Dokumentasi Seorang Geeks

Filed under: Networking, Security, Speedy | No Comments »

To setup port forwarding on this router your computer needs to have a static ip address. Take a look at our Static IP Address guide to setup a static ip address. When you are finished setting up a static ip address, please come back to this page and enter the ip address [...]

Filed under: Networking | 2 Comments »

It is very important to setup a static ip address, if you are going to use port forwarding. When you have port forwarding setup, your router forwards ports to an ip address that you specify. This will probably work when you initially set it up, but after restarting your computer it may get a [...]

Filed under: Networking | 3 Comments »

It is very important to setup a static ip address, if you are going to use port forwarding. When you have port forwarding setup, your router forwards ports to an ip address that you specify. This will probably work when you initially set it up, but after restarting your computer it may get a [...]

Filed under: Networking | No Comments »

It is very important to setup a static ip address, if you are going to use port forwarding. When you have port forwarding setup, your router forwards ports to an ip address that you specify. This will probably work when you initially set it up, but after restarting your computer it may get a [...]

Filed under: Networking | No Comments »

This is meant to be an example, and not a complete load balancing configuration.
Before You Start
IP network addresses are given to you by your Internet Service Provider, your leased line carrier, or by ARIN. If you do not plan to connect you network to the Internet, you can use an IP network address set aside [...]

Filed under: Cisco, Linux, Networking, Router, Security | No Comments »

This is meant to be an example, and not a complete load balancing configuration.
Network Diagram
+——————————————+
| Router 1 [...]

Filed under: Cisco, Linux, Networking, Router | No Comments »

This page provides pin out information for a crossover cable for the following:

Connecting two machines (only) via Ethernet without the use of a hub or switch
Connecting two CSU/DSU’s back to back for testing Wide Area Network (WAN) configurations.

Cable Pin out:
    RJ-45        RJ-45
  Connector    Connector
  ———————-
    pin 1   ->   pin 3
    pin 2   ->   pin 6
    [...]

Filed under: Networking | 3 Comments »

This page provides information for connecting two asynchronous serial (RS-232) Data Terminal Equipment (DTE) devices together (example: two PC’s or a dumb terminal and a ImageStream router). Assuming both DTEs have DB-25 interfaces, each DTE transmits data on pin 2 and receives data on pin 3. Consequently, both DTE devices cannot transmit or receive data [...]

Filed under: Cisco, Networking, Router | No Comments »

The recent W32/Nachi and W32/Welchia worms perform ICMP scanning in an attempt to identify systems for exploitation. Depending the the number of host infected on the network the ICMP scanning can result in unwanted increase of traffic. These scans could generate enough traffic to create delay on the upstream link(s) and disrupts users. Infected machines [...]

Filed under: Cisco, Linux, Networking, Router, Security | No Comments »

ImageStream routers support powerful packet matching and traffic limiting techniques in ImageStream Linux version 4.2 and later releases. This document provides examples of identifying and limiting Peer to Peer (P2P) traffic. More in-depth information about the capabilities of the iptables utility is available in other Technical Notes and on the Other On-Line Resources page on [...]

Filed under: Cisco, Linux, Networking, Router, Security | No Comments »

When enabled through the use of NAT or other stateful inspection rules, netfilter (iptables) under Linux maintains a list of connections passing through the router. Each connection tracking entry contains defined characteristics of the packet, including the source and destination IP address and port number.

Filed under: Linux, Networking, Router, Security | No Comments »

Iptables is a powerful packet-filtering tool available on ImageStream routers with ImageStream Linux version 4.0 or later. This document will provide examples on how to use Iptables to add basic firewalling, port forwarding and network address translation (NAT) capabilities to your ImageStream router. More in-depth information is available in the iptables HOWTO linked to [...]

Filed under: Linux, Networking, Router, Security | 1 Comment »

ImageStream’s version 4.2 releases include support for the iptables CLASSIFY directive, making quality of service configuration simpler and more flexible. Instead of using complex matches in the advanced traffic control (tc) utility, you can use ImageStream’s bwinit and bwadd utilities and the powerful iptables utilities to sort traffic into individual queues. In a default [...]

Filed under: Cisco, Linux, Networking, Router, Security | No Comments »

This page describes general network concepts that you must understand before you configure your ImageStream router. See the glossary linked to our Other Resources page for unfamiliar terms.

Filed under: Networking | 1 Comment »

Class B Effective Effective
# bits Mask Subnets Hosts
——- ————— ——— ———
2 [...]

Filed under: Networking | No Comments »

Bitmask (Bits)
Dotted Decimal Netmask
Hexadecimal Netmask
Binary Netmask

/0
0.0.0.0
0×00000000
00000000 00000000 00000000 00000000

/1
128.0.0.0
0×80000000
10000000 00000000 00000000 00000000

/2
192.0.0.0
0xc0000000
11000000 00000000 00000000 00000000

/3
224.0.0.0
0xe0000000
11100000 00000000 00000000 00000000

/4
240.0.0.0
0xf0000000
11110000 00000000 00000000 00000000

/5
248.0.0.0
0xf8000000
11111000 00000000 00000000 00000000

/6
252.0.0.0
0xfc000000
11111100 00000000 00000000 00000000

/7
254.0.0.0
0xfe000000
11111110 [...]

Filed under: Networking | No Comments »

Sometimes, it’s just not enough to simply know that there’s a Trojan or Virus onboard. Sometimes you need to know exactly why that file is onboard, how it got there - but most importantly, who put it there.

Filed under: Networking, Security | No Comments »

 
Kondisi : ISP dimana kita bekerja sebagai Administrator menggunakan lebih dari satu gateway untuk terhubung ke Internet. Semuanya harus dapat melayani layanan upstream & downstream. Karena akan beda kasusnya apabila salah satunya hanya dapat melayani downstream, contohnya jika menggunakan VSAT DVB One-way.
Untuk kasus ini dimisalkan ISP memiliki 2 jalur ke Internet. Satu menggunakan akses DSL [...]

Filed under: Mikrotik, Networking, Router | 11 Comments »

Fo next articel i explain to setting transparant web proxy server
1. first se t web proxy
/ ip web-proxy
set enabled=yes –>> to make ip web proxy enable
set src-address=0.0.0.0 –>> to make source address to access web proxy will allow
set port=8080 –>> to make port for web proxy
set hostname=”proxy.war.net.id” –>> setting for visble [...]

Filed under: Mikrotik, Networking, Router, Security | 10 Comments »

This articel i explain how to configuration mikrotik using pc for router.
1. Configuration position of ADSL connection
modem —Mikrotik—-Switch —– Client
|
Client
a. Modem IP –>> 192.168.1.1
b. Mikrotik Using 2 Interface - Ether1 —->> 192.168.1.2
- Ether2 —->> 192.168.0.254
c. Switch — Client ip 192.168.0.1-253

Filed under: Mikrotik, Networking, Router | 24 Comments »

Bagi yang nanya saya kasiha aj contohnya yah nanti deh di ulas.
mtscript.txt
regard

Filed under: Mikrotik, Networking | 6 Comments »

Tujuan :

Memperkecil delay ping dari sisi klien ke arah Internet.
Mempercepat resolving hostname ke ip address.

Asumsi : Klien-klien berada pada subnet 10.10.10.0/28

Memanipulasi Type of Service untuk ICMP Packet :
> ip firewall mangle add chain=prerouting src-address=10.10.10.0/28 protocol=icmp action=mark-connection new-connection-mark=ICMP-CM passthrough=yes
> ip firewall mangle add chain=prerouting connection-mark=ICMP-CM action=mark-packet new-packet-mark=ICMP-PM passthrough=yes
> ip firewall mangle add chain=prerouting packet-mark=ICMP-PM [...]

Filed under: Mikrotik, Networking | 9 Comments »

Kondisi : ISP dimana kita bekerja sebagai Administrator menggunakan lebih dari satu gateway untuk terhubung ke Internet. Semuanya harus dapat melayani layanan upstream & downstream. Karena akan beda kasusnya apabila salah satunya hanya dapat melayani downstream, contohnya jika menggunakan VSAT DVB One-way.
Untuk kasus ini dimisalkan ISP memiliki 2 jalur ke Internet. Satu menggunakan akses DSL [...]

Filed under: Mikrotik, Networking | 19 Comments »

Dengan menggunakan queue type pcq di Mikrotik, kita bisa membagi bandwidth yang ada secara merata untuk para pelahap-bandwidth™ saat jaringan pada posisi peak.
Contohnya, kita berlangganan 256 Kbps. Kalau ada yang sedang berinternet ria, maka beliau dapat semua itu jatah bandwidth. Tetapi begitu teman-temannya datang, katakanlah 9 orang lagi, maka masing-masingnya dapat sekitar 256/10 [...]

Filed under: Mikrotik, Networking | 39 Comments »

#!/bin/sh
iptables=/sbin/iptables
#definisikan default policy disini
$iptables -F INPUT
$iptables -F OUTPUT
$iptables -P INPUT DROP
$iptables -P OUTPUT DROP #ingat nanti buka policy output yg perlu
$iptables -F FORWARD
$iptables -F -t nat
$iptables -P FORWARD DROP

Filed under: Linux, Networking, Security | 5 Comments »

#!/bin/sh
# —————————————————
# Copyright (C) 2005
# Last modified by Dani ‘Abah’ Hadimukti : 09-05-2005
# This firewall configuration is suitable for Router.
# —————————————————
IPTABLES=/sbin/iptables
# Definisi komponen sistem untuk mempermudah perawatan.
# —————————————————————————–

Filed under: Linux, Networking, Router, Security | 1 Comment »

1. Instalasi Qmail
Sebelum memulai, silakan anda uninstall software mailserver (MTA) lain yang berada dalam server anda misalnya sendmail, dan silakan anda membuat sebuah direktori temporari untuk memudahkan penyimpanan source yang akan didownload, anda boleh membuat direktori dengan nama sembarang, disini saya membuat direktori dengan nama src :

Filed under: Linux, Networking | 2 Comments »

Pada penggunaan queue (bandwidth limiter), penentuan CHAIN pada MENGLE sangat menentukan jalannya sebuah rule. Jika kita memasang SRC-NAT dan WEB-PROXY pada mesin yang sama, sering kali agak sulit untuk membuat rule QUEUE yang sempurna. Penjelasan detail mengenai pemilihan CHAIN, dapat dilihat pada manual Mikrotik di sini.

Filed under: Mikrotik, Networking, Security | No Comments »

1. Instalasi SNMP
Source untuk snmp, biasanya telah tersedia pada CD distro Redhat anda
[root@probiotik hanny]#rpm -Uvh ucd-snmp-4.2.1-7.i386.rpm \
> ucd-snmp-devel-4.2.1-7.i386.rpm \
> ucd-snmp-utils-4.2.1-7.i386.rpm

Filed under: Linux, Networking, Security | No Comments »

Memastikan jaringan internet aman gunakan minimal netstat. untuk melihat traffinya.
C:\Documents and Settings\Telkom>netstat
Active Connections
Proto  Local Address          Foreign Address        State
TCP    nonpot-6abf8526:1034   localhost:1035         ESTABLISHED
TCP    nonpot-6abf8526:1035   localhost:1034         ESTABLISHED
TCP    nonpot-6abf8526:1037   localhost:1038         ESTABLISHED
TCP    nonpot-6abf8526:1038   localhost:1037         ESTABLISHED
TCP    nonpot-6abf8526:1031   66.29.87.160:http      CLOSE_WAIT
TCP    nonpot-6abf8526:3302   cs9.msg.dcn.yahoo.com:5050  ESTABLISHED
TCP    nonpot-6abf8526:3310   sip37.voice.re2.yahoo.com:5061  ESTABLISHED
TCP    nonpot-6abf8526:4198   apps.kompas.com:http   ESTABLISHED
TCP    nonpot-6abf8526:4207   apps.kompas.com:http   ESTABLISHED
TCP    nonpot-6abf8526:4208   po-in-f93.google.com:http  ESTABLISHED
TCP    nonpot-6abf8526:4214   ti-in-f104.google.com:http  ESTABLISHED
TCP    nonpot-6abf8526:4267   vip61-hkg-pccw.netli.net:http  TIME_WAIT
TCP    nonpot-6abf8526:4269   [...]

Filed under: Networking, Security | No Comments »

Ketika speedy di konek
TCP    125.162.83.159:3209    192.5.209.21:25        ESTABLISHED
TCP    125.162.83.159:3216    125.162.94.105:445     TIME_WAIT
TCP    125.162.83.159:3250    143.115.171.77:25      ESTABLISHED
TCP    125.162.83.159:3333    202.148.238.25:25      ESTABLISHED
TCP    125.162.83.159:3343    125.162.68.152:445     TIME_WAIT
TCP    125.162.83.159:3344    125.162.68.152:135     TIME_WAIT
TCP    125.162.83.159:3357    64.73.152.146:25       ESTABLISHED
TCP    125.162.83.159:3375    207.126.154.10:25      SYN_SENT
TCP    125.162.83.159:3391    125.162.94.105:445     ESTABLISHED
TCP    125.162.83.159:3560    69.176.214.240:25      ESTABLISHED
TCP    125.162.83.159:3567    34.253.4.20:25         ESTABLISHED
TCP    125.162.83.159:3567    165.155.104.101:25     TIME_WAIT
TCP    125.162.83.159:3570    205.189.240.46:25      ESTABLISHED
TCP    125.162.83.159:3575    83.170.82.30:5050      ESTABLISHED
TCP    125.162.83.159:3674    210.188.154.4:25       TIME_WAIT
TCP    125.162.83.159:3713    64.18.6.14:25          SYN_SENT
TCP    125.162.83.159:3722    142.139.25.210:25      ESTABLISHED
TCP    [...]

Filed under: Networking, Security, Virus | 4 Comments »

# jun/05/2007 22:47:33 by RouterOS 2.9.6
# software id = DA2N-TMT
#
/ interface ethernet
set Public name=”Public” mtu=1500 mac-address=00:0A:EB:AB:DB:5C arp=enabled \
disable-running-check=yes auto-negotiation=yes full-duplex=yes \
cable-settings=default speed=100Mbps comment=”” disabled=no
set Lan name=”Lan” mtu=1500 mac-address=00:60:97:5A:EA:94 arp=enabled \
disable-running-check=yes auto-negotiation=yes full-duplex=yes \
cable-settings=default speed=100Mbps comment=”” disabled=no

Filed under: Mikrotik, Networking, Router, Speedy | 18 Comments »

Begitu mudahnya untuk menggunakan mikrotik. Konsep networking yang sudah anda pahami akan sangat mudah di implementasikan di operating sistem router yang berbasis kepada linux kernel ini. Kali ini kita akan praktekan sebuah judul yang banyak di nanti orang banyak. Judul yang di ambil adalah, membuat hotspot dan user manager dengan router yang sama.
Langkah pertama [...]

Filed under: Mikrotik, Networking, Router | 7 Comments »

/ip address add interface=ether1 address = 192.168.1.2 netmask= 255.255.255.0
/ip address add interface=ether2 address = 192.168.0.1 netmask= 255.255.255.0
/interface print
/inteface set 0 name=”Public”
/inteface set 1 name=”Lan”
/ip route add gateway=192.168.0.1
/ip dns set primary-dns=203.130.193.74 secondary-dns=202.134.0.155
/ip dns set allow-remote-requests=yes
/ip firewall nat add chain=srcnat out-inteface=Public action=masquerade
/ip firewall nat add chain=dstnat protocol=tcp dst-port=80 action=redirect to-ports=8080
/ip firewall nat add chain=dstnat protocol=tcp dst-port=3128 action=redirect [...]

Filed under: Mikrotik, Networking, Speedy, Warnet | 7 Comments »

perhatian : tulisan ini hanya untuk network-enginer, jangan memaksa bila tidak paham (the truth is out there ??)
the story begin…
Bagi seorang admin jaringan, tentu sudah tidak asing lagi dengan istilah router. Router adalah perangkat yang digunakan untuk menghubungkan 2 buah network yang berbeda. Bekerja menggunakan prinsip layer 3 pada OSI [...]

Filed under: Linux, Networking, Router, Security | 3 Comments »

perhatian : tulisan ini hanya untuk network-enginer, jangan memaksa bila tidak paham

Prelude
Zebra meletakkan file konfigurasinya di /etc/zebra. Pada waktu service zebra di jalankan, zebra akan membaca file konfigurasi zebra.conf.
Demikian juga dengan binary routing, ripd akan membaca file ripd.conf, ospfd akan membaca ospfd.conf
Selama konfigurasi dengan vty, konfigurasi akan diletakkan di dalam [...]

Filed under: Linux, Networking, Router | 2 Comments »

source = dhanis.web.id
hari ini sebenarnya cukup menyenangkan, sambil baca detik.com, dan nyoba-nyoba CMS Logahead. tiba-tiba koneksi terputus karena konflik IP.
awalnya nda nyangka ada orang lain yg memakai IP Publik ku, karena dirumah kebetulan ada Wireless AP Router yg juga aku setting dengan IP Publik yg aku pakai sekarang. Setelah mengganti dengan IP Cadangan, aku masuk [...]

Filed under: Linux, Networking, Security | 4 Comments »

The Double NAT MINI-HOWTO
Yan-Fa Li <yanfali@best.com>, mailing list
netfilter@lists.samba.org
$Revision: 1.1 $
____________________________________________________________

Filed under: Linux, Networking, Security | No Comments »

# apr/23/2007 07:42:54 by RouterOS 2.9.6
# software id = 9GGG-CTN
#
/ interface ethernet
set Internet name=”Internet” mtu=1500 mac-address=00:15:58:A7:40:26
arp=enabled disable-running-check=yes auto-negotiation=yes full-duplex=yes
cable-settings=default speed=100Mbps comment=”" disabled=no
set Local name=”Local” mtu=1500 mac-address=00:D0:B7:7D:2A:1D arp=enabled
disable-running-check=yes auto-negotiation=yes full-duplex=yes
cable-settings=default speed=100Mbps comment=”" disabled=no
/ interface bridge port
set Internet bridge=none priority=128 path-cost=10
set [...]

Filed under: Networking, Speedy | No Comments »

artikel dari furqan@centrin.net.id

Dalam diskusi di internet permintaan untuk informasi pembuatan warnet menggunakan system operasi
LINUX sangat banyak. Linux Menjasi sangat menarik untuk perkembangan teknologi informasi di indonesia
karena gratis dan bisa diperoleh di internet. Mudah-mudahan situs ini berguna bagi anda pemula yang
ingin menggunakan linux sebagai Server Warnet.
Keunggulan Linux
· Linux merupakan salah satu system open source, yang berarti memberi [...]

Filed under: Linux, Networking | 1 Comment »

[edited by r0t0r]
[Dari forum.linux.or.id - mas dani ditambah ramuan sendiri]

01234567890123456789012345678901234567890123456789012345678901234567890123456789

################################################################################

Jika 1 hardisk 20 GB dibuat partisinya kira2 spt ini (ini preferensi pribadi
berdasarkan eksperimen utk Squid saja lho). Silahkan dikomentari.

/dev/hda1 1G /
/dev/hda5 2G /var
/dev/hda6 256M swap
/dev/hda7 12G /cache
/dev/hda8 sisanya /home

Filed under: Linux, Networking, Router, Tutorial, Warnet | 6 Comments »

Melanjutkan tutorial Memisahkan Gateway Traffic Local dan Internasional oleh Bp. Harijanto Pribadi ( My Suhu ), berikut saya ingin membagi hasil eksperimen saya .
Sebelum membaca tutorial ini wajib hukumnya untuk mempelajari tutorial http://www.datautama.net.id/web3/index.php?option=com_content&task=view&id=28&Itemid=31
 
Kalau sudah memahami bahkan mencoba tutorial daril P. Harijanto diatas bisa melanjutkan membaca tutorial ini.

Filed under: Mikrotik, Networking | 1 Comment »

 Walaupun dengan menggunakan teknik nice.rsc sudah dapat membantu dalam memisahkan traffic local dan international tetapi akan lebih baik jika pemisahan dilakukan secara langsung menggunakan BGP.
Pada artikel ini saya coba memberikan gambaran bagaimana caranya memisahkan traffic local dan international menggunakan BGP di mikrotik, untuk ilusrasi dapat dilihat pada gambar dibawah ini

Dari gambar diatas mikrotik router AS65002 [...]

Filed under: Mikrotik, Networking | No Comments »

Teknik lainnya utk memisahkan traffic data local/IIX dan International adalah dengan menggunakan mark-routingMisal untuk traffic International dilewatkan melalui gateway 203.89.24.65 sedangkan traffic local Indonesia di lewatkan melalui gateway 203.89.24.177.

contoh konfigurasi IP address router user pada interface yang terhubung ke router Datautama

Filed under: Mikrotik, Networking | 5 Comments »

Versi 3
Perubahan dari versi sebelumnya:

Proses mangle berdasarkan address-list
Pemisahan traffic Indonesia dan overseas lebih akurat

Semakin berkembangnya konten Internet lokal di Indonesia telah memberikan peluang bisnis baru dalam industri Internet di Indonesia. Saat ini banyak Internet Service Provider
(ISP) yang menawarkan paket bandwidth lokal atau IIX yang lebih [...]

Filed under: Mikrotik, Networking | 7 Comments »

Sejak saya menulis artikel tentang memisahkan bandwidth Intenational dan IIX/NICE sangat banyak sekali pertanyaan baik melalui email maupun chatting.

Filed under: Mikrotik, Networking | 13 Comments »

Introduction
The Linux Virtual Server Project (LVS) is a project started by Dr. Wensong Zhang. LVS implements three load balance technology.
a. Network Address Translation (VS/NAT)
b. Direct Routing (VS/DR)
c. IP Tunneling (VS/TUN)
VS/NAT is easy to setup. The load balancer may be a bottleneck of the whole system where the number of servers is more than [...]

Filed under: Linux, Networking | No Comments »

In the IPVS version 0.9.10 or later, an entry is created for each new connection in order to keep its state (such as the server that new connection is redirected to), and the size of each entry is 124 bytes thus 128 bytes effective memory is needed for each entry. The Denial-of-Service attck to the [...]

Filed under: Linux, Networking | No Comments »

Persistence Handling in LVS
This page contains information about persistence handling in LVS for sticky connection applications, such as http cookie, https, ftp, and so on.
Introduction
In the LVS cluster that we discuss in other documents, we have assumed that each network connection is independent of every other connection, so that each connection can be assigned to [...]

Filed under: Linux, Networking | No Comments »