Facebook Blank via proxy (Pertolongan pertama)
=============================================
NB : squid 2.7 stable xxx
$sudo vim /etc/squid/squid.conf
http_port 3128 tproxy transparent
http_port act-as-origin http11 # tambahkan ini
server_http11 on # tambahkan ini juga
$sudo squid -k parse
$sudo squid -k reconfigure
Good Luck
8 Langkah Install MRTG Pada Debian-Linux
1. Install Paket
# apt-get install apache2 snmp snmpd mrtg
2. Edit /etc/snmp/smpd.conf
# vim /etc/snmp/smpd.conf
sysDescr Proxy Server
sysContact aagink@gmail.com
sysName aagink proxy
sysLocation Rack008
com2sec public default public
group public v1 public
group public v2c public
view all included .1
access public "" any noauth exact all none none
3. Restart service snmp
# /etc/init.d/snmpd restart
4. Buat config mrtg
# cfgmaker public@localhost > /etc/mrtg.cfg
5. Edit /etc/mrtg.cfg
# vim /etc/mrtg.cfg
hilangkan tanda # pada Options[_]: bits,growright
RunAsDaemon: yes
EnableIPv6: no
WorkDir: /var/www/mrtg
Options[_]: bits,growright
WriteExpires: Yes
Title[^]: Traffic Analysis for
6. Buat mrtg index.html
# indexmaker /etc/mrtg.cfg > /var/www/mrtg/index.html
7. Cek MRTG
buka browser http://10.10.10.1/mrtg/
8. Agar graph mrtg update per 5menit
# vim /etc/cron.d/mrtg
0/5 * * * * root if [ -x /usr/bin/mrtg ] && [ -r /etc/mrtg.cfg ]; then env LANG=C /usr/bin/mrtg /etc/mrtg.cfg >> /var/log/mrtg/mrtg.log 2>&1; fi
Plugins Monitor Pada CACTI
Prasyarat :
- Cacti sudah berjalan (kalo bisa cacti 0.8.7.d)
- Download plugin monitor
http://cactiusers.org/downloads/monitor.tar.gz
- Download Plugin Architecture
http://mirror.cactiusers.org/downloads/plugins/cacti-plugin-0.8.7d-PA-v2.4.zip
Install Plugin Architecture
---------------------------
agink$ sudo mkdir /var/www/cacti/plugins
cara 1:
agink$ cd /tmp/
agink$ wget http://mirror.cactiusers.org/downloads/plugins/cacti-plugin-0.8.7d-PA-v2.4.zip
agink$ sudo unzip cacti-plugin-0.8.7d-PA-v2.4.zip
agink$ cd cacti-plugin-0.8.7d-PA-v2.4
agink$ sudo cp cacti-plugin-0.8.7d-PA-v2.4.diff /var/www/cacti/
agink$ cd /var/www/cacti/
agink$ sudo patch -p1 -N < cacti-plugin-0.8.7d-PA-v2.4.diff
Cara 2:
agink$ cd /tmp/
agink$ wget http://mirror.cactiusers.org/downloads/plugins/cacti-plugin-0.8.7d-PA-v2.4.zip
agink$ sudo unzip cacti-plugin-0.8.7d-PA-v2.4.zip
agink$ cd cacti-plugin-0.8.7d-PA-v2.4
agink$ cd files-0.8.7d
agink$ sudo cp -R include/ /var/www/cacti/include
agink$ sudo cp -R lib/ /var/www/cacti/lib
agink$ sudo cp -R plugins/ /var/www/cacti/plugins
agink$ sudo cp *.php /var/www/cacti/
Install Plugin Monitor
----------------------
agink$ cd /tmp/
agink$ wget http://cactiusers.org/downloads/monitor.tar.gz
agink$ sudo tar -zvxf monitor.tar.gz
agink$ sudo mkdir /var/www/cacti/plugins
agink$ sudo mv monitor /var/www/cacti/plugins/
agink$ sudo vim /var/www/cacti/include/global.php
edit+tambahkan seperti dibawah, sesuaikan dengan cacti anda :
/* Default database settings*/
$database_type = "mysql";
$database_default = "cacti";
$database_hostname = "localhost";
$database_username = "cactiuser";
$database_password = "cactipassword";
$database_port = "3306";
$plugins = array();
$plugins[] = 'monitor';
$config['url_path'] = 'http://cacti.domain.com/';
Import database plugin monitor
agink$ mysql cacti -u cactiuser -p < /var/www/cacti/plugins/monitor/monitor.sql
Selesai deh...sekarang buka browser cacti anda...
Installasi Nagios Pada Debian
--------------------
aagink@gmail.com
--------------------
Install Paket
-------------
nagios:/# aptitude install gcc make apache2 php5 php5-gd php5-cgi
nagios:/usr/src# wget http://transact.dl.sourceforge.net/sourceforge/nagios/nagios-3.0.6.tar.gz
nagios:/usr/src# wget http://transact.dl.sourceforge.net/sourceforge/nagiosplug/nagios-plugins-1.4.13.tar.gz
Buat user & groups nagios
-------------------------
nagios:/# useradd nagios
nagios:/# groupadd nagcmd
nagios:/# usermod -G nagcmd nagios
nagios:/# usermod -G nagcmd www-data
nagios:/# mkdir /usr/local/nagios
nagios:/# chown nagios:nagios /usr/local/nagios
Install Nagios & Nagios-Plugin
-------------------------------
nagios:/usr/src# tar -xzvf nagios-3.0.6.tar.gz
nagios:/usr/src# cd nagios-3.0.6
nagios:/usr/src/nagios-3.0.6# ./configure -with-nagios-user=nagios -with-nagios-group=nagios -with-command-group=nagcmd
nagios:/usr/src/nagios-3.0.6# ./configure -prefix=/usr/local/nagios -with-cgiurl=/nagios/cgi-bin -with-htmurl=/nagios/ -with-nagios-user=nagios -with-nagios-group=nagios -with-command-group=nagios
nagios:/usr/src/nagios-3.0.6# make all
nagios:/usr/src/nagios-3.0.6# make install
nagios:/usr/src/nagios-3.0.6# make install-init
nagios:/usr/src/nagios-3.0.6# make install-commandmode
nagios:/usr/src/nagios-3.0.6# make install-config
nagios:/usr/src# tar -zxvf nagios-plugins-1.4.13.tar.gz
nagios:/usr/src# cd nagios-plugins-1.4.13
nagios:/usr/src/nagios-plugins-1.4.13# ./configure
nagios:/usr/src/nagios-plugins-1.4.13# make && make install
Configure nagios web
---------------------
nagios:/usr/src/nagios-plugins-1.4.13# touch /etc/apache2/sites-available/nagios
ScriptAlias /nagios/cgi-bin /usr/local/nagios/sbin
< Directory "/usr/local/nagios/sbin" >
Options ExecCGI
AllowOverride None
Order allow,deny
Allow from all
AuthName "Nagios Access"
AuthType Basic
AuthUserFile /usr/local/nagios/etc/htpasswd.users
Require valid-user
< / Directory >
Alias /nagios /usr/local/nagios/share
< Directory "/usr/local/nagios/share" >
Options None
AllowOverride None
Order allow,deny
Allow from all
AuthName "Nagios Access"
AuthType Basic
AuthUserFile /usr/local/nagios/etc/htpasswd.users
Require valid-user
< / Directory >
nagios:/usr/src/nagios-plugins-1.4.13# cd /etc/apache2/sites-available/
nagios:/etc/apache2/sites-available# a2ensite nagios
nagios:/etc/apache2/sites-available# /etc/init.d/apache2 reload
Setting Proteksi web nagios
---------------------------
nagios:/etc/apache2/sites-available# htpasswd -c /usr/local/nagios/etc/htpasswd.users nagiosadmin
nagios:/etc/apache2/sites-available# htpasswd /usr/local/nagios/etc/htpasswd.users nagios
nagios:/etc/apache2/sites-available# vim /usr/local/nagios/etc/cgi.cfg
use_authentication=1
------------------------------------------------------------------------------
Test Nagios
buka browser anda ketik http://ipaddressanda/nagios
Install HTB-Tools
=================
bwm:/# aptitude install shaper
bwm:/tmp# tar zxvf HTB-tools-0.3.0a-i486-1.tgz
bwm:/# mv /tmp/etc/* /etc/
bwm:/# mv /tmp/sbin/* /sbin/
bwm:/# mv /tmp/usr/* /usr/
bwm:/# cp /etc/rc.d/rc.htb.new /etc/init.d/rc.htb
bwm:/# chmod 755 /etc/init.d/rc.htb
Konfigurasi HTB-Tools
=====================
Asumsi :
Bandwidth Total = 2048 kbps
Jumlah Klient = 4 klient
eth0 = upstream
eth1 = downstream
bwm:/# cp /etc/htb/eth0-qos.cfg.new /etc/htb/eth0-qos.cfg
bwm:/# cp /etc/htb/eth1-qos.cfg.new /etc/htb/eth1-qos.cfg
bwm:/# vim /etc/htb/eth0-qos.cfg
isikan dari eth0-qos.cfg
#####################
# eth0-qos.cfg #
#-------------------#
# aagink@gmail.com #
#####################
class class_1 {
bandwidth 2048;
limit 2048;
burst 2;
priority 1;
client PC_1 {
bandwidth 512;
limit 512;
burst 2;
priority 1;
src {
192.168.0.10/32;
};
};
client PC_2 {
bandwidth 512;
limit 512;
burst 2;
priority 1;
src {
192.168.0.20/32;
};
};
client PC_3 {
bandwidth 512;
limit 512;
burst 2;
priority 1;
src {
192.168.0.30/32;
};
};
client PC_4 {
bandwidth 512;
limit 512;
burst 2;
priority 1;
src {
192.168.0.40/32;
};
};
};
class default { bandwidth 8; };
bwm:/# vim /etc/htb/eth1-qos.cfg
isikan dari eth1-qos.cfg
#######################
# eth1-qos.cfg #
#---------------------#
# aagink@gmail.com #
#######################
class class_1 {
bandwidth 2048;
limit 2048;
burst 2;
priority 1;
client PC_1 {
bandwidth 512;
limit 512;
burst 2;
priority 1;
dst {
192.168.0.10/32;
};
};
client PC_2 {
bandwidth 512;
limit 512;
burst 2;
priority 1;
dst {
192.168.0.20/32;
};
};
client PC_3 {
bandwidth 512;
limit 512;
burst 2;
priority 1;
dst {
192.168.0.30/32;
};
};
client PC_4 {
bandwidth 512;
limit 512;
burst 2;
priority 1;
dst {
192.168.0.40/32;
};
};
};
class default { bandwidth 8; };
Cek Konfigurasi
===============
bwm:/# q_checkcfg /etc/htb/eth0-qos.cfg
Default bandwidth: 8
Class class_1, CIR: 2048, MIR: 2048
** 4 clients, CIR2: 2048, MIR2: 2048
1 classes; CIR / MIR = 2048 / 2048; CIR2 / MIR2 = 2048 / 2048
bwm:/# q_checkcfg /etc/htb/eth1-qos.cfg
Default bandwidth: 8
Class class_1, CIR: 2048, MIR: 2048
** 4 clients, CIR2: 2048, MIR2: 2048
1 classes; CIR / MIR = 2048 / 2048; CIR2 / MIR2 = 2048 / 2048
Aktifkan Shaper
===============
bwm:/# /etc/init.d/rc.htb start
Starting HTB-tools on eth0 ...
Checking the config file ...OK
Checking kernel support for HTB: present.
HTB-tools was successfuly started on eth0.
Starting HTB-tools on eth1 ...
Checking the config file ...OK
Checking kernel support for HTB: present.
HTB-tools was successfuly started on eth1.
Liat Trafik
===========
bwm:/# /etc/init.d/rc.htb show_eth0
bwm:/# /etc/init.d/rc.htb show_eth1
Untuk mencocokan jam sistem dengan jam hardware
===============================================
Cara 1
------
Jam sistem sebelum di rubah
vpn:/# date
Sat Jan 3 03:54:26 WIT 2009
untuk mencocokan jam sistem dengan jam hardware
vpn:/# hwclock --hctosys --localtime
Jam sistem setelah di rubah
vpn:/# date
Fri Jan 2 20:57:59 WIT 2009
untuk membuat permanen silahkan masukin ke dalam scripts command "hwclock --hctosys --localtime"
Cara 2
------
vpn:/# vim /etc/default/rcS
Isinya harus seperti dibawah ini :
TMPTIME=0
SULOGIN=no
DELAYLOGIN=no
UTC=no
VERBOSE=no
FSCKFIX=no
RAMRUN=no
RAMLOCK=no
vpn:/# reboot
Silahkan cek jam di bios komputer dan di sistem hasilnya pasti sama...
Lumayan menghemat BW karena tidak membutuhkan koneksi ke NTP Server
Jika lupa password root pada linux server jangan panik.
Ikuti tahapan untuk membuat password root yang baru.
1. reboot linux server anda, lalu akan muncul menu GRUB
2. tekan pada keyboard huruf "e" untuk masuk ke mode edit
3. pada mode edit pilih "kernel /boot/vmlinuz-bla-bla-bla root=/dev/hda1 ro" lalu tekan "e"
pada keyboard
4. akan muncul prompt
grub edit> kernel /boot/vmlinuz-bla-bla-bla root=/dev/hda1 ro
lalu ketik "init=/bin/sh" (tanpa tanda kutip) setelah root=/dev/hda1 ro
setelah itu tekan ENTER pada keyboard
kemudian tekan pada keyboard "b" untuk booting
5. setelah muncul prompt "#" ketikkan "mount -o remount rw /"
6. ketikkan "passwd" lalu masukkan password root anda yang baru,
setelah itu tekan Ctrl+Alt+Del untuk reboot linux server anda
7. Login secara normal dan anda bisa login sebagai root dengan memasukkan password
root yang baru dibuat tadi.
Install DHCP Server pada Debian
Install paket dhcp server
dhcp:/# aptitude install dhcp3-server
konfigurasi dhcp server
dhcp:/# vim /etc/dhcp3/dhcpd.conf
isi dari dhcpd.conf
# Jadikan komentar
# option domain-name "example.org";
# option domain-name-servers ns1.example.org, ns2.example.org;
# default-lease-time 600;
# max-lease-time 7200;
# buat ip dhcp-client
subnet 10.10.10.0 netmask 255.255.255.0 {
range 10.10.10.10 10.10.10.20;
option domain-name "biner.net";
option domain-name-servers 10.10.10.254;
option routers 10.10.10.254;
option broadcast-address 10.10.10.255;
default-lease-time 3600;
max-lease-time 7200;
}
konfigurasi interface yang mengarah ke dhcp-client
dhcp:/# vim /etc/default/dhcp3-server
isikan
# Interface yang mengarah ke dhcp-client
INTERFACES="eth1"
Restart service dhcp-server
dhcp:/# /etc/init.d/dhcp3-server restart
Sekarang tinggal test aza di klient...Insya Allah berhasil
>>> INTERNASIONAL <<<
Repository Sumber Debian
------------------------
deb http://ftp.us.debian.org/debian/ etch main
deb-src http://ftp.us.debian.org/debian/ etch main
deb http://security.debian.org/ etch/updates main contrib
deb-src http://security.debian.org/ etch/updates main contrib
>>> LOKAL <<<
Repository Kambing.ui.edu
-------------------------
deb http://kambing.ui.edu/debian etch main contrib non-free
deb http://kambing.ui.edu/debian etch/volatile main contrib non-free
deb http://kambing.ui.edu/debian-security etch/updates main contrib non-free
deb http://kambing.ui.edu/debian/ stable main non-free contrib
deb-src http://kambing.ui.edu/debian/ stable main non-free contrib
deb http://kambing.ui.edu/debian-security/ stable/updates main contrib non-free
deb-src http://kambing.ui.edu/debian-security/ stable/updates main contrib non-free
Repository Repo.ugm.ac.id
-------------------------
deb http://repo.ugm.ac.id/debian/ stable main contrib non-free
Repository mirror.its.ac.id
---------------------------
deb http://mirror.its.ac.id/debian etch main non-free contrib
deb http://mirror.its.ac.id/debian stable-proposed-updates main non-free contrib
deb http://mirror.its.ac.id/debian-security etch/updates main non-free contrib
Repository komo.vlsm.org
------------------------
deb http://komo.vlsm.org/debian etch main non-free contrib
deb http://komo.vlsm.org/debian etch-proposed-updates main non-free contrib
Repository debian.indika.net.id
-------------------------------
deb http://debian.indika.net.id/debian etch main non-free contrib
deb http://debian.indika.net.id/debian etch-proposed-updates main non-free contrib
Repository ftp://ftp.itb.ac.id
------------------------------
deb ftp://ftp.itb.ac.id/pub/debian etch main non-free contrib
deb ftp://ftp.itb.ac.id/pub/debian etch-proposed-updates main non-free contrib
#!/bin/bash
#============================================================================================
# Internet Sharing
# Name : Aditya Maulana
# e-mail : aagink@gmail.com
# Contoh : ./internetsharing (start|stop|restart|status)
#============================================================================================
NIC_Publik=eth0
NIC_Lokal=eth1
Lokal_IP=192.168.0.0/24
PROXY_PORT=8080
IP_Lokal=`ifconfig $NIC_Lokal | grep inet | cut -d : -f 2 | cut -d \ -f 1`
IP_Publik=`ifconfig $NIC_Publik | grep inet | cut -d : -f 2 | cut -d \ -f 1`
case "$1" in
start)
iptables -F
echo "Internet Sharing Aktif...!!!"
echo 1 > /proc/sys/net/ipv4/ip_forward
echo 1 > /proc/sys/net/ipv4/tcp_syncookies
echo "1" > /proc/sys/net/ipv4/icmp_echo_ignore_broadcasts
echo 2 > /proc/sys/net/ipv4/conf/all/rp_filter
echo 0 > /proc/sys/net/ipv4/conf/all/accept_source_route
echo 0 > /proc/sys/net/ipv4/tcp_timestamps
# echo 0 > /proc/sys/net/ipv4/conf/all/accept_redirects
echo 1 > /proc/sys/net/ipv4/icmp_ignore_bogus_error_responses
echo 1 > /proc/sys/net/ipv4/conf/all/log_martians
echo "32768 61000" > /proc/sys/net/ipv4/ip_local_port_range
# echo 30 > /proc/sys/net/ipv4/tcp_fin_timeouts
echo 2400 > /proc/sys/net/ipv4/tcp_keepalive_time
# echo 0 > /proc/sys/net/ipv4/tcp_window/scaling
echo 0 > /proc/sys/net/ipv4/tcp_sack
# NAT
iptables -t nat -A POSTROUTING -s $Lokal_IP -d 0/0 -j SNAT --to $IP_Publik
# Transparan Proxy
iptables -t nat -I PREROUTING -s $Lokal_IP -d 0/0 -p tcp --dport 80 -j DNAT --to $IP_Lokal:$PROXY_PORT
# Transparan TProxy
# iptables -t tproxy -A PREROUTING -i $NIC_Lokal -p tcp --dport 80 -j TPROXY --on-port $PROXY_PORT
# Drop NetBIOS
# Tujuan Port
iptables -A FORWARD -p tcp --dport 135:139 -j DROP
iptables -A FORWARD -p tcp --dport 445 -j DROP
iptables -A FORWARD -p udp --dport 135:139 -j DROP
iptables -A FORWARD -p udp --dport 445 -j DROP
# Sumber Port
iptables -A FORWARD -p tcp --sport 135:139 -j DROP
iptables -A FORWARD -p tcp --sport 445 -j DROP
iptables -A FORWARD -p udp --sport 135:139 -j DROP
iptables -A FORWARD -p udp --sport 445 -j DROP
stop)
echo "Internet Sharing Non Aktif...!!!"
echo 0 > /proc/sys/net/ipv4/ip_forward
# Hapus Semua Aturan Yang Ada Pada IPTABLES
iptables -F
iptables -F -t nat
iptables -X
iptables -X -t nat
echo
;;
restart)
echo "Internet Sharing Restart...!!!"
$0 stop
$0 start
echo
;;
status)
iptables -L -n | more
iptables -L -n -t nat | more
;;
esac
Installasi webmail menggunakan TELAEN
Sebelumnya edit dulu :
mail:/# vim /etc/php5/apache2/php.ini
Rubah :
memory_limit = 16M
menjadi :
memory_limit = 64M
edit script seperti dibawah /etc/apache2/sites-available/default :
Options Indexes FollowSymLinks MultiViews
AllowOverride None
Order allow,deny
allow from all
RedirectMatch ^/$ /wmail/
define("SMARTY_DIR","/some/place/safe/smarty/");
menjadi
define("SMARTY_DIR","/smarty/");
$temporary_directory = "./database/";
menjadi
$temporary_directory = "/DataMail/";
$mail_server_type = "ONE-FOR-ALL";
menjadi
$mail_server_type = "ONE-FOR-EACH";
$mail_servers[] = Array(
"domain" => "domain.com",
"server" => "pop3.domain.com",
"login_type" => "%user%",
"protocol" => "pop3",
"port" => "110",
"folder_prefix" => ""
);
edit menjadi :
$mail_servers[] = Array(
"domain" => "biner.net",
"server" => "localhost",
"login_type" => "%user%@%domain%",
"protocol" => "imap",
"port" => "143",
"folder_prefix" => ""
);
Membuat Proteksi Web
Buat direktori web yang mau dibuat
cacti:/# mkdir /var/www/gink
contoh isi dari web index.php
cacti:/# vim /var/www/gink/index.php
isikan :
< ? phpinfo() ?>
Buat dan isi file .htaccess & gink.kunci
cacti:/# touch /var/www/gink/.htaccess
cacti:/# touch /var/www/gink/gink.kunci
cacti:/# vim /var/www/gink/.htaccess
isikan :
IPIP TUNNEL - LINUX DEBIAN
Install Paket : # apt-get install –y iproute openssh-server sudo
Asumsi :
IP Gateway eth0 = 10.10.10.10 ( Sesuaikan Dengan IP Gateway yang diberikan ISP )
IP eth0 = 10.10.10.11/29 ( Sesuaikan Dengan IP yang diberikan ISP )
IP eth1 = 15.15.15.1/24 ( Sesuaikan Dengan IP LAN )
IP TUNNELLING = 7.7.7.1/24 ( IP Terserah )
Setting PC-Router KANTOR KEPARAT BANDUNG
bdg:/# ifconfig eth0 10.10.10.11 netmask 255.255.255.248 broadcast 10.10.10.15
bdg:/# ifconfig eth1 15.15.15.1 netmask 255.255.255.0 broadcast 15.15.15.255
bdg:/# route add default gw 10.10.10.10
bdg:/# touch /root/tunnel.sh
bdg:/# vim /root/tunnel.sh
#!/bin/sh
#=======================
# Tunnelling KANTOR KEPARAT BANDUNG
#=======================
# ip tun del ifTUN
ip tun add ifTUN mode ipip remote 20.20.20.11 local 10.10.10.11
ip addr add 7.7.7.1/24 dev ifTUN
ip link set ifTUN up
route add -net 35.35.35.0/24 gw 7.7.7.4 dev ifTUN
bdg:/# chmod 755 /root/tunnel.sh
bdg:/# ./root/tunnel.sh
Asumsi :
IP Gateway eth0 = 20.20.20.10 ( Sesuaikan Dengan IP Gateway yang diberikan ISP )
IP eth0 = 20.20.20.11/29 ( Sesuaikan Dengan IP yang diberikan ISP )
IP eth1 = 35.35.35.1/24 ( Sesuaikan Dengan IP LAN )
IP TUNNELLING = 7.7.7.4/24 ( IP Terserah )
Setting PC-Router KANTOR KEPARAT JAKARTA
jkt:/# ifconfig eth0 20.20.20.11 netmask 255.255.255.248 broadcast 20.20.20.15
jkt:/# ifconfig eth1 35.35.35.1 netmask 255.255.255.0 broadcast 35.35.35.255
jkt:/# route add default gw 20.20.20.10
jkt:/# touch /root/tunnel.sh
jkt:/# vim /root/tunnel.sh
#!/bin/sh
#=======================
# Tunnelling KANTOR KEPARAT JAKARTA
#=======================
# ip tun del ifTUN
ip tun add ifTUN mode ipip remote 10.10.10.11 local 20.20.20.11
ip addr add 7.7.7.4/24 dev ifTUN
ip link set ifTUN up
route add -net 15.15.15.0/24 gw 7.7.7.1 dev ifTUN
jkt:/# chmod 755 /root/tunnel.sh
jkt:/# ./root/tunnel.sh
Panduan Membuat Bridge – Linux Debian
Install paket
bjs:/# apt-get install –y ebtables bridge-utils openssh-server sudo
bjs:/# ebtables
bjs:/# touch /root/bridge.sh
bjs:/# vim /root/bridge.sh
#!/bin/sh
#=============================================================
# Membuat bridge pada linux
# install paket # apt-get install –y ebtables bridge-utils
# by (c)2008 Aditya Maulana
#=============================================================
brctl addbr br0 # buat interface bridge dimulai dari br0
# Menerima & mendengarkan semua jenis frame pada interface eth0 & eth1
ifconfig eth0 0.0.0.0 promisc up
ifconfig eth1 0.0.0.0 promisc up
brctl addif br0 eth0 # include eth0 ke interface br0
brctl addif br0 eth1 # include eth1 ke interface br0
ip link set br0 up # aktifkan interface bridge br0
/etc/init.d/networking restart # restart network
bjs:/# chmod 755 /root/bridge.sh
bjs:/# ./root/bridge.sh
bjs:/# ifconfig br0 192.168.0.254 netmask 255.255.255.0
bjs:/# route add default gw 192.168.0.1
