{"id":1635,"date":"2021-10-12T15:10:33","date_gmt":"2021-10-12T22:10:33","guid":{"rendered":"https:\/\/www.xh86.me\/?p=1635"},"modified":"2021-10-12T15:10:33","modified_gmt":"2021-10-12T22:10:33","slug":"mikrotik-routeros-%e5%a4%9a%e7%ba%bf%e5%88%86%e6%b5%81","status":"publish","type":"post","link":"https:\/\/www.xh86.me\/?p=1635","title":{"rendered":"Mikrotik RouterOS \u591a\u7ebf\u5206\u6d41"},"content":{"rendered":"<p>\u7f51\u7edc\u62d3\u6251\u5982\u56fe\u6240\u793a<br \/>\n<div class='fancybox-wrapper lazyload-container-unload' data-fancybox='post-images' href='https:\/\/bobylive.com\/usr\/uploads\/2015\/12\/1915131757.png'><img class=\"lazyload lazyload-style-1\" src=\"data:image\/svg+xml;base64,PCEtLUFyZ29uTG9hZGluZy0tPgo8c3ZnIHdpZHRoPSIxIiBoZWlnaHQ9IjEiIHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwL3N2ZyIgc3Ryb2tlPSIjZmZmZmZmMDAiPjxnPjwvZz4KPC9zdmc+\"  decoding=\"async\" data-original=\"https:\/\/bobylive.com\/usr\/uploads\/2015\/12\/1915131757.png\" src=\"data:image\/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAYAAAAfFcSJAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8YQUAAAAJcEhZcwAADsQAAA7EAZUrDhsAAAANSURBVBhXYzh8+PB\/AAffA0nNPuCLAAAAAElFTkSuQmCC\" alt=\"\" \/><\/div><\/p>\n<p>\u73b0\u5728 Mikrotik RouterOS \u4e0b\u6709\u4e24\u4e2a\u4e0d\u540c\u7684\u5ba2\u6237\u7f51\u7edc\uff0c\u5206\u522b\u662f\u00a0<strong>LAN_1(10.1.1.0\/24\uff0c\u5141\u8bb8\u8bbf\u95ee\u516c\u7f51)<\/strong>\u00a0\u548c\u00a0<strong>PPP_1(172.16.1.0\/24\uff0c\u53ea\u5141\u8bb8\u8bbf\u95ee\u5de5\u4f5c\u7f51\u7edc)<\/strong>\u00a0\uff0c\u800c\u8fdc\u7aef\u7f51\u7edc\u4e5f\u6709\u4e24\u4e2a\uff0c\u5206\u522b\u662f<strong>\u516c\u7f51(xxx.xxx.xxx.xxx)<\/strong>\u548c<strong>\u5de5\u4f5c\u7f51\u7edc (192.168.1.0\/24)<\/strong>\u00a0\uff0c\u73b0\u5728\u8981\u5b9e\u73b0\u7684\u529f\u80fd\u5c31\u662f\uff0c\u8ba9 PPP_1 \u7684\u6d41\u91cf\u5168\u90e8\u8d70\u5de5\u4f5c\u7f51\u7edc\uff0c\u4e0d\u8d70\u516c\u7f51\u3002<\/p>\n<blockquote><p>\u8bbe\u7f6e\u8def\u7531\u6807\u8bb0<\/p><\/blockquote>\n<p>\u4e3a\u4e86\u8ba9 PPP_1 \u7684\u6d41\u91cf\u8d70\u6307\u5b9a\u7684\u7ebf\u8def\uff0c\u6309\u7167\u8def\u7531\u548c\u4ea4\u6362\u7684\u8bbe\u8ba1\uff0c\u6211\u4eec\u8981\u5bf9\u7f51\u7edc\u8def\u7531\u8868\u8fdb\u884c\u4fee\u6539\uff0c\u4e3a\u4e0d\u540c\u7f51\u6bb5\u6307\u5b9a\u4e0d\u540c\u7f51\u5173\u3002\u6240\u4ee5\uff0c\u9996\u5148\u6211\u4eec\u8981\u7ed9 PPP_1 \u5730\u5740\u6c60\u505a\u4e00\u4e2a\u8def\u7531\u6807\u8bb0\uff0c\u5e76\u4e14\u4e00\u5b9a\u8981\u5c06\u5176\u8bbe\u7f6e\u4e3a\u00a0<code>Enable<\/code>\u00a0\u3002<\/p>\n<p><code>IP &gt; Firewall &gt; Mangle &gt; Add<\/code>\u00a0\u6dfb\u52a0\u4e00\u4e2a\u00a0<code>Chain = prerouting<\/code>\uff0c<code>Src.Address = 172.16.1.0\/24<\/code>\uff0c<code>action = mark routint<\/code>\uff0c<code>New Routing Mark = Working_Network<\/code>\uff0c<code>Disable = No<\/code>\u00a0\u7684\u8def\u7531\u6807\u8bb0\u3002<\/p>\n<p><div class='fancybox-wrapper lazyload-container-unload' data-fancybox='post-images' href='https:\/\/bobylive.com\/usr\/uploads\/2015\/12\/4156232265.png'><img class=\"lazyload lazyload-style-1\" src=\"data:image\/svg+xml;base64,PCEtLUFyZ29uTG9hZGluZy0tPgo8c3ZnIHdpZHRoPSIxIiBoZWlnaHQ9IjEiIHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwL3N2ZyIgc3Ryb2tlPSIjZmZmZmZmMDAiPjxnPjwvZz4KPC9zdmc+\"  decoding=\"async\" data-original=\"https:\/\/bobylive.com\/usr\/uploads\/2015\/12\/4156232265.png\" src=\"data:image\/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAYAAAAfFcSJAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8YQUAAAAJcEhZcwAADsQAAA7EAZUrDhsAAAANSURBVBhXYzh8+PB\/AAffA0nNPuCLAAAAAElFTkSuQmCC\" alt=\"\" \/><\/div><\/p>\n<p><div class='fancybox-wrapper lazyload-container-unload' data-fancybox='post-images' href='https:\/\/bobylive.com\/usr\/uploads\/2015\/12\/1874993278.png'><img class=\"lazyload lazyload-style-1\" src=\"data:image\/svg+xml;base64,PCEtLUFyZ29uTG9hZGluZy0tPgo8c3ZnIHdpZHRoPSIxIiBoZWlnaHQ9IjEiIHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwL3N2ZyIgc3Ryb2tlPSIjZmZmZmZmMDAiPjxnPjwvZz4KPC9zdmc+\"  decoding=\"async\" data-original=\"https:\/\/bobylive.com\/usr\/uploads\/2015\/12\/1874993278.png\" src=\"data:image\/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAYAAAAfFcSJAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8YQUAAAAJcEhZcwAADsQAAA7EAZUrDhsAAAANSURBVBhXYzh8+PB\/AAffA0nNPuCLAAAAAElFTkSuQmCC\" alt=\"\" \/><\/div><\/p>\n<p>\u6b64\u8def\u7531\u6807\u8bb0\u7684\u4f5c\u7528\u5c31\u662f\u7ed9\u5339\u914d\u89c4\u5219\u7684\u6d41\u91cf\u6253\u4e0a\u6807\u8bb0\uff0c\u8ddf\u666e\u901a\u4e09\u5c42\u4ea4\u6362\u91cc\u9762\u7684 ACL \u7684 if-match \u5176\u5b9e\u662f\u4e00\u6837\u7684\u3002<\/p>\n<blockquote><p>\u8bbe\u7f6e\u8def\u7531\u8868<\/p><\/blockquote>\n<p>\u5728\u8def\u7531\u8868\u4e2d\u589e\u52a0\u4e00\u6761\u6307\u5411 0.0.0.0\/0 \u4e5f\u5c31\u662f\u5168\u5c40\u7684\u8def\u7531\u4fe1\u606f\uff0c\u5176\u7f51\u5173\u4e3a 20.20.0.253 \u5373\u529e\u516c\u7f51\u7edc VPN \u7f51\u5173\uff0c\u5e76\u5c06\u5339\u914d\u4e86 Working_Network \u6807\u8bb0\u7684\u6d41\u91cf\u90fd\u6307\u5411\u8fd9\u6761\u8def\u7531\u4fe1\u606f\u3002<\/p>\n<p><code>IP &gt; Routes<\/code>\u00a0\u6dfb\u52a0\u4e00\u6761\u00a0<code>Dst.Address = 0.0.0.0\/0<\/code>\uff0c<code>Gateway = 20.20.0.253<\/code>\uff0c<code>Routing Mark = Working_Network<\/code>\uff0c<code>Disable = No<\/code>\u00a0\u7684\u8def\u7531\u4fe1\u606f\u3002<\/p>\n<p><div class='fancybox-wrapper lazyload-container-unload' data-fancybox='post-images' href='https:\/\/bobylive.com\/usr\/uploads\/2015\/12\/3212471934.png'><img class=\"lazyload lazyload-style-1\" src=\"data:image\/svg+xml;base64,PCEtLUFyZ29uTG9hZGluZy0tPgo8c3ZnIHdpZHRoPSIxIiBoZWlnaHQ9IjEiIHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwL3N2ZyIgc3Ryb2tlPSIjZmZmZmZmMDAiPjxnPjwvZz4KPC9zdmc+\"  decoding=\"async\" data-original=\"https:\/\/bobylive.com\/usr\/uploads\/2015\/12\/3212471934.png\" src=\"data:image\/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAYAAAAfFcSJAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8YQUAAAAJcEhZcwAADsQAAA7EAZUrDhsAAAANSURBVBhXYzh8+PB\/AAffA0nNPuCLAAAAAElFTkSuQmCC\" alt=\"\" \/><\/div><\/p>\n<p>\u6b64\u8def\u7531\u8868\u7684\u4f5c\u7528\u5c31\u662f\u7ed9\u5339\u914d\u4e86\u6307\u5b9a\u8def\u7531\u4fe1\u606f\u7684\u7f51\u6bb5\u6307\u5b9a\u7f51\u5173\uff0c\u5373\u53ef\u5b9e\u73b0\u6d41\u91cf\u5206\u6d41\uff0c\u8ddf\u4e09\u5c42\u4ea4\u6362\u91cc\u9762\u7684 traffic policy \u548c classifier XXX behavior XXX \u5176\u5b9e\u662f\u4e00\u6837\u7684<\/p>\n<p>\u591a\u7ebf\u5206\u6d41\u53ea\u6709\u4e24\u6761\u89c4\u5219\uff0c\u4e3a\u9700\u8981\u5206\u6d41\u7684\u4e0d\u540c\u7f51\u6bb5\u589e\u52a0\u4e0d\u540c\u7684\u8def\u7531\u6807\u8bb0\uff0c\u7136\u540e\u7ed9\u4e0d\u540c\u7684\u6807\u8bb0\u6307\u5b9a\u4e0d\u540c\u7684\u7f51\u5173\u5373\u53ef\u3002<\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u7f51\u7edc\u62d3\u6251\u5982\u56fe\u6240\u793a \u73b0\u5728 Mikrotik RouterOS \u4e0b\u6709\u4e24\u4e2a\u4e0d\u540c\u7684\u5ba2\u6237\u7f51\u7edc\uff0c\u5206\u522b\u662f\u00a0LAN_1(10. [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[9],"tags":[],"class_list":["post-1635","post","type-post","status-publish","format-standard","hentry","category-mikrotik"],"_links":{"self":[{"href":"https:\/\/www.xh86.me\/index.php?rest_route=\/wp\/v2\/posts\/1635","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.xh86.me\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.xh86.me\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.xh86.me\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.xh86.me\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1635"}],"version-history":[{"count":1,"href":"https:\/\/www.xh86.me\/index.php?rest_route=\/wp\/v2\/posts\/1635\/revisions"}],"predecessor-version":[{"id":1636,"href":"https:\/\/www.xh86.me\/index.php?rest_route=\/wp\/v2\/posts\/1635\/revisions\/1636"}],"wp:attachment":[{"href":"https:\/\/www.xh86.me\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1635"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.xh86.me\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1635"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.xh86.me\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1635"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}