Script Game Online dan YouTube No Lag

Script Game Online dan YouTube No Lag

Jika semua sudah di sesuaikan, silahkan copy semua kemudian paste ke terminal winbox.

Membuat address-list ke mikrotik dengan nama “private_IPv4” berisi semua private IP, jika di jaringan anda terdapat ip lokal di luar ip private di atas silahkan anda tambahkan.
/ip firewall address-list
add address=192.168.0.0/24 list=private_IPv4
add address=172.16.0.0/12 list=private_IPv4
add address=10.0.0.0/8 list=private_IPv4
Memasukan Regex Layer7 Youtube dan Layer7 extensi EXE, ZIP, MP4, dan RAR.
Jika anda ingin menambah Layer7 untuk extensi yang lain, silahkan tinggal di input saja.
/ip firewall layer7-protocol
add name=EXE regexp="\\x4d\\x5a(\\x90\\x03|\\x50\\x02)\\x04"
add name=ZIP regexp="pk\\x03\\x04\\x14"
add name=MP4 regexp="\\x18\\x66\\x74\\x79\\x70"
add name=RAR regexp="Rar\\x21\\x1a\\x07"
add name=youtube regexp="r[0-9]+---[a-z]+-+[a-z0-9-]+\\.googlevideo\\.com"
Bypass local Traffic, tujuannya adalah agar traffic dari lokal menuju lokal lagi tidak terlimit.
/ip firewall mangle
add action=accept chain=prerouting comment="Bypass Local Traffic" dst-address-list=private_IPv4 src-address-list=private_IPv4
add action=accept chain=forward dst-address-list=private_IPv4 src-address-list=private_IPv4
Menandai Traffic Game online berdasarkan port untuk kita pisahkan queue nya nanti
/ip firewall mangle
add action=mark-connection chain=forward comment="Games Traffic Poit Blank" dst-port=39190-39200 new-connection-mark=games passthrough=yes protocol=tcp src-address-list=private_IPv4
add action=mark-connection chain=forward dst-port=40000-40010 new-connection-mark=games passthrough=yes protocol=udp src-address-list=private_IPv4
add action=mark-connection chain=forward comment="Games Traffic Dota 2" dst-port=27000-27150,9100-9200,8230-8250,8110-8120 new-connection-mark=games passthrough=yes protocol=tcp src-address-list=private_IPv4
add action=mark-connection chain=forward dst-port=27000-27150,347 new-connection-mark=games passthrough=yes protocol=udp src-address-list=private_IPv4
add action=mark-connection chain=forward comment="Games Traffic Lost Saga" dst-port=14000-14010 new-connection-mark=games passthrough=yes protocol=tcp src-address-list=private_IPv4
add action=mark-connection chain=forward dst-port=14000-14010 new-connection-mark=games passthrough=yes protocol=udp src-address-list=private_IPv4
add action=mark-connection chain=forward comment="Games Traffic Fifa Online 3" dst-port=7770-7790 new-connection-mark=games passthrough=yes protocol=tcp src-address-list=private_IPv4
add action=mark-connection chain=forward dst-port=16300-16350 new-connection-mark=games passthrough=yes protocol=udp src-address-list=private_IPv4
add action=mark-packet chain=forward connection-mark=games in-interface="ether1 - Wan" new-packet-mark=games_down passthrough=no
add action=mark-packet chain=forward connection-mark=games in-interface="ether2 - Lan" new-packet-mark=games_up passthrough=no
Menandai / marking traffic DNS, ICMP dan beberapa port seperti SSH, dan winbox.
/ip firewall mangle   
add action=mark-connection chain=forward comment="ICMP Traffic" new-connection-mark=icmp passthrough=yes protocol=icmp src-address-list=private_IPv4
add action=mark-packet chain=forward connection-mark=icmp in-interface="ether1 - Wan" new-packet-mark=icmp_down passthrough=no protocol=icmp
add action=mark-packet chain=forward connection-mark=icmp in-interface="ether2 - Lan" new-packet-mark=icmp_up passthrough=no protocol=icmp
add action=mark-connection chain=forward comment="DNS Traffic" dst-port=53 new-connection-mark=dns passthrough=yes protocol=udp src-address-list=private_IPv4
add action=mark-packet chain=forward connection-mark=dns in-interface="ether1 - Wan" new-packet-mark=dns_down passthrough=no protocol=udp
add action=mark-packet chain=forward connection-mark=dns in-interface="ether2 - Lan" new-packet-mark=dns_up passthrough=no protocol=udp
add action=mark-connection chain=forward comment="Remote Traffic" dst-port=22,23,8291,5938,4899 new-connection-mark=remote passthrough=yes protocol=tcp src-address-list=private_IPv4
add action=mark-packet chain=forward connection-mark=remote in-interface="ether1 - Wan" new-packet-mark=remote_down passthrough=no
add action=mark-packet chain=forward connection-mark=remote in-interface="ether2 - Lan" new-packet-mark=remote_up passthrough=no
Menandai / marking traffic YouTube dan Extensi berdasarkan layer7
/ip firewall mangle
add action=mark-connection chain=forward comment="YouTube Traffic" layer7-protocol=youtube new-connection-mark=youtube passthrough=yes src-address-list=private_IPv4
add action=mark-packet chain=forward connection-mark=youtube in-interface="ether1 - Wan" new-packet-mark=youtube_down passthrough=no
add action=mark-packet chain=forward connection-mark=youtube in-interface="ether2 - Lan" new-packet-mark=youtube_up passthrough=no
add action=mark-connection chain=forward comment="Extension Layer7" layer7-protocol=EXE new-connection-mark=extensi passthrough=yes
add action=mark-connection chain=forward layer7-protocol=ZIP new-connection-mark=extensi passthrough=yes
add action=mark-connection chain=forward layer7-protocol=MP3 new-connection-mark=extensi passthrough=yes
add action=mark-connection chain=forward layer7-protocol=RAR new-connection-mark=extensi passthrough=yes
add action=mark-packet chain=forward connection-mark=extensi in-interface="ether1 - Wan" new-packet-mark=extensi_down passthrough=no
add action=mark-packet chain=forward connection-mark=extensi in-interface="ether2 - Lan" new-packet-mark=extensi_up passthrough=no
Mangle terakhir di atas tujuannya memisahkan traffic browsing yang ringan dan berat
/ip firewall mangle
add action=mark-connection chain=forward comment="Browsing Traffic" connection-mark=!heavy_traffic new-connection-mark=browsing passthrough=yes src-address-list=private_IPv4
add action=mark-connection chain=forward comment="Heavy Traffic" connection-bytes=1024000-0 connection-mark=browsing connection-rate=256k-102400k new-connection-mark=heavy_traffic passthrough=yes protocol=tcp
add action=mark-connection chain=forward connection-bytes=1024000-0 connection-mark=browsing connection-rate=256k-102400k new-connection-mark=heavy_traffic passthrough=yes protocol=udp
add action=mark-packet chain=forward connection-mark=heavy_traffic in-interface="ether1 - Wan" new-packet-mark=heavy_browsing_down passthrough=no
add action=mark-packet chain=forward connection-mark=heavy_traffic in-interface="ether2 - Lan" new-packet-mark=heavy_browsing_up passthrough=no
add action=mark-packet chain=forward connection-mark=browsing in-interface="ether1 - Wan" new-packet-mark=small_browsing_down passthrough=no
add action=mark-packet chain=forward connection-mark=browsing in-interface="ether2 - Lan" new-packet-mark=small_browsing_up passthrough=no
Queue Tree HTB
/queue type
add kind=pcq name=down_pcq pcq-classifier=dst-address pcq-dst-address6-mask=64 pcq-src-address6-mask=64
add kind=pcq name=up_pcq pcq-classifier=src-address pcq-dst-address6-mask=64 pcq-src-address6-mask=64
/queue tree
add name="Global Traffic" parent=global queue=default
add max-limit=3M name=Download parent="Global Traffic" queue=default
add max-limit=1M name=Upload parent="Global Traffic"
add limit-at=512k max-limit=3M name="1. Game" packet-mark=games_down parent=Download priority=1 queue=down_pcq
add limit-at=64k max-limit=3M name="2. Icmp" packet-mark=icmp_down parent=Download priority=1 queue=down_pcq
add limit-at=64k max-limit=3M name="3. Dns" packet-mark=dns_down parent=Download priority=1 queue=down_pcq
add max-limit=3M name="5. Download Traffic" parent=Download queue=default
add max-limit=3M name="1. Small Browsing" packet-mark=small_browsing_down parent="5. Download Traffic" priority=5 queue=down_pcq
add max-limit=3M name="2. Heavy Browsing" packet-mark=heavy_browsing_down parent="5. Download Traffic" priority=7 queue=down_pcq
add limit-at=512k max-limit=3M name="4. Remote" packet-mark=remote_down parent=Download priority=3 queue=down_pcq
add max-limit=3M name="3. YouTube" packet-mark=youtube_down parent="5. Download Traffic" priority=7 queue=down_pcq
add max-limit=3M name="4. Extensi" packet-mark=extensi_down parent="5. Download Traffic" queue=down_pcq
add limit-at=256k max-limit=1M name="1. game" packet-mark=games_up parent=Upload priority=1 queue=up_pcq
add limit-at=32k max-limit=1M name="2. icmp" packet-mark=icmp_up parent=Upload priority=1 queue=up_pcq
add limit-at=32k max-limit=1M name="3. dns" packet-mark=dns_up parent=Upload priority=1 queue=up_pcq
add limit-at=256k max-limit=1M name="4. remote" packet-mark=remote_up parent=Upload priority=3 queue=up_pcq
add max-limit=1M name="5. Upload Traffic" parent=Upload queue=default
add max-limit=1M name="1. small browsing" packet-mark=small_browsing_up parent="5. Upload Traffic" priority=5 queue=up_pcq
add max-limit=1M name="2. heavy browsing" packet-mark=heavy_browsing_up parent="5. Upload Traffic" priority=7 queue=up_pcq
add max-limit=1M name="3. youtube" packet-mark=youtube_up parent="5. Upload Traffic" priority=7 queue=up_pcq
add max-limit=1M name="4. extensi" packet-mark=extensi_up parent="5. Upload Traffic" queue=up_pcq
Silahkan copy semua script di atas kemudian paste ke terminal winbox, hasilnya kira-kira seperti berikut:


Blok Virus Mikrotik
/ip firewall filter
    add chain=virus protocol=tcp dst-port=135-139 action=drop comment="Blaster Worm"
    add chain=virus protocol=udp dst-port=135-139 action=drop comment="Messenger Worm"
    add chain=virus protocol=tcp dst-port=445 action=drop comment="Blaster Worm"
    add chain=virus protocol=udp dst-port=445 action=drop comment="Blaster Worm"
    add chain=virus protocol=tcp dst-port=593 action=drop comment="________"
    add chain=virus protocol=tcp dst-port=1024-1030 action=drop comment="________"
    add chain=virus protocol=tcp dst-port=1080 action=drop comment="Drop MyDoom"
    add chain=virus protocol=tcp dst-port=1214 action=drop comment="________"
    add chain=virus protocol=tcp dst-port=1363 action=drop comment="ndm requester"
    add chain=virus protocol=tcp dst-port=1364 action=drop comment="ndm server"
    add chain=virus protocol=tcp dst-port=1368 action=drop comment="screen cast"
    add chain=virus protocol=tcp dst-port=1373 action=drop comment="hromgrafx"
    add chain=virus protocol=tcp dst-port=1377 action=drop comment="cichlid"
    add chain=virus protocol=tcp dst-port=2745 action=drop comment="Bagle Virus"
    add chain=virus protocol=tcp dst-port=2283 action=drop comment="Dumaru.Y"
    add chain=virus protocol=tcp dst-port=2535 action=drop comment="Beagle"
    add chain=virus protocol=tcp dst-port=2745 action=drop comment="Beagle.C-K"
    add chain=virus protocol=tcp dst-port=3127-3128 action=drop comment="MyDoom"
    add chain=virus protocol=tcp dst-port=3410 action=drop comment="Backdoor OptixPro"
    add chain=virus protocol=tcp dst-port=4444 action=drop comment="Worm"
    add chain=virus protocol=udp dst-port=4444 action=drop comment="Worm"
    add chain=virus protocol=tcp dst-port=5554 action=drop comment="Drop Sasser"
    add chain=virus protocol=tcp dst-port=8866 action=drop comment="Drop Beagle.B"
    add chain=virus protocol=tcp dst-port=9898 action=drop comment="Drop Dabber.A-B"
    add chain=virus protocol=tcp dst-port=10000 action=drop comment="Drop Dumaru.Y"
    add chain=virus protocol=tcp dst-port=10080 action=drop comment="Drop MyDoom.B"
    add chain=virus protocol=tcp dst-port=12345 action=drop comment="Drop NetBus"
    add chain=virus protocol=tcp dst-port=17300 action=drop comment="Drop Kuang2"
    add chain=virus protocol=tcp dst-port=27374 action=drop comment="Drop SubSeven"
    add chain=virus protocol=tcp dst-port=65506 action=drop comment="Drop PhatBot,Agobot, Gaobot"
    add chain=virus protocol=udp dst-port=12667 action=drop comment="Trinoo" disabled=no
    add chain=virus protocol=udp dst-port=27665 action=drop comment="Trinoo" disabled=no
    add chain=virus protocol=udp dst-port=31335 action=drop comment="Trinoo" disabled=no
    add chain=virus protocol=udp dst-port=27444 action=drop comment="Trinoo" disabled=no
    add chain=virus protocol=udp dst-port=34555 action=drop comment="Trinoo" disabled=no
    add chain=virus protocol=udp dst-port=35555 action=drop comment="Trinoo" disabled=no
    add chain=virus protocol=tcp dst-port=27444 action=drop comment="Trinoo" disabled=no
    add chain=virus protocol=tcp dst-port=27665 action=drop comment="Trinoo" disabled=no
    add chain=virus protocol=tcp dst-port=31335 action=drop comment="Trinoo" disabled=no
    add chain=virus protocol=tcp dst-port=31846 action=drop comment="Trinoo" disabled=no
    add chain=virus protocol=tcp dst-port=34555 action=drop comment="Trinoo" disabled=no
    add chain=virus protocol=tcp dst-port=35555 action=drop comment="Trinoo" disabled=no
    add action=drop chain=forward comment=";;Block W32.Kido - Conficker" disabled=no protocol=udp src-port=135-139,445
    add action=drop chain=forward comment="" disabled=no dst-port=135-139,445 protocol=udp
    add action=drop chain=forward comment="" disabled=no protocol=tcp src-port=135-139,445,593
    add action=drop chain=forward comment="" disabled=no dst-port=135-139,445,593 protocol=tcp
    add action=accept chain=input comment="Allow limited pings" disabled=no limit=50/5s,2 protocol=icmp
    add action=accept chain=input comment="" disabled=no limit=50/5s,2 protocol=icmp
    add action=drop chain=input comment="drop FTP Brute Forcers" disabled=no dst-port=21 protocol=tcp src-address-list=FTP_BlackList
    add action=drop chain=input comment="" disabled=no dst-port=21 protocol=tcp src-address-list=FTP_BlackList
    add action=accept chain=output comment="" content="530 Login incorrect" disabled=no dst-limit=1/1m,9,dst-address/1m protocol=tcp
    add action=add-dst-to-address-list address-list=FTP_BlackList address-list-timeout=1d chain=output comment="" content="530 Login incorrect" disabled=no protocol=tcp
    add action=drop chain=input comment="drop SSH&TELNET Brute Forcers" disabled=no dst-port=22-23 protocol=tcp src-address-list=IP_BlackList
    add action=add-src-to-address-list address-list=IP_BlackList address-list-timeout=1d chain=input comment="" connection-state=new disabled=no dst-port=22-23 protocol=tcp src-address-list=SSH_BlackList_3
    add action=add-src-to-address-list address-list=SSH_BlackList_3 address-list-timeout=1m chain=input comment="" connection-state=new disabled=no dst-port=22-23 protocol=tcp src-address-list=SSH_BlackList_2
    add action=add-src-to-address-list address-list=SSH_BlackList_2 address-list-timeout=1m chain=input comment="" connection-state=new disabled=no dst-port=22-23 protocol=tcp src-address-list=SSH_BlackList_1
    add action=add-src-to-address-list address-list=SSH_BlackList_1 address-list-timeout=1m chain=input comment="" connection-state=new disabled=no dst-port=22-23 protocol=tcp
    add action=drop chain=input comment="drop port scanners" disabled=no src-address-list=port_scanners
    add action=add-src-to-address-list address-list=port_scanners address-list-timeout=2w chain=input comment="" disabled=no protocol=tcp tcp-flags=fin,!syn,!rst,!psh,!ack,!urg
    add action=add-src-to-address-list address-list=port_scanners address-list-timeout=2w chain=input comment="" disabled=no protocol=tcp tcp-flags=fin,syn
    add action=add-src-to-address-list address-list=port_scanners address-list-timeout=2w chain=input comment="" disabled=no protocol=tcp tcp-flags=syn,rst
    add action=add-src-to-address-list address-list=port_scanners address-list-timeout=2w chain=input comment="" disabled=no protocol=tcp tcp-flags=fin,psh,urg,!syn,!rst,!ack
    add action=add-src-to-address-list address-list=port_scanners address-list-timeout=2w chain=input comment="" disabled=no protocol=tcp tcp-flags=fin,syn,rst,psh,ack,urg
    add action=add-src-to-address-list address-list=port_scanners address-list-timeout=2w chain=input comment="" disabled=no protocol=tcp tcp-flags=!fin,!syn,!rst,!psh,!ack,!urg
 SELAMAT MENCOBA

Post a Comment

21 Comments

  1. SUSWANTIJuly 20, 2017 at 11:02 AM

    thanks, script nya berjalan dengan baik,sudah saya test dengan psiphon, sebelumnya mohon maaf, untuk layer7 extensi dan youtube saya modifikasi spt ini /ip firewall layer7-protocol
    add comment=extensi name=extensi regexp="^.*get.+\\.(exe|rar|iso|zip|7zip|0[0-9]\
    [1-9]|flv|mkv|avi|mp4|3gp|rmvb|mp3|img|dat|mov).*\$"
    add comment=streaming name=streaming regexp=videoplayback|video

    ReplyDelete
    Replies
    1. SepuluhjarikuJuly 20, 2017 at 1:08 PM

      Sip Smoga sukses

      Delete
    2. SUSWANTIAugust 9, 2017 at 9:14 PM

      maaf gan , ada masalah ni, ketika heavy browsing beraktifitas, terkadang nonton streaming masuk ke jalur tsb, kenapa ya ping game, jadi besar dan lag, mohon petunjuk

      Delete
  2. SUSWANTIAugust 14, 2017 at 10:29 AM

    udah kelar gan,, begitu saya restart mikrotik semua lancar jaya hehe

    ReplyDelete
  3. nyubiSeptember 4, 2017 at 10:04 PM

    Saya coba ya om.. thanks

    ReplyDelete
  4. im alieveNovember 17, 2017 at 8:51 AM

    gan, mau tanya
    pada script mangel terdapat " interface="ether1 - Wan" dan interface='ether2 - Lan " apakah pada nama interface tersebut harus di sesuaikan pada nama interface mikrotik saya atau wajib sesuai script tersebut???

    ReplyDelete
    Replies
    1. AnonymousFebruary 1, 2018 at 6:35 AM

      iya bro, kl gk disesuaikan sama setting mikrotik kita gakkan masuk alias gak kebaca...

      Delete
  5. AnonymousFebruary 1, 2018 at 6:35 AM

    saya coba dulu semoga tambah cocok, makasih gan script nya

    ReplyDelete
  6. UnknownApril 19, 2018 at 1:27 PM

    gmana lancar kah scrpt ya ini

    ReplyDelete
  7. UnknownMay 2, 2018 at 10:20 PM

    This comment has been removed by the author.

    ReplyDelete
  8. UnknownMay 2, 2018 at 10:20 PM

    settingnya kok untuk speedy 3Mbps ya bkn 10Mbps..., soalnya ketika saya masukkan tidak sesuai dengan gambar queue tree, mohon pencerahannya..trm ksh

    ReplyDelete
  9. AnonymousMay 8, 2018 at 9:55 PM

    mas maaf adakah tutor untuk seting rb750 dari awal sampai cara membagi bandwitch untuk client dan membagi untuk game dan yotube,mhn info nya mas...maaf saya benar baru belajar mengenai seting mikrotik...terima kasih mas...semoga sukses selalu amin

    ReplyDelete
  10. edipulsaJune 2, 2018 at 10:34 PM

    sip

    ReplyDelete
  11. nyubiOctober 5, 2018 at 1:42 PM

    Mohon bantuan pencerahanya dari para mastah dunia warnet , ada yang tau mangle game roblox gak ?, gimana cara mengetahui mangle nya dengan fitur torch nya mikrotik ?, terima kasih sebelumnya..

    ReplyDelete
  12. UnknownOctober 17, 2018 at 3:48 PM

    Gan saya sudah mengikuti cara diatas, lalu saya tes dan lihat di que mengapa tdk ada trafik yg jalan ya ? terimakasih sebelumnya

    ReplyDelete
  13. jz-oneJanuary 15, 2019 at 6:48 PM

    Script diatas sudah berjalan,akan tetapi pada saat melihat di queue tree traffic DNS nya kok tidak jalan ya?mohon bantuannya terimakasih sebelumnya.

    ReplyDelete
  14. yusufJune 2, 2019 at 9:40 AM

    mantap mas terimakasih, sdh berjalan.

    saya kan 20mbps, gimana cara baginya mas.
    yg cocok

    ReplyDelete
  15. Suratno MahmudJune 24, 2019 at 8:30 PM

    izin coba scriptnya bang....

    ReplyDelete
  16. IlhammNovember 6, 2019 at 5:01 PM

    Om mau tanya klw saya layanna 20mbps, apa yg diganti ya?

    ReplyDelete
  17. min chuSeptember 15, 2021 at 5:51 PM

    limit speed youtube kok gk bisa y gan

    ReplyDelete
  18. AnxgitoMMDSeptember 12, 2022 at 9:04 PM

    apakah bsa d terapkan di jaringan hotspot

    ReplyDelete