Scribd
Upload
41 views

#Nano /etc/network/interfaces: Simpan Konfigurasi Tersebut CTRL + o Kemudian Keluar CTRL + X

The document provides instructions for configuring a network with multiple servers, including a DNS server, web server, mail server, FTP server, and proxy server. It includes commands to configure static IP addresses, install and configureBIND to provide DNS, install and configure Apache as a web server, install Postfix and Dovecot to provide email services, and install ProFTPd and Squid to provide FTP and proxy services respectively. Network and server addresses, domains, and other specific configuration details are also provided.

Uploaded by

David Pazdrata
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
41 views

#Nano /etc/network/interfaces: Simpan Konfigurasi Tersebut CTRL + o Kemudian Keluar CTRL + X

The document provides instructions for configuring a network with multiple servers, including a DNS server, web server, mail server, FTP server, and proxy server. It includes commands to configure static IP addresses, install and configureBIND to provide DNS, install and configure Apache as a web server, install Postfix and Dovecot to provide email services, and install ProFTPd and Squid to provide FTP and proxy services respectively. Network and server addresses, domains, and other specific configuration details are also provided.

Uploaded by

David Pazdrata
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
You are on page 1/ 17

Perintah yang di gunakan

#nano /etc/network/interfaces

auto eth0
iface eth0 inet static
Address 192.168.1.100
Netmask 255.255.255.0
Network 192.168.1.0
Broadcast 192.168.1.255
Gateway 192.168.1.254
# dns-* options are implemented by the resolvconf package. If installed
dns-namesrvers 192.168.10.1
dns-search .net

auto eth1
iface eth1 inet static
Address 192.168.10.1
Netmask 255.255.255.192
Network 192.168.10.0
Broadcast 192.168.10.63

Simpan konfigurasi tersebut ctrl + o kemudian keluar ctrl + x

SETTING DNS
Install dns, masukan cd debian dan amsukan perintah sbb:

#apt-get install bind9

#cd /etc/bind

#nano named.conf

Tambahkan bagian paling bawah

Zone “lks-xx.sch.id” {
Type master;
File “/etc/bind/lks-xx.db”;
};

Zone “10.168.192.in-addr.arpa.” {
Type master;
File “/etc/bind/192.168.10.rev”;
};

Kemudian Copy db.local ke lks-xx


#cp db.local lks-xx.db

Kemudian masuk/edit dg perintah

#nano lks-xx.db

$ TTL 640800
@ IN SOA lks-xx.sch.id. root.lks-xx.sch.id. (
2 ; Serial
640800 ; Refresh
86400 ; Retry
2419200 ; Expire
640800 ) ; Negative Cache TTL
;

@ IN NS dns.lks-xx.sch.id.
@ IN A 192.168.10.1
www IN A 192.168.10.1
ftp IN A 192.168.10.1

save kemudian keluar


Copy lks-xx ke 192.168.10.rev dengan perintah sbb:
#cp lks-xx.db 192.168.10.rev

Kemudian masuk/edit 192.168.10.rev


#nano 192.168.10.rev

$ TTL 640800
@ IN SOA lks-xx.sch.id. root.lks-xx.sch.id. (
2 ; Serial
640800 ; Refresh
86400 ; Retry
2419200 ; Expire
640800 ) ; Negative Cache TTL
;

@ IN NS dns.lks-xx.sch.id.
@ IN A 192.168.10.1
1 IN PTR www.lks-xx.sch.id.
1 IN PTR ftp.lks-xx.sch.id.
1 IN PTR mail.lks-xx.sch.id.

#nano /etc/resolv.conf
domain lks-xx.sch.id
search lks-xx.sch.id
nameserver 192.168.10.1
nameserver 8.8.8.8

#etc /init.d/bind9 restart

kemudian tes DNS dari server ketik perintah

#nslookup www.lks-xx.sch.id

Muncul : name: www.lks-xx.sch.id

address: 192.168.10.1

#nslookup lks-xx.sch.id

Muncul : name: www.lks-xx.sch.id

address: 192.168.10.1

#nslookup 192.168.10.1

Muncul seperti di bawah ini


1.10.168.192.in-addr.arpa name = www.lks-xx.sch.id
1.10.168.192.in-addr.arpa name = mail.lks-xx.sch.id
1.10.168.192.in-addr.arpa name = ftp.lks-xx.sch.id
SETTING WEB SERVER

Masukan perintah berikut untuk install web server


#apt-get install lynx nmap apache2 php5
#nano /var/www/index.html
TM
<html><body><h1>BADARUDDIN KOMBRING </h1></body></html>

#touch /var/www/index.php
#nano /var/www/index.php
<?php

TM
echo “BADARUDDIN KOMBRING ”;

?>

Restart web server


#/etc/init.d/apache2 restart
Kemudian tes web server
#lynx www.lks-xx.sch.id

TM
BADARUDDIN KOMBRING

#lynx www.lks-xx.sch.id/index.php
TM
BADARUDDIN KOMBRING

SETTING DHCP DI server

#apt-get install dhcp3-server

#nano /etc/dhcp3/dhcpd.conf

Hapus tanda pagar dari kata subnet sampai tanda }

# A slightly different configuration for an internal subnet.

subnet 192.168.10.0 netmask 255.255.255.192 {


(network Address) (subnet mask)

range 192.168.10.2 192.168.10.62;


(ip address untuk client)
option domain-name-server 192.168.10.1;
(ip DNS server)

option domain-name “lks-xx.sch.id”;


(domain)

option routers 192.168.10.1;


(ip Router)

option broadcast-address 192.168.10.63;


(ip Broadcast)
default-lease-time 600;
max-lease-time 7200;
}

#/etc/init.d/dhcp3-server restart

SETTING MAIL SERVER

#apt-get install dovecot-common

#apt-get install dovecot-imapd

#apt-get install dovecot-pop3d

#apt-get install postfix

Tekan tombol navigasi kanan untuk ok kmudian enter

Pilih internet site

Pada saat menginstall postfix hapus server1 {nama host} ganti dengan
lks-xx.sch.id {nama domain}

#nano /etc/postfix/main.cf

Berikan tanda pagar # pada kata yang terdapat 5 baris bertuliskan


{smtpd}

mynetwork = 122.0.0.0/8 192.168.10.0/26 (network address client)


dan berikan tanda # pada

mailbox_command = procmail -a “$EXTENSION”

#/etc/init.d/postfix restart

#nano /etc/dovecot/dovecot.conf

Tambahkan imap imaps pop3 pop3s

# protocol = imap imaps

Protocol = imap imaps pop3 pop3s

Dan cari tulisan #disable_plaintext_auth = yes hilangkan tanda pagar


lalu ubah menjadi :

disable_plaintext_auth = no

#/etc/init.d/dovecot restart

BUAT USER MAIL

#adduser badar1

Masukan password mail kita

Masukan nama pengguna

Pilih y enter

Buat lagi user ke dua

#adduser badar2

Masukan password mail kita

Masukan nama pengguna

Kemudian pilih y enter


TES PENGIRIMAN USER ADMIN KE USER AHMED

#telnet lks-xx.sch.id 25

Ketikan {mail from: badar1}enter

Ketikan {rcpt to: badar2}enter

Ketikan {data}enter

Isikan pesan yang akan di kirim ke user badar2

Contoh= hallo badar2 welcome to smk yp 96 Bk (enter)

Lalu tekan tanda titik {.} enter

Dan ketik perintah quit untuk keluar

Buka user badar2

#telnet lks-xx.sch.id 110

Ketikan {user badar2}

Isikan password user {pass password}

Ketikan {list} untuk melihat data mail yang masuk ke user kita.

Ketikan {retr nomor pesan yang masuk}

Pesan / mail akan tampil lalu

Ketikan perintah quit untuk keluar

WEB MAIL

#apt-get install squirrelmail

#squirrelmail-configure
Tekan {2}

Tekan {1}

Lalu isikan domain kita {lks-xx.sch.id}

Tekan {a}

Tekan {8}

Isikan {dovecot}

Tekan {s} untuk menyimpan

Dan keluar dengan menekan {q}

#nano /etc/apache2/apache2.conf

Isikan yang paling bawah

Include /etc/squirrelmail/apache.conf

#nano /etc/squirrelmail/apache.conf

Pada barisan pertama yang berisikan squirrelmail diganti dengan webmail

Alias /squirrelmail /usr/share/squirrelmail

ubah menjadi : Alias /webmail /usr/share/squirrelmail

Simpan kemudian restart apache2 dengan perintah

#/etc/init.d/apache2 restart

buka web browser ketikan domain yang kamu buat/webmail

untuk mengirim pke @nano.lks-xx.sch.id

atau @lks-xx.sch.id
Setting ftp

#Apt-get install proftpd


Pilih standalone

#mkdir /data
#chmod 777 /data
#nano /etc/proftpd/proftpd.conf

Ubah default nya seperti di bawah ini

UseIPv6 off

ServerName “ftp.lks-xx.sch.id”
Hilangkan tanda pagar pada default root dan ubah (~) menjadi (/data)
DefaultRoot /data

#/etc/init.d/proftpd restart

#cd /etc/apache2/sites-available

#cp default ftp

#nano ftp

Ubah lah serveradmin dan ketikan servername

ServerAdmin [email protected]

ServerName ftp.lks-xx.sch.id

Ganti document root /var/www/ dengan /data

#a2ensite ftp

#/etc/init.d/apache2 reload

#/etc/init.d/apache2 restart
Tes ftp server
Buka windows explorer kemudian ketik di atas ftp.lks-xx.sch.id
Cari data yang berukuran “kecil” lalu di copy kemudian paste di ftp.lks-
xx.sch.id . kemudian buka mozilla firefox atau browser lainya ketik di url
nya yaitu ftp.lks-xx.sch.id login dg user web mail dan data akan muncul.

FTP SERVER TANPA LOGIN

#apt-get install proftpd

Hapus user lama

#userdel ftp

Tambah user baru

#useradd –d /share/ ftp

#passwd ftp

Isikan pasword:

Buat directori untuk data

#mkdir /data

#chmod 777 /data

Konfidurasi data

#nano /etc/proftpd/proftpd.conf

Use ipV6 off

ServerName “ftp.lks-xx.sch.id”

hilangkan tanda pagar pada tulisan2 dibawah ini

<Anonymous /data>
User ftp

userAlias anonymous ftp

</Anonymous>

Simpan konfigurasi lalu restart

#/etc/init.d/proftpd restart

Tes ftp buka web browser ketikan ftp.lks-xx.sch.id user akan masuk
dengan sendiri tanpa harus log in.

Setting proxy

Apt-get install squid

#nano /etc/squid/squid.conf
Ctrl+w dan cari kata yg ada di bawah ini:
http_port 3128 transparent
cache_mem 64 mb
maximum_object_size_in_memory 8 kb
maximum_object_size 20400 kb
minimum_object_size 0 kb
cache_swap_hight 95 kb
cache_swap_low 90 kb
cache_effective_user proxy
cache_effective_group proxy (tulis dibawah cache yg user)
cache_mgr [email protected]
cache_dir ufs /var/spool/squid 100 16 256
cache_dir diskd /cache-1 60000 16 25 Q1=72 Q2=64 (tulis dibawah cache dir
ufs)
visible_hostname proxy.lks-xx.sch.id (ganti yg tag)
ketik purge dan tulis kata2 dibawah ini dibawahnya
acl filter1 dstdomain “/etc/squid/domain”
acl filter2 url_regex –i “/etc/squid/kata”
acl client src 192.168.10.0/26
http_access deny filter1
http_access deny filter2
http_access allow client
#nano /etc/squid/domain

Facebook.com
Yahoo.com
Google.com

#nano /etc/squid/kata

Facebook
Yahoo
Google

#Mkdir /cache-1
#chown –R proxy.proxy /cache-1
#squid –z
#squid –D
#nmap localhost

VPN SERVER
# apt-get install pptpd

nano /etc/pptpd.conf
#. . .
localip 192.168.1.1 #ip untuk vpn server
remoteip 192.168.1.2-254 #range ip untuk vpn client

Membuat user vpn


# nano /etc/ppp/chap-secrets

# Secrets for authentication using CHAP


# client server secret IP addresses
Pudja * pudja123 *
ipul * ipul123 *

#nano /etc/ppp/pptpd-option

ms-dns 192.168.1.1
nobsdcomp
noipx
mtu 1490
mru 1490

# /etc/init.d/pptpd restart

#nano /etc/rc.local

#exit0 (beri tanda pagar)


iptables -F
iptables -t nat -F
iptables -P INPUT DROP

iptables –t nat –A POSTROUTING –j MASQUERADE

iptables -t nat -A PREROUTING -p tcp --dport 80 -s 172.16.1.0/28(eth1) -j


DNAT --to-destination 192.168.1.1:3128(ip server)

iptables -A INPUT -p icmp -j ACCEPT


iptables -A FORWARD -p icmp -j ACCEPT
iptables -A OUTPUT -p icmp -j ACCEPT
iptables -A INPUT -p tcp -m multiport --ports 80 -j ACCEPT
iptables -A INPUT -p tcp -m multiport --ports 53 -j ACCEPT
iptables -A INPUT -p udp -m multiport --ports 53 -j ACCEPT
iptables -A INPUT -p tcp -m multiport --ports 25 -j ACCEPT
iptables -A INPUT -p tcp -m multiport --ports 443 -j ACCEPT
iptables -A INPUT -p tcp -m multiport --ports 22 -j ACCEPT
iptables -A INPUT -p tcp -m multiport --ports 143 -j ACCEPT
iptables -A INPUT -p tcp -m multiport --ports 8080 -j ACCEPT
iptables -A INPUT -p tcp -m multiport --ports 110 -j ACCEPT
iptables -A INPUT -p tcp -m multiport --ports 21 -j ACCEPT
iptables -A INPUT -p udp -m multiport --ports 21 -j ACCEPT
iptables -A INPUT -p tcp -m multiport --ports 67:69 -j ACCEPT
iptables -A INPUT -p udp -m multiport --ports 123 -j ACCEPT
iptables -A INPUT -s 172.16.1.0/24 -d 192.168.1.0/24
iptables -A INPUT -m state --state NEW -i eth1 -j ACCEPT
iptables -A INPUT -m state --state ESTABLISHED,RELATED -i eth1 -j ACCEPT
iptables -A INPUT -m state --state NEW,INVALID -i eth1 -j DROP
#/etc/init.d/rc.local start
#iptables –t nat –nL
#iptables –nL

#nano /etc/sysctl.conf

Hilangkan tanda # pada kalimat


# net.ipV4.ip_forward=1

Terakhir restart computer dengan perintah


#reboot
#sysctl -p

NTP
#apt-get install ntp
#nano /etc/ntp.conf

#server0
#server1
#server2
#server3
server 127.127.1.0
fudge 127.127.1.0
restrict 192.168.1.0 mask 255.255.255.248
restrict 172.16.1.0 mask 255.255.255.240

#/etc/init.d/ntp restart

SETTING DHCP DI ROUTER

#apt-get install dhcp3-server

#nano /etc/dhcp3/dhcpd.conf

Hapus tanda pagar pada kata subnet sampai tanda }

# A slightly different configuration for an internal subnet.


subnet 172.16.1.0 netmask 255.255.255.0 {
(network Address) (subnet mask)

range 172.16.1.3 172.16.1.6;


(ip address untuk client)

option domain-name-server 192.168.1.1;


(ip DNS server)

option domain-name “lksxx.sch.id”;


(domain)

option routers 172.16.1.1;


(ip Router)

option broadcast-address172.16.1.7;
(ip Broadcast)
default-lease-time 600;
max-lease-time 7200;
}

#/etc/init.d/dhcp3-server restart

JIka tidak OnLine (LETAKKAN DI SERVER)

#cd /etc/bind
#nano named.conf

Tambahkan bagian paling bawah


Zone “facebook.com” {
Type master;
File “/etc/bind/facebook.db”;
};
Zone “youtube.com” {
Type master;
File “/etc/bind/youtube.db”;
};

#cp lks-xx.db yahoo.db


#cp lks-xx.db youtube.db

gateway nya nanya ma juri selain itu ip nya juga nnya

di nano /etc/resolv.conf
nameserver ditambah 1 lagi terus diisi 8.8.8.8

nano /etc/hostname
passwd root

#nano /etc/sysctl.conf
Hilangkan tanda pagar pada net.ipv4.forward=1
#nano /etc/rc.local
Beri tanda pagar pada exit 0 kemudian masukan sbb di atas exit 0

Iptables –F
Iptables –t nat –F
Iptables –t nat –A POSROUTING –j MASQUERADE

#exit 0

INSTALL SSH

#apt-get install ssh

# nano /etc/ssh/sshd_config
# Authentification :
LoginGrace Time 600
PermiRootLogin no
StrictModes yes
# service ssh restart

You might also like