Scribd
Upload
17 views

Superlab Network Infrastructure Two

Uploaded by

kaf.medianetworking
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
17 views

Superlab Network Infrastructure Two

Uploaded by

kaf.medianetworking
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 19

SUPERLAB

Network Infrastructure

Deva Andriansyah
Topologi :

Keterangan :

R-TELKOM
1. IP Address
2. Routing OSPF dan redistribute BGP, Connected
3. Routing BGP dan redistribute OSPF, Connected

R-TELKOM-JAKPUS
1. IP Address
2. Routing OSPF

R-TELKOM-JAKSEL
1. IP Address
2. Routing OSPF

R-CBN-JATIM
1. IP Address
2. Routing OSPF dan redistribute BGP
3. Routing BGP dan redistribute OSPF
R-CBN-SBY
1. IP Address
2. Routing OSPF

FORTI-HO-Active and FORTI-HO- Passive


1. High Avaibility
2. IP Address
3. 802.3ad Aggregate (Lacp)
4. VLAN on 802.3ad Aggregate
5. Static Route
6. NAT
7. IPSec Site to Site

CE6800-CE
1. Vlan Mode Access
2. Vlan Mode Trunk
3. Eth-trunk
FORTI-BRANCH
1. IP Address
2. Static Route
3. NAT
4. IPSec Site to Site
Konfigurasi :

1. Mikrotik (R-TELKOM)

2. Mikrotik (R-TELKOM-JAKPUS)
3. Mikrotik (R-TELKOM-JAKSEL)

4. Mikrotik (R-CBN-JATIM)
5. Mikrotik (CBN-SBY)

Tabel Routing Semua Router


6. Fortinet (FORTI-HA-Active)

1. Konfigurasi HA

2. IP Address
3. 802.3ad Aggregate (Lacp)

4. VLAN on 802.3ad Aggregate


5. Static Route

6. NAT
7. IPSec Site to Site
7. Fortinet (FORTI-HA-Passive)

Untuk Forti passive kita cukup konfigurasi HA. Jika HA sudah synchronization maka
konfigurasi akan di replika ke Fortinet yang bermode passive.
Tampilan High Avaibitily atau HA ter-synchronization.

8. Huawei CE-6800-CE

<HUAWEI>system-view
Enter system view, return user view with return command.
[~HUAWEI]vlan 10
[*HUAWEI-vlan10]vlan 20
[*HUAWEI-vlan20]quit
[*HUAWEI]int eth-trunk 1
[*HUAWEI-Eth-Trunk1]trunkport GE 1/0/0 tO 1/0/1
[*HUAWEI-Eth-Trunk1]port link-type trunk
[*HUAWEI-Eth-Trunk1]port trunk allow-pass vlan all
Info: Some VLANs are not created. Please create them to make the configuration take
effect.
[*HUAWEI-Eth-Trunk1]int eth-trunk 2
[*HUAWEI-Eth-Trunk2]trunkport GE 1/0/2 tO 1/0/3
[*HUAWEI-Eth-Trunk2]port link-type trunk
[*HUAWEI-Eth-Trunk2]port trunk allow-pass vlan all
Info: Some VLANs are not created. Please create them to make the configuration take
effect.
[*HUAWEI-Eth-Trunk2]quit
[*HUAWEI]int ge 1/0/4
[*HUAWEI-GE1/0/4]port default vlan 10
[*HUAWEI-GE1/0/4]int ge 1/0/5
[*HUAWEI-GE1/0/5]port default vlan 20
[*HUAWEI-GE1/0/5]quit
[*HUAWEI]quit
Warning: Uncommitted configurations found. Are you sure to commit them before
exiting? [Y(yes)/N(no)/C(cancel)]:y
<HUAWEI>save
9. Fortinet (FORTI-BRANCH)

1. IP Address

2. Static Route
3. NAT

4. IPSec Site to Site


Jika mengalami kendala Tunnel IPSec tidak UP, silahkan lakukan hal berikut.

Jika IPSec berhasil saling terkoneksi, maka tampilan akan sebagai berikut.

Dan akan muncul beberapa rule tambahan di Firewall polucy dan static route.
Pengujian :

1. Test ping dari PC1 dan PC2 ke PC3.

2. Lakukan ping dari PC3 ke PC1 dan PC2.


3. Lakukan ping tanpa henti, sambil matikan FORTI-HO-Active

You might also like