Showing posts with label Setting Mikrotik. Show all posts
Showing posts with label Setting Mikrotik. Show all posts

25 April 2010

Belajar JARKOM, Setting Mikrotik

Hotspot Server Setup

7:00 AM
Hotspot Server Setup

Setting Ethernet yang konek ke jaringan Internet misal:

/ ip address add address=192.168.1.5/24 network=192.168.1.0 broadcast=192.168.1.255 interface=ether1

Konfigurasi untuk interface yang konek ke jaringan local.

/ ip address add address=10.10.0.1/24 network=10.10.0.0 broadcast=10.10.0.255 interface=ether2

Selanjutnya setting DNS nya kasih centang di "ALLOW REMOTE REQUEST" (konfigurasi ini melewatkan request dari client) sample :



Liat menu ROUTE dan langsung menuju TKP. Kilik tombol + . isikan ip gateway anda. Sample :



Lompat aja ke IP>Hotspot klik Hospot setup.

















  • »»  read more
  • 0 komentar
    • Setting Mikrotik

    Setting mikrotik untuk warnet

    6:39 AM
    Setting mikrotik untuk warnet
    mikrotik untuk warnet

    ini konfigurasi bagi teman-teman yang mungkin agak kesulitan setting mikrotik.
    tinggal di copy trus paste aja di terminal. jadi deh .

    step-step

    instal pake cd mikrotik
    boot dg cd mikrotik
    setelah bisa boot pake iso linux, pilih beberapa paket yang dibutuhkan. (kalo bingung centang aja semua)
    ikuti aja langkahnya tekan (Yes) (Yes)
    setelah restart, login : admin pass : (kosong)
    trus copy paste aja tulisan berikut ;


    DASAR_______________
    system identity set name=warnet.beenet
    user set admin password=sukasukalu


    ethernet____________________
    interface ethernet enable ether1
    interface ethernet enable ether2
    interface Ethernet set ether1 name=intranet
    interface Ethernet set ether2 name=internet


    IP ADDRESS_______________
    ip address add interface=internet address=XXXXX (dari ISP)
    ip address add interface=intranet address=192.168.0.1/24

    route_______________
    ip route add gateway=XXXXX (dari ISP)

    dns___________
    ip dns set primary-dns=XXXXX (dari ISP) 2 secondary-dns=XXXXX (dari ISP)

    nat & filter firewall standar_______________
    ip firewall nat add action=masquerade chain=srcnat
    ip firewall filter add chain=input connection-state=invalid action=drop
    ip firewall filter add chain=input protocol=udp action=accept
    ip firewall filter add chain=input protocol=icmp action=accept
    ip firewall filter add chain=input in-interface=intranet action=accept
    ip firewall filter add chain=input in-interface=internet action=accept

    dhcp server______________________________________
    ip dhcp-server setup
    dhcp server interface: intranet
    dhcp address space: 192.168.0.0/24
    gateway for dhcp network: 192.168.0.1
    addresses to give out: 192.168.0.2-192.168.0.254
    dns servers: XXXXX (dari ISP),XXXXX (dari ISP)
    lease time: 3d

    web proxy_________________________
    ip web-proxy
    set enabled=yes
    set src-address=0.0.0.0
    set port=8080set hostname=proxy-apaaja
    set transparent-proxy=yesset parent-proxy=0.0.0.0:0
    set cache-administrator=silahkan.pannggil.operator
    set max-object-size=4096KiB
    set cache-drive=system
    set max-cache-size=unlimited
    set max-ram-cache-size=unlimited

    bikinredirect port ke transparant proxy__________________________
    /ip firewall nat add chain=dstnat protocol=tcp dst-port=80 action=redirect to-ports=8080
    /ip firewall nat add chain=dstnat protocol=tcp dst-port=3128 action=redirect to-ports=8080
    /ip firewall nat add chain=dstnat protocol=tcp dst-port=8080 action=redirect to-ports=8080

    PCQ ________________________
    /ip firewall mangle add chain=forward src-address=192.168.169.0/28 action=mark-connection new-connection-mark=client1-cm
    /ip firewall mangle add connection-mark=client1-cm action=mark-packet new-packet-mark=client1-pm chain=forward
    /queue type add name=downsteam-pcq kind=pcq pcq-classifier=dst-address
    /queue type add name=upstream-pcq kind=pcq pcq-classifier=src-address
    /queue tree add parent=intranet queue=downsteam-pcq packet-mark=client1-pm
    /queue tree add parent=internet queue=upstream-pcq packet-mark=client1-pm

    simpel queue______________________________
    queue simple add name=kbu-01 target-addresses=192.168.0.11
    queue simple add name=kbu-02 target-addresses=192.168.0.12
    queue simple add name=kbu-03 target-addresses=192.168.0.13
    queue simple add name=kbu-04 target-addresses=192.168.0.14
    queue simple add name=kbu-05 target-addresses=192.168.0.15
    queue simple add name=kbu-06 target-addresses=192.168.0.16
    queue simple add name=kbu-07 target-addresses=192.168.0.17
    queue simple add name=kbu-08 target-addresses=192.168.0.18
    queue simple add name=kbu-09 target-addresses=192.168.0.19
    queue simple add name=kbu-10 target-addresses=192.168.0.20
    queue simple add name=xbilling target-addresses=192.168.0.2

    BLOX SPAM____________________________
    /ip firewall filter add chain=forward dst-port=135-139 protocol=tcp action=drop
    /ip firewall filter add chain=forward dst-port=135-139 protocol=udp action=drop
    /ip firewall filter add chain=forward dst-port=445 protocol=tcp action=drop
    /ip firewall filter add chain=forward dst-port=445 protocol=udp action=drop
    /ip firewall filter add chain=forward dst-port=593 protocol=tcp action=drop
    /ip firewall filter add chain=forward dst-port=4444 protocol=tcp action=drop
    /ip firewall filter add chain=forward dst-port=5554 protocol=tcp action=drop
    /ip firewall filter add chain=forward dst-port=9996 protocol=tcp action=drop
    /ip firewall filter add chain=forward dst-port=995-999 protocol=udp action=drop
    /ip firewall filter add chain=forward dst-port=53 protocol=tcp action=drop
    /ip firewall filter add chain=forward dst-port=55 protocol=tcp action=drop
    TAMBAHAN UNTUK DUA JALUR LINE SPEEDY
    / ip route
    add dst-address=0.0.0.0/0 gateway=192.168.1.1,192.168.2.1 check-gateway=ping
    /ip firewall nat
    add chain=srcnat out-interface=speedy1 action=masquerade
    add chain=srcnat out-interface=speedy2 action=masquerade
    / ip firewall mangle
    add chain=input in-interface=speedy1 action=mark-connection new-connection-mark=speedy1_conn
    add chain=input in-interface=speedy2 action=mark-connection new-connection-mark=speedy2_conn
    add chain=output connection-mark=speedy1_conn action=mark-routing new-routing-mark=to_speedy1
    add chain=output connection-mark=speedy2_conn action=mark-routing new-routing-mark=to_speedy2
    / ip route
    add dst-address=0.0.0.0/0 gateway=192.168.2.1 routing-mark=to_speedy1
    add dst-address=0.0.0.0/0 gateway=192.168.1.1 routing-mark=to_speedy2
  • »»  read more
  • 2 komentar
    • Setting Mikrotik

    instal mikrotik RouterOs

    6:34 AM
    instal mikrotik RouterOs
    • Siapkan PC,
      minimal Pentium I RAM 64,HD 500M atau pake flash memory 64
    • Di PC yang telah disiapkan harus ada minimal 2 ethernet, 1 ke arah luar dan 1 lagi ke Network local, diasumsikan sebagai berikut:
      ether1 (yang paling atas atau yang onboard) untuk ke WAN (ISP/Internet)
      ether2 untuk ke jaringan lokal.
    • boot dg cd mikrotik
    • setelah bisa boot pake iso linux, pilih beberapa paket yang dibutuhkan. (kalo bingung centang aja semua)
    • ikuti aja langkahnya tekan (Yes) (Yes)
      setelah restart, login : admin pass : (kosong)
      trus copy paste aja tulisan berikut ;
    IP ADDRESS_______________
    ip address add interface=ether1 address=XXXXX (ip dari ISP)
    ip address add interface=ether2 address=192.168.0.1/24 (ip tergantung keinginan)
    route_______________
    ip route add gateway=XXXXX (ip gateway dari ISP)
    dns___________
    ip dns set primary-dns=XXXXX (ip DNS dari ISP)
    ip dns set secondary-dns=XXXXX (ip DNS dari ISP)
    nat _______________
    ip firewall nat add action=masquerade chain=srcnat
    selesai .....
    sambungkan sebuah client ke router (ether2)
    seting :
    ip address client 192.168.0.X --> X = nilai 2 sampai 254
    subnetmask 255.255.255.0
    gateway 192.168.0.1
    primary dan secondari DNS tergantung ISP
    cek browser internet
    jika tidak jalan cek di command prompt
    ping 192.168.0.1(cek koneksi ke gateway kita)
    jika tidak jalan cek setting ip di client, cek konfigurasi kabel
    jika client langsung ke router pake kabel UTP konfigurasi cross kalo melalui hub dulu pake konfigurasi straight
    jika reply
    ping ke gateway ISP
    jika tidak jalan cek kabel UTP , cek kinfigurasi mikrotik, apakah sesuai dengan konfigurasi yang diberikan ISP atau tidak
    untuk cek
    IP address --> ip address print
  • »»  read more
  • 0 komentar

    • 31 December 2009

    Belajar JARKOM, Setting Mikrotik

    Konfigurasi cara membuat VPN server di mikrotik

    1:00 PM
    Bagi anda yang ingin membuat vpn server dengan menggunakan mikrotik router OS berikut ini konfigurasi cara membuat VPN Server di Mikrotik :

    Login ke Mikrotik melalui utility Winbox kesayangan anda.

    Klik Menu “PPP” => Point to Point Protocol.

    Klik Tab “Interfaces” seperti gambar di samping.

    Klik Menu Add “PPTP Server” => Point to Point Tuneling Protocol.

    Berikan Nama untuk Interface baru ini, misalnya : vpnserver

    Lalu berikan nama User, misalnya : vpnku

    Lalu Klik Tab “Secret”, berikan name : vpnku

    Checkmark Password, isikan : vpnku

    Masukkan Local Address, misalnya : 172.16.25.50

    Masukkan Remote Address, misalnya : 172.16.25.250

    Selanjutnya Klik “PPTP Server”, Checkmark “Enable”.

    Checkmark juga “MSCHAP1” dan “MSCHAP1”.

    VPN Server sudah siap digunakan.

    Selamat mencoba…
  • »»  read more
  • 0 komentar
    • Subscribe to: Posts (Atom)