File System Full

File System Full

Pada suatu pagi di hari minggu, lagi enak-enaknya minum kopi ada telp
disuruh cek partisi pada salah satu router yang menurut informasi
terjadi kejanggalan dikatakan bahwa partisi /var full.

Tanpa basa-basi langsung cek n ricek ke router tujuan



Cek n Ricek

$ sudo tail -f /var/log/messages
Nov 22 08:56:58 GreenRouter-JKT01 /bsd: uid 1000 on /var: file system full
Nov 22 08:57:04 GreenRouter-JKT01 /bsd: uid 0 on /var: file system full
Nov 22 08:57:04 GreenRouter-JKT01 pflogd[11142]: Logging suspended: fwrite: No space left on device
Nov 22 08:58:05 GreenRouter-JKT01 /bsd: uid 0 on /var: file system full
Nov 22 08:58:05 GreenRouter-JKT01 pflogd[11142]: Logging suspended: fwrite: No space left on device
Nov 22 08:59:05 GreenRouter-JKT01 /bsd: uid 0 on /var: file system full
Nov 22 08:59:05 GreenRouter-JKT01 pflogd[11142]: Logging suspended: fwrite: No space left on device

$ df -h
Filesystem Size Used Avail Capacity Mounted on
/dev/wd0a 4.9G 117M 4.6G 2% /
/dev/wd0g 15.3G 74.0M 14.4G 0% /data
/dev/wd0e 9.8G 2.0K 9.4G 0% /tmp
/dev/wd0d 19.7G 2.3G 16.4G 12% /usr
/dev/wd0f 19.7G 19.7G -1007M 105% /var

$ sudo du -h -s /var/
109M /var/

Wah ini aneh hasil yang diberikan df -h dan du -h -s berbeda...

Cek lebih jauh lagi

$ fstat -f /var
USER CMD PID FD MOUNT INUM MODE R/W SZ|DV
root ksh 20619 wd /var 2 drwxr-xr-x r 512
asoel ksh 17578 wd /var 2 drwxr-xr-x r 512
asoel ksh 18941 wd /var 2 drwxr-xr-x r 512
root systat 27253 3 /var 675585 -rw-rw-r-- r 8100
root systat 27253 6 /var 1273220 -rw-r--r-- r 1294336
root sendmail 21369 wd /var 2494471 drwx------ r 512
root sendmail 21369 8 /var 675595 -rw------- w 70
root cron 6171 wd /var 1714944 dr-xr-xr-x r 512
root cron 6171 3 /var 675594 -rw-r--r-- rw 5
_bgpd bgpd 18359 wd /var 1818880 drwxr-xr-x r 512
_bgpd bgpd 18359 root /var 1818880 drwxr-xr-x r 512
_bgpd bgpd 21279 wd /var 1818880 drwxr-xr-x r 512
_bgpd bgpd 21279 root /var 1818880 drwxr-xr-x r 512
_snmpd snmpd 2308 wd /var 1818880 drwxr-xr-x r 512
_snmpd snmpd 2308 root /var 1818880 drwxr-xr-x r 512
_ntp ntpd 24212 wd /var 1818880 drwxr-xr-x r 512
_ntp ntpd 24212 root /var 1818880 drwxr-xr-x r 512
_pflogd pflogd 11142 wd /var 1818880 drwxr-xr-x r 512
_pflogd pflogd 11142 root /var 1818880 drwxr-xr-x r 512
_pflogd pflogd 11142 4 /var 2442524 -rw------- rw 21050293545
_syslogd syslogd 498 wd /var 1818880 drwxr-xr-x r 512
_syslogd syslogd 498 root /var 1818880 drwxr-xr-x r 512
_syslogd syslogd 498 9 /var 2442508 -rw-r----- w 9019
_syslogd syslogd 498 11 /var 2442530 -rw------- w 11154
_syslogd syslogd 498 12 /var 1714950 -rw------- w 5679
_syslogd syslogd 498 14 /var 2442509 -rw-r----- w 0
_syslogd syslogd 498 15 /var 2442503 -rw-r----- w 0
_syslogd syslogd 498 16 /var 2442552 -rw------- w 9518

Ternyata ada sesuatu yang aneh pada pflogd
_pflogd pflogd 11142 4 /var 2442524 -rw------- rw 21050293545

Dilakukan P3K takutnya keburu tewas routernya maklum itu router berada di Jakarta...

$ sudo pkill pflogd && sudo pflogd

Cek n Ricek lagi....

$ fstat -f /var
USER CMD PID FD MOUNT INUM MODE R/W SZ|DV
_pflogd pflogd 6702 wd /var 1818880 drwxr-xr-x r 512
_pflogd pflogd 6702 root /var 1818880 drwxr-xr-x r 512
_pflogd pflogd 6702 4 /var 2442512 -rw------- rw 10274624
asoel ksh 21256 wd /var 2 drwxr-xr-x r 512
asoel ksh 17578 wd /var 2 drwxr-xr-x r 512
asoel ksh 18941 wd /var 2 drwxr-xr-x r 512
root systat 27253 3 /var 675585 -rw-rw-r-- r 8100
root systat 27253 6 /var 1273220 -rw-r--r-- r 1294336
root sendmail 21369 wd /var 2494471 drwx------ r 512
root sendmail 21369 8 /var 675595 -rw------- w 70
root cron 6171 wd /var 1714944 dr-xr-xr-x r 512
root cron 6171 3 /var 675594 -rw-r--r-- rw 5
_bgpd bgpd 18359 wd /var 1818880 drwxr-xr-x r 512
_bgpd bgpd 18359 root /var 1818880 drwxr-xr-x r 512
_bgpd bgpd 21279 wd /var 1818880 drwxr-xr-x r 512
_bgpd bgpd 21279 root /var 1818880 drwxr-xr-x r 512
_snmpd snmpd 2308 wd /var 1818880 drwxr-xr-x r 512
_snmpd snmpd 2308 root /var 1818880 drwxr-xr-x r 512
_ntp ntpd 24212 wd /var 1818880 drwxr-xr-x r 512
_ntp ntpd 24212 root /var 1818880 drwxr-xr-x r 512
_syslogd syslogd 498 wd /var 1818880 drwxr-xr-x r 512
_syslogd syslogd 498 root /var 1818880 drwxr-xr-x r 512
_syslogd syslogd 498 12 /var 1714950 -rw------- w 5970


$ df -h
Filesystem Size Used Avail Capacity Mounted on
/dev/wd0a 4.9G 117M 4.6G 2% /
/dev/wd0g 15.3G 78.1M 14.4G 1% /data
/dev/wd0e 9.8G 2.0K 9.4G 0% /tmp
/dev/wd0d 19.7G 2.3G 16.4G 12% /usr
/dev/wd0f 19.7G 86.8M 18.6G 0% /var

Akhirnya file system /var kembali ke semula....system masih berjalan normal.

Dilanjut lagi ah weekend nya....

Note :
Jika ada waktu luang fsck -f -y /var pada single user mode



Read more...

Facebook Blank via proxy (Pertolongan pertama)

Facebook Blank via proxy (Pertolongan pertama)
=============================================
NB : squid 2.7 stable xxx




$sudo vim /etc/squid/squid.conf

http_port 3128 tproxy transparent
http_port act-as-origin http11 # tambahkan ini
server_http11 on # tambahkan ini juga

$sudo squid -k parse
$sudo squid -k reconfigure

Good Luck


Read more...

Install MRTG Debian

8 Langkah Install MRTG Pada Debian-Linux



1. Install Paket

# apt-get install apache2 snmp snmpd mrtg

2. Edit /etc/snmp/smpd.conf

# vim /etc/snmp/smpd.conf

sysDescr Proxy Server
sysContact aagink@gmail.com
sysName aagink proxy
sysLocation Rack008

com2sec public default public
group public v1 public
group public v2c public
view all included .1
access public "" any noauth exact all none none

3. Restart service snmp

# /etc/init.d/snmpd restart


4. Buat config mrtg

# cfgmaker public@localhost > /etc/mrtg.cfg

5. Edit /etc/mrtg.cfg

# vim /etc/mrtg.cfg
hilangkan tanda # pada Options[_]: bits,growright

RunAsDaemon: yes
EnableIPv6: no
WorkDir: /var/www/mrtg
Options[_]: bits,growright
WriteExpires: Yes

Title[^]: Traffic Analysis for


6. Buat mrtg index.html

# indexmaker /etc/mrtg.cfg > /var/www/mrtg/index.html


7. Cek MRTG

buka browser http://10.10.10.1/mrtg/


8. Agar graph mrtg update per 5menit

# vim /etc/cron.d/mrtg
0/5 * * * * root if [ -x /usr/bin/mrtg ] && [ -r /etc/mrtg.cfg ]; then env LANG=C /usr/bin/mrtg /etc/mrtg.cfg >> /var/log/mrtg/mrtg.log 2>&1; fi



Read more...

Memory Test OpenBSD

Memory Test menggunakan OpenBSD

boot> boot /stand/memtest


Read more...

Membuat OpenBSD 4.5 Stable

Membuat OpenBSD 4.5 Stable

Persiapan :
1. Kopi + Cemilan
2. Koneksi internet yang cepat dan stabil
3. cd openbsd 4.5
4. komputer yang mau di install



$ sudo mkdir /usr/local/src
$ sudo mkdir /usr/src
$ cd /usr/local/src
$ export PKG_PATH=http://openbsd.biz.net.id/pub/4.5/packages/i386/
$ sudo wget http://openbsd.biz.net.id/pub/4.5/src.tar.gz
$ sudo tar -zxvf src.tar.gz -C /usr/src/
$ cd /usr/
$ sudo cvs -danoncvs@anoncvs.de.openbsd.org:/cvs checkout -rOPENBSD_4_5 -P src
$ cd /usr/src/
$ sudo cvs -danoncvs@anoncvs1.ca.openbsd.org:/cvs up -rOPENBSD_4_5 -Pd

------------------------------------------
Jika muncul permintaan seperti dibawah ketik "yes"
Are you sure you want to continue connecting (yes/no)? yes
------------------------------------------

$ cd /usr/src/sys/arch/i386/conf/
$ sudo config GENERIC
$ cd ../compile/GENERIC/

------------------------------------------
>>> Jika menggunakan multi processor
$ sudo config GENERIC.MP
$ cd ../compile/GENERIC.MP/
------------------------------------------

$ sudo make clean && sudo make depend && sudo make && sudo make install
$ sudo reboot
$ cd /usr/src
$ sudo rm -rf /usr/obj/*
$ sudo make obj
$ cd /usr/src/etc
$ sudo env DESTDIR=/ make distrib-dirs
$ cd /usr/src
$ sudo make build
$ sudo reboot

Hasilnya :
OpenBSD 4.5-stable (GENERIC) #1: Fri Aug 14 16:40:34 WIT 2009


Read more...

Basic PF

Perintah dasar PF



Perintah dasar pf.conf
# pfctl -d >>>> disable pf
# pfctl -e >>>> enable pf
# pfctl -f /etc/pf.conf >>>> Load the pf.conf file
# pfctl -nf /etc/pf.conf >>>> Mengecek parse, ada yang error atau tidaknya
# pfctl -Nf /etc/pf.conf >>>> Hanya meload NAT
# pfctl -Rf /etc/pf.conf >>>> Hanya meload filter


# pfctl -sn >>>> melihat hasil nat
# pfctl -sr >>>> melihat hasil filter
# pfctl -ss >>>> melihat status table
# pfctl -si >>>> melihat staut filter dan counters
# pfctl -sa >>>> melihat semuanya yg dapat di tampilkan
# pfctl -vvsq >>>> monitoring



Read more...

Install Plugins Monitor Pada CACTI

Plugins Monitor Pada CACTI

Prasyarat :
- Cacti sudah berjalan (kalo bisa cacti 0.8.7.d)
- Download plugin monitor
http://cactiusers.org/downloads/monitor.tar.gz
- Download Plugin Architecture
http://mirror.cactiusers.org/downloads/plugins/cacti-plugin-0.8.7d-PA-v2.4.zip



Install Plugin Architecture
---------------------------
agink$ sudo mkdir /var/www/cacti/plugins

cara 1:

agink$ cd /tmp/
agink$ wget http://mirror.cactiusers.org/downloads/plugins/cacti-plugin-0.8.7d-PA-v2.4.zip
agink$ sudo unzip cacti-plugin-0.8.7d-PA-v2.4.zip
agink$ cd cacti-plugin-0.8.7d-PA-v2.4
agink$ sudo cp cacti-plugin-0.8.7d-PA-v2.4.diff /var/www/cacti/
agink$ cd /var/www/cacti/
agink$ sudo patch -p1 -N < cacti-plugin-0.8.7d-PA-v2.4.diff

Cara 2:

agink$ cd /tmp/
agink$ wget http://mirror.cactiusers.org/downloads/plugins/cacti-plugin-0.8.7d-PA-v2.4.zip
agink$ sudo unzip cacti-plugin-0.8.7d-PA-v2.4.zip
agink$ cd cacti-plugin-0.8.7d-PA-v2.4
agink$ cd files-0.8.7d
agink$ sudo cp -R include/ /var/www/cacti/include
agink$ sudo cp -R lib/ /var/www/cacti/lib
agink$ sudo cp -R plugins/ /var/www/cacti/plugins
agink$ sudo cp *.php /var/www/cacti/


Install Plugin Monitor
----------------------

agink$ cd /tmp/
agink$ wget http://cactiusers.org/downloads/monitor.tar.gz
agink$ sudo tar -zvxf monitor.tar.gz
agink$ sudo mkdir /var/www/cacti/plugins
agink$ sudo mv monitor /var/www/cacti/plugins/
agink$ sudo vim /var/www/cacti/include/global.php

edit+tambahkan seperti dibawah, sesuaikan dengan cacti anda :

/* Default database settings*/
$database_type = "mysql";
$database_default = "cacti";
$database_hostname = "localhost";
$database_username = "cactiuser";
$database_password = "cactipassword";
$database_port = "3306";

$plugins = array();
$plugins[] = 'monitor';

$config['url_path'] = 'http://cacti.domain.com/';


Import database plugin monitor

agink$ mysql cacti -u cactiuser -p < /var/www/cacti/plugins/monitor/monitor.sql


Selesai deh...sekarang buka browser cacti anda...






Read more...

Installasi Nagios Pada Debian

Installasi Nagios Pada Debian

--------------------
aagink@gmail.com
--------------------

Install Paket
-------------
nagios:/# aptitude install gcc make apache2 php5 php5-gd php5-cgi
nagios:/usr/src# wget http://transact.dl.sourceforge.net/sourceforge/nagios/nagios-3.0.6.tar.gz
nagios:/usr/src# wget http://transact.dl.sourceforge.net/sourceforge/nagiosplug/nagios-plugins-1.4.13.tar.gz

Buat user & groups nagios
-------------------------

nagios:/# useradd nagios

nagios:/# groupadd nagcmd

nagios:/# usermod -G nagcmd nagios

nagios:/# usermod -G nagcmd www-data

nagios:/# mkdir /usr/local/nagios

nagios:/# chown nagios:nagios /usr/local/nagios


Install Nagios & Nagios-Plugin
-------------------------------

nagios:/usr/src# tar -xzvf nagios-3.0.6.tar.gz

nagios:/usr/src# cd nagios-3.0.6

nagios:/usr/src/nagios-3.0.6# ./configure -with-nagios-user=nagios -with-nagios-group=nagios -with-command-group=nagcmd

nagios:/usr/src/nagios-3.0.6# ./configure -prefix=/usr/local/nagios -with-cgiurl=/nagios/cgi-bin -with-htmurl=/nagios/ -with-nagios-user=nagios -with-nagios-group=nagios -with-command-group=nagios

nagios:/usr/src/nagios-3.0.6# make all

nagios:/usr/src/nagios-3.0.6# make install

nagios:/usr/src/nagios-3.0.6# make install-init

nagios:/usr/src/nagios-3.0.6# make install-commandmode

nagios:/usr/src/nagios-3.0.6# make install-config

nagios:/usr/src# tar -zxvf nagios-plugins-1.4.13.tar.gz

nagios:/usr/src# cd nagios-plugins-1.4.13

nagios:/usr/src/nagios-plugins-1.4.13# ./configure

nagios:/usr/src/nagios-plugins-1.4.13# make && make install


Configure nagios web
---------------------

nagios:/usr/src/nagios-plugins-1.4.13# touch /etc/apache2/sites-available/nagios

ScriptAlias /nagios/cgi-bin /usr/local/nagios/sbin
< Directory "/usr/local/nagios/sbin" >
Options ExecCGI
AllowOverride None
Order allow,deny
Allow from all
AuthName "Nagios Access"
AuthType Basic
AuthUserFile /usr/local/nagios/etc/htpasswd.users
Require valid-user
< / Directory >

Alias /nagios /usr/local/nagios/share
< Directory "/usr/local/nagios/share" >
Options None
AllowOverride None
Order allow,deny
Allow from all
AuthName "Nagios Access"
AuthType Basic
AuthUserFile /usr/local/nagios/etc/htpasswd.users
Require valid-user
< / Directory >


nagios:/usr/src/nagios-plugins-1.4.13# cd /etc/apache2/sites-available/

nagios:/etc/apache2/sites-available# a2ensite nagios

nagios:/etc/apache2/sites-available# /etc/init.d/apache2 reload


Setting Proteksi web nagios
---------------------------

nagios:/etc/apache2/sites-available# htpasswd -c /usr/local/nagios/etc/htpasswd.users nagiosadmin

nagios:/etc/apache2/sites-available# htpasswd /usr/local/nagios/etc/htpasswd.users nagios

nagios:/etc/apache2/sites-available# vim /usr/local/nagios/etc/cgi.cfg

use_authentication=1


------------------------------------------------------------------------------
Test Nagios

buka browser anda ketik http://ipaddressanda/nagios




Read more...

Generic Host Process for Win32 Services

Generic Host Process for Win32 Services

Sungguh meropotkan dan menjengkelkan jika masalah seperti gambar di bawah muncul...



Masalah ini ditimbul karena adanya bugs security pada Windows SP2 bahkan SP3 pun tidak luput dari penyakit ini....
Sungguh aneh Service Pack yang seharusnya membereskan masalah malah memberikan masalah...

Efek dari penyakit ini koneksi internet akan terputus bilapun jalan koneksinya kecepatannya kalah dari jalannya seekor keong.

P3K untuk penyakit ini...

1. download patch di http://gnupg.cdpa.nsysu.edu.tw/Patch/WinXP/en/WindowsXP-KB894391-x86-ENU.exe

2. Blok Port 135 dan 445 (Mainkan registernya)

a.Blok Port 445
- Buka Registry Editor. Lalu ke posisi
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Servic es\NetBT\Parameters
cari TransportBindName , semula berisi \Device\ . lalu edit dan kosongkan saja.

b. Blok Port 135
HKEY_LOCAL_MACHINE\Software\Microsoft\OLE

cari EnableDCOM edit value "Y" menjadi "N"

3. Reboot PC anda....


Good luck....kalo ngga berhasil marahin aza Bill Gate







Read more...

jebol password bios

Biar tidak lupa...

C:\>debug

-A

0B05:0100 MOV CX,0

0B05:0103 MOV AX,CX

0B05:0105 OUT 70,AL

0B05:0107 MOV AX,0

0B05:010A OUT 71,AL

0B05:010C INC CX

0B05:010D CMP CX,256

0B05:0111 JB 103

0B05:0113

-G


Read more...

Simple Bridge (Latihan RSTP)

Suatu ketika ada panggilan test disuatu ISP di bandung salah satunya test adalah membuat simple bridge seperti gambar di bawah.

Waktu test aku menggunakan linux dan terus terang ada sedikit kendala karena yang dinilai kecepatan dan ketepatan saat mensetting router2.

di linux kendalanya harus install paket seperti ebstables, bridge-utils, vlan, dll walaupun tinggal
apt-get install lom lagi konfigurasinya yang rada panjang dan modul yang harus diload.



untuk itu aku disuruh nyoba sama sys admin ISP untuk mencoba OpenBSD dan ternyata hasilnya keren banget cepat dan mudah g perlu install apapun karena semua paket telah include ke dalam kernel.

jika ada yang mau nambahin pake linux boleh2 aza di tunggu yaa...




========================== KONFIGURASI =========================

==============================
CORE
==============================

# touch /root/core
# chmod 755 /root/core
# vi /root/core

isikan :

#==========================
# CORE
# aagink@gmail.com
#==========================

echo 'Aktifkan Simple Bridge CORE...'

sysctl net.inet.ip.forwarding=1

lan_if="em0"
vlan_if="vlan10"
vlan_id="10"

vlan_ip="10.10.10.254/24"

ifconfig $lan_if up

ifconfig $vlan_if create vlan $vlan_id vlandev $lan_if
ifconfig $vlan_if up
ifconfig $vlan_if $vlan_ip

# vi /etc/rc.local

tambahkan :

# Add your local startup actions here.

/root/core

echo '.'


# reboot

==============================
CISCO SWITCH
==============================
!
hostname Switch
!
!
!
interface FastEthernet0/1
switchport trunk allowed vlan 10-30
switchport mode trunk
!
interface FastEthernet0/2
switchport access vlan 10
!
interface FastEthernet0/3
switchport access vlan 20
!
interface FastEthernet0/4
switchport access vlan 30
!

==============================
PC-BRIDGE
==============================

# touch /root/pc-bridge
# chmod 755 /root/pc-bridge
# vi /root/pc-bridge

isikan :

#==========================
# PC-BRIDGE
# aagink@gmail.com
#==========================

echo 'Aktifkan Simple Bridge PC-BRIDGE...'

sysctl net.inet.ip.forwarding=1

if_2_core="em0"
if_2_A="em1"
if_2_B="em2"

if_bridge_2_core="bridge0"
if_bridge_2_router="bridge1"

if_vlan_2_CORE="vlan110"
if_vlan_2_A="vlan210"
if_vlan_2_B="vlan310"

vlan_id="10"

ip_bridge="1.1.1.1/24"

ifconfig $if_2_core up
ifconfig $if_2_A up
ifconfig $if_2_B up

ifconfig $if_bridge_2_core create
ifconfig $if_bridge_2_core up
ifconfig $if_vlan_2_CORE create vlan $vlan_id vlandev $if_2_core
ifconfig $if_vlan_2_A create vlan $vlan_id vlandev $if_2_A
ifconfig $if_vlan_2_B create vlan $vlan_id vlandev $if_2_B
ifconfig $if_vlan_2_CORE up
ifconfig $if_vlan_2_A up
ifconfig $if_vlan_2_B up
brconfig $if_bridge_2_core add $if_vlan_2_CORE
brconfig $if_bridge_2_core add $if_vlan_2_A
brconfig $if_bridge_2_core add $if_vlan_2_B

ifconfig $if_bridge_2_router create
ifconfig $if_bridge_2_router up
brconfig $if_bridge_2_router add $if_2_A add $if_2_B up
ifconfig $if_2_A $ip_bridge


# vi /etc/rc.local

tambahkan :

# Add your local startup actions here.

/root/pc-bridge

echo '.'


# reboot

==============================
ROUTER-A
==============================

# touch /root/router-a
# chmod 755 /root/router-a
# vi /root/router-a

isikan :

#==========================
# ROUTER-A
# aagink@gmail.com
#==========================

echo 'Aktifkan Simple Bridge ROUTER-A...'

sysctl net.inet.ip.forwarding=1

wan_if="em0"
lan_if="em1"

vlan_if="vlan210"
vlan_id="10"

vlan_ip="10.10.10.1/24"
bridge_ip="1.1.1.2/24"
lan_ip="192.168.0.254/24"

ifconfig $wan_if up
ifconfig $lan_if up
ifconfig $wan_if $bridge_ip
ifconfig $lan_if $lan_ip
ifconfig $vlan_if create vlan $vlan_id vlandev $wan_if
ifconfig $vlan_if up
ifconfig $vlan_if $vlan_ip

echo 'Aktifkan PACKET FILLTERING'
pfctl -e
echo
echo 'Aktifkan NAT'
pfctl -Nf /etc/pf.conf

# vi /etc/rc.local

tambahkan :

# Add your local startup actions here.

/root/router-a

echo '.'

membuat NAT

# vi /etc/pf.conf

isikan :

wan_if="vlan210"
lan_if="em1"

nat on $wan_if from $lan_if:network to any -> $wan_if

# reboot

==============================
ROUTER-B
==============================

# touch /root/router-b
# chmod 755 /root/router-b
# vi /root/router-b

isikan :

#==========================
# ROUTER-B
# aagink@gmail.com
#==========================

echo 'Aktifkan Simple Bridge ROUTER-B...'

sysctl net.inet.ip.forwarding=1

wan_if="em0"
lan_if="em1"

vlan_if="vlan310"
vlan_id="10"

vlan_ip="10.10.10.2/24"
bridge_ip="1.1.1.3/24"
lan_ip="192.168.1.254/24"

ifconfig $wan_if up
ifconfig $lan_if up
ifconfig $wan_if $bridge_ip
ifconfig $lan_if $lan_ip
ifconfig $vlan_if create vlan $vlan_id vlandev $wan_if
ifconfig $vlan_if up
ifconfig $vlan_if $vlan_ip

echo 'Aktifkan PACKET FILLTERING'
pfctl -e
echo
echo 'Aktifkan NAT'
pfctl -Nf /etc/pf.conf

# vi /etc/rc.local

tambahkan :

# Add your local startup actions here.

/root/router-b

echo '.'

membuat NAT

# vi /etc/pf.conf

isikan :

wan_if="vlan310"
lan_if="em1"

nat on $wan_if from $lan_if:network to any -> $wan_if


# reboot


Read more...

Install HTB-Tools

Install HTB-Tools
=================

bwm:/# aptitude install shaper
bwm:/tmp# tar zxvf HTB-tools-0.3.0a-i486-1.tgz
bwm:/# mv /tmp/etc/* /etc/
bwm:/# mv /tmp/sbin/* /sbin/
bwm:/# mv /tmp/usr/* /usr/
bwm:/# cp /etc/rc.d/rc.htb.new /etc/init.d/rc.htb
bwm:/# chmod 755 /etc/init.d/rc.htb

Konfigurasi HTB-Tools
=====================


Asumsi :
Bandwidth Total = 2048 kbps
Jumlah Klient = 4 klient
eth0 = upstream
eth1 = downstream

bwm:/# cp /etc/htb/eth0-qos.cfg.new /etc/htb/eth0-qos.cfg
bwm:/# cp /etc/htb/eth1-qos.cfg.new /etc/htb/eth1-qos.cfg

bwm:/# vim /etc/htb/eth0-qos.cfg

isikan dari eth0-qos.cfg

#####################
# eth0-qos.cfg #
#-------------------#
# aagink@gmail.com #
#####################

class class_1 {
bandwidth 2048;
limit 2048;
burst 2;
priority 1;


client PC_1 {
bandwidth 512;
limit 512;
burst 2;
priority 1;
src {
192.168.0.10/32;
};
};

client PC_2 {
bandwidth 512;
limit 512;
burst 2;
priority 1;
src {
192.168.0.20/32;
};
};

client PC_3 {
bandwidth 512;
limit 512;
burst 2;
priority 1;
src {
192.168.0.30/32;
};
};

client PC_4 {
bandwidth 512;
limit 512;
burst 2;
priority 1;
src {
192.168.0.40/32;
};
};
};


class default { bandwidth 8; };


bwm:/# vim /etc/htb/eth1-qos.cfg

isikan dari eth1-qos.cfg

#######################
# eth1-qos.cfg #
#---------------------#
# aagink@gmail.com #
#######################

class class_1 {
bandwidth 2048;
limit 2048;
burst 2;
priority 1;


client PC_1 {
bandwidth 512;
limit 512;
burst 2;
priority 1;
dst {
192.168.0.10/32;
};
};

client PC_2 {
bandwidth 512;
limit 512;
burst 2;
priority 1;
dst {
192.168.0.20/32;
};
};

client PC_3 {
bandwidth 512;
limit 512;
burst 2;
priority 1;
dst {
192.168.0.30/32;
};
};

client PC_4 {
bandwidth 512;
limit 512;
burst 2;
priority 1;
dst {
192.168.0.40/32;
};
};
};


class default { bandwidth 8; };

Cek Konfigurasi
===============

bwm:/# q_checkcfg /etc/htb/eth0-qos.cfg
Default bandwidth: 8

Class class_1, CIR: 2048, MIR: 2048
** 4 clients, CIR2: 2048, MIR2: 2048

1 classes; CIR / MIR = 2048 / 2048; CIR2 / MIR2 = 2048 / 2048

bwm:/# q_checkcfg /etc/htb/eth1-qos.cfg
Default bandwidth: 8

Class class_1, CIR: 2048, MIR: 2048
** 4 clients, CIR2: 2048, MIR2: 2048

1 classes; CIR / MIR = 2048 / 2048; CIR2 / MIR2 = 2048 / 2048


Aktifkan Shaper
===============

bwm:/# /etc/init.d/rc.htb start

Starting HTB-tools on eth0 ...
Checking the config file ...OK
Checking kernel support for HTB: present.
HTB-tools was successfuly started on eth0.


Starting HTB-tools on eth1 ...
Checking the config file ...OK
Checking kernel support for HTB: present.
HTB-tools was successfuly started on eth1.

Liat Trafik
===========

bwm:/# /etc/init.d/rc.htb show_eth0
bwm:/# /etc/init.d/rc.htb show_eth1


Read more...

Singkronisasi Waktu

Untuk mencocokan jam sistem dengan jam hardware
===============================================

Cara 1
------

Jam sistem sebelum di rubah
vpn:/# date
Sat Jan 3 03:54:26 WIT 2009

untuk mencocokan jam sistem dengan jam hardware
vpn:/# hwclock --hctosys --localtime

Jam sistem setelah di rubah
vpn:/# date
Fri Jan 2 20:57:59 WIT 2009

untuk membuat permanen silahkan masukin ke dalam scripts command "hwclock --hctosys --localtime"

Cara 2
------

vpn:/# vim /etc/default/rcS

Isinya harus seperti dibawah ini :

TMPTIME=0
SULOGIN=no
DELAYLOGIN=no
UTC=no
VERBOSE=no
FSCKFIX=no
RAMRUN=no
RAMLOCK=no

vpn:/# reboot

Silahkan cek jam di bios komputer dan di sistem hasilnya pasti sama...

Lumayan menghemat BW karena tidak membutuhkan koneksi ke NTP Server


Read more...

Komentar Anda...

 

Web Stat

Linux Today News Service

My Yahoo Messenger Status

Web Stat