthrough=yes /ip firewall mangle add action=mark-connection chain=prerouting comment=CHAT dstaddress-list=IP-CHAT new-connection-mark="KONEKSI CHAT" passthrough=yes srcaddress-list=LOKAL /ip firewall mangle add action=mark-packet chain=forward connection-mark="KONEKSI CHAT" in-interface-list=WAN new-packet-mark="CHAT DOWNLOAD" passthrough=yes /ip firewall mangle add action=mark-packet chain=forward connection-mark="KONEKSI CHAT" new-packet-mark="CHAT UPLOAD" out-interface-list=WAN passthrough=yes /ip firewall mangle add action=mark-connection chain=prerouting comment=SOSMED dstaddress-list=IP-SOSMED new-connection-mark="KONEKSI SOSMED" passthrough=yes srcaddress-list=LOKAL /ip firewall mangle add action=mark-packet chain=forward connection-mark="KONEKSI SOSMED" in-interface-list=WAN new-packet-mark="SOSMED DOWNLOAD" passthrough=yes /ip firewall mangle add action=mark-packet chain=forward connection-mark="KONEKSI SOSMED" new-packet-mark="SOSMED UPLOAD" out-interface-list=WAN passthrough=yes /ip firewall mangle add action=mark-connection chain=prerouting comment=YOUTUBE dst-address-list=IP-YOUTUBE new-connection-mark="KONEKSI YOUTUBE" passthrough=yes src-address-list=LOKAL /ip firewall mangle add action=mark-packet chain=forward connection-mark="KONEKSI YOUTUBE" in-interface-list=WAN new-packet-mark="YOUTUBE DOWNLOAD" passthrough=yes /ip firewall mangle add action=mark-packet chain=forward connection-mark="KONEKSI YOUTUBE" new-packet-mark="YOUTUBE UPLOAD" out-interface-list=WAN passthrough=yes /ip firewall mangle add action=mark-connection chain=prerouting comment=SPEEDTEST dst-address-list=IP-SPEEDTEST new-connection-mark="KONEKSI SPEEDTEST" passthrough=yes src-address-list=LOKAL
/ip firewall mangle add action=mark-packet chain=forward connection-mark="KONEKSI SPEEDTEST" in-interface-list=WAN new-packet-mark="SPEEDTEST DOWNLOAD" passthrough=yes /ip firewall mangle add action=mark-packet chain=forward connection-mark="KONEKSI SPEEDTEST" new-packet-mark="SPEEDTEST UPLOAD" out-interface-list=WAN passthrough=yes / /ip firewall raw add action=add-dst-to-address-list address-list=IP-GAME addresslist-timeout=6h chain=prerouting comment="MOBILE LEGENDS" dst-address-list=!LOKAL dst-port=5001-5009,5050-5057,5153,5228,5500-5700,8001,9000-9010,10003,30000-30300 protocol=tcp src-address-list=LOKAL /ip firewall raw add action=add-dst-to-address-list address-list=IP-GAME addresslist-timeout=6h chain=prerouting dst-address-list=!LOKAL dst-port=5000-5200,55015530,5601-5650,5500-5700,8001,9000-9010,9992,30000-30300 protocol=udp src-addresslist=LOKAL /ip firewall raw add action=add-dst-to-address-list address-list=IP-GAME addresslist-timeout=6h chain=prerouting comment=FREEFIRE dst-address-list=!LOKAL dstport=6006,6674,7006,7889,80018012,9006,10006,10012,11006,12006,13006,39003,39698,39800 protocol=tcp src-addresslist=LOKAL /ip firewall raw add action=add-dst-to-address-list address-list=IP-GAME addresslist-timeout=6h chain=prerouting dst-address-list=!LOKAL dstport=2000,6006,6008,7008,8008,9008,10001-10008,10012,10100,11008,12008,13008,20001 protocol=udp src-address-list=LOKAL /ip firewall raw add action=add-dst-to-address-list address-list=IP-GAME addresslist-timeout=6h chain=prerouting comment=PUBG dst-address-list=!LOKAL dstport=1400,3013,8082,9001-9035,17000,17500,18081,20000-20002,20371 protocol=tcp srcaddress-list=LOKAL src-port="" /ip firewall raw add action=add-dst-to-address-list address-list=IP-GAME addresslist-timeout=6h chain=prerouting dst-address-list=!LOKAL dst-port=3013,80818090,9030-9031,15692,17000,17500,18081,20000-20002,20371 protocol=udp src-addresslist=LOKAL /ip firewall raw add action=add-dst-to-address-list address-list=IP-GAME addresslist-timeout=6h chain=prerouting comment=COD dst-address-list=!LOKAL dstport=3013,8013,8085,10000-10020,18082,50000,65010,65050 protocol=tcp src-addresslist=LOKAL /ip firewall raw add action=add-dst-to-address-list address-list=IP-GAME addresslist-timeout=6h chain=prerouting dst-address-list=!LOKAL dst-port=7085-7995,75007700,8700,9030,10010-10019,17000-20100 protocol=udp src-address-list=LOKAL /ip firewall raw add action=add-dst-to-address-list address-list=IP-CHAT addresslist-timeout=6h chain=prerouting comment="CHAT / VoIP" dst-address-list=!LOKAL dstport=4244,5222,5223,5228,5242,5349,50318,59234 protocol=tcp src-address-list=LOKAL /ip firewall raw add action=add-dst-to-address-list address-list=IP-CHAT addresslist-timeout=6h chain=prerouting dst-address-list=!LOKAL dstport=3478,34784,45395,50318,59234 protocol=udp src-address-list=LOKAL /ip firewall raw add action=add-dst-to-address-list address-list=IP-UMUM addresslist-timeout=6h chain=prerouting dst-address-list=!LOKAL dst-port=5060,5061 protocol=udp src-address-list=LOKAL /ip firewall raw add action=add-dst-to-address-list address-list=IP-CHAT addresslist-timeout=6h chain=prerouting content=whatsapp.com dst-address-list=!LOKAL srcaddress-list=LOKAL /ip firewall raw add action=add-dst-to-address-list address-list=IP-CHAT addresslist-timeout=6h chain=prerouting content=whatsapp.net dst-address-list=!LOKAL srcaddress-list=LOKAL /ip firewall raw add action=add-dst-to-address-list address-list=IP-UMUM addresslist-timeout=1d chain=prerouting comment="ZOOM CONFERENCE " dst-address-list=!LOKAL dst-port=3478,3479,5090,5091,8801-8810 protocol=tcp src-address-list=LOKAL /ip firewall raw add action=add-dst-to-address-list address-list=IP-UMUM address-
list-timeout=1d chain=prerouting comment="GOOGLE MEET" dst-address-list=!LOKAL dstport=19305,19302 protocol=tcp src-address-list=LOKAL /ip firewall raw add action=add-dst-to-address-list address-list=IP-UMUM addresslist-timeout=1d chain=prerouting dst-address-list=!LOKAL dst-port=19305,19302 protocol=udp src-address-list=LOKAL /ip firewall raw add action=add-dst-to-address-list address-list=IP-UMUM addresslist-timeout=1d chain=prerouting comment=REMOTE dst-address-list=!LOKAL dstport=5938,6568,7070,2112 protocol=tcp src-address-list=LOKAL /ip firewall raw add action=add-dst-to-address-list address-list=IP-UMUM addresslist-timeout=1d chain=prerouting dst-address-list=!LOKAL dstport=5938,6568,7070,2112 protocol=udp src-address-list=LOKAL /ip firewall raw add action=add-dst-to-address-list address-list=IP-UMUM addresslist-timeout=1d chain=prerouting content=anydesk.com dst-address-list=!LOKAL srcaddress-list=LOKAL /ip firewall raw add action=add-dst-to-address-list address-list=IP-UMUM addresslist-timeout=1d chain=prerouting comment=MARKETPLACE content=shopee.co.id dstaddress-list=!LOKAL src-address-list=LOKAL /ip firewall raw add action=add-dst-to-address-list address-list=IP-UMUM addresslist-timeout=1d chain=prerouting content=shopeemobile.com dst-address-list=!LOKAL src-address-list=LOKAL /ip firewall raw add action=add-dst-to-address-list address-list=IP-UMUM addresslist-timeout=1d chain=prerouting content=content.garena.com dst-address-list=!LOKAL src-address-list=LOKAL /ip firewall raw add action=add-dst-to-address-list address-list=IP-UMUM addresslist-timeout=1d chain=prerouting content=cdngarenanow-a.akamaihd.net dst-addresslist=!LOKAL src-address-list=LOKAL /ip firewall raw add action=add-dst-to-address-list address-list=IP-UMUM addresslist-timeout=1d chain=prerouting dst-address-list=!LOKAL dst-port=20443,12030 protocol=tcp src-address-list=LOKAL /ip firewall raw add action=add-dst-to-address-list address-list=IP-YOUTUBE address-list-timeout=6h chain=prerouting comment=YOUTUBE content=youtube.com dstaddress-list=!LOKAL src-address-list=LOKAL /ip firewall raw add action=add-dst-to-address-list address-list=IP-YOUTUBE address-list-timeout=6h chain=prerouting content=googlevideo.com dst-address-list=! LOKAL src-address-list=LOKAL /ip firewall raw add action=add-dst-to-address-list address-list=IP-YOUTUBE address-list-timeout=6h chain=prerouting content=ytimg.com dst-address-list=!LOKAL src-address-list=LOKAL /ip firewall raw add action=add-dst-to-address-list address-list=IP-SOSMED addresslist-timeout=6h chain=prerouting comment=SOSMED content=facebook.com dst-addresslist=!LOKAL src-address-list=LOKAL /ip firewall raw add action=add-dst-to-address-list address-list=IP-SOSMED addresslist-timeout=6h chain=prerouting content=fbsbx.com dst-address-list=!LOKAL srcaddress-list=LOKAL /ip firewall raw add action=add-dst-to-address-list address-list=IP-SOSMED addresslist-timeout=6h chain=prerouting content=fbcdn.net dst-address-list=!LOKAL srcaddress-list=LOKAL /ip firewall raw add action=add-dst-to-address-list address-list=IP-SOSMED addresslist-timeout=6h chain=prerouting content=instagram.com dst-address-list=!LOKAL srcaddress-list=LOKAL /ip firewall raw add action=add-dst-to-address-list address-list=IP-SOSMED addresslist-timeout=6h chain=prerouting content=cdninstagram.com dst-address-list=!LOKAL src-address-list=LOKAL /ip firewall raw add action=add-dst-to-address-list address-list=IP-SOSMED addresslist-timeout=6h chain=prerouting content=tiktokcdn.com dst-address-list=!LOKAL srcaddress-list=LOKAL /ip firewall raw add action=add-dst-to-address-list address-list=IP-SOSMED addresslist-timeout=6h chain=prerouting content=tiktokv.com dst-address-list=!LOKAL srcaddress-list=LOKAL
/ip firewall raw add action=add-dst-to-address-list address-list=IP-SOSMED addresslist-timeout=6h chain=prerouting content=tiktok.com dst-address-list=!LOKAL srcaddress-list=LOKAL /ip firewall raw add action=add-dst-to-address-list address-list=IP-SPEEDTEST address-list-timeout=6h chain=prerouting comment=SPEEDTEST content=speedtest dstaddress-list=!LOKAL src-address-list=LOKAL / /queue type add kind=pcq name=pcq-download-unlimited pcq-classifier=dst-address pcq-dst-address6-mask=64 pcq-rate=10M pcq-src-address6-mask=64 /queue type add kind=pcq name=pcq-upload-unlimited pcq-classifier=src-address pcqdst-address6-mask=64 pcq-rate=10M pcq-src-address6-mask=64 /queue type add kind=pcq name=pcq-download-small pcq-classifier=dst-address pcqdst-address6-mask=64 pcq-limit=10KiB pcq-src-address6-mask=64 /queue type add kind=pcq name=pcq-upload-small pcq-classifier=src-address pcq-dstaddress6-mask=64 pcq-limit=10KiB pcq-src-address6-mask=64 / /queue simple add comment="[ Copyright \A9 1 ISP Script Proudly Presents by Pejuang GSM ]" name="-> GLOBAL CONNECTION" queue=default/default target=192.168.2.0/24,192.168.3.0/24,192.168.4.0/24 /queue simple add name="1. GAME" packet-marks="GAME UPLOAD,GAME DOWNLOAD" parent="> GLOBAL CONNECTION" priority=1/1 queue=default/default target=192.168.2.0/24,192.168.3.0/24,192.168.4.0/24 /queue simple add name="2. Chat / VoIP" packet-marks="CHAT UPLOAD,CHAT DOWNLOAD" parent="-> GLOBAL CONNECTION" priority=1/1 queue=pcq-upload-unlimited/pcq-downloadunlimited target=192.168.2.0/24,192.168.3.0/24,192.168.4.0/24 /queue simple add name="3. ALL CONNECTION" parent="-> GLOBAL CONNECTION" queue=default/default target=192.168.2.0/24,192.168.3.0/24,192.168.4.0/24 / /queue tree add comment="[ Copyright \A9 1 ISP Script Proudly Presents by Pejuang GSM ]" name="-> GLOBAL CONNECTION" parent=global queue=default /queue tree add max-limit=100M name="INBOUND PACKET" parent="-> GLOBAL CONNECTION" queue=default /queue tree add max-limit=100M name="OUTBOND PACKET" parent="-> GLOBAL CONNECTION" queue=default /queue tree add name="2. ICMP+DNS Download" packet-mark="ICMP DOWNLOAD,DNS DOWNLOAD" parent="INBOUND PACKET" priority=2 queue=default /queue tree add name="2. ICMP+DNS Upload" packet-mark="ICMP UPLOAD,DNS UPLOAD" parent="OUTBOND PACKET" priority=2 queue=default /queue tree add name="1. Game Download" packet-mark="GAME DOWNLOAD" parent="INBOUND PACKET" priority=1 queue=default /queue tree add name="1. Game Upload" packet-mark="GAME UPLOAD" parent="OUTBOND PACKET" priority=1 queue=default /queue tree add max-limit=25M name="3. All Download" parent="INBOUND PACKET" queue=default /queue tree add max-limit=20M name="3. All Upload" parent="OUTBOND PACKET" queue=default /queue tree add name="4. Umum Download" packet-mark="UMUM DOWNLOAD" parent="3. All Download" priority=5 queue=default /queue tree add name="5. High Upload" packet-mark="HIGH UPLOAD" parent="3. All Upload" priority=5 queue=default /queue tree add name="1. Chat / VoIP Download" packet-mark="CHAT DOWNLOAD" parent="3. All Download" priority=1 queue=pcq-download-unlimited /queue tree add name="1. Chat / VoIP Upload" packet-mark="CHAT UPLOAD" parent="3. All Upload" priority=1 queue=pcq-upload-unlimited /queue tree add name="3. Youtube Download" packet-mark="YOUTUBE DOWNLOAD" parent="3. All Download" priority=4 queue=default
/queue tree add name="3. Youtube Upload" packet-mark="YOUTUBE UPLOAD" parent="3. All Upload" priority=4 queue=default /queue tree add name="6. Speedtest Download" packet-mark="SPEEDTEST DOWNLOAD" parent="3. All Download" priority=5 queue=default /queue tree add name="6. Speedtest Upload" packet-mark="SPEEDTEST UPLOAD" parent="3. All Upload" priority=5 queue=default /queue tree add name="2. Sosmed Download" packet-mark="SOSMED DOWNLOAD" parent="3. All Download" priority=3 queue=default /queue tree add name="2. Sosmed Upload" packet-mark="SOSMED UPLOAD" parent="3. All Upload" priority=3 queue=default /queue tree add name="5. High Download" packet-mark="HIGH DOWNLOAD" parent="3. All Download" priority=5 queue=default /queue tree add name="4. Umum Upload" packet-mark="UMUM UPLOAD" parent="3. All Upload" priority=5 queue=default /
