ASHAMPOO ANTIVIRUS V. 1.50 2007

Complete protection without the slowdown!

There are plenty of antivirus programs but some can put a heavy load on your system, eating up the processor power you need for your applications. Many people even turn their virus protection off when they are working to speed up their machines, leaving themselves wide open to attack. To make things worse, these complex antivirus programs are often equally complicated to use. At Ashampoo we believe tools are there to work for you, not to take over your computer. Ashampoo AntiVirus gives you comprehensive protection against viruses, worms, Trojans and dialers, but it’s so efficient you won’t even notice it’s there. And it’s so easy to use that it won’t waste any of your valuable time. Just set it and forget it and get on with more important things.

Set it and forget it – it’s all automatic
Once you have installed Ashampoo AntiVirus protection is automatic. It checks all new files and activity on your computer for both known threats and suspicious behavior and stops attacks before they can do any damage. Malicious hackers are creating new threats every day and an antivirus program is only as good as its updates. Ashampoo AntiVirus recognizes over 700,000 different threats. It comes with a year of free updates and the virus signatures are updated several times a day with information on the latest threats. Just switch on automatic protection and update checking and let the program take care of everything else for you.

Comprehensive antivirus technology
You don’t need to know everything that Ashampoo AntiVirus does to protect you but it may interest you: It doesn’t just scan email attachments and new files for threats. It also scans your computer’s memory and all critical system areas. If you want you can also define your own customized scans to perform systematic checks of all or part of your system, including removable media like CDs and DVDs and even external and portable devices. A special intelligent system known as heuristics analysis is used to identify as-yet unknown threats on the basis of suspicious behavior and stop them before they can do any damage. When infections are found you can choose to clean them immediately or you can put them in quarantine. This is a special protected area where the infected files cannot do any damage but they can be recovered if necessary – for example if you discover that the threat identified was harmless. All the operations performed by the program are recorded in detail in log files. You can view the contents of the logs at any time. A context menu item is added to Windows® Explorer that enables you to scan files directly without starting Ashampoo AntiVirus.

Features at a glance

* Comprehensive protection: Protects against over 470,000 viruses, worms, Trojans and dialers. Scans all critical system areas, memory, emails and files.
* Simple to use: Very intuitive user interface, no previous knowledge required. Configuration with slider controls that automatically display the settings.
* Low system load: You won’t notice it’s there so you’ll never feel tempted to turn your protection off.
* Daily updates: The virus signatures are updated several times a day and the program checks for updates automatically – every hour if you want. A high-speed server prevents update delays.
* Multiple scan modes: Automatic protection while you are working plus manual scans and scheduled scans performed automatically.
* Quarantine: Move infected or suspicious files to a locked quarantine area where they can’t do any damage.
* Windows® Explorer integration: Adds an option with which you can scan files for viruses directly in Windows® Explorer.

Technology highlights for the experts:

* Heuristic analysis: Advanced new algorithms for identifying and blocking unknown threats on the basis of suspicious behavior.
* User-defined scanning: Experienced users can define and schedule up to eight different automatic scans to be performed regularly or at specific times.
* Complete protection: Scans memory, critical system areas, hard drives, folders, archives, removable media and portable and external devices.
* XP Security Center integration: The program is fully compatible with Windows® XP Security Center (Windows® will automatically recognize that you have valid and up-to-date virus protection).
* Logging: Comprehensive logs are maintained of all program activities and can be viewed directly within the program at any time.
* Minimum load background scanning: The background scanning module is a completely new development that places a minimum load on your system resources.

Download:

http://rapidshare.com/files/61132120/Ashampoo_AV_1.50.rar

NOD32 ANTIVIRUS

NOD32 Standard Edition offers well balanced protection against threats attacking your personal computer. Viruses, worms, trojans and other harmful programs will be kept a safe distance from your valuable data. Advanced methods of detection will even provide protection against attacks from as yet unnamed worms and viruses.

ThreatSense® Technology

The world's most advanced heuristic analysis can stop most of the latest, even unknown, viruses and worms. While the average user is waiting defenseless for a response from their antivirus company, this unique technology will protect you and so the risk of becoming a victim of the latest epidemic is reduced to a minimum.

download:

http://rapidshare.com/files/60739372/N32.rar

AVAST ANTIVIRUS V 4.7.892

avast! 4 Home Edition is a full-featured antivirus package designed exclusively for home users and non-commercial use. Both of these conditions should be met! Our company offers the Home Edition free of charge, since, in our opinion, it is possible to avoid global virus spreading by efficient prevention; however, many users are not able to or do not want to pay for antivirus software. This page will show you the most important features of this program..

Download:

http://download509.avast.com/iavs4pro/setupeng.exe

Addon / Info

http://www.midload.com/file/5272/avast--Antivirus-4-7-892-serial-PiONEER.zip.html

SYMBIAN ANTIVIRUS 2007 AIO

ncludes:
F-Secure Mobile Anti-Virus
Kaspersky Anti.Virus.Mobile.v2.0.32b
McAfee VirusScan.Mobile.v1.11
Norton Anti-Virus v1.2.2
Simworks_AntiVirus_v1.2.1
Symantec Mobile Security
SymMS_S60_70s
DOWNLOAD LINK:

http://rapidshare.com/files/51020799/Symbian_AntiViruses.2007.rar

PASSWORD =

xcv_infoesia-in-blogspot

Symantec Antivirus Coorporate Edition 10.1.6.600

Symantec AntiVirus Corporate Edition 10.1.6.6000 Client for Windows 32/64-bit

1epds2.jpg
Symantec AntiVirus Corporate Edition 10.1 combines industry-leading, real-time malware protection for enterprise workstations and network servers with graphical Web-based reporting and centralized management and administration capabilities. The solution automatically detects and repairs the effects of spyware, adware, viruses, and other malicious intrusions to enable enterprise-wide system uptime.

Symantec System Center� enables centralized configuration, deployment, policy management, alerting and reporting, and allows administrators to audit the network to determine which nodes are vulnerable to virus attacks. Administrators can manage client and server groups logically, and can create, deploy, and lock down security policies and settings to keep systems up-to-date and properly configured.

Key Benefits :
- Ensures that servers and desktops stay updated and properly configured, saving time and cost of traveling from machine to machine.
- Detects and prevents spyware from spreading throughout the company infrastructure.
- Guards product from unauthorized access and attacks through integrated tamper protection.

Integrated response content from the leader in information security helps organizations maximize uptime, reduce cost of ownership, and ensure the integrity of their data. Real-time protection reduces the risk of spyware and adware reaching the system, while automatic removal enables easy disposal of security risks. Side-effect repair automatically cleans up registry entries, files, and load points after hard-to-find spyware infections. Administrators have the flexibility to set their own security spyware and adware policies on an application-by-application basis, and gain maximum control over protection settings via the existing Symantec AntiVirus Corporate Edition management interface. Enhanced tamper protection guards all processes and registry entries from unauthorized access and attacks. Potential virus threats are automatically submitted for analysis to Symantec Security Response, which provides repair and response content. A forensic tracing feature helps administrators determine the source of blended threats that spread through open file shares.

Advanced behavior blocking prevents client systems from being used for malicious outbound activities, such as sending worms via email. LiveUpdate technology provides a s ingle update to protect the enterprise from viruses, malware, and spyware. Client compliancy technology allows the administrator to ensure that mobile and remote systems connecting to corporate resources via VPN are compliant with security policies.

Key Features :
- Advanced, enterprise-wide virus protection and monitoring from a single management console.
- Real-time scanning capabilities automatically detects and removes spyware that attempts to run or install on a machine.
- Integrated Web-based graphical reporting and centralized management from one single console.
- Symantec tamper protection guards against unauthorized antivirus access and attacks, protecting users from viruses that attempt to disable security measures.

Symantec AntiVirus Corporate Edition 10.1 combines industry-leading, real-time malware protection for enterprise and network servers with graphical Web-based reporting and centralized management and administration capabilities. The solution automatically detects and repairs the effects of spyware, , viruses, and other malicious intrusions to enable enterprise-wide system uptime. System Center� enables centralized configuration, deployment, policy management, alerting and reporting, and allows administrators to audit the network to determine which nodes are vulnerable to virus attacks. Administrators can manage client and server groups logically, and can create, deploy, and lock down security policies and settings to keep systems up-to-date and properly configured.- Ensures that servers and desktops stay updated and properly configured, saving time and cost of traveling from machine to machine.- Detects and prevents spyware from spreading throughout the company infrastructure.- Guards product from unauthorized access and attacks through integrated tamper protection.Integrated response content from the leader in helps organizations maximize uptime, reduce cost of ownership, and ensure the integrity of their data. Real-time protection reduces the risk of reaching the system, while automatic removal enables easy disposal of . Side-effect repair automatically cleans up registry entries, files, and load points after hard-to- infections. Administrators have the flexibility to set their own spyware and adware policies on an application-by-application basis, and gain maximum control over protection settings via the existing Symantec AntiVirus Corporate Edition management interface. Enhanced tamper protection guards all processes and registry entries from unauthorized access and attacks. Potential virus threats are automatically submitted for analysis to Symantec Security Response, which provides repair and response content. A forensic tracing feature helps administrators determine the source of blended threats that spread through open file shares.Advanced behavior blocking prevents client systems from being used for malicious outbound activities, such as sending worms via email. LiveUpdate technology provides a s ingle update to protect the enterprise from viruses, malware, and spyware. Client compliancy technology allows the administrator to ensure that mobile and remote systems connecting to corporate resources via VPN are compliant with security policies.- Advanced, enterprise-wide virus protection and monitoring from a single management console.- Real-time scanning capabilities automatically detects and removes spyware that attempts to run or install on a machine.- Integrated Web-based graphical reporting and centralized management from one single console.- Symantec tamper protection guards against unauthorized antivirus access and attacks, protecting users from viruses that attempt to disable security measures.

32 Bit

http://rapidshare.com/files/62029564/Symantec_AntiVirus_Corporate_Edition_32bit.rar

64 Bit

http://rapidshare.com/files/62029774/Symantec.AntiVirus.Corporate.v10.1.6.6000.Client.x64.rar

pass = xcv_infoesia-in-blogspot

Panda Antivirus Plus Firewall 2007 v 6.00.02 (Patch Inc)

Maximum protection against viruses, spyware and hackers!

The new Panda Antivirus + Firewall 2007 is much more than an antivirus. This solution will turn your PC into a fortress against hacker attacks and keep you safe from all types of viruses, spyware and online fraud. And now, for each Panda Antivirus + Firewall 2007 product purchase, you will obtain protection for up to 3 PC’s!
The new TruPrevent™ Technologies, developed by Panda Software, rapidly block attacks caused by unknown viruses and intruders, even before your antivirus has been updated to combat them. It also provides additional protection against network viruses, which spread rapidly via the Internet without needing to hide in e-mail messages or attached files.

Protects Against
---------------------
- Protects against all types of viruses
- Blocks and eliminates spyware
- Keeps hackers out
- TruPrevent™ Technologies: Double protection

Panda Antivirus Plus Firewall 2007 includes
-----------------------------------------------------
- Panda Antivirus
- Panda AntiSpyware
- Panda Firewall
- Panda TruPrevent


Download
------------

http://www.getupload.com/file/3013/PAV.rar.html

AVG ANtivirus Profesional v7.5.472a1024 - MUI

AVG Anti-Virus has been protecting computers around the world for more than 10 years! AVG for workstations provide comprehensive antivirus protection for personal computers. The unique combination of detection methods (heueristic analysis, generic detection, scanning and integrity checking) ensures that your computer receives the maximum protection possible on multiple levels (Resident Shield, Email Scanner plug-ins, Personal Email Scanner, On-Demand and other tests, etc.). It is available as AVG Professional Single Edition for single workstation protection and AVG SoHo Edition (Small office - Home office) for home or small offices.




Features:
* Easy to use protection – install and forget
* New program versions and updates, for free, throughout the license duration
* Quality proven by all major antivirus certifications (VB100%, ICSA, West Coast Labs Checkmark)
* 24/7 technical support provided at no extra cost
* Improved virus detection based on better heuristics and NTFS data streams scanning
* Smaller installation and update files
* Improved user interface

Highlights include:
- Automatic update functionality
- The AVG Resident Shield, which provides real-time protection as files are opened and programs are run
- The AVG E-mail Scanner, which protects your e-mail
- The AVG On-Demand Scanner, which allows the user to perform scheduled and manual tests
- The AVG heueristic analysing monitor
- Free Virus Database Updates for the lifetime of the product
- AVG Virus Vault for safe handling of infected files
- Great customer satisfaction!

OS: Windows 98/ME/NT/2000/XP/XP Pro x64/Vista/Vista x64

Size: 29.0MB

Homepage:

http://www.grisoft.com

down.png

http://download.grisoft.cz/softw/70/filedir/inst/avg75avwt_472a1024.exe

Registration:

http://rapidshare.com/files/12282846/AVG-KEGE.rar.html

Serial

70-THXMV1-PU-C21-SFD8A-AZA-KI70
70-TVTMH4-PR-C21-SXBG9-WMM-9JTJ
70-THXMV1-PI-C21-SJNT7-3FQ-IFGS
70-THXMV1-PQ-C41-S79JQ-3F0-6KZ3
70-THXMV1-P2-C41-S5GMA-UMF-ESX7
70-THXMV1-P8-C41-S2ISU-PI4-4GNZ
70-THXMV1-P2-C41-SFCTJ-XVY-H3D4
70-THXMV1-P1-C41-S79HJ-2X2-F7GS
70-TVTMH4-PR-C21-SCWYL-AJY-76M
70-TVTMH4-PR-C21-S6CFV-APY-6BJ6
70-TVTMH4-PR-C21-SHRWA-K8Z-9DJW

Kapersky Anti - Virus 2007 + Up-To-Date Keys

Kaspersky® Anti-Virus 7.0 provides you with traditional anti-virus protection based on the latest protection technologies. You can work, communicate, surf the internet and play online games on your computer safely and easily.
Product Highlights

* Three protection technologies against new and unknown threats: 1) Hourly automated database updates, 2) Preliminary behavior analysis, 3) On-going behavior analysis. New!
* Protection from viruses, Trojans and worms
* Protection from spyware and adware
* Real-time scanning for email, Internet traffic and files
* Protection from viruses when using ICQ and other IM clients
* Protection from all types of keyloggers. Improved!
* Detection of all types of rootkits. Improved!
* Automatic database updates

Additional Features

* Rollback of unwanted changes on your computer
* Self-defense of the antivirus program from being disabled or stopped
* Tools for creating a Rescue Disk
* Free technical support

Download Kaspersky Anti-Virus 2007 + Up-To-Date Keys:

http://rapidshare.com/files/60994351/kasav.keys.rar

Download Keys only:

http://w15.easy-share.com/7593021.html

BITDEFENDER TOTAL SECURITY 2008 32-bit

BitDefender Total Security 2008 provides the ultimate proactive protection for your PCs. It combines state of the art protection against viruses, spyware, hackers, spam and other Internet security threats. Moreover, its system maintenance and PC backup tools keep your PC running fast and protected from data loss.

Top features
State of the art proactive protection against new viruses
Protects against phishing attacks by filtering all accessed web pages for fraud attempts
Helps prevent unauthorized access to your Wi-Fi network
New adaptive engines detect & block spam faster and more reliably than ever
Parental control blocks access to inappropriate websites and e-mail
Automated incremental backup backup copies your data to local or removable drives for safekeeping
Tune-up module improves PC performance

Code:
http://download.bitdefender.com/windows/desktop/total_security/final/en/bitdefender_totalsecurity_2008_32b.exe


Keygen:
Code:
http://rapidshare.com/files/54377607/All.BitDefender.Keygens.AIO.rar

WEB PAGE MAKER v. 2.5

Web Page Maker is an easy-to-use web page editor that allows you to create and upload web pages in minutes without knowing HTML. Simply drag and drop objects onto the page and position them freely in the layout. It comes with several pre-designed templates that help you to get started. It also includes ready-to-use navigation bars that can be inserted into the page. Additional features include built-in color picker, Java script library, image library and built-in FTP client.

Code:
http://rapidshare.com/files/50251162/Web.Page.Maker.v2.5.rar

Hide IP v. 2.1

Concerned about Internet privacy? Want to hide your IP address?
Hide IP Platinum is the software you are looking for! Keeping your privacy is simple and easy: the only thing you need to do is open Hide IP Platinum. Hide IP Platinum will find the proxy server available to you and set it as your proxy server automatically. There is nothing need you to concern. Hide IP Platinum have done everything for you!


Code:
http://rapidshare.com/files/32414386/HIP.v2.1.1.rar

mIRC 6.3

mIRC 6.3 has been released! (August 16th 2007)
This version of mIRC offers full Vista compatability with support for limited user accounts, U3 support, support for tips (those small text balloons that pop up near the Windows tray) to notify you of various events such as incoming messages or users in your notify list coming on or leaving IRC, support for positioning the Treebar at top/bottom of the mIRC window, and a feature that allows you to switch between Normal and Compact modes. Compact mode makes mIRC behave like a messenger with the treebar filling the main window, all windows opening on the desktop, and so on.

Homepage:
Code:
http://www.mirc.com/


RAR File:
Code:
http://rapidshare.com/files/56987591/mIRC_6.3.rar


Password:
Code:
upbyalt


Contains:
- Installer
- Cracked file
- Keygen
- Read me

All files scanned for viruses by Norton AV.

Cute FTP Pro v.8.0.5

What makes Cute FTP Professional the best choice? CuteFTP Professional provides easy-to-use yet powerful tools for tackling the complex challenges of data management and helps achieve HIPAA, GLBA and Sarbanes-Oxley compliance.

Code:
http://rapidshare.com/files/22581555/CFP_8_05_uploaded_by_mustafabakar.blogspot.com.rar

Addon

RarPass: www.dailyappz.com

FIREFOX MUCH FASTER!! (WORK 100%)

1) Type "about:config" into the address bar and hit return. Scroll down and look for the following entries:

network.http.pipelining
network.http.proxy.pipelining
network.http.pipelining.maxrequests

Normally the browser will make one request to a web page at a time. When you enable pipelining it will make several at once, which really speeds up page loading.

2) Alter the entries as follows: (by double clicking them)

Set "network.http.pipelining" to "true"

Set "network.http.proxy.pipelining" to "true"

Set "network.http.pipelining.maxrequests" to some number like 30. This means it will make 30 requests at once. (I changed mine to 100, works great.)

3) Lastly right-click anywhere and select New-> Integer. Name it "nglayout.initialpaint.delay" and set its value to "0". This value is the amount of time the browser waits before it acts on information it recieves.

15 Coolest Firefox Tricks Ever

Everybody’s favorite open-source browser, Firefox, is great right out of the box. And by adding some of the awesome extensions available out there, the browser just gets better and better.

But look under the hood, and there are a bunch of hidden (and some not-so-secret) tips and tricks available that will crank Firefox up and pimp your browser. Make it faster, cooler, more efficient. Get to be a Jedi master with the following cool Firefox tricks.

1) More screen space. Make your icons small. Go to View - Toolbars - Customize and check the “Use small icons” box.

2) Smart keywords. If there’s a search you use a lot (let’s say IMDB.com’s people search), this is an awesome tool that not many people use. Right-click on the search box, select “Add a Keyword for this search”, give the keyword a name and an easy-to-type and easy-to-remember shortcut name (let’s say “actor”) and save it. Now, when you want to do an actor search, go to Firefox’s address bar, type “actor” and the name of the actor and press return. Instant search! You can do this with any search box.

3) Keyboard shortcuts. This is where you become a real Jedi. It just takes a little while to learn these, but once you do, your browsing will be super fast. Here are some of the most common (and my personal favs):

* Spacebar (page down)
* Shift-Spacebar (page up)
* Ctrl+F (find)
* Alt-N (find next)
* Ctrl+D (bookmark page)
* Ctrl+T (new tab)
* Ctrl+K (go to search box)
* Ctrl+L (go to address bar)
* Ctrl+= (increase text size)
* Ctrl+- (decrease text size)
* Ctrl-W (close tab)
* F5 (reload)
* Alt-Home (go to home page)

4) Auto-complete. This is another keyboard shortcut, but it’s not commonly known and very useful. Go to the address bar (Control-L) and type the name of the site without the “www” or the “.com”. Let’s say “google”. Then press Control-Enter, and it will automatically fill in the “www” and the “.com” and take you there - like magic! For .net addresses, press Shift-Enter, and for .org addresses, press Control-Shift-Enter.

5) Tab navigation. Instead of using the mouse to select different tabs that you have open, use the keyboard. Here are the shortcuts:

* Ctrl+Tab (rotate forward among tabs)
* Ctrl+Shft+Tab (rotate to the previous tab)
* Ctrl+1-9 (choose a number to jump to a specific tab)

6) Mouse shortcuts. Sometimes you’re already using your mouse and it’s easier to use a mouse shortcut than to go back to the keyboard. Master these cool ones:

* Middle click on link (opens in new tab)
* Shift-scroll down (previous page)
* Shift-scroll up (next page)
* Ctrl-scroll up (decrease text size)
* Ctrl-scroll down (increase text size)
* Middle click on a tab (closes tab)

7) Delete items from address bar history. Firefox’s ability to automatically show previous URLs you’ve visited, as you type, in the address bar’s drop-down history menu is very cool. But sometimes you just don’t want those URLs to show up (I won’t ask why). Go to the address bar (Ctrl-L), start typing an address, and the drop-down menu will appear with the URLs of pages you’ve visited with those letters in them. Use the down-arrow to go down to an address you want to delete, and press the Delete key to make it disappear.

8) User chrome. If you really want to trick out your Firefox, you’ll want to create a UserChrome.css file and customize your browser. It’s a bit complicated to get into here, but check out this tutorial.

9) Create a user.js file. Another way to customize Firefox, creating a user.js file can really speed up your browsing. You’ll need to create a text file named user.js in your profile folder (see this to find out where the profile folder is) and see this example user.js file that you can modify. Created by techlifeweb.com, this example explains some of the things you can do in its comments.

10) about:config. The true power user’s tool, about.config isn’t something to mess with if you don’t know what a setting does. You can get to the main configuration screen by putting about:config in the browser’s address bar. See Mozillazine’s about:config tips and screenshots.

11) Add a keyword for a bookmark. Go to your bookmarks much faster by giving them keywords. Right-click the bookmark and then select Properties. Put a short keyword in the keyword field, save it, and now you can type that keyword in the address bar and it will go to that bookmark.

12) Speed up Firefox. If you have a broadband connection (and most of us do), you can use pipelining to speed up your page loads. This allows Firefox to load multiple things on a page at once, instead of one at a time (by default, it’s optimized for dialup connections). Here’s how:

* Type “about:config” into the address bar and hit return. Type “network.http” in the filter field, and change the following settings (double-click on them to change them):
* Set “network.http.pipelining” to “true”
* Set “network.http.proxy.pipelining” to “true”
* Set “network.http.pipelining.maxrequests” to a number like 30. This will allow it to make 30 requests at once.
* Also, right-click anywhere and select New-> Integer. Name it “nglayout.initialpaint.delay” and set its value to “0″. This value is the amount of time the browser waits before it acts on information it receives.

13) Limit RAM usage. If Firefox takes up too much memory on your computer, you can limit the amount of RAM it is allowed to us. Again, go to about:config, filter “browser.cache” and select “browser.cache.disk.capacity”. It’s set to 50000, but you can lower it, depending on how much memory you have. Try 15000 if you have between 512MB and 1GB ram.

14) Reduce RAM usage further for when Firefox is minimized. This setting will move Firefox to your hard drive when you minimize it, taking up much less memory. And there is no noticeable difference in speed when you restore Firefox, so it’s definitely worth a go. Again, go to about:config, right-click anywhere and select New-> Boolean. Name it “config.trim_on_minimize” and set it to TRUE. You have to restart Firefox for these settings to take effect.

15) Move or remove the close tab button. Do you accidentally click on the close button of Firefox’s tabs? You can move them or remove them, again through about:config. Edit the preference for “browser.tabs.closeButtons”. Here are the meanings of each value:

* 0: Display a close button on the active tab only
* 1:(Default) Display close buttons on all tabs
* 2:Don’t display any close buttons
* 3:Display a single close button at the end of the tab bar (Firefox 1.x behavior)

HOW TO - make your 56k dial-up modem faster!

Ensure that you have the latest drivers for your modem, from the manufacturer & not Microsoft.

Here are some tweaks that will help you maximize throughput as best possible, for your 56K modem.
Please create a System Restore point before tweaking

Code:
Download Cablenut & use the following settings:

DefaultReceiveWindow = 8192
DefaultSendWindow = 4096
DisableAddressSharing = 1
InitialLargeBufferCount = 10
InitialMediumBufferCount = 24
InitialSmallBufferCount = 32
LargeBufferSize = 4096
MaxFastTransmit = 6400
MediumBufferSize = 1504
PriorityBoost = 0
SmallBufferSize = 128
TransmitWorker = 32
FastSendDatagramThreshold = 1024
EnableFastRouteLookup = 1
EnablePMTUDiscovery = 1
IgnorePushBitOnReceives = 0
GlobalMaxTcpWindowSize = 8760
MaxFreeTcbs = 2000
MaxHashTableSize = 4096
MaxNormLookupMemory = 5000000
SackOpts = 1
SynAttackProtect = 1
Tcp1323Opts = 0
TcpLogLevel = 1
MaxDupAcks = 2
TcpMaxHalfOpen = 100
TcpMaxHalfOpenRetried = 80
TcpRecvSegmentSize = 1460
TcpSendSegmentSize = 1460
TcpTimedWaitDelay = 30
TcpUseRFC1122UrgentPointer = 0
TcpWindowSize = 8760
MaxConnectionsPer1_0Server = 8
MaxConnectionsPerServer = 4
DefaultTTL = 128
DisableUserTOSSetting = 0
TcpMaxDataRetransmissions = 6
DefaultTOSValue = 92

Open your registry (start -> run -> type regedit) and change the following registry entry:

Export each registry setting before amending

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\AFD\Parameters
Add the parameter BufferMultiplier and give it a value of 400 hexidecimal which will make it 1024.

Download TCPOptimizer and use the following settings:

Under the settings tab select dial up and custom settings, in network adapter selection choose dial up adapter. Then use the following settings:

MaxMTU - 1500
TCP Receive Window - 8760
MTU Discovery - Yes
Black Hole Detect - No
Selective ACKs - Yes
Max Dup ACKs - 2
Time to Live (TTL) - 128
TCP 1323 Options - uncheck both boxes

Other settings:
Max Connections per Server - 4
Max Connections per 1.0 Server - 8

Then select Apply changes and reboot your computer.

Go to Network Connections from the Control Panel – right click on your internet connection and select properties, uninstall QoS Packet Scheduler.

Amend the following registry entries:

delete the following entry
HKEY_LOCAL_MACHINE/Software/Microsoft/Windows/CurrentVersion/Explorer/RemoteComputer/NameSpace/{D6277990-4C6A-11CF-8D87-00AA0060F5BF}

add the following entry:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\PriorityControl (if PriorityControl is not there, make the value) - on the right hand side right click and select new DWORD value, name it IrqXPriority (X = Irq assigned to your modem), then right click it and select modify and give
it a decimal value of 1.

This tweak will help web pages load faster, it has no real effect on download speeds, just helps your pc look up websites faster thereby speeding up
how fast the page loads and making websurfing more enjoyable.

Go to the registry entry and change the following settings:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\Tcpip\ServiceProvider

Class - 1
DnsPriority - 1
HostsPriority - 1
LocalPriority - 1
NetbtPriority - 1


Download TCPOptimiser in here
Code:
http://www.speedguide.net/files/TCPOptimizer.exe

TUTOR OTOMATIS PROXY

Several of my clients have asked for a way to have browsers automatically pick up proxy settings if the PC (usually a laptop) is on the local LAN, but not use a proxy server if the PC is not on the local LAN. For instance, moving a laptop from a home network with no proxy server to the office LAN, with a BorderManager server.

The browser can be configured with a simple PROXY.PAC file. The PROXY.PAC file can be quite complex, providing for load-balancing, fault tolerance, or other uses. I would be happy to produce a custom proxy.pac file for you (as a paid consulting project). The examples here are pretty basic.

I have tested this PROXY.PAC file on Netscape, Mozilla, Firefox, Opera and Internet Explorer on Windows XP Professional and Windows 2000 Professional.

Note: This is not a method for remotely or permanently setting the proxy settings, which can be done in a number of ways (ZENworks, login script, proxy configuration files from Netscape or Microsoft, etc.) I will assume that you will visit the workstations and enter the proxy settings as necessary to point to the PROXY.PAC file. If the PC is to be moved off the local LAN, you will also need to copy the file to the PC.
How it works:

The .PAC file checks the local IP subnet address of the PC, and branches with an IF / ELSE statement. If the PC is located in a subnet that matches, a proxy server is used. If the PC is on any other subnet, a direct connection is used instead of the proxy.
function FindProxyForURL(url, host)

Code:

{ if (isInNet(myIpAddress(), "192.168.1.0", "255.255.255.0")) return "PROXY 192.168.1.1:8080"; else return "DIRECT"; }

In my example file #1, I check that the host is in the 192.168.1.0 (255.255.255.0) subnet. If it is, I tell the browser to use a proxy at IP address 192.168.1.1, using port 8080. Obviously, you may need to change the subnet, subnet mask and proxy address/port for your LAN configuration.

There are methods which can be used to check for multiple subnets in case you have more than one internal LAN subnet. Ask in the Novell Public Forums about more complex PROXY.PAC files. (Or hire me to develop one for your environment!)

Download my example PROXY.PAC file #1 HERE (simple version)
More Complex Version

I have had a number of occasions where I needed to bypass the http proxy for a particular web site. This is easily done with a PROXY.PAC file, by putting in an IF statement with the proper syntax. (You can have lots of IF statements if you want to do this for multiple web sites.)

Here is an example that bypasses proxy for a particular web site (principia.mo.techpaths.com) that was giving grief when going to it through the HTTP Proxy:

function FindProxyForURL(url, host)

Code:

{ if (shExpMatch(url, "http://principia.mo.techpaths.com*")) { return "DIRECT"; } if (isInNet(myIpAddress(), "192.168.1.0", "255.255.255.0")) return "PROXY 192.168.1.1:8080"; else return "DIRECT"; }

You can download this version of PROXY.PAC here.
Slightly More Complex PROXY.PAC Example - Multiple Proxy Bypass URL's (not for laptops)

In this example you can add multiple URL's to NOT use a proxy, and then proxy everything else. In this example, you do not have a check for the local network, so it would not be a good example for a laptop that moves between networks.

function FindProxyForURL(url, host)

Code:

{ // variable strings to return var proxy_yes = "PROXY 192.168.1.1:8080"; var proxy_no = "DIRECT"; if (shExpMatch(url, "http://www.mycompanywebsite.com*")) { return proxy_no; } if (shExpMatch(url, "http://www.myotherwebsite.com*")) { return proxy_no; } if (shExpMatch(url, "http://www.my3rdlocalsite.com*")) { return proxy_no; } // Proxy anything else return proxy_yes; }

Even More Complex PROXY.PAC Example - Multiple Proxy Bypass URL's with Local Address Check

In this example you can add multiple URL's to NOT use a proxy, and then proxy everything else. In this example, you have a check for the local network, so you can use this one on a laptop.

function FindProxyForURL(url, host)

Code:

{ // variable strings to return var proxy_yes = "PROXY 192.168.1.1:8080"; var proxy_no = "DIRECT"; if (shExpMatch(url, "http://www.mycompanywebsite.com*")) { return proxy_no; } if (shExpMatch(url, "http://www.myotherwebsite.com*")) { return proxy_no; } if (shExpMatch(url, "http://www.my3rdlocalsite.com*")) { return proxy_no; } if (shExpMatch(url, "http://192.168.1.100*")) { return proxy_no; } // Proxy if PC is on local LAN if (isInNet(myIpAddress(), "192.168.1.0", "255.255.255.0")) return "PROXY 192.168.1.1:8080"; else return "DIRECT"; }

Autoconfigure the Proxy Settings from the BorderManager Server (for Internet Explorer)

In this method, you point to a file being made available via the BorderManager miniwebserver. For a simple PROXY.PAC file and a PC that says on the local LAN, this doesn't make a lot of sense, as it is easier to just enter the proxy server address and port numbers. However, this technique is useful when you have complex PROXY.PAC files which do load balancing, etc.

1. Copy the PROXY.PAC file to the BorderManager SYS:ETC\PROXY\DATA directory.
2. In the browser proxy settings, configure the Automatic Proxy Configuration (Netscape) or Use Automatic Configuration Script (IE) URL to:

Code:

http://192.168.1.1:1959/data/proxy.pac

Where 192.168.1.1 must be changed to your BorderManager server's private IP address. The port 1959 is the default miniwebserver address.

If Internet Explorer doesn't see the file, it will default to using whatever proxy settings are configured under LAN settings.

Certain versions of Internet Explorer have a bug with .PAC files. This can be fixed with a patch. See the Microsoft article here.
Autoconfigure the Proxy Settings from a Local Copy of the PROXY.PAC File (IE or Netscape)

In this method, useful for laptops that travel on and off your LAN, you copy the file to some local directory, and point to it.

1. Copy the PROXY.PAC file to the C:\WINDOWS directory, or other directory of your choice.
2. In the browser proxy settings, configure the Automatic Proxy Configuration (Netscape) or Use Automatic Configuration Script (IE) URL to:
Netscape, use:

Code:

file:///c|/windows/proxy.pac

Internet Explorer, use:

Code:

file://c:/windows/proxy.pac

In Netscape, click on the Reload button.
Have Internet Explorer Automatically Configure Itself to Use a Proxy

There are ways to push the proxy settings (including PROXY.PAC) files to any browser, but Internet Explorere tends to be the easiest. In fact, you can have Internet Explorer automatically discover your PROXY.PAC file without you even having to touch the browser, if the browser is left at default settings. This is done by renaming PROXY.PAC to WPAD.DAT, and launching it from web server, using a local DNS entry. Please see this tip on methods for configuring browsers to pick up proxy settings.
Setting Proxy Settings on Browsers


For a number of reasons, HTTP Proxy is much better than the Transparent HTTP Proxy. Therefore, you will want all your browsers to point to the BorderManager HTTP Proxy IP address, port 8080, for HTTP, FTP and Security/SSL. The trick is getting all those browsers configured if you don't have time to run around manually setting them yourself. This tip lists several ways that you can push the settings out to the browsers without physically going to the PC.
Option 1 - Make the Users Do It Themselves!

No, this is not a joke. It is surprisingly effective, (especially if there is a teenager around, who will gladly run around doing it for everyone else).

In this method, you cut off web browsing access by disabling Transparent HTTP Proxy and using default filters, then you provide good instructions on how to set the proxy settings. You will want to at least provide some documentation with screenshots of each menu option the users have to click on, and the proper proxy settings. When users are given the choice of no internet access, or following a simple set of screenshots, 99% of them will get themselves on the Internet within 48 hours. You will then have the time to set up the management PCs, and the Help Desk will have time to help Aunt Betty when she gets confused.
Option 2 - Push the Browser Settings in the Login Script (for Internet Explorer)

Internet Explorer stores proxy settings in the registry. This makes it particularly easy to update, using a variety of methods. Even if your users do not normally use Internet Explorer as their usual browser, you will want to configure the proxy settings because many other applications key off proxy settings in Internet Explorer.

In this method, you determine the proper registry key for your version of IE, export the settings to a .REG file, and then use REGEDIT in the login script to push the settings to the PC. If you leave the setting in the login script for several days, most of the PC's should be updated by then, and you can remove or comment out the commands. Here is an example:

In the container login script add the lines

Code:

#Regedit /s z:\public\setpxy.reg

This assumes that the Z drive is mapped to SYS: of their local servers. Once this is done copy SETPXY.REG.to the Public directory.

To create the SETPXY.REG file, open notepad & type in as follows:

Code:

REGEDIT4 (or whatever version of REGEDIT is on your PC, such as REGEDT32) [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings] "ProxyServer"=":8080" "ProxyEnable"=dword:00000001 "ProxyOverride"=""

Change to the private IP address of your HTTP Proxy, and to 127.0.0.1 or any combination of URL's for which you want to bypass the proxy. (I advise you to experiment with this for a while to get the syntax done correctly).
Option 3 - Push the Browser Settings with ZENWorks Application Launcher

Using ZENWorks (NAL), you can create a forced-run, run-once application for any browser that sets the proxy settings on the browser. Internet Explorer is probably one of the easiest browser to set, since it has a predictable registry key for proxy settings.

Netscape uses a text file called PREFS.JS which can be easily modified by a ZENWorks app, but the location of the file might be different on each PC, depending on how Netscape was set up. Search some of your PC's for that file, and if you are lucky, all PC's may have the file in a common location under a directory called Default.
Option 4 - Use DHCP to Push WPAD Settings for Browsers

Newer browsers can pick up certain settings from DHCP. Those settings can then be leveraged to have the browser pick up the proxy settings. See this Novell TID:

Code:

http://support.novell.com/cgi-bin/search/searchtid.cgi?/2953490.htm

and this Microsoft technical article:

Code:

http://www.microsoft.com/TechNet/IE/reskit/ie5/part3/ch13sser.asp

This works for both Netscape and Internet Explorer. Also, see the Novell AppNote described below in option 6.

Caveat: I was simply never able to get this to work for some reason, but I was able to get Option 5 to work with Internet Explorer!
Option 5 -Use DNS & Web Server to Push WPAD Settings for Browsers

This one really took me a long time to figure out, but turns out to be pretty simple and easy. There is an option in Internet Explorer called Automatic Proxy Configuration. (As far as I know, as of August 15, 2003, this may be a feature only found in Internet Explorer). IE 6 comes with this option set by default.

The concept: When Internet Explorer is launched, it makes a DNS query for WPAD. is the Automatic Proxy Configuration option is checked. If it gets a DNS response, it will look for a file called WPAD.DAT at that location. WPAD.DAT is simply a PROXY.PAC file renamed to WPAD.DAT. (See the note on PROXY.PAC files below, which also links to a sample I provide at this web site). The WPAD.DAT file contains a bit of java script (which you write) telling the browser where a proxy server is located and when to use it.

The setup: First, you need a working PROXY.PAC file. You will end up renaming it, and launching it from a web server. If you already are launching it from a web server per my tip on PROXY.PAC files, you have only to set up a DNS entry. Your PC's need to be pointing to your own internal DNS server as their first option. (You can easily set up an internal DNS server with NetWare 5.0 or later.) The DNS server needs to have a WPAD entry for your domain. So if you have a domain called, for instance, CJC.COM, you would have a DNS 'A' record for WPAD.CJC.COM. You also need an internal web server - you cannot use the BorderManager miniwebserver here, or a web server that does not default to using port 80.

Take a working PROXY.PAC file, rename it to WPAD.DAT, and copy it to the root of the web server. You should be able to type HTTP://WPAD.CJC.COM/WPAD.DAT in Internet Explorer and get a file download prompt. If so, just set IE for auto proxy config and it should work.

Troubleshooting: I had a lot of problems making this work at first, until I understood just how Internet Explorer works, and how my web servers were working. The DNS part was simple. The PROXY.PAC/WPAD.DAT file was also simple, since I was already using a PROXY.PAC file. But it just wasn't working. The reason was essentially because I had an overly complex web server configuration on my system. I have Apache, Novonyx and iFolder (another instance of Apache) all running on the same server at the same time, giving up web pages on 5 different IP addresses. The issue I had was, I think, due to my web servers relying on redirection of URL's to the proper document root directories. I put copies of WPAD.DAT into various locations, but they didn't seem to work. When I typed the proper URL in IE, I did get a download prompt as described above! Turns out I did NOT get a download prompt if I typed in HTTP://192.168.10.245/WPAD.DAT - which was where I had my WPAD DNS entry. Internet Explorer resolved my WPAD.CJC.COM query to 192.168.10.245, and it then tried to pull the file from the IP address, not the URL, but my web servers weren't set up to take that sort of query. Eventually, I simply put the WPAD.DAT file in my iFolder document root directory and pointed DNS there. (Note: I have iFolder listening on a secondary IP address using port 80, not 52080...) As long as you can get the WPAD.DAT in the root directory of a web server listening on port 80 of an IP address called out in DNS, you should be fine.
Option 6 - Use Browser Customization Kits to Lock Down the Browser

Both Internet Explorer and Netscape can be customized by an administrator with settings that can then not be modified by the user. The idea here is to set up the browsers as required, and then push the customized browser to the workstation, perhaps with ZENWorks. See this link for customization kits for Netscape:

Code:

http://home.netscape.com/bisdev/distribution/index.html

You need the 'IEAK' (Internet Explorer Administration Kit) for your version of Internet Explorer. Unfortunately, Microsoft's site seems to change URL's of internal pages a lot, so I am not sure if the link below will get you where you want to go, but a search for IEAK or IE Toolkit should eventually link you to the toolkit you need, for your version of IE.

Code:

http://www.microsoft.com/windows/ieak/default.asp PROXY.PAC Files

The methods above all describe ways to set the proxy to a particular HTTP proxy address. However, you may have laptops that move from your LAN to other LANs (at home, for instance) where no HTTP Proxy exists, or where there is a different HTTP Proxy address. Situations like this are best handled with a PROXY.PAC file. A PROXY.PAC file is a bit of java script that configures the browser's proxy settings. Instead of pointing the browser to the proxy, you point it to the PROXY.PAC file instead. The PROXY.PAC file can be extremely versatile (and complex). I have provided a simple example in this tip.
Other Documentation - Novell AppNote

Novell has an AppNote with some of this information at the following URL:

Code:

http://developer.novell.com/research/appnotes/2002/april/02/a020402.doc

This AppNote goes into much more detail on the WPAD and other options, and I recommend reading it

ProxyShell Hide IP Standart v2.2.0

ProxyShell Hide IP is a powerful proxy software to hide IP address when you surfing by intelligently managing and using multiple proxies, makes you surf anonymously, protects your personal information and internet privacy. With ProxyShell Hide IP, you can hide IP address, surf the web without anyone knowing who you are, hide your own information and reading interests. ProxyShell Hide IP could also bypass restrictions if your IP address is blocked, post on bbs or send email without displaying your own IP.

ProxyShell Hide IP uses our own proxies and many public proxies to hide your IP address. Our unique algorithm effectively uses multiple proxies to handle your surfing requests simultaneously, offers faster speed, much better proxy errors recovery and stability. ProxyShell Hide IP is totally automatic and easy-to-use, you can just launch the browser and begin anonymous surfing, without worrying about what proxies you are using.


Download :

::http://rapidshare.com/files/60331207/ProxyShell.Hide.IP.v2.2.zip.html::

Or:

::http://www.4shared.com/file/25708443/633a8e9a/ProxyShellHideIPv22.html::

Keys Included + Keygen!

TUTORIAL MIKROTIK VPN: Point to Point Tunnel Protocol (PPTP)

PPTP (Point to Point Tunnel Protocol) supports encrypted tunnels over IP. The MikroTik RouterOS implementation includes support fot PPTP client and server.

General applications of PPTP tunnels:

* For secure router-to-router tunnels over the Internet
* To link (bridge) local Intranets or LANs (when EoIP is also used)
* For mobile or remote clients to remotely access an Intranet/LAN of a company (see PPTP setup for Windows for more information)

Each PPTP connection is composed of a server and a client. The MikroTik RouterOS may function as a server or client – or, for various configurations, it may be the server for some connections and client for other connections. For example, the client created below could connect to a Windows 2000 server, another MikroTik Router, or another router which supports a PPTP server.
Description
PPTP is a secure tunnel for transporting IP traffic using PPP. PPTP encapsulates PPP in virtual lines that run over IP. PPTP incorporates PPP and MPPE (Microsoft Point to Point Encryption) to make encrypted links. The purpose of this protocol is to make well-managed secure connections between routers as well as between routers and PPTP clients (clients are available for and/or included in almost all OSs including Windows).

PPTP includes PPP authentication and accounting for each PPTP connection. Full authentication and accounting of each connection may be done through a RADIUS client or locally.

MPPE 40bit RC4 and MPPE 128bit RC4 encryption are supported.

PPTP traffic uses TCP port 1723 and IP protocol GRE (Generic Routing Encapsulation, IP protocol ID 47), as assigned by the Internet Assigned Numbers Authority (IANA). PPTP can be used with most firewalls and routers by enabling traffic destined for TCP port 1723 and protocol 47 traffic to be routed through the firewall or router.

PPTP connections may be limited or impossible to setup though a masqueraded/NAT IP connection. Please see the Microsoft and RFC links at the end of this section for more information.
PPTP Client Setup
Submenu level : /interface pptp-client
Property Description
name (name; default: pptp-out1) - interface name for reference
mtu (integer; default: 1460) - Maximum Transmit Unit. The optimal value is the MTU of the interface the tunnel is working over decreased by 40 (so, for 1500-byte ethernet link, set the MTU to 1460 to avoid fragmentation of packets)
mru (integer; default: 1460) - Maximum Receive Unit. The optimal value is the MTU of the interface the tunnel is working over decreased by 40 (so, for 1500-byte ethernet link, set the MRU to 1460 to avoid fragmentation of packets)
connect-to (IP address)- the IP address of the PPTP server to connect to
user (string)- user name to use when logging on to the remote server
password (string; default: "")- user password to use when logging to the remote server
profile (name; default: default) - profile to use when connecting to the remote server
add-default-route (yes | no; default: no) - whether to use the server which this client is connected to as its default router (gateway)
Example
To set up PPTP client named test2 using username john with password john to connect to the 10.1.1.12 PPTP server and use it as the default gateway:

[admin@MikroTik] interface pptp-client> add name=test2 connect-to=10.1.1.12 \
\... user=john add-default-route=yes password=john
[admin@MikroTik] interface pptp-client> print
Flags: X - disabled, R - running
0 X name="test2" mtu=1460 mru=1460 connect-to=10.1.1.12 user="john"
password="john" profile=default add-default-route=yes


[admin@MikroTik] interface pptp-client> enable 0

Monitoring PPTP Client
Command name : /interface pptp-client monitor
Property Description
Statistics:

uptime (time) - connection time displayed in days, hours, minutes, and seconds
encoding (string) - encryption and encoding (if asymmetric, separated with '/') being used in this connection
status (string) - status of the client:
# Dialing – attempting to make a connection
# Verifying password... - connection has been established to the server, password verification in progress
# Connected – self-explanatory
# Terminated – interface is not enabled or the other side will not establish a connection

Example
Example of an established connection:

[admin@MikroTik] interface pptp-client> monitor test2
uptime: 4h35s
encoding: MPPE 128 bit, stateless
status: Connected
[admin@MikroTik] interface pptp-client>

PPTP Server Setup
Submenu level : /interface pptp-server server

[admin@MikroTik] interface pptp-server server> print
enabled: no
mtu: 1460
mru: 1460
authentication: mschap2
default-profile: default
[admin@MikroTik] interface pptp-server server>

Description
The PPTP server supports unlimited connections from clients. For each current connection, a dynamic interface is created.
Property Description
enabled (yes | no; default: no) - defines whether PPTP server is enabled or not
mtu (integer; default: 1460) - Maximum Transmit Unit. The optimal value is the MTU of the interface the tunnel is working over decreased by 40 (so, for 1500-byte ethernet link, set the MTU to 1460 to avoid fragmentation of packets)
mru (integer; default: 1460) - Maximum Receive Unit. The optimal value is the MTU of the interface the tunnel is working over decreased by 40 (so, for 1500-byte ethernet link, set the MTU to 1460 to avoid fragmentation of packets)
authentication (multiple choice: pap | chap | mschap1 | mschap2; default: mschap2) - authentication algorithm
default-profile (name; default: default) - default profile to use
Example
To enable PPTP server:

[admin@MikroTik] interface pptp-server server> set enabled=yes
[admin@MikroTik] interface pptp-server server> print
enabled: yes
mtu: 1460
mru: 1460
authentication: mschap2
default-profile: default
[admin@MikroTik] interface pptp-server server>

PPTP Server Users
Submenu level : /interface pptp-server
Description
There are two types of items in PPTP server configuration - static users and dynamic connections. A dynamic connection can be established if the user database or the default-profile has its local-address and remote-address set correctly. When static users are added, the default profile may be left with its default values and only P2P user (in /ppp secret) should be configured. Note that in both cases P2P users must be configured properly.
Property Description
name - interface name
user - the name of the user that is configured statically or added dynamically

Statistics:

mtu - shows (cannot be set here) client's MTU
client-address - shows (cannot be set here) the IP of the connected client
uptime - shows how long the client is connected
encoding (string) - encryption and encoding (if asymmetric, separated with '/') being used in this connection
Example
To add a static entry for ex1 user:

[admin@MikroTik] interface pptp-server> add user=ex1
[admin@MikroTik] interface pptp-server> print
Flags: X - disabled, D - dynamic, R - running
# NAME USER MTU CLIENT-ADDRESS UPTIME ENC...
0 DR ex 1460 10.0.0.202 6m32s none
1 pptp-in1 ex1
[admin@MikroTik] interface pptp-server>

In this example an already connected user ex is shown besides the one we just added.
PPTP Router-to-Router Secure Tunnel Example
The following is an example of connecting two Intranets using an encrypted PPTP tunnel over the Internet.

There are two routers in this example:

* [HomeOffice]
Interface LocalHomeOffice 10.150.2.254/24
Interface ToInternet 192.168.80.1/24

* [RemoteOffice]
Interface ToInternet 192.168.81.1/24
Interface LocalRemoteOffice 10.150.1.254/24

Each router is connected to a different ISP. One router can access another router through the Internet.

On the PPTP server a user must be set up for the client:

[admin@HomeOffice] ppp secret> add name=ex service=pptp password=lkjrht
local-address=10.0.103.1 remote-address=10.0.103.2
[admin@HomeOffice] ppp secret> print detail
Flags: X - disabled
0 name="ex" service=pptp caller-id="" password="lkjrht" profile=default
local-address=10.0.103.1 remote-address=10.0.103.2 routes==""

[admin@HomeOffice] ppp secret>

Then the user should be added in the PPTP server list:

[admin@HomeOffice] interface pptp-server> add user=ex
[admin@HomeOffice] interface pptp-server> print
Flags: X - disabled, D - dynamic, R - running
# NAME USER MTU CLIENT-ADDRESS UPTIME ENC...
0 pptp-in1 ex
[admin@HomeOffice] interface pptp-server>

And finally, the server must be enabled:

[admin@HomeOffice] interface pptp-server server> set enabled=yes
[admin@HomeOffice] interface pptp-server server> print
enabled: yes
mtu: 1460
mru: 1460
authentication: mschap2
default-profile: default
[admin@HomeOffice] interface pptp-server server>

Add a PPTP client to the RemoteOffice router:

[admin@RemoteOffice] interface pptp-client> add connect-to=192.168.80.1 user=ex \
\... password=lkjrht disabled=no
[admin@RemoteOffice] interface pptp-client> print
Flags: X - disabled, R - running
0 R name="pptp-out1" mtu=1460 mru=1460 connect-to=192.168.80.1 user="ex"
password="lkjrht" profile=default add-default-route=no


[admin@RemoteOffice] interface pptp-client>

Thus, a PPTP tunnel is created between the routers. This tunnel is like an Ethernet point-to-point connection between the routers with IP addresses 10.0.103.1 and 10.0.103.2 at each router. It enables 'direct' communication between the routers over third party networks.

To route the local Intranets over the PPTP tunnel – add these routes:

[admin@HomeOffice] > ip route add dst-address 10.150.1.0/24 gateway 10.0.103.2
[admin@RemoteOffice] > ip route add dst-address 10.150.2.0/24 gateway 10.0.103.1

On the PPTP server it can alternatively be done using routes parameter of the user configuration:

[admin@HomeOffice] ppp secret> print detail
Flags: X - disabled
0 name="ex" service=pptp caller-id="" password="lkjrht" profile=default
local-address=10.0.103.1 remote-address=10.0.103.2 routes==""

[admin@HomeOffice] ppp secret> set 0 routes="10.150.1.0/24 10.0.103.2 1"
[admin@HomeOffice] ppp secret> print detail
Flags: X - disabled
0 name="ex" service=pptp caller-id="" password="lkjrht" profile=default
local-address=10.0.103.1 remote-address=10.0.103.2
routes="10.150.1.0/24 10.0.103.2 1"

[admin@HomeOffice] ppp secret>

Test the PPTP tunnel connection:

[admin@RemoteOffice]> /ping 10.0.103.1
10.0.103.1 pong: ttl=255 time=3 ms
10.0.103.1 pong: ttl=255 time=3 ms
10.0.103.1 pong: ttl=255 time=3 ms
ping interrupted
3 packets transmitted, 3 packets received, 0% packet loss
round-trip min/avg/max = 3/3.0/3 ms

Test the connection through the PPTP tunnel to the LocalHomeOffice interface:

[admin@RemoteOffice]> /ping 10.150.2.254
10.150.2.254 pong: ttl=255 time=3 ms
10.150.2.254 pong: ttl=255 time=3 ms
10.150.2.254 pong: ttl=255 time=3 ms
ping interrupted
3 packets transmitted, 3 packets received, 0% packet loss
round-trip min/avg/max = 3/3.0/3 ms

To bridge a LAN over this secure tunnel, please see the example in the 'EoIP' section of the manual. To set the maximum speed for traffic over this tunnel, please consult the 'Queues' section.

Connecting a Remote Client via PPTP Tunnel
The following example shows how to connect a computer to a remote office network over PPTP encrypted tunnel giving that computer an IP address from the same network as the remote office has (without need of bridging over eoip tunnels)

Please, consult the respective manual on how to set up a PPTP client with the software You are using.

The router in this example:

* [RemoteOffice]
Interface ToInternet 192.168.81.1/24
Interface Office 10.150.1.254/24

The client computer can access the router through the Internet.

On the PPTP server a user must be set up for the client:

[admin@RemoteOffice] ppp secret> add name=ex service=pptp password=lkjrht
local-address=10.150.1.254 remote-address=10.150.1.2
[admin@RemoteOffice] ppp secret> print detail
Flags: X - disabled
0 name="ex" service=pptp caller-id="" password="lkjrht" profile=default
local-address=10.150.1.254 remote-address=10.150.1.2 routes==""

[admin@RemoteOffice] ppp secret>

Then the user should be added in the PPTP server list:

[admin@RemoteOffice] interface pptp-server> add name=FromLaptop user=ex
[admin@RemoteOffice] interface pptp-server> print
Flags: X - disabled, D - dynamic, R - running
# NAME USER MTU CLIENT-ADDRESS UPTIME ENC...
0 FromLaptop ex
[admin@RemoteOffice] interface pptp-server>

And the server must be enabled:

[admin@RemoteOffice] interface pptp-server server> set enabled=yes
[admin@RemoteOffice] interface pptp-server server> print
enabled: yes
mtu: 1460
mru: 1460
authentication: mschap2
default-profile: default
[admin@RemoteOffice] interface pptp-server server>

Finally, the proxy APR must be enabled on the 'Office' interface:

[admin@RemoteOffice] interface ethernet> set Office arp=proxy-arp
[admin@RemoteOffice] interface ethernet> print
Flags: X - disabled, R - running
# NAME MTU MAC-ADDRESS ARP
0 R ToInternet 1500 00:30:4F:0B:7B:C1 enabled
1 R Office 1500 00:30:4F:06:62:12 proxy-arp
[admin@RemoteOffice] interface ethernet>

Tutorial Mikrotik VPN: EOIP

Ethernet over IP (EoIP) Tunneling is a MikroTik RouterOS protocol that creates an Ethernet tunnel between two routers on top of an IP connection. The EoIP interface appears as an Ethernet interface. When the bridging function of the router is enabled, all Ethernet level traffic (all Ethernet protocols) will be bridged just as if there where a physical Ethernet interface and cable between the two routers (with bridging enabled). This protocol makes multiple network schemes possible.

Network setups with EoIP interfaces:

• Possibility to bridge LANs over the Internet
• Possibility to bridge LANs over encrypted tunnels
• Possibility to bridge LANs over 802.11b 'ad-hoc' wireless networks

An EoIP interface should be configured on two routers that have the possibility for an IP level connection. The EoIP tunnel may run over an IPIP tunnel, a PPTP 128bit encrypted tunnel, a PPPoE connection, or any connection that transports IP.

Specific Properties:

• Each EoIP tunnel interface can connect with one remote router which has a corresponding interface configured with the same 'Tunnel ID'.
• The EoIP interface appears as an Ethernet interface under the interface list.
• This interface supports all features of and Ethernet interface. IP addresses and other tunnels may be run over the interface.
• The EoIP protocol encapsulates Ethernet frames in GRE (IP protocol number 47) packets (just like PPTP) and sends them to the remote side of the EoIP tunnel.
• Maximal count of EoIP tunnels is 65536.

This is how to set up EoIP to bridge two (or more) Mikrotik routers for central PPPoE authentication

Using 2 routers called R1 and R2 that have an IP connection between them and R2 has 2 ethernet ports, i.e. you can ping rB from R1 and R1 from R2 where the R1 facing eth port is called eth1 and its other port is called eth2.

1. create a new EoIP tunnel on R1.
2. create a new EoIP tunnel on R2, where the tunnel ID is the same as the one on R1 but the MAC addreses are different.
4. create a new bridge on R1 and R2
3. add a PPPoE server to the Bridge on R1.
4. on R2 and add eth2 and the EoIP tunnel to the bridge.
5. put an IP address onto eth2 (any address seems to work, but it maybe better to use a different subnet for routing purposes).

Now you should be able to establish a PPPoE connection from a PC plugged into the eth2 port on router R2, this PPPoE connection will terminate on router R1.

This is not the most efficient method of using the available bandwidth on a network, but is perhaps easier than having a PPPoE A/C on every Mikrotik router and using RADIUS as you can just have PPP secrets setup on one router.

Mikrotik for Online Game

CREATE DOT A di MIKROTIK

DOTA merupakan salah satu games Warcraft untuk versi online. pada gamenet games ini merupakan games terlaris selain games-games online lain seperti ragnarok, sealonline, pangya, deco dan masih banyak lagi. selain games ini gratis alias nda pake pocer, juga sangat asyik dimaenkan. disini saya coba menulis tentang bagaimana create DOTA di mesin mikrotik.

Ikuti langkah-langkah berikut :

[admin@mendem] >ip firewall nat add chain=srcnat action=masquerade out-interface=Public

[admin@mendem] >ip address add address=202.xxx.xxx.xxx/32 interface=Public (xxx diisi sesuai IP public kamu)

[admin@mendem] >ip firewall nat add chain=dstnat dst-address=202.xxx.xxx.xxx action=dst-nat to-addresses=192.168.***.*** (*** diisi sesuai dengan IP lokal yang ingin bisa create game)

[admin@mendem] >ip firewall nat add chain=srcnat src-address=192.168.***.*** action=src-nat to-addresses=202.xxx.xxx.xxx

Agar client yg tergabung dalam LAN atau yang satu network bisa bermain bersama tambahkan perintah :

[admin@mendem] >ip firewall nat add chain=dstnat dst-address=202.xxx.xxx.1-202.xxx.xxx.254 action=netmap to-addresses=192.168.***.1-192.168.***.254

[admin@mendem] >ip firewall nat add chain=srcnat src-address=192.168.***.1-192.168.***.254 action=netmap to-addresses=202.xxx.xxx.1-202.xxx.xxx.254

Sampai disini sudah berhasil , namun ternyata ada masalah yang saya hadapi, yaitu mesin mikrotik tidak dapat saya akses atau remote dari luar jaringan dan masalah lain, port SNMP ikut-ikutan ketutup sehingga untuk menampilkan traffic cacti jadi blank …ada yang bisa membantu

Fix Dota Mik

Sebelumnya saya pernah menulis tentang Rules Create Dota di Mikrotik, namun ada kendala saat rules diaktifkan maka routerbox tidak dapat di remote, diping bahkan tidak bisa menampilkan grafik MRTG/Cacti.

Setelah beberapa kali mencoba dan mencari literatur dari mbah google akhirnya ketemu rules yang cocok untuk kepentingan remote dari luar jaringan, bisa di ping dan tentunya saya bisa melihat grafik pemakaian bandwitdh lewat MRTG/Cacti.

Rules nya seperti ini :

ip firewall nat add chain=dstnat dst-address=202. x . x . x protocol=tcp dst-port=6113 action=dst-nat to-addresses=192.168. x . x to-ports=6113

ip firewall nat add chain=dstnat dst-address=202. x . x . x protocol=udp dst-port=6113 action=dst-nat to-addresses=192.168. x . x to-ports=6113

ip firewall nat add chain=srcnat src-address=192.168. x . x protocol=tcp src-port=6113 action=src-nat to-addresses=202. x . x . x to-ports=6113

ip firewall nat add chain=srcnat src-address=192.168. x . x protocol=udp src-port=6113 action=src-nat to-addresses=202. x . x . x to-ports=6113

ip firewall nat add chain=srcnat src-address=192.168. x . x -192.168. x . x action=netmap to-address=202. x . x . x -202. x . x . x to-ports=0-65535

Mungkin sudah banyak yang tahu tentang rules diatas, harapan saya rules diatas bisa dipakai siapa saja yang memerlukannya, karena dari pengalaman yang ada sungguh sulit mencari literatur atau googling tentang rules create dota di mikrotik.

semoga membantu .

Mikrotik Hacking

MRTG DARI GRAPHING MIKROTIK

MRTG adalah suatu aplikasi yg dibuat untuk melihat besarnya traffic yang terjadi pada saat pemakaian internet. Itu digambarkan dalam bentuk grafik.

Mikrotik memiliki fasilitas tersebut namanya tool graphing, idealnya MRTG mikrotik di batesi agar tidak bisa dilihat sembarang orang. Mungkin bisa di tambahkan rule allow acces IP mana saja yang diijinkan untuk melihatnya.

Kita dapat menemukan dengan mudah MRTG dari graphing mikrotik yang tidak di filter, caranya:

buka www.google.co.id
ketikkan key word = "mikrotik intitle:graphing"
pilih seach the web untuk semua web/IP yang ingin dicari
atau page from Indonesia untuk hanya web/IP indonesia saja