Scribd Logo
Încărcați

Bine ați venit la Scribd!

  • Laporan Konfigurasi Ukk

    Încărcat de

    Serabutanul
    85 vizualizări8 pagini
    2018

    Titlu original

    LAPORAN KONFIGURASI UKK

    Drepturi de autor

    © © All Rights Reserved

    Formate disponibile

    DOCX, PDF, TXT sau citiți online pe Scribd

    Vi se pare util acest document?

    Este necorespunzător acest conținut?

    Raportați acest document
    2018

    Drepturi de autor:

    © All Rights Reserved
    Descărcați ca DOCX, PDF, TXT sau citiți online pe Scribd
    Indicator pentru conținut neadecvat
    85 vizualizări8 pagini

    Laporan Konfigurasi Ukk

    Încărcat de

    Serabutanul
    2018

    Drepturi de autor:

    © All Rights Reserved
    Descărcați ca DOCX, PDF, TXT sau citiți online pe Scribd
    Indicator pentru conținut neadecvat
    din 8

    LAPORAN KONFIGURASI UKK

    NAMA : Figo Fosandy

    KELAS : XIITKJ2

    ABSEN : 13

    1. Topologi

    Catatan :
    x = 13

    2. Konfigurasi
     IP Addressing
    ip address add address=200.100.10.13/26 interface=ether1
    ip address add address=192.168.100.1/24 interface=ether2
    ip address add address=192.168.200.1/24 interface=wlan1
     Gateway
    ip route add gateway=200.100.10.62
     DNS
    ip dns set servers=200.100.10.62 allow-remote-requests=yes
     Masquerade
    ip firewall nat add chain=srcnat out-interface=ether1
    action=masquerade
     DHCP-Server pada ether2

     Mengaktifkan WLAN1, setting mode & SSID, & Hostpot


    interface enable wlan1
    interface wireless set 0 mode=ap-bridge ssid=figo@Proxy
     NTP
    system ntp client set enabled=yes primary-ntp=202.162.32.12
     Web Proxy & Redirect 80 to 8080
    ip proxy set enabled=yes port=8080 chace-on-disk=yes chace-
    on-disk=yes chace-administrator=figo@Nesta.sch.id
    ip firewall nat add chain=dstnat protocol=tcp dst-port=80
    action=redirect to-ports=8080
     Static DNS & redirect web
    ip dns static add disabled=no name=mikrotik.com
    address=104.18.49.30
    ip proxy access disabled=no src-address=192.168.100.0/24
    dst-host=*www.mikrotik.com action=deny redirect-to=bnsp-
    indonesia.org
     Logging
    ip firewall filter add chain=input action=log log=yes log-
    prefix=akses
     Block ping dari ether2
    ip firewall filter add chain=input src-
    address=192.168.100.2-192.168.100.50 protocol=icmp
    action=drop
     Allow HTTP/HTTPS dari ether2 ke internet
    ip firewall filter add chain=forward in-interface=ether2
    out-interface=ether1 protocol=tcp dst-port=!80,443,8080
    action=drop
     Block Site “http://www.linux.or.id” dari wlan1
    ip proxy access disabled=no src-address=192.168.200.0/24
    dst-host=*www.linux.or.id action=deny
     Block File .mp3 & .mkv dari wlan1
    ip proxy access disabled=no src-address=192.168.200.0/24
    path=*.mp3 action=deny
    ip proxy access disabled=no src-address=192.168.200.0/24
    path=*.mkv action=deny
     Block konten “mikrotik” dari wlan1
    ip proxy access disabled=no src-address=192.168.200.0/24
    path=*mikrotik” action=deny
    ip firewall filter add chain=input in-interface=wlan1
    content=mikrotik action=drop
    ip firewall filter add chain=forward in-interface=wlan1
    content=mikrotik action=drop
     Block internet pada waktu tertentu dari wlan1 ke ether1
    ip firewall filter add chain=forward in-interface=wlan1
    out-interface=ether1 time=19.00-
    23.59,sun,mon,tue,wed,thu,fri,sat action=drop
    ip firewall filter add chain=forward in-interface=wlan1
    out-interface=ether1 time=00.00-
    07.00,sun,mon,tue,wed,thu,fri,sat action=drop

    3. Pengujian
     LAN
    IP Address

    Koneksi Internet

    Static dns
    Block Ping

    Logging
    Allowing http/https and block another

     Wireless
    Ip Address

    Hotspot login
    Blocking site

    Blocking File
    Block konten

    Block akses internet pada waktu tertentu

    S-ar putea să vă placă și