Re: Install & Setting Ubuntu 8.10 Server

opikdesign wrote:

@agusnur

isi iptables-nya koq begitu yah?!
tuh khan port 110 pun gak dibuka gimana mo bisa outlook narik email....

sebenernya tutorial ini belum kelar... jadi mohon maaf masih banyak yg gak bener...

yahhh...terus gmn dong bang opick....tolong dong di kasih tau gmn settingan iptablesnya yg bener...darurat militer nih dikantor... sad

Re: Install & Setting Ubuntu 8.10 Server

agusnur wrote:
opikdesign wrote:

@agusnur

isi iptables-nya koq begitu yah?!
tuh khan port 110 pun gak dibuka gimana mo bisa outlook narik email....

sebenernya tutorial ini belum kelar... jadi mohon maaf masih banyak yg gak bener...

yahhh...terus gmn dong bang opick....tolong dong di kasih tau gmn settingan iptablesnya yg bener...darurat militer nih dikantor... sad

yg menuju local ethernet berapa?!
dan yg menuju modem ethernet brapa?!

Facebook OPiKdesign
http://badge.facebook.com/badge/100000147194199.279.411965916.png
* IT Consultant * Networking Specialist for Internet Cafe/HotSpot/SOHO * Maintenance * Graphic & Web Design, 3D Modeling & 2D/3D Animation * Hosting & Domain * email to: th@opikdesign.com

Re: Install & Setting Ubuntu 8.10 Server

opikdesign wrote:
agusnur wrote:
opikdesign wrote:

@agusnur

isi iptables-nya koq begitu yah?!
tuh khan port 110 pun gak dibuka gimana mo bisa outlook narik email....

sebenernya tutorial ini belum kelar... jadi mohon maaf masih banyak yg gak bener...

yahhh...terus gmn dong bang opick....tolong dong di kasih tau gmn settingan iptablesnya yg bener...darurat militer nih dikantor... sad

yg menuju local ethernet berapa?!
dan yg menuju modem ethernet brapa?!

Modem --->eth0    eth1------>LAN (192.168.2.0)
                 dhcp    192.168.2.1

Re: Install & Setting Ubuntu 8.10 Server

agusnur wrote:
opikdesign wrote:
agusnur wrote:

yahhh...terus gmn dong bang opick....tolong dong di kasih tau gmn settingan iptablesnya yg bener...darurat militer nih dikantor... sad

yg menuju local ethernet berapa?!
dan yg menuju modem ethernet brapa?!

Modem --->eth0    eth1------>LAN (192.168.2.0)
                 dhcp    192.168.2.1

oke...
di iptables bagian *filter dirubah seperti ini...

-A INPUT -i lo -j ACCEPT
-A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
-A INPUT -i eth1 -p tcp -m multiport --dports 20,21,25,53,80,443,3128 -j ACCEPT
-A INPUT -i eth1 -p udp -m multiport --dports 20,21,25,53,80,443,3128 -j ACCEPT
-A INPUT -i eth0 -p tcp -j REJECT --reject-with tcp-reset
-A INPUT -i eth0 -p udp -j REJECT --reject-with icmp-port-unreachable
-A INPUT -s ! 192.168.2.0/24 -i eth0 -p tcp -m tcp --dport 25 -j DROP
-A INPUT -s ! 192.168.2.0/24 -i eth1 -p tcp -m tcp --dport 25 -j DROP
-A INPUT -i eth0 -p icmp -m icmp --icmp-type 8 -m length --length 0:100 -j ACCEPT
-A INPUT -i eth0 -p icmp -m icmp --icmp-type 8 -j DROP
-A FORWARD -i eth0 -p icmp -m length --length 92 -j DROP
-A INPUT -j DROP
-A INPUT -p tcp -m limit --limit 5/min -j LOG --log-prefix "Iptables: Denied TCP Port: " --log-level 7
-A INPUT -p udp -m limit --limit 5/min -j LOG --log-prefix "Iptables: Denied UDP Port: " --log-level 7
-A INPUT -p tcp -m state --state NEW -m tcp --dport 80 -j LOG --log-prefix "HTTP_CONN: "

jangan lupa restart jaringan...

Facebook OPiKdesign
http://badge.facebook.com/badge/100000147194199.279.411965916.png
* IT Consultant * Networking Specialist for Internet Cafe/HotSpot/SOHO * Maintenance * Graphic & Web Design, 3D Modeling & 2D/3D Animation * Hosting & Domain * email to: th@opikdesign.com

Re: Install & Setting Ubuntu 8.10 Server

opikdesign wrote:
agusnur wrote:
opikdesign wrote:

yg menuju local ethernet berapa?!
dan yg menuju modem ethernet brapa?!

Modem --->eth0    eth1------>LAN (192.168.2.0)
                 dhcp    192.168.2.1

oke...
di iptables bagian *filter dirubah seperti ini...

-A INPUT -i lo -j ACCEPT
-A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
-A INPUT -i eth1 -p tcp -m multiport --dports 20,21,25,53,80,443,3128 -j ACCEPT
-A INPUT -i eth1 -p udp -m multiport --dports 20,21,25,53,80,443,3128 -j ACCEPT
-A INPUT -i eth0 -p tcp -j REJECT --reject-with tcp-reset
-A INPUT -i eth0 -p udp -j REJECT --reject-with icmp-port-unreachable
-A INPUT -s ! 192.168.2.0/24 -i eth0 -p tcp -m tcp --dport 25 -j DROP
-A INPUT -s ! 192.168.2.0/24 -i eth1 -p tcp -m tcp --dport 25 -j DROP
-A INPUT -i eth0 -p icmp -m icmp --icmp-type 8 -m length --length 0:100 -j ACCEPT
-A INPUT -i eth0 -p icmp -m icmp --icmp-type 8 -j DROP
-A FORWARD -i eth0 -p icmp -m length --length 92 -j DROP
-A INPUT -j DROP
-A INPUT -p tcp -m limit --limit 5/min -j LOG --log-prefix "Iptables: Denied TCP Port: " --log-level 7
-A INPUT -p udp -m limit --limit 5/min -j LOG --log-prefix "Iptables: Denied UDP Port: " --log-level 7
-A INPUT -p tcp -m state --state NEW -m tcp --dport 80 -j LOG --log-prefix "HTTP_CONN: "

jangan lupa restart jaringan...

oke...tak coba dulu ya Bang... smile

Re: Install & Setting Ubuntu 8.10 Server

agusnur wrote:
opikdesign wrote:
agusnur wrote:

Modem --->eth0    eth1------>LAN (192.168.2.0)
                 dhcp    192.168.2.1

oke...
di iptables bagian *filter dirubah seperti ini...

-A INPUT -i lo -j ACCEPT
-A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
-A INPUT -i eth1 -p tcp -m multiport --dports 20,21,25,53,80,443,3128 -j ACCEPT
-A INPUT -i eth1 -p udp -m multiport --dports 20,21,25,53,80,443,3128 -j ACCEPT
-A INPUT -i eth0 -p tcp -j REJECT --reject-with tcp-reset
-A INPUT -i eth0 -p udp -j REJECT --reject-with icmp-port-unreachable
-A INPUT -s ! 192.168.2.0/24 -i eth0 -p tcp -m tcp --dport 25 -j DROP
-A INPUT -s ! 192.168.2.0/24 -i eth1 -p tcp -m tcp --dport 25 -j DROP
-A INPUT -i eth0 -p icmp -m icmp --icmp-type 8 -m length --length 0:100 -j ACCEPT
-A INPUT -i eth0 -p icmp -m icmp --icmp-type 8 -j DROP
-A FORWARD -i eth0 -p icmp -m length --length 92 -j DROP
-A INPUT -j DROP
-A INPUT -p tcp -m limit --limit 5/min -j LOG --log-prefix "Iptables: Denied TCP Port: " --log-level 7
-A INPUT -p udp -m limit --limit 5/min -j LOG --log-prefix "Iptables: Denied UDP Port: " --log-level 7
-A INPUT -p tcp -m state --state NEW -m tcp --dport 80 -j LOG --log-prefix "HTTP_CONN: "

jangan lupa restart jaringan...

oke...tak coba dulu ya Bang... smile

Masih belom bisa juga nih bang Opick... sad

Re: Install & Setting Ubuntu 8.10 Server

agusnur wrote:
agusnur wrote:
opikdesign wrote:

oke...
di iptables bagian *filter dirubah seperti ini...

-A INPUT -i lo -j ACCEPT
-A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
-A INPUT -i eth1 -p tcp -m multiport --dports 20,21,25,53,80,443,3128 -j ACCEPT
-A INPUT -i eth1 -p udp -m multiport --dports 20,21,25,53,80,443,3128 -j ACCEPT
-A INPUT -i eth0 -p tcp -j REJECT --reject-with tcp-reset
-A INPUT -i eth0 -p udp -j REJECT --reject-with icmp-port-unreachable
-A INPUT -s ! 192.168.2.0/24 -i eth0 -p tcp -m tcp --dport 25 -j DROP
-A INPUT -s ! 192.168.2.0/24 -i eth1 -p tcp -m tcp --dport 25 -j DROP
-A INPUT -i eth0 -p icmp -m icmp --icmp-type 8 -m length --length 0:100 -j ACCEPT
-A INPUT -i eth0 -p icmp -m icmp --icmp-type 8 -j DROP
-A FORWARD -i eth0 -p icmp -m length --length 92 -j DROP
-A INPUT -j DROP
-A INPUT -p tcp -m limit --limit 5/min -j LOG --log-prefix "Iptables: Denied TCP Port: " --log-level 7
-A INPUT -p udp -m limit --limit 5/min -j LOG --log-prefix "Iptables: Denied UDP Port: " --log-level 7
-A INPUT -p tcp -m state --state NEW -m tcp --dport 80 -j LOG --log-prefix "HTTP_CONN: "

jangan lupa restart jaringan...

oke...tak coba dulu ya Bang... smile

Masih belom bisa juga nih bang Opick... sad

iya nih Mas Opik, transparent-nya juga gak jalan...:( apa masih ada yg salah lagi ya...??

# Generated by iptables-save v1.3.8 on Sun Jun 28 04:21:53 2009
*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [2115:194654]
:OUTPUT ACCEPT [9937:3757015]
-A INPUT -i lo -j ACCEPT
-A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
-A INPUT -i eth1 -p tcp -m multiport --dports 20,21,25,53,80,443,3128 -j ACCEPT
-A INPUT -i eth1 -p udp -m multiport --dports 20,21,25,53,80,443,3128 -j ACCEPT
-A INPUT -i eth0 -p tcp -j REJECT --reject-with tcp-reset
-A INPUT -i eth0 -p udp -j REJECT --reject-with icmp-port-unreachable
-A INPUT -s ! 192.168.2.0/24 -i eth0 -p tcp -m tcp --dport 25 -j DROP
-A INPUT -s ! 192.168.2.0/24 -i eth1 -p tcp -m tcp --dport 25 -j DROP
-A INPUT -i eth0 -p icmp -m icmp --icmp-type 8 -m length --length 0:100 -j ACCEPT
-A INPUT -i eth0 -p icmp -m icmp --icmp-type 8 -j DROP
-A FORWARD -i eth0 -p icmp -m length --length 92 -j DROP
-A INPUT -j DROP
-A INPUT -p tcp -m limit --limit 5/min -j LOG --log-prefix "Iptables: Denied TCP Port: " --log-level 7
-A INPUT -p udp -m limit --limit 5/min -j LOG --log-prefix "Iptables: Denied UDP Port: " --log-level 7
-A INPUT -p tcp -m state --state NEW -m tcp --dport 80 -j LOG --log-prefix "HTTP_CONN: "
COMMIT
# Completed on Sun Jun 28 04:21:53 2009
# Generated by iptables-save v1.3.8 on Sun Jun 28 04:21:53 2009
*nat
:PREROUTING ACCEPT [2663:618759]
:POSTROUTING ACCEPT [22:3693]
:OUTPUT ACCEPT [212:19020]
-A POSTROUTING -o eth0 -j MASQUERADE
-A PREROUTING -s 192.168.2.0/24 -p tcp -m mutiport --dport 80,8080,3128 -j REDI$
COMMIT
# Completed on Sun Jun 28 04:21:53 2009

Re: Install & Setting Ubuntu 8.10 Server

@agusnur...

yg gak bisa itu apanya sih?! proxy transparent-nya ato outlook-nya?!

Facebook OPiKdesign
http://badge.facebook.com/badge/100000147194199.279.411965916.png
* IT Consultant * Networking Specialist for Internet Cafe/HotSpot/SOHO * Maintenance * Graphic & Web Design, 3D Modeling & 2D/3D Animation * Hosting & Domain * email to: th@opikdesign.com

Re: Install & Setting Ubuntu 8.10 Server

opikdesign wrote:

@agusnur...

yg gak bisa itu apanya sih?! proxy transparent-nya ato outlook-nya?!

Dua-duanya Pak..utk proxy-nya kalo mau buka mail.yahoo gak bisa...

Re: Install & Setting Ubuntu 8.10 Server

agusnur wrote:

...
Dua-duanya Pak..utk proxy-nya kalo mau buka mail.yahoo gak bisa...

email outlook ama web-base beda... tongue

di table *nat di iptables kasih seperti ini...

-A PREROUTING -i eth1 -p tcp -m tcp --dport 80 -j REDIRECT --to-port 3128

kemudian restart jaringan.

klo tetep gak bisa ganti dgn yg ini...

-A PREROUTING -i eth1 -s 192.168.0.0/24 -p tcp -m tcp --dport 80 -j DNAT --to-destination 192.168.0.1:3128

dan terakhir klo gak bisa juga...
tiap client diarahkan langsung aja ke proxy server-nya, caranya klo IE....

Tools > Internet Options > Connection > LAN Settings >
beri tanda centang pada "Use Proxy Server... ..."
dan masukkan ip server proxy beserta port 3128


good luck

Facebook OPiKdesign
http://badge.facebook.com/badge/100000147194199.279.411965916.png
* IT Consultant * Networking Specialist for Internet Cafe/HotSpot/SOHO * Maintenance * Graphic & Web Design, 3D Modeling & 2D/3D Animation * Hosting & Domain * email to: th@opikdesign.com

Re: Install & Setting Ubuntu 8.10 Server

Bang Opik..belom keluar juga nih release tutorialnya...?? big_smile

Re: Install & Setting Ubuntu 8.10 Server

agusnur wrote:

Bang Opik..belom keluar juga nih release tutorialnya...?? big_smile

iya nih... sempit waktu luangnya... mo bantuin?! big_smile
malah yg dah kelar domain controller di samba part 2...

secepatnya deh, insya allah bisa rampung.... big_smile

Facebook OPiKdesign
http://badge.facebook.com/badge/100000147194199.279.411965916.png
* IT Consultant * Networking Specialist for Internet Cafe/HotSpot/SOHO * Maintenance * Graphic & Web Design, 3D Modeling & 2D/3D Animation * Hosting & Domain * email to: th@opikdesign.com

Re: Install & Setting Ubuntu 8.10 Server

wah saya cm bs comment "salut buat semuanya"
selly http://globalmarketingonline.blogspot.com

Re: Install & Setting Ubuntu 8.10 Server

opikdesign wrote:
agusnur wrote:

Bang Opik..belom keluar juga nih release tutorialnya...?? big_smile

iya nih... sempit waktu luangnya... mo bantuin?! big_smile
malah yg dah kelar domain controller di samba part 2...

secepatnya deh, insya allah bisa rampung.... big_smile

waduh...ngeledek nih ceritanya...hehehehe...
kalo yg domain controller part1 and 2 bisa dibuka dimana kang...??

Re: Install & Setting Ubuntu 8.10 Server

agusnur wrote:

......
waduh...ngeledek nih ceritanya...hehehehe...
kalo yg domain controller part1 and 2 bisa dibuka dimana kang...??

langsung aja ke part 2, link-nya >>> http://opensource.telkomspeedy.com/foru … hp?id=7690

Facebook OPiKdesign
http://badge.facebook.com/badge/100000147194199.279.411965916.png
* IT Consultant * Networking Specialist for Internet Cafe/HotSpot/SOHO * Maintenance * Graphic & Web Design, 3D Modeling & 2D/3D Animation * Hosting & Domain * email to: th@opikdesign.com

Re: Install & Setting Ubuntu 8.10 Server

Bapak2 sekalian, maui tanya..aku disini mau bikin jaringan  yang bentuknya :

                                              192.168.1.1
                                                       |
ISP---------|modem|--------|PC-Router|-------|LAN-1|---->192.168.1.0/255.255.255.0
                                            \                      |
                                             \__ proxy       |
                                                                  |
                                                                  |
                                                                |PC|--------|LAN2|---->192.168.2.0/255.255.255.0

Nah, di |PC| perlu disetting seperti apa yah, supaya antara LAN-1 dan LAN2 bisa saling berkomunikasi dan di LAN2 juga bisa dapet internet...??mohon pencerahannya....

Thx

Re: Install & Setting Ubuntu 8.10 Server

PC Router harus dikasih tau bahwa ada network LAN dua dibelakang  | PC |

atau bisa dengan melakukan NAT di  | PC |

smile
hth

Re: Install & Setting Ubuntu 8.10 Server

si_faisal wrote:

PC Router harus dikasih tau bahwa ada network LAN dua dibelakang  | PC |

atau bisa dengan melakukan NAT di  | PC |

smile
hth

untuk di PC Router udah di add routenya dengan 192.168.2.0/255.255.255.0
tapi kok masih belum bisa ya komunikasi dari LAN2 ke LAN-1 dan juga masih belum dapet internet, padahal di IE udah di setting proxy ke 192.168.2.1:3128

|PC| pake ubuntu server 8.04

Re: Install & Setting Ubuntu 8.10 Server

Iya neh bang Opick saya juga sangat menantikan release tutorialnya, big_smile semangat y bang opik

Re: Install & Setting Ubuntu 8.10 Server

agusnur wrote:
si_faisal wrote:

PC Router harus dikasih tau bahwa ada network LAN dua dibelakang  | PC |

atau bisa dengan melakukan NAT di  | PC |

smile
hth

untuk di PC Router udah di add routenya dengan 192.168.2.0/255.255.255.0
tapi kok masih belum bisa ya komunikasi dari LAN2 ke LAN-1 dan juga masih belum dapet internet, padahal di IE udah di setting proxy ke 192.168.2.1:3128

|PC| pake ubuntu server 8.04

PC pakai ubuntu server?!

double NAT aja kemudian yg dari port HTTP di LAN2 bisa di DNAT menuju port PROXY di PC ROUTER.

jadi proxy-nya tetep transparent...

contoh, anggap eth0 di PC menuju LAN1 dan eth1-nya menuju LAN2 maka iptables di PC kurang lebih seperti ini...

iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE 
iptables -t nat -A PREROUTING -i eth1 -p tcp -m tcp --dport 80 -j DNAT --to-destination 192.168.1.1:3128
iptables -t nat -A PREROUTING -i eth1 -p udp -m udp --dport 80 -j DNAT --to-destination 192.168.1.1:3128

selain itu IE di LAN2 gak perlu di set proxy.



HTH

Facebook OPiKdesign
http://badge.facebook.com/badge/100000147194199.279.411965916.png
* IT Consultant * Networking Specialist for Internet Cafe/HotSpot/SOHO * Maintenance * Graphic & Web Design, 3D Modeling & 2D/3D Animation * Hosting & Domain * email to: th@opikdesign.com

Re: Install & Setting Ubuntu 8.10 Server

maaf mo tanya...
saya sdh berhasil setting server proxy pakai ubuntu 8.10, proxy sdh jalan, download di limit 10 kbps dan bandwith sdh di manajemen.

yang bikin saya bingung.... knp streaming youtube.com  susah bener yaaa... malah tdk jalan... kira kira yang salah apa ...
terima kasih atas jawaban nya

http://img21.imageshack.us/img21/3261/nyemot3.gif

Re: Install & Setting Ubuntu 8.10 Server

untuk cache video, ada caranya sendiri... tapi apa untungnya cache video?!
dilihat gak sering dilihat dalam satu judul/file, di internet berjuta2 video, perlu invest harddisk besar...

Facebook OPiKdesign
http://badge.facebook.com/badge/100000147194199.279.411965916.png
* IT Consultant * Networking Specialist for Internet Cafe/HotSpot/SOHO * Maintenance * Graphic & Web Design, 3D Modeling & 2D/3D Animation * Hosting & Domain * email to: th@opikdesign.com

Re: Install & Setting Ubuntu 8.10 Server

maaf... tambah pertanyaan...
saya sdh setting delaypool.. tapi pengin kalo malam saya bisa donlod miyabi dan friends dengan normal.bagaimana setting delay pool buat batasi don load tapi bisa di setting jam tertentu balik ke normal...
gimana  cara nya
thanks atas jawab nya wink

http://img21.imageshack.us/img21/3261/nyemot3.gif

Re: Install & Setting Ubuntu 8.10 Server

bisa aja... pakai acl time... coba searching di forum ini juga.... pernah sy bahas.

Facebook OPiKdesign
http://badge.facebook.com/badge/100000147194199.279.411965916.png
* IT Consultant * Networking Specialist for Internet Cafe/HotSpot/SOHO * Maintenance * Graphic & Web Design, 3D Modeling & 2D/3D Animation * Hosting & Domain * email to: th@opikdesign.com

100 (edited by si_faisal 28-07-2009 05:53:31)

Re: Install & Setting Ubuntu 8.10 Server

10 kbps kecil banget tih, pantes kalo lambat big_smile
cuma 1,2 KByte per second

coba naikkan ke 32 atau 48 kbps