tag:blogger.com,1999:blog-157841432024-03-26T16:19:59.528+07:00Andrew PakpahanMy Thoughts, My Ideas, My Experiences, My FriendsAndrew Pakpahanhttp://www.blogger.com/profile/12607273539900513127noreply@blogger.comBlogger70125tag:blogger.com,1999:blog-15784143.post-13478055090946954182012-09-22T20:20:00.002+07:002012-09-22T20:20:47.286+07:00How to enable SNMP Monitoring on Ubuntu Server 12.04.2Install SNMPD <span class="fullpost">
</span><br />
<div>
<br /></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">$ sudo apt-get install snmpd</span></div>
<div>
<br /></div>
<div>
Create a backup file of snmpd.conf original file that we will edit later</div>
<div>
<br /></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">$ sudo mv /etc/snmp/snmpd.conf /etc/snmp/snmpd.conf.ori</span></div>
<div>
<br /></div>
<div>
Create the new snmpd.conf file </div>
<div>
<br /></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">$ sudo vim /etc/snmp/snmpd.conf</span></div>
<div>
<br /></div>
<div>
<div>
Add the file with these lines</div>
<div>
<br /></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">rocommunity public</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">syslocation "Your Location"</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">syscontact admin@domain.com</span></div>
</div>
<div>
<br /></div>
<div>
Then edit the /etc/default/snmpd file</div>
<div>
<br /></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">$ sudo vim /etc/default/snmpd</span></div>
<div>
<br /></div>
<div>
Disable this line below by adding # in front of the line </div>
<div>
<br /></div>
<div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">#SNMPDOPTS='-Lsd -Lf /dev/null -u snmp -g snmp -I -smux -p /var/run/snmpd.pid'</span></div>
</div>
<div>
<br /></div>
<div>
And add a new line </div>
<div>
<br /></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">SNMPDOPTS='-Lsd -Lf /dev/null -u snmp -I -smux -p /var/run/snmpd.pid -c /etc/snmp/snmpd.conf'</span></div>
<div>
<br /></div>
<div>
Restart the SNMPD service</div>
<div>
<br /></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">$ sudo /etc/init.d/snmpd restart</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">* Restarting network management services</span></div>
<div>
<br /></div>
<div>
Then you're done!</div>
<div class="blogger-post-footer">Andrew Pakpahan Blog</div>Andrew Pakpahanhttp://www.blogger.com/profile/12607273539900513127noreply@blogger.com34tag:blogger.com,1999:blog-15784143.post-15106208098511158222012-08-20T10:54:00.000+07:002012-08-20T10:55:28.710+07:00How to enable MySQL remote access on Ubuntu Server 12.04<div>
By default MySQL on Ubuntu Server 12.04 can only be accessed from localhost (127.0.0.1). </div>
<div>
<br /></div>
<div>
If we need to access it from another computer on the network, we must do the following step</div>
<div>
<br /></div>
<div>
Edit MySQL Configuration</div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"><br /></span></div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">$ sudo vim /etc/mysql/my.cnf</span><br />
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"><br /></span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">#comment out this line (add # in front of the line)</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">#bind-address = 127.0.0.1</span><br />
<div>
<br /></div>
<div>
Restart the server</div>
<div>
<br /></div>
<div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">$ sudo service mysql restart</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">mysql stop/waiting</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">mysql start/running, process 13081</span></div>
</div>
<div>
<br /></div>
<div>
Then we need to add user info to the database</div>
<div>
<br /></div>
<div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">$ mysql -u root -p</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">Enter password: </span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">Welcome to the MySQL monitor. Commands end with ; or \g.</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">Your MySQL connection id is 77</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">Server version: 5.5.24-0ubuntu0.12.04.1 (Ubuntu)</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"><br /></span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">Copyright (c) 2000, 2011, Oracle and/or its affiliates. All rights reserved.</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"><br /></span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">Oracle is a registered trademark of Oracle Corporation and/or its</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">affiliates. Other names may be trademarks of their respective</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">owners.</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"><br /></span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">Type 'help;' or '\h' for help. Type '\c' to clear the current input statement.</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"><br /></span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">mysql> grant all on [database_name].* to [user]@[ip_address] identified by '[password]'</span><br />
<br />
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"></span><br />
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">Query OK, 0 rows affected (0.00 sec)</span><br />
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"><br /></span>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">mysql> exit</span><br />
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">Bye</span><br />
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"><br /></span></div>
</div>
</div>
</div>
<div>
<br /></div>
<div>
That's all!</div>
<div>
<br /></div>
<div>
Reference:</div>
<div>
<br /></div>
<div>
http://ubuntuforums.org/showthread.php?t=799386</div>
<div>
<br /></div>
<div class="blogger-post-footer">Andrew Pakpahan Blog</div>Andrew Pakpahanhttp://www.blogger.com/profile/12607273539900513127noreply@blogger.com11tag:blogger.com,1999:blog-15784143.post-57681344340802866262012-08-19T15:23:00.001+07:002013-01-27T22:23:53.056+07:00Installing and Configuring Freeradius + MySQL and Daloradius + MySQL on Ubuntu Server 12.04 for Mikrotik Hotspot/PPoE/PPTP (updated)<div>
<b>Installing and Configuring Freeradius</b></div>
<div>
<br /></div>
<div>
The first step is to Install Freeradius (ensure you already update your apt with apt-update)</div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">$sudo apt-get install freeradius</span><span class="fullpost" style="font-family: Courier New, Courier, monospace; font-size: x-small;">
</span><br />
<div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"> * Starting FreeRADIUS daemon freeradius [ OK ] </span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">Setting up freeradius-utils (2.1.10+dfsg-3build2) ...</span></div>
</div>
<div>
<div>
<br /></div>
<div>
Then prepare the database for freeradius. Create database radius and assign username and password for accessing it. </div>
<div>
<br /></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"># mysql -u root -p</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">Enter password: </span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">Welcome to the MySQL monitor. Commands end with ; or \g.</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">Your MySQL connection id is 51</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">Server version: 5.5.24-0ubuntu0.12.04.1 (Ubuntu)</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"><br /></span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">Copyright (c) 2000, 2011, Oracle and/or its affiliates. All rights reserved.</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"><br /></span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">Oracle is a registered trademark of Oracle Corporation and/or its</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">affiliates. Other names may be trademarks of their respective</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">owners.</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"><br /></span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">Type 'help;' or '\h' for help. Type '\c' to clear the current input statement.</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"><br /></span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">mysql> create database radius; </span></div>
</div>
<div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">mysql> grant all on radius.* to <b>radius</b>@localhost identified by "<b>thepassword</b>";</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">Query OK, 0 rows affected (0.00 sec)</span></div>
</div>
<div>
<br /></div>
<div>
The next step was to insert the database schema and I realized that I could not find the database scheme in /etc/freeradius.</div>
<div>
<br /></div>
<div>
Obviously I should install freeradius-mysql package first. </div>
<div>
<br /></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">#apt-get install freeradius-mysql</span></div>
<div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">Setting up freeradius-mysql (2.1.10+dfsg-3build2) ...</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"> * Reloading FreeRADIUS daemon freeradius [ OK ] </span></div>
</div>
<div>
<br /></div>
<div>
<div>
Then insert the database scheme </div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"><br /></span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"># mysql -u root -p radius < /etc/freeradius/sql/mysql/schema.sql </span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">Enter password:</span></div>
</div>
<div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"># mysql -u root -p radius < /etc/freeradius/sql/mysql/nas.sql </span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">Enter password: </span></div>
</div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"><br /></span></div>
<div>
<div>
Now we try to insert new user for testing purpose in database. </div>
<div>
<br /></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"># mysql -u root -p</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">Enter password: </span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">Welcome to the MySQL monitor. Commands end with ; or \g.</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">Your MySQL connection id is 72</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">Server version: 5.5.24-0ubuntu0.12.04.1 (Ubuntu)</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"><br /></span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">Copyright (c) 2000, 2011, Oracle and/or its affiliates. All rights reserved.</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"><br /></span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">Oracle is a registered trademark of Oracle Corporation and/or its</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">affiliates. Other names may be trademarks of their respective</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">owners.</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"><br /></span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">Type 'help;' or '\h' for help. Type '\c' to clear the current input statement.</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"><br /></span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">mysql> use radius;</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">Reading table information for completion of table and column names</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">You can turn off this feature to get a quicker startup with -A</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"><br /></span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">Database changed</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">mysql> INSERT INTO radcheck (UserName, Attribute, Value) VALUES ('sqltest', 'Password', 'testpwd');</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">Query OK, 1 row affected (0.04 sec)</span></div>
<div>
<br /></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">mysql> exit</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">Bye</span></div>
</div>
<div>
<br /></div>
<div>
The next step is we need to configure the Freeradius files. </div>
<div>
<br /></div>
<div>
<div>
Edit /etc/freeradius/sql.conf file. Setting database type, login and password that we already setup before.</div>
<div>
<br /></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"># vim /etc/freeradius/sql.conf</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"> </span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"> database = mysql</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"> login = radius</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"> password = thepassword</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"><br /></span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"> readclients = yes</span></div>
<div>
<br /></div>
<div>
Then edit the /etc/freeradius/sites-enabled/default file</div>
<div>
<br /></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"># vim /etc/freeradius/sites-enabled/default </span></div>
<div>
<br /></div>
<div>
<div class="p1">
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"> Uncomment sql on authorize{}</span></div>
<div class="p1">
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"> # See “Authorization Queries” in sql.conf</span></div>
<div class="p1">
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"> sql</span></div>
<div class="p2">
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"><br /></span></div>
<div class="p1">
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"> Uncomment sql on accounting{}</span></div>
<div class="p1">
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"> # See “Accounting queries” in sql.conf</span></div>
<div class="p1">
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"> sql</span></div>
<div class="p2">
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"><br /></span></div>
<div class="p1">
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"> Uncomment sql on session{}</span></div>
<div class="p1">
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"> # See “Simultaneous Use Checking Queries” in sql.conf</span></div>
<div class="p1">
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"> sql</span></div>
<div class="p2">
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"><br /></span></div>
<div class="p1">
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"> Uncomment sql on post-auth{}</span></div>
<div class="p1">
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"> # See “Authentication Logging Queries” in sql.conf</span></div>
<div class="p1">
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"> sql </span></div>
</div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"> </span></div>
<div>
Then we edit /etc/freeradius/radiusd.conf file</div>
<div>
<br /></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"># vim /etc/freeradius/radiusd.conf </span></div>
</div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"><br /></span></div>
<div>
<div class="p1">
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"> #Uncomment #$INCLUDE sql.conf</span></div>
<div class="p2">
<span style="font-family: 'Courier New', Courier, monospace; font-size: x-small;"> $INCLUDE sql.conf</span></div>
</div>
<div>
<div>
<br /></div>
<div>
To test our configuration, first we must stop the freeradius service (if already running) </div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"># /etc/init.d/freeradius stop</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"> * Stopping FreeRADIUS daemon freeradius [ OK ]</span></div>
</div>
<div>
<br /></div>
<div>
Then run this command to run freeradius in debugging mode. If there is no error, you are good to go.</div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">#freeradius -X</span></div>
<div>
<div>
<br /></div>
<div>
On a new shell or window we tested the connection</div>
<div>
<br /></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">$ radtest sqltest testpwd localhost 18128 testing123</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">Sending Access-Request of id 65 to 127.0.0.1 port 1812</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"><span class="Apple-tab-span" style="white-space: pre;"> </span>User-Name = "sqltest"</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"><span class="Apple-tab-span" style="white-space: pre;"> </span>User-Password = "testpwd"</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"><span class="Apple-tab-span" style="white-space: pre;"> </span>NAS-IP-Address = 127.0.1.1</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"><span class="Apple-tab-span" style="white-space: pre;"> </span>NAS-Port = 18128</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">rad_recv: Access-Accept packet from host 127.0.0.1 port 1812, id=65, length=20</span></div>
<div>
<br /></div>
<div>
The test running well with Accept response from the server.</div>
</div>
<div>
<br /></div>
<div>
To enable Mikrotik device to access our server we need to add client in clients.conf file.</div>
<div>
<br /></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">#vim /etc/freeradius/clients.conf</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"><br /></span></div>
<div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">client 10.0.0.0/8 {</span></div>
<div class="separator" style="clear: both; text-align: center;">
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"><br /></span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"> secret = testingpassword</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"> shortname = testing</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"> nastype= mikrotik</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">}</span></div>
</div>
<div>
<br /></div>
<div>
*note: we need to stop freeradius -X and then running it again to test our configuration<br />
<br />
<b>Update (Jan 27, 2013):</b> If we want to add specific value for Mikrotik, we need to add mikrotik dictionary<br />
<br />
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">#vim /etc/freeradius/dictionary </span><br />
<br />
<br />
Then add this line below<br />
<br />
<br />
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">$INCLUDE /usr/share/freeradius/dictionary.mikrotik</span><br />
<br />
</div>
<div>
<br /></div>
<div>
<b>Mikrotik Configuration</b></div>
<div>
<br /></div>
<div>
We need to configure our Mikrotik devices to use our new radius server. We need to login to Mikrotik device and configure the radius in Radius menu. </div>
<div>
<br /></div>
<div>
Below image is an example of our configuration. </div>
<div>
<br /></div>
<div>
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjdu14yn_sM3f8AheB_BLNzAWCFZRrj0gdYEM14kzeC1f1XOEX3hk8RQZJP4ZjUstltawFXMnCf5Oe0e5g6p3TmiGx_oUPq1aBaUzWI5uQLoyAqkBSpi8XRnJz9l_19w-RXwhst/s1600/Screen+Shot+2012-08-18+at+7.51.40+PM.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em; text-align: center;"><img border="0" height="320" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjdu14yn_sM3f8AheB_BLNzAWCFZRrj0gdYEM14kzeC1f1XOEX3hk8RQZJP4ZjUstltawFXMnCf5Oe0e5g6p3TmiGx_oUPq1aBaUzWI5uQLoyAqkBSpi8XRnJz9l_19w-RXwhst/s320/Screen+Shot+2012-08-18+at+7.51.40+PM.png" width="271" /></a></div>
<div>
<br /></div>
<div>
*Note: we increase timeout settting to 3000ms to enable invalid login notifications. (not working with default 300ms)</div>
<div>
<br /></div>
<div>
<b>Daloradius Installation </b></div>
<div>
<br /></div>
<div>
First, we need to download daloradius file </div>
<div>
<br /></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">$wget http://downloads.sourceforge.net/project/daloradius/daloradius/daloradius0.9-9/daloradius-0.9-9.tar.gz?r=http%3A%2F%2Fsourceforge.net%2Fprojects%2Fdaloradius%2Ffiles%2F&ts=1345296201&use_mirror=nchc</span></div>
<div>
<br /></div>
<div>
Rename and extract the file </div>
<div>
<br /></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"># tar xvfz daloradius-0.9-9.tar.gz</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"># mv daloradius-0.9-9 daloradius</span></div>
<div>
<br /></div>
<div>
Move the file to the web server directory. In this case I use apache on Ubuntu so the location is at /var/www</div>
<div>
<br /></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"># mv daloradius-0.9-9 daloradius</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"># mv daloradius /var/www</span></div>
<div>
<br /></div>
<div>
Then we need to setup the database. Because already setup the freeradius using MySQL, so we don't need new database. All we need to do is to import the daloradius scheme into our existing radius database.</div>
<div>
<br /></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"># cd /var/www/daloradius/contrib/db</span></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"># mysql -u root -p radius < mysql-daloradius.sql</span></div>
<div>
<br /></div>
<div>
After database successfully altered, we need to configure the daloradius setting.</div>
<div>
<br /></div>
<div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">#vim /var/www/daloradius/library/daloradius.conf.php</span></div>
</div>
<div>
<br /></div>
<div>
Change the database password </div>
<div>
<br /></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;">$configValues['CONFIG_DB_PASS'] = 'thepassword';</span></div>
<div>
<br /></div>
<div>
Then we can try to access daloradius using http://ipaddressoftheserver/daloradius</div>
<div>
<br /></div>
<div>
*Note: In my installation, i had a problem because I didn't have php5-gd php-pear and php-db packages installed on my Ubuntu server. </div>
<div>
<br /></div>
<div>
To deal with this problem you can install the packages using</div>
<div>
<br /></div>
<div>
<span style="font-family: Courier New, Courier, monospace; font-size: x-small;"># apt-get install php5-gd php-pear php-db </span></div>
<div class="separator" style="clear: both; text-align: center;">
</div>
<div>
<br /></div>
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhVxETQk3ci7Noy6I2dwYt2SKowA28OI8haMaBPr51pKvS-o08uLdJhh1BSFWPI97onMWIjnbMajaFoNsUCrBqP4huGgt0Zy1j35lsJG2JcCMh7pzsswJLh15Sy0b1ZHxhCd722/s1600/Screen+Shot+2012-08-19+at+3.19.48+PM.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="194" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhVxETQk3ci7Noy6I2dwYt2SKowA28OI8haMaBPr51pKvS-o08uLdJhh1BSFWPI97onMWIjnbMajaFoNsUCrBqP4huGgt0Zy1j35lsJG2JcCMh7pzsswJLh15Sy0b1ZHxhCd722/s320/Screen+Shot+2012-08-19+at+3.19.48+PM.png" width="320" /></a></div>
<div>
<br />
References, </div>
<div>
<br /></div>
<div>
Mastaqim (2012), http://www.mastaqim.web.id/2012/08/install-freeradius-mysql-ubuntu-server.html</div>
<div>
Daud (2012), http://daud.rasadigital.com/install-daloradius-di-ubuntu-server/</div>
<div>
<br /></div>
<div>
<br /></div>
<div class="blogger-post-footer">Andrew Pakpahan Blog</div>Andrew Pakpahanhttp://www.blogger.com/profile/12607273539900513127noreply@blogger.com64tag:blogger.com,1999:blog-15784143.post-36773949132419772932012-05-10T17:46:00.004+07:002012-05-10T17:46:44.145+07:00How to set environment variables in Mac OS X Lion (For PHPunit purpose)<div>
In my recent web application development, I need PHPUnit to run in my Macbook Pro Mac OS Lion X Lion. In <a href="http://andrewpakpahan.blogspot.com/2012/05/installing-phpunit-on-xampp-mac-os-lion.html" target="_blank">my previous post</a> I installed PHPUnit using PHP pear on XAMPP. </div>
<div>
<br /></div>
<div>
Now I need to run it without evoking all the the path to the XAMPP bin files located at /Applications/XAMPP/xamppfiles/bin</div>
<div>
<br /></div>
So I need to set the environment variabel setting location in my Mac OS X Lion. We can do this with two easy steps. <div>
<br /></div>
<div>
First: Open /etc/path files with terminal:</div>
<div>
<br /></div>
<div>
<div>
<span style="font-family: 'Courier New', Courier, monospace; font-size: x-small;">$ sudo vim /etc/path </span></div>
<div>
<br /></div>
</div>
<div>
Second: Add <span style="color: blue; font-family: 'Courier New', Courier, monospace; font-size: x-small;">/Applications/XAMPP/xamppfiles/bin</span> to the bottom of the file. In my Mac, it look like this: </div>
<div>
<div>
<span style="font-family: 'Courier New', Courier, monospace; font-size: x-small;">/usr/bin</span></div>
<div>
<span style="font-family: 'Courier New', Courier, monospace; font-size: x-small;">/bin</span></div>
<div>
<span style="font-family: 'Courier New', Courier, monospace; font-size: x-small;">/usr/sbin</span></div>
<div>
<span style="font-family: 'Courier New', Courier, monospace; font-size: x-small;">/sbin</span></div>
<div>
<span style="font-family: 'Courier New', Courier, monospace; font-size: x-small;">/usr/local/bin</span></div>
<div>
<span style="color: blue; font-family: 'Courier New', Courier, monospace; font-size: x-small;">/Applications/XAMPP/xamppfiles/bin</span></div>
<div>
~ </div>
</div>
<div>
<br /></div>
<div>
That's All</div><div class="blogger-post-footer">Andrew Pakpahan Blog</div>Andrew Pakpahanhttp://www.blogger.com/profile/12607273539900513127noreply@blogger.com1tag:blogger.com,1999:blog-15784143.post-23583863247212353832012-05-09T21:12:00.002+07:002012-05-09T22:28:26.194+07:00Installing PHPUnit on XAMPP Mac OS Lion<span class="fullpost">
</span><br />
<div>
How to Install PHPUnit on XAMPP installed on Mac OS X Lion: </div>
<div>
<br /></div>
<div>
First you need to add the phpunit channel: </div>
<div>
<span style="font-family: 'Courier New', Courier, monospace; font-size: x-small;"></span><br />
<span style="font-family: 'Courier New', Courier, monospace; font-size: x-small;">$ sudo /Applications/XAMPP/xamppfiles/bin/pear channel-discover pear.phpunit.de</span><br />
<span style="font-family: 'Courier New', Courier, monospace; font-size: x-small;">Adding Channel "pear.phpunit.de" succeeded</span><br />
<span style="font-family: 'Courier New', Courier, monospace; font-size: x-small;">Discovery of channel "pear.phpunit.de" succeeded</span></div>
<div>
<br />
<span style="font-family: 'Courier New', Courier, monospace; font-size: x-small;">$ sudo /Applications/XAMPP/xamppfiles/bin/pear channel-discover pear.symfony-project.com</span><br />
<span style="font-family: 'Courier New', Courier, monospace; font-size: x-small;">Adding Channel "pear.symfony-project.com" succeeded</span><br />
<span style="font-family: 'Courier New', Courier, monospace; font-size: x-small;">Discovery of channel "pear.symfony-project.com" succeeded</span><br />
<span style="font-family: 'Courier New', Courier, monospace; font-size: x-small;"><br /></span><br />
Then Install Pear PHPUnit with the following command:<br />
<span style="font-family: 'Courier New', Courier, monospace; font-size: x-small;">$ sudo /Applications/XAMPP/xamppfiles/bin/pear install phpunit/PHPUnitDid not download optional dependencies: phpunit/PHP_Invoker, use --alldeps to download automatically</span><br />
<span style="font-family: 'Courier New', Courier, monospace; font-size: x-small;">phpunit/PHPUnit can optionally use package "phpunit/PHP_Invoker" (version >= 1.1.0)</span><br />
<span style="font-family: 'Courier New', Courier, monospace; font-size: x-small;">downloading PHPUnit-3.6.10.tgz ...</span><br />
<span style="font-family: 'Courier New', Courier, monospace; font-size: x-small;">Starting to download PHPUnit-3.6.10.tgz (118,595 bytes)</span><br />
<span style="font-family: 'Courier New', Courier, monospace; font-size: x-small;">..........................done: 118,595 bytes</span><br />
<span style="font-family: 'Courier New', Courier, monospace; font-size: x-small;">downloading YAML-1.0.6.tgz ...</span><br />
<span style="font-family: 'Courier New', Courier, monospace; font-size: x-small;">Starting to download YAML-1.0.6.tgz (10,010 bytes)</span><br />
<span style="font-family: 'Courier New', Courier, monospace; font-size: x-small;">...done: 10,010 bytes</span><br />
<span style="font-family: 'Courier New', Courier, monospace; font-size: x-small;">install ok: channel://pear.symfony-project.com/YAML-1.0.6</span><br />
<span style="font-family: 'Courier New', Courier, monospace; font-size: x-small;">install ok: channel://pear.phpunit.de/PHPUnit-3.6.10</span><br />
<span style="font-family: 'Courier New', Courier, monospace; font-size: x-small;"><br /></span><br />
References:<br />
<a href="http://jeffreybarke.net/2010/08/how-to-install-phpunit-with-mamp/">http://jeffreybarke.net/2010/08/how-to-install-phpunit-with-mamp/</a></div><div class="blogger-post-footer">Andrew Pakpahan Blog</div>Andrew Pakpahanhttp://www.blogger.com/profile/12607273539900513127noreply@blogger.com4tag:blogger.com,1999:blog-15784143.post-89127963388351461972011-10-19T16:27:00.005+07:002011-10-19T16:39:42.688+07:00Mengatasi Masalah Logon Message "The terminal server has exceeded the maximum number of allowed connections"<a href="http://technobuff.files.wordpress.com/2008/07/rdpexceeded.gif?w=488&h=149" onblur="try {parent.deselectBloggerImageGracefully();} catch(e) {}"><img style="display:block; margin:0px auto 10px; text-align:center;cursor:pointer; cursor:hand;width: 488px; height: 149px;" src="http://technobuff.files.wordpress.com/2008/07/rdpexceeded.gif?w=488&h=149" border="0" alt="" /></a><br /><span class="fullpost"></span><div>Seringkali ketika kita mengakses Microsoft Windows Server secara remote, tulisan "The terminal server has exceeded the maximum number of allowed connections" muncul. Sehingga kita tidak bisa mengakses komputer tersebut secara remote, ini situasi yang tidak mengenakkan bagi Administrator yang mengandalkan Remote Desktop Connection untuk mengakses servernya.</div><div><br /></div><div>Sebenarnya pesan itu disebabkan karena server membatasi koneksi remote yang aktif. Apabila pada saat kita melakukan Remote Desktop dan mengakhirinya dengan hanya menekan tombol close, tanpa melakukan logout terlebih dahulu. Maka Windows akan mencatat bahwa masih ada user yang terkoneksi. Dan jumlah koneksi inipun dibatasi jumlahnya.</div><div><br /></div><div>Walaupun pembatasan dilakukan pada sesi Remote Desktop, pada sesi console banyaknya user yang melakukan remote tidak dibatasi. Oleh karena itu kita bisa melakukan trik berikut ini apabila terjadi masalah.</div><div><br /></div><div>Klik Windows -> Run </div><div><br /></div><div>Kemudian ketikan <span class="Apple-style-span" style="color: rgb(51, 51, 51); font-family: arial, helvetica, sans-serif; font-size: 13px; line-height: 18px; background-color: rgb(255, 255, 255); "><strong>mstsc /v:00.00.00.00 /f -console </strong></span></div><div><span class="Apple-style-span"><span class="Apple-style-span" style="line-height: 18px;"><b><br /></b></span></span></div><div>Dimana <span class="Apple-style-span" style="color: rgb(51, 51, 51); font-family: arial, helvetica, sans-serif; font-size: 13px; line-height: 18px; background-color: rgb(255, 255, 255); "><strong>00.00.00.00 </strong></span>merupakan IP address dari komputer yang anda ingin remote. </div><div><br /></div><div>Perintah ini akan menggunakan sesi console untuk masuk ke dalam komputer yang anda remote dan setelah itu anda dapat membuka Terminal Service Manager untuk mereset user yang "nyangkut" tadi.</div><div><br /></div><div>Selamat Mencoba!</div><div><br /></div><div><br /></div><div>Referensi:</div><div><br /></div><div><a href="http://technobuff.wordpress.com/2008/07/09/the-terminal-server-has-exceeded-the-maximum-number-of-allowed-connections/">http://technobuff.wordpress.com/2008/07/09/the-terminal-server-has-exceeded-the-maximum-number-of-allowed-connections/</a></div><div><br /></div><div><a href="http://www.mswhs.com/2007/06/error-the-terminal-server-has-exceeded-the-maximum-number-of-allowed-connections/">http://www.mswhs.com/2007/06/error-the-terminal-server-has-exceeded-the-maximum-number-of-allowed-connections/</a></div><div><br /></div><div><br /></div><div class="blogger-post-footer">Andrew Pakpahan Blog</div>Andrew Pakpahanhttp://www.blogger.com/profile/12607273539900513127noreply@blogger.com2tag:blogger.com,1999:blog-15784143.post-87964399353504472932011-04-11T22:05:00.000+07:002011-04-11T22:06:53.173+07:00Artikel Untuk Domainkeys di Zimbrahttp://layangan.com/asfik/blog/2010/08/13/domainkeys-identified-mail-di-zimbra-postfix/<span class="fullpost"></span><div><br /></div><div>http://blog.pnyet.web.id/2010/03/17/improving-domain-key-di-zimbra.html</div><div><br /></div><div>http://vavai.com/2010/12/22/implementasi-domainkeys-pada-zimbra-sles-11-sp1-menggunakan-opendkim/</div><div><br /></div><div>Done!</div><div class="blogger-post-footer">Andrew Pakpahan Blog</div>Andrew Pakpahanhttp://www.blogger.com/profile/12607273539900513127noreply@blogger.com4tag:blogger.com,1999:blog-15784143.post-20961686920817636772010-12-11T21:48:00.001+07:002010-12-11T22:07:08.758+07:00How To Install Nagios on Ubuntu 10.04<span class="fullpost"></span><div><br /></div><div>References:</div><div><ul><li>http://library.linode.com/server-monitoring/nagios/ubuntu-10.04-lucid</li><li>http://www.ubuntugeek.com/nagios-network-monitoring-system-setup-in-ubuntu.html</li><li>https://help.ubuntu.com/10.04/serverguide/C/nagios.html</li></ul></div><div class="blogger-post-footer">Andrew Pakpahan Blog</div>Andrew Pakpahanhttp://www.blogger.com/profile/12607273539900513127noreply@blogger.com0tag:blogger.com,1999:blog-15784143.post-28443379282769307492010-12-11T19:31:00.003+07:002010-12-11T21:36:21.089+07:00How To Monitor Network with Ntop on Ubuntu 10.04 and Mikrotik<span class="fullpost"></span><div><br /></div><div>Install Ntop</div><div><br /></div><div>$sudo apt-get install ntop</div><div><br /></div><div>Next, Configure Ntop</div><div><br /></div><div>Set Admin Password</div><div><br /></div><div>$sudo ntop --set-admin-password</div><div><br /></div><div>Restart Ntop Service</div><div><br /></div><div>$sudo /etc/init.d/ntop restart</div><div><br /></div><div>Then check if your ntop already running by visiting</div><div><br /></div><div>http://[your_ntop_server_ip]:3000 (without [ ])</div><div><br /></div><div>Next, we configure ntop to receive Mikrotik's traffic flow</div><div><br /></div><div>Select Menu: Plugin -> NetFlow -> Activate</div><div>Select Menu: Plugin -> NetFlow -> Configure</div><div>Edit the Netflow Name = Mikrotik (activate)</div><div>Edit Local Collector UDP Port = 2055</div><div>Edit Virtual NetFlow Interface Network Address = [your_mikrotik_ip_in_cidr_format]</div><div>Select Admin -> Switch Interface -> Select Mikrotik</div><div> </div><div>If your ntop service is up and running, next step is to configure mikrotik.</div><div><br /></div><div>Enable traffic-flow on mikrotik by following these steps below:</div><div><br /></div><div><div>[admin@Mikrotik] > /ip traffic-flow </div><div>[admin@Mikrotik] /ip traffic-flow> set enabled=yes</div><div>[admin@Mikrotik] /ip traffic-flow> print</div><div> enabled: yes</div><div> interfaces: all</div><div> cache-entries: 4k</div><div> active-flow-timeout: 30m</div><div> inactive-flow-timeout: 15s</div><div>[admin@Mikrotik] /ip traffic-flow> target </div><div>[admin@Mikrotik] /ip traffic-flow target> add address=[your_cacti_server_ip]:2055 \</div><div>\... version=9 </div><div>[admini@Mikrotik] /ip traffic-flow target> print</div><div>Flags: X - disabled </div><div> # ADDRESS VERSION</div><div> 0 [your_cacti_server_ip]:2055 9 </div><div>[admin@Mikrotik] /ip traffic-flow target> print</div><div>Flags: X - disabled </div><div> # ADDRESS VERSION</div><div> 0 [your_cacti_server_ip]:2055 9 </div><div><br /></div></div><div>After a while your ntop will began collecting data from Mikrotik traffic Flow. Done!</div><div><br /></div><div>*Update: </div><div><br /></div><div>It seems that the current version of libpcap in Ubuntu 10.04 has bug in it. So I need to manually upgrade to the new version (libpcap-dev_1.1.1-2_all.deb)</div><div><br /></div><div>References:</div><div><ul><li>http://fisikaunud.wordpress.com/2008/10/08/network-monitor-ntop-di-windows-dengan-mikrotik/</li><li>http://www.mikrotik.com/testdocs/ros/2.9/ip/traffic-flow.php</li><li>https://help.ubuntu.com/community/Ntop</li></ul></div><div class="blogger-post-footer">Andrew Pakpahan Blog</div>Andrew Pakpahanhttp://www.blogger.com/profile/12607273539900513127noreply@blogger.com5tag:blogger.com,1999:blog-15784143.post-7502712524388960702010-12-10T18:13:00.003+07:002010-12-10T18:15:50.610+07:00Mengganti timezone Ubuntu Server Menjadi Waktu Indonesia (Asia/Jakarta)<div><br /></div><div>Ganti isi file di bawah ini menjadi Asia/Jakarta</div><div><br /></div><div><span class="Apple-style-span" >user@ubuntu1004:~$ sudo vim /etc/timezone</span></div><div><br /></div><div>Kemudian konfigurasi ulang dengan perintah di bawah</div><div><br /></div><div><span class="Apple-style-span" >user@ubuntu1004:~$ sudo dpkg-reconfigure --frontend noninteractive tzdata</span></div><div><span class="Apple-style-span" ><br /></span></div><div><span class="Apple-style-span" >Current default time zone: 'Asia/Jakarta'</span></div><div><span class="Apple-style-span" >Local time is now: Fri Dec 8 18:12:31 WIT 2010.</span></div><div><span class="Apple-style-span" >Universal Time is now: Fri Dec 8 11:12:31 UTC 2010.</span></div><div><br /></div><span class="fullpost"></span><div class="blogger-post-footer">Andrew Pakpahan Blog</div>Andrew Pakpahanhttp://www.blogger.com/profile/12607273539900513127noreply@blogger.com1tag:blogger.com,1999:blog-15784143.post-7515771476756277672010-12-10T14:02:00.002+07:002010-12-10T14:11:01.918+07:00How to Enable SNMP Monitoring on Mikrotik<div>Open New Winbox Terminal or SSH shell</div><div><br /></div><div>Enable SNMP</div><div><span class="Apple-style-span" >[user@Mikrotik] > /snmp </span></div><div><span class="Apple-style-span" >[user@Mikrotik] /snmp > set enabled=yes contact=[your_name] location=[your_location]</span></div><div><span class="Apple-style-span" ><br /></span></div><div><span class="Apple-style-span" >Next, set disable community public read access</span></div><div><span class="Apple-style-span" >[user@Mikrotik] /snmp> community </span></div><div><span class="Apple-style-span" >[user@Mikrotik] /snmp community> print </span></div><div><span class="Apple-style-span" ># NAME ADDRESS SECURITY READ-ACCESS</span></div><div><span class="Apple-style-span" > 0 public 0.0.0.0/0 none yes </span></div><div><span class="Apple-style-span" >[user@Mikrotik] /snmp community> set public read-access=no</span></div><div><span class="Apple-style-span" ><br /></span></div><div><span class="Apple-style-span" ><span class="Apple-style-span" style="font-family: georgia; font-size: medium; ">Then add your community name and specify access ip address</span></span></div><div><span class="Apple-style-span" >[user@Mikrotik] /snmp community> add name=network address=192.168.1.1/24 </span></div><div><span class="Apple-style-span" >[user@Mikrotik] /snmp community> print</span></div><div><span class="Apple-style-span" > # NAME ADDRESS SECURITY READ-ACCESS</span></div><div><span class="Apple-style-span" > 0 public 0.0.0.0/0 none no </span></div><div><span class="Apple-style-span" > 1 network 10.1.1.0/24 none no </span></div><div><span class="Apple-style-span" >[user@Mikrotik] /snmp community> set network read-access=yes</span></div><div><span class="Apple-style-span" ><br /></span></div><div><span class="Apple-style-span" >That's it! Then prepare your SNMP monitoring software! </span></div><div><span class="Apple-style-span" ><br /></span></div><div><span class="Apple-style-span" >Good Luck!</span></div><span class="fullpost"></span><div class="blogger-post-footer">Andrew Pakpahan Blog</div>Andrew Pakpahanhttp://www.blogger.com/profile/12607273539900513127noreply@blogger.com0tag:blogger.com,1999:blog-15784143.post-55615483384531409532010-12-10T11:29:00.002+07:002010-12-11T19:15:29.408+07:00How to Install Cacti in Ubuntu 10.04 for Mikrotik monitoring<div>Update Ubuntu package list</div><div><br /></div><div>apt-get update</div><div>apt-get upgrade</div><div><br /></div><div>Install prerequired packages</div><div><br /></div><div><div>apt-get install snmpd snmp mysql-server apache2 libapache2-mod-php5 \</div><div>php5-mysql php5-cli php5-snmp</div></div><div><br /></div><div>Install cacti</div><div><br /></div><div>apt-get install cacti</div><div><br /></div><div>- Configuring php-adodb -> Select OK </div><div>- Configuring cacti (select webserver) -> Select Apache2</div><div>- Configuring cati (dbconfig-common) -> Select Yes</div><div>- Insert your MySQL password</div><div>- Insert your MySQL Cacti Administration password</div><div><br /></div><div>Open your cacti control panel in http://localhost/cacti </div><div><br /></div><div>Then configure your cacti using tutorial below: </div><div><ul><li>http://www.nixnux.or.id/2008/11/15/graphing-mikrotik-queue-simple-and-queue-tree-with-cacti/</li></ul></div><div><br /></div><div><br /></div><div><br /></div><span class="fullpost"></span><div class="blogger-post-footer">Andrew Pakpahan Blog</div>Andrew Pakpahanhttp://www.blogger.com/profile/12607273539900513127noreply@blogger.com2tag:blogger.com,1999:blog-15784143.post-80709288391327522292009-10-19T11:16:00.002+07:002009-10-19T11:24:04.479+07:0012 More Photography Quotes I Should Know<p></p><ol><li><span class="fullpost">“Be daring, be different, be impractical, be anything that will assert integrity of purpose and imaginative vision against the play-it-safers, the creatures of the commonplace, the slaves of the ordinary.” – Peter Lindbergh (submitted by Brian)</span></li><li>“The important thing is not the camera but the eye.” – Alfred Eisenstaedt (submitted by Beate)</li><li>“There are two people in every photograph: the photographer and the viewer” – Ansel Adams (submitted by Scott)</li><li>“To me, photography is the simultaneous recognition, in a fraction of a second, of the significance of an event as well as of a precise organization of forms that give that event its proper expression.” – Henri Cartier-Bresson (submitted by Kelly Anne)</li><li>“I always thought good photos were like good jokes. If you have to explain it, it just isn’t that good.” – Anonymous (submitted by Mei Teng)</li><li>“If your photographs aren’t good enough, you’re not close enough.” – Robert Cappa (submitted by Eddy) (note: as Matt pointed out in comments, Robert Cappa sadly died from stepping on a land mine ‘It is possible to get too close!’</li><li>“A lot of photographers think that if they buy a better camera they’ll be able to take better photographs. A better camera won’t do a thing for you if you don’t have anything in your head or in your heart.” -Arnold Newman (submitted by Matt Needham)</li><li>“Pictures, regardless of how they are created and recreated, are intended to be looked at. This brings to the forefront not the technology of imaging, which of course is important, but rather what we might call the eyenology (seeing).” -Henri Cartier-Bresson (submitted by Matt Needham)</li><li>“The word ‘art’ is very slippery. It really has no importance in relation to one’s work. I work for the pleasure, for the pleasure of the work, and everything else is a matter for the critics.” -Manuel Alvarez Bravo (submitted by Matt Needham)</li><li>“People say photographs don’t lie, mine do.” -David LaChapelle (submitted by Matt Needham)</li><li>“The single most important component of a camera is the twelve inches behind it.” – Ansel Adams (submitted by raisingladders)</li><li>“You cannot depend on your eyes if your imagination is out of focus” – Mark Twain (submitted by dannyboy)</li></ol><p>Source: http://digital-photography-school.com/12-more-photography-quotes-you-should-know<span class="fullpost"><br /></span></p><div class="blogger-post-footer">Andrew Pakpahan Blog</div>Andrew Pakpahanhttp://www.blogger.com/profile/12607273539900513127noreply@blogger.com2tag:blogger.com,1999:blog-15784143.post-86763241309376480762009-03-24T09:27:00.004+07:002009-03-24T09:55:38.406+07:00Koneksi Wireless di ruang Kelas Magister Informatika ITB<a onblur="try {parent.deselectBloggerImageGracefully();} catch(e) {}" href="http://www.speedtest.net/result/435713206.png"><img style="display:block; margin:0px auto 10px; text-align:center;cursor:pointer; cursor:hand;width: 300px; height: 135px;" src="http://www.speedtest.net/result/435713206.png" border="0" alt="" /></a><br /><a onblur="try {parent.deselectBloggerImageGracefully();} catch(e) {}" href="http://www.speedtest.net/result/435704692.png"><img style="display:block; margin:0px auto 10px; text-align:center;cursor:pointer; cursor:hand;width: 300px; height: 135px;" src="http://www.speedtest.net/result/435704692.png" border="0" alt="" /></a><div><br /></div><div><br /></div><div>Di post ini saya cuman coba share hasil speedtest dari koneksi internet ITB melalui Wireless Tehnik Lingkungan ITB. Tehnik Lingkungan? Ya, memang benar. Karena di gedung kelas di STEI dekat Lab Sistem dan Sinyal ini (STEI) tidak ada wireless network yang bisa digunakan! Ya jadinya di kelas saya harus menumpang ke wireless gedung sebelah yang berjarak hampir 75m. </div><div><br /></div><div>Hasil test pagi ini (Jam 9an), cukup mengejutkan karena saya hampir bisa mendapatkan 1mbps untuk hasil speedtest ke San Diego, CA (USA). Wow, hasil yang cukup mengejutkan bagi saya sendiri. Walaupun sepertinya sangat jarang bisa mendapatkan hasil ini di ruang kelas yang fakir sinyal ini. </div><div><br /></div><div>Yah semoga aja ke depannya pihak STEI mau menyediakan wireless access point yang dapat diakses secara bebas oleh mahasiswa magisternya. </div><div class="blogger-post-footer">Andrew Pakpahan Blog</div>Andrew Pakpahanhttp://www.blogger.com/profile/12607273539900513127noreply@blogger.com2tag:blogger.com,1999:blog-15784143.post-11280881856146331362009-02-23T13:05:00.002+07:002009-02-23T13:10:08.913+07:00How to Install DHCP Server on Ubuntu 8.04<span class="fullpost"><div><span class="Apple-style-span" style="font-weight: bold;">1. Edit dhcpd.conf file</span><br /></div><div><br /></div>#vi /etc/dhcp3/dhcpd.conf</span><div><br /></div><div><span class="fullpost"><div># Sample /etc/dhcpd.conf</div><div># (add your comments here)</div><div>default-lease-time 600;</div><div>max-lease-time 7200;</div><div>option subnet-mask 255.255.255.0;</div><div>option broadcast-address 10.0.0.255;</div><div>option routers 10.0.0.1;</div><div>option domain-name-servers 10.0.0.1, 10.0.0.2;</div><div>option domain-name "mydomain.example";</div><div><br /></div><div>subnet 10.0.0.0 netmask 255.255.255.0 {</div><div>range 10.0.0.20 10.0.0.200;</div><div><br /></div><div>2<span class="Apple-style-span" style="font-weight: bold;">. Set Default Interface for broadcasting DHCP </span></div><div><br /></div><div><div># vi /etc/default/dhcp3-server</div><div><br /></div><div># Sample /etc/default/dhcp3-server<br /></div><div>INTERFACES="eth1"<br /></div><div><br /></div><div><span class="Apple-style-span" style="font-weight: bold;">3. Start DHCP Service</span></div><div><br /></div><div># /etc/init.d/dhcp3-server start</div></div></span><div><br /></div><div><span class="Apple-style-span" style="font-family: 'Times New Roman'; "><div style="border-top-width: 0px; border-right-width: 0px; border-bottom-width: 0px; border-left-width: 0px; border-style: initial; border-color: initial; margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px; padding-top: 3px; padding-right: 3px; padding-bottom: 3px; padding-left: 3px; width: auto; font: normal normal normal 100%/normal Georgia, serif; text-align: left; "><br />Reference</div><div style="border-top-width: 0px; border-right-width: 0px; border-bottom-width: 0px; border-left-width: 0px; border-style: initial; border-color: initial; margin-top: 0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px; padding-top: 3px; padding-right: 3px; padding-bottom: 3px; padding-left: 3px; width: auto; font: normal normal normal 100%/normal Georgia, serif; text-align: left; "><span class="fullpost">http://www.jusupov.com/2007/07/06/how-to-install-dhcp3-server-in-ubuntu/<br /><br /><br /></span></div></span></div></div><div class="blogger-post-footer">Andrew Pakpahan Blog</div>Andrew Pakpahanhttp://www.blogger.com/profile/12607273539900513127noreply@blogger.com1tag:blogger.com,1999:blog-15784143.post-15733619266632473002008-10-05T22:12:00.004+07:002008-10-05T22:52:11.639+07:00Sistem Email Open Source yang Lengkap<a onblur="try {parent.deselectBloggerImageGracefully();} catch(e) {}" href="http://www.zimbra.com/_media/ss_admin_ui.gif"></a><div>Baru-baru ini aku mengalami masalah dengan server email yang berbasis Qmail (menggunakan tutorial qmailrocks+updates). Masalah yang terjadi berkaitan dengan qmail scanner yang berfungsi untuk menscan email dari virus dan juga spam yang menjengkelkan itu. </div><div><br /></div>Walaupun server email sudah kembali berjalan, aku masih mempertimbangkan untuk melakukan migrasi ke server email yang baru. Pertimbangan mengapa aku ingin melakukan migrasi adalah, instalasi qmail yang aku lakukan sudah tidak update lagi, sudah terlalu banyak bug dan juga patch-patch yang harus ditambahkan di instalasi qmail ini. <div><br /></div><div><span class="fullpost">Belum lagi webmail yang tidak terintegrasi langsung ke sistem yang berjalan. <a href="http://www.squirrelmail.org/">Squirrelmail</a> walaupun berjalan dengan baik selama ini, membutuhkan banyak plugin untuk berbagai fungsi. Tampilan <a href="http://www.squirrelmail.org/">Squirremail</a> ini juga sudah kelihatan ketinggalan zaman. </span></div><div><br /></div><div><br /></div><div><span class="Apple-style-span" style="color: rgb(85, 26, 139); "><img src="http://www.squirrelmail.org/images/shots/nodeco/messagelist.jpg" border="0" alt="" style="display: block; margin-top: 0px; margin-right: auto; margin-bottom: 10px; margin-left: auto; text-align: center; cursor: pointer; width: 320px; " /></span></div><div><br /></div><div><span class="fullpost">Walaupun ada berbagai alternatif webmail yang lain, seperti <a href="http://www.horde.org/">Horde</a> yang proses instalasinya cukup sulit itu dan juga <a href="http://roundcube.net/">Roundcubemail</a>, webmail client yang menggunakan AJAX sebagai keunggulan utamanya. Tapi kembali lagi ke masalah awal, semua webmail client ini tidak terintegrasi langsung ke dalam sistem. </span></div><div><br /></div><div><span class="Apple-style-span" style="color: rgb(85, 26, 139); "><img src="http://roundcube.net/images/screens/mail_listing.jpg" border="0" alt="" style="display: block; margin-top: 0px; margin-right: auto; margin-bottom: 10px; margin-left: auto; text-align: center; cursor: pointer; width: 320px; " /></span></div><div>Ketika ada masalah dengan mail server yang menggunakan qmail ini, akupun mulai mencari alternatif mail server yang lain. Dan syarat yang aku inginkan adalah <span class="Apple-style-span" style="font-weight: bold;">Mail Server dengan Sistem yang terintegrasi. </span>Yang dimaksudkan dengan terintegrasi disini adalah Mail Server ini haruslah mempunyai tampilan administrasi user, webmail client, anti virus dan anti spam yang dapat langsung diakses dari satu control panel yang web based tentunya. </div><div><br /></div><div>Hmm... hal di atas sepertinya sesuatu yang istimewa sekali dibandingkan dengan instalasi qmail yang aku punya sekarang ini. Walaupun untuk administrasi domain dapat menggunakan Vqadmin dan administrasi user menggunakan Qmailadmin tetapi tetap saja belum dapat memuaskan aku. </div><div><br /></div><div>Akupun mulai mencari sebuah sistem email yang terpadu yang dapat diandalkan dan syarat utamanya adalah open source dan mempunyai dukungan komunitas yang luas. Sehingga bila ada masalah yang dialami nantinya diharapkan dapat mudah diatasi. </div><div><br /></div><div>Kemudian akupun menemukan <a href="http://www.deeproot.co.in/deepofix">deepOfix Mail Server</a>, sebuah distribusi linux yang sudah terintegrasi dengan Mail Server dan tampilan administrasi yang cukup impresif. Aku sudah mencoba untuk menginstallnya di VMWare dan dapat berjalan dengan baik, namun deepOfix ini sepertinya masih dalam tahap pengembangan karena tidak adanya manual untuk administrasi dan juga dukungan forum (ini yang paling penting). </div><div><br /></div><div><br /></div><div><span class="Apple-style-span" style="color: rgb(0, 0, 238); "><img src="http://www.deeproot.co.in/images/EasyPush/deepofixWelcome.png" border="0" alt="" style="display: block; margin-top: 0px; margin-right: auto; margin-bottom: 10px; margin-left: auto; text-align: center; cursor: pointer; width: 320px; " /><span class="Apple-style-span" style="color: rgb(0, 0, 0); ">Selanjutnya dalam pencarianku, aku menemukan <a href="http://www.zimbra.com/">Zimbra</a> sebuah platform Collaboration Suite yang sangat mengejutkanku. Aku tidak menyangka bahwa ada platform mail server yang lengkap dengan tampilan dan fitur yang cukup hebat untuk sebuah mail server yang bersifat open source. </span></span></div><div><br /></div><div><br /></div><div><span class="Apple-style-span" style="color: rgb(0, 0, 238); "><img src="http://www.zimbra.com/_media/ss_admin_ui.gif" border="0" alt="" style="display: block; margin-top: 0px; margin-right: auto; margin-bottom: 10px; margin-left: auto; text-align: center; cursor: pointer; width: 320px; " /></span></div><div><br /></div><div><br /></div><div><span class="fullpost"></span><span class="Apple-style-span" style="color: rgb(0, 0, 238); "><img src="http://www.zimbra.com/_media/ss_inbox.gif" border="0" alt="" style="display: block; margin-top: 0px; margin-right: auto; margin-bottom: 10px; margin-left: auto; text-align: center; cursor: pointer; width: 320px; " /></span><div><div><span class="fullpost"><br />Setelah melihat fitur-fiturnya. Akupun mulai "sangat" mempertimbangkan untuk pindah ke platform baru ini. Apalagi Zimbra didukung oleh komunitas yang cukup kuat. Walaupun demikian permasalahan utama untuk Zimbra ini adalah, Zimbra membutuhkan resources sistem yang cukup besar. Memory minimal untuk produksi adalah 2GB dan yang direkomendasikan 4GB. Wah, berarti aku harus menggunakan sistem 64bit karena 32bit hanya support sampai 3GB saja. </span></div><div><br /></div><div>Kemudian aku harus melakukan migrasi account user dan email-emailnya bila ingin menggunakan sistem email yang baru ini. Pekerjaan yang cukup berat tapi menjanjikan kepuasan bila dapat berhasil dilakukan... hehehe...</div><div><br /></div><div>Aku juga berencana untuk mendokumentasikan proses instalasi yang aku lakukan nantinya. Aku sudah berhasil untuk melakukan instalasi di VMWare dan tinggal menunggu untuk melakukan instalasi di mesin produksi dengan memory 3GB. </div></div></div><div class="blogger-post-footer">Andrew Pakpahan Blog</div>Andrew Pakpahanhttp://www.blogger.com/profile/12607273539900513127noreply@blogger.com5tag:blogger.com,1999:blog-15784143.post-25966946539521588292008-10-05T20:00:00.006+07:002008-10-08T22:51:06.402+07:00Squid ZPH HTB-Tools Ubuntu 8.04<div><div><a href="http://andrewpakpahan.blogspot.com/2008/09/solusi-bandwidth-management.html">Pada post sebelumnya</a> saya mencoba untuk menjelaskan pilihan-pilihan yang ada untuk bandwidth manajemen dengan menggunakan squid. Kemudian saya memilih untuk menggunakan kombinasi antara Squid ZPH dan HTB-Tools. </div><div><br /></div><div>Di bawah ini saya mencoba untuk menjelaskan bagaimana saya dapat menjalankan fungsi Squid ZPH di Ubuntu Server 8.04. </div><div><br /></div><div>Kebutuhan instalasi:</div><div><ul><li>HTB-Tools yang sudah berfungsi normal</li><li>Squid 2.6.x yang sudah di patch ZPH atau Squid 2.7.x </li></ul></div><div>Sistem yang ditest berjalan dengan:</div><div><ul><li>Ubuntu 8.04.1 Server </li><li>HTB-Tools 0.3.0a</li><li>Squid 2.7.STABLE 3</li></ul><div><div><span class="Apple-style-span" style="font-weight: bold;"><br /></span></div><div><span class="Apple-style-span" style="font-weight: bold; ">KONFIGURASI SQUID</span></div><div><span class="Apple-style-span" style="font-weight: bold;"><br /></span></div><div>Tambahkan baris berikut di squid.conf</div><div><br /></div><div><span class="Apple-style-span" style="font-weight: bold;"><div><span class="Apple-style-span" style="font-weight: normal;"><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';">zph_mode tos</span></span></span></div><div><span class="Apple-style-span" style="font-weight: normal;"><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';">zph_local 0x30</span></span></span></div><div><span class="Apple-style-span" style="font-weight: normal;"><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';">zph_parent 0</span></span></span></div><div><span class="Apple-style-span" style="font-weight: normal;"><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';">zph_option 136</span></span></span></div><div><span class="Apple-style-span" style=" font-weight: normal;font-family:'courier new';font-size:13px;"><br /></span></div><div><span class="Apple-style-span" style="font-weight: normal; ">Restart konfigurasi squid</span></div><div><span class="Apple-style-span" style="font-weight: normal;"><br /></span></div><div><span class="Apple-style-span" style="font-weight: normal;"><span class="Apple-style-span" style=" ;font-family:'courier new';font-size:13px;"># squid -k reconfigure</span></span></div></span></div><div><span class="Apple-style-span" style="font-weight: bold;"><br /></span></div></div></div><div><span class="Apple-style-span" style="font-weight: bold;">KONFIGURASI HTB-TOOLS</span></div><div><br /></div><div>Pertama generate konfigurasi HTB dengan q_parser, dengan perintah: </div><div><br /></div><div><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';"># q_parser [interface yang digunakan] 10000 10000 [lokasi file/eth1-qos.cfg] > [direktori tujuan]/eth1-qos.sh</span></span><br /></div><div><br /></div><div>Contoh:</div><div><br /></div><div><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';"># q_parser eth1 10000 10000 /etc/htb/eth1-qos.cfg > /home/admin/eth1-qos.sh</span></span></div><div><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';"><br /></span></span></div><div>Selanjutnya buka direktori tujuan:</div><div><span class="Apple-style-span" style=" ;font-family:'courier new';font-size:13px;"><br /></span></div><div><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';"># cd /home/admin </span></span></div><div><span class="Apple-style-span" style=" ;font-family:'courier new';font-size:13px;"><br /></span></div><div><span class="Apple-style-span" style=" ;font-family:'courier new';font-size:13px;"><span class="Apple-style-span" style=" ;font-family:Georgia;font-size:16px;">Selanjutnya buka file eth1-qos.sh</span><br /></span></div><div><br /></div><div><span class="Apple-style-span" style=" ;font-family:'courier new';font-size:13px;"># vi eth1-qos.sh</span></div><div><br /></div><div>Kemudian cari baris berikut:</div><div><br /></div><div><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';"><span class="Apple-style-span" style="color: rgb(0, 0, 153);">$TC qdisc add dev $DEV parent 1:0x10 handle 0x10: pfifo limit 5</span></span></span></div></div><div><br /></div><div>Tambahkan baris berikut di bawahnya:</div><div><br /></div><div><span class="Apple-style-span" style="font-family:'courier new';"><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-weight: bold;"><span class="Apple-style-span" style="color: rgb(255, 0, 0);">$TC class add dev $DEV parent 1:1 classid 1:0x15 htb rate 10Mbit</span></span></span></span></div><div><span class="Apple-style-span" style="font-family:'courier new';"><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-weight: bold;"><span class="Apple-style-span" style="color: rgb(255, 0, 0);">$TC filter add dev $DEV parent 1:0 protocol ip prio 1 u32 match ip protocol 0x6 0xff match ip tos 0x30 0xff flowid 1:15</span></span></span></span></div><div><span class="Apple-style-span" style=" ;font-family:'courier new';font-size:13px;"><br /></span></div><div>Sehingga menjadi:<br /></div><div><br /></div><div><div><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';"><span class="Apple-style-span" style="color: rgb(0, 0, 153);"><span class="Apple-style-span" style="font-weight: bold;">$TC qdisc add dev $DEV parent 1:0x10 handle 0x10: pfifo limit 5</span></span></span></span></div><div><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';"><span class="Apple-style-span" style="font-weight: bold;"><span class="Apple-style-span" style="color: rgb(255, 0, 0);">$TC class add dev $DEV parent 1:1 classid 1:0x15 htb rate 10Mbit</span></span></span></span></div><div><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';"><span class="Apple-style-span" style="font-weight: bold;"><span class="Apple-style-span" style="color: rgb(255, 0, 0);">$TC filter add dev $DEV parent 1:0 protocol ip prio 1 u32 match ip protocol 0x6 0xff match ip tos 0x30 0xff flowid 1:15</span></span></span></span></div><div><br /></div><div>Setelah menyimpan file eth1-qos.sh, selanjutnya buat file tersebut dapat dieksekusi oleh sistem:<br /></div><div><br /></div><div><span class="Apple-style-span" style=" ;font-family:'courier new';font-size:13px;"># chmod +x eth1-qos.sh</span><br /></div><div><span class="Apple-style-span" style=" ;font-family:'courier new';font-size:13px;"><br /></span></div><div><span class="Apple-style-span" style=" ;font-family:'courier new';font-size:13px;"><span class="Apple-style-span" style=" ;font-family:Georgia;font-size:16px;">Kemudian eksekusi file tersebut dengan perintah:</span><br /></span></div><div><br /></div><div><span class="Apple-style-span" style=" ;font-family:'courier new';font-size:13px;"># ./eth1-qos.sh</span><br /></div><div><br /></div></div><div>Terimakasih untuk:</div><div><br /></div><div><a href="http://avudz.cc/2008/04/24/squid-zph-and-htb/">http://avudz.cc/2008/04/24/squid-zph-and-htb/</a><br /></div><div><a href="http://dianseh.com/index.php?option=com_content&task=view&id=39&Itemid=2">http://dianseh.com/index.php?option=com_content&task=view&id=39&Itemid=2</a><br /></div><div><br /></div><div class="blogger-post-footer">Andrew Pakpahan Blog</div>Andrew Pakpahanhttp://www.blogger.com/profile/12607273539900513127noreply@blogger.com6tag:blogger.com,1999:blog-15784143.post-11118457250299641192008-10-05T19:30:00.000+07:002008-10-05T20:31:21.859+07:00Solusi Bandwidth Management<span class="fullpost"><div>Optimalisasi penggunaan bandwidth adalah salah satu kewajiban dari administrator jaringan di suatu institusi atau kantor. Penggunaan bandwidth haruslah diusahakan seoptimal mungkin, sehingga pemakaian internet oleh user dapat dikontrol dengan baik. <br /></div></span><div><br /></div><div><span class="fullpost">Bandwidth management dapat dilakukan dengan berbagai cara, mulai dari squid dengan delay_poolsnya yang cukup efektif untuk membatasi akses melalui http (port 80) dan kemudian penggunaan HTB yang dapat digunakan untuk mengontrol traffic untuk semua port. </span></div><div><br /></div><div><span class="fullpost">Squid, selain berfungsi untuk bandwidth manajemen memungkinkan penggunanya untuk menghemat bandwidth internet. Squid berfungsi sebagai proxy server, sehingga halaman/file yang sudah diakses oleh pengguna yang menggunakan proxy server yang sama akan disimpan di dalam memory/harddisk. Sehingga ketika pengguna lain ingin mengakses halaman website/file yang sama. Proxy server tinggal memberikan data yang ada di dalam cachenya, sehingga tidak menggunakan koneksi internet lagi. Hal ini menguntungkan kedua belah pihak, karena pengguna akan mendapatkan halaman/file yang diinginkan lebih cepat (karena menggunakan koneksi lokal) dan bandwidth internet secara keseluruhan akan dihemat karena proxy server tidak lagi mengunduh data yang diinginkan pengguna dari internet. </span></div><div><br /></div><div><span class="fullpost">Permasalahan selanjutnya adalah apabila proxy server dan bandwidth manajemen (HTB)berada dalam satu server yang sama. HTB yang dijalankan dalam satu server dengan proxy akan membatasi semua jenis koneksi yang berasal dari server, tidak perduli apakah traffic itu berasal dari internet atau berasal dari cache proxy. Konfigurasi seperti ini tidak efisien, karena seharusnya pengguna dapat mengunduh data yang terdapat di cache proxy dengan kecepatan penuh. Tanpa dibatasi oleh HTB. </span></div><div><br /></div><div><span class="Apple-style-span" style="font-weight: bold;">Contoh: </span></div><div><br /></div><div>Apabila bandwidth yang tersedia sebesar 512kbps dan dibagi untuk 4 client, masing-masing 128kbps. (Pembatasan dilakukan dengan menggunakan HTB) </div><div><br /></div><div>Maka bandwidth maksimum yang didapatkan oleh client (pengguna) adalah 128kbps, ketika koneksi penuh. Tidak perduli apakah data yang diakses itu sudah berada di cache proxy atau tidak. </div><div><br /></div><div>Yang kita inginkan adalah apabila data yang ingin diakes sudah berada di cache proxy, maka client tersebut harus dapat mengunduhnya dengan kecepatan LAN biasa (100mbps). </div><div><br /></div><div><span class="Apple-style-span" style="font-weight: bold;">Solusi:</span></div><div><br /></div><div>Ada beberapa macam solusi yang saya temukan untuk permasalahan ini. </div><div><br /></div><div><span class="Apple-style-span" style="font-weight: bold;">1. Menggunakan Mikrotik <--> Squid with Tproxy (2 Box)</span><span class="Apple-tab-span" style="white-space:pre"><span class="Apple-style-span" style="font-weight: bold;"> </span></span></div><div><ul><li><a href="http://www.tajidyakub.net/2007/08/08/squid-cache-tproxy-dan-mikrotik-alternatif-perpaduan-untuk-jaringan-sederhana/">http://www.tajidyakub.net/2007/08/08/squid-cache-tproxy-dan-mikrotik-alternatif-perpaduan-untuk-jaringan-sederhana/</a><br /></li><li><a href="http://salebor.wordpress.com/2007/12/25/squid-cache-tproxy-dan-mikrotik-ip-bright/">http://salebor.wordpress.com/2007/12/25/squid-cache-tproxy-dan-mikrotik-ip-bright/</a><br /></li><li><a href="http://www.balabit.com/support/community/products/tproxy/">http://www.balabit.com/support/community/products/tproxy/</a><br /></li><li><a href="http://rtrw.net/viewtopic.php?f=4&t=1888">http://rtrw.net/viewtopic.php?f=4&t=1888</a></li></ul><div><span class="Apple-style-span" style="font-weight: bold;">2. Menggunakan Squid with ZPH <--> Mikrotik (2 Box)<br /></span></div><div><ul><li><a href="http://h4ndr1.wordpress.com/2008/09/02/mikrotik-dan-external-squid-dengan-zph-patch/">http://h4ndr1.wordpress.com/2008/09/02/mikrotik-dan-external-squid-dengan-zph-patch/</a><br /></li><li><a href="http://human.network.web.id/2008/07/03/squid-zph-and-mikrotik/">http://human.network.web.id/2008/07/03/squid-zph-and-mikrotik/</a></li></ul></div><div><span class="Apple-style-span" style="font-weight: bold;"><br /></span></div><div><span class="Apple-style-span" style="font-weight: bold;">3. Menggunakan Squid with ZPH+HTB (1 Box)</span></div><div><ul><li><a href="http://dianse.blogspot.com/2008/08/how-to-manage-htb-tools-with-squid-zph.html">http://dianse.blogspot.com/2008/08/how-to-manage-htb-tools-with-squid-zph.html</a><br /></li><li><a href="http://forum.linux.or.id/viewtopic.php?f=16&t=15764">http://forum.linux.or.id/viewtopic.php?f=16&t=15764</a></li><li><a href="http://img.vivaolinux.com.br/artigo/Squid-2.6-+-HTBtools-com-cache-full?pagina=2">http://img.vivaolinux.com.br/artigo/Squid-2.6-+-HTBtools-com-cache-full?pagina=2</a><br /></li><li><a href="http://jeky466.blogsome.com/2008/02/03/htb-tools/">http://jeky466.blogsome.com/2008/02/03/htb-tools/</a><br /></li></ul></div><div><br /></div><div>Dari berbagai solusi yang ada, akhirnya aku memutuskan untuk menggunakan pilihan yang ketiga. Tapi biar post ini gak terlalu panjang, jadi nanti aku post lagi khusus untuk konfigurasi Squid ZPH+HTB-Tools. </div></div><div><br /></div><div>Forum linux.or.id lagi down sih, tadinya mau ikutan diskusi disana juga. Mau berbagi pengalaman juga ama yang lain. Siapa tau ada yang menghadapi masalah yang sama.</div><div> <br /></div><div class="blogger-post-footer">Andrew Pakpahan Blog</div>Andrew Pakpahanhttp://www.blogger.com/profile/12607273539900513127noreply@blogger.com4tag:blogger.com,1999:blog-15784143.post-27314753398572663722008-10-05T19:21:00.004+07:002008-10-05T20:30:45.073+07:00How to Disable Qmail Queue Scanner?<span class="Apple-style-span" style="font-family:'courier new';"><div><span class="Apple-style-span" style=" font-weight: bold; font-family:Arial;font-size:13px;"><div><span class="Apple-style-span" style="font-weight: normal;">Recently I have problem with qmail, it can't send or receive email because qmail-scanner error problem. </span></div><div><span class="Apple-style-span" style="font-weight: normal;"><br /></span></div><div><span class="Apple-style-span" style="font-weight: normal;">(/var/log/maillog) </span></div><div><span class="Apple-style-span" style="font-weight: normal;"><span class="Apple-style-span" style=" ;font-family:'courier new';">Requeuing: Insecure directory in $ENV{PATH} while running with -T switch at /var/qmail/bin/qmail-scanner-queue.pl line 1351,<stdin>line 51.</stdin></span><br /></span></div><div><br /></div><div><span class="Apple-style-span" style="font-weight: normal;">So I remove qmail-scanner-queue for temporary. </span></div><div><span class="Apple-style-span" style="font-weight: normal;"><span class="Apple-style-span" style="font-family:'courier new';"><br /></span></span></div><div><span class="Apple-style-span" style="font-weight: normal;"><span class="Apple-style-span" style="font-family:'courier new';">#vi /var/qmail/supervise/qmail-smtpd/run</span></span></div><div><span class="Apple-style-span" style="font-weight: normal;"><br /></span></div><div><span class="Apple-style-span" style="font-weight: normal;">Search this line below and remove it</span></div><div><span class="Apple-style-span" style="font-weight: normal;"><br /></span></div><div><span class="Apple-style-span" style="font-weight: normal;"><span class="Apple-style-span" style="font-weight: bold; "><span class="Apple-style-span" style="font-family:'courier new';">QMAILQUEUE="/var/qmail/bin/qmail-scanner-queue.pl" ; export QMAILQUEUE </span></span><br /></span></div><div><br /></div><div>Before </div><div><br /></div><div><span class="Apple-style-span" style="font-weight: normal;"><span class="Apple-style-span" style="font-family:'courier new';">#!/bin/sh</span></span></div><div><span class="Apple-style-span" style=" ;font-size:16px;"><div><span class="Apple-style-span" style=" ;font-size:13px;"><span style="font-size:85%;"><strong><span class="Apple-style-span" style="font-family:'courier new';">QMAILQUEUE="/var/qmail/bin/qmail-scanner-queue.pl" ; export QMAILQUEUE</span></strong></span></span></div></span></div><div><span class="Apple-style-span" style="font-weight: normal;"><span class="Apple-style-span" style="font-family:'courier new';">QMAILDUID=`id -u vpopmail`</span></span></div><div><span class="Apple-style-span" style="font-weight: normal;"><span class="Apple-style-span" style="font-family:'courier new';">NOFILESGID=`id -g vpopmail`</span></span></div><div><span class="Apple-style-span" style="font-weight: normal;"><span class="Apple-style-span" style="font-family:'courier new';">MAXSMTPD=`cat /var/qmail/control/concurrencyincoming`</span></span></div><div><span class="Apple-style-span" style="font-weight: normal;">...</span></div><div><span class="Apple-style-span" style="font-weight: normal;">...</span></div><div><span class="Apple-style-span" style="font-weight: normal;">...</span></div><div><span class="Apple-style-span" style="font-weight: normal;"><br /></span></div><div>After</div><div><br /></div><div><div><span class="Apple-style-span" style="font-weight: normal;"><span class="Apple-style-span" style="font-family:'courier new';">#!/bin/sh</span></span></div><div><span class="Apple-style-span" style="font-weight: normal;"><span class="Apple-style-span" style="font-family:'courier new';">QMAILDUID=`id -u vpopmail`</span></span></div><div><span class="Apple-style-span" style="font-weight: normal;"><span class="Apple-style-span" style="font-family:'courier new';">NOFILESGID=`id -g vpopmail`</span></span></div><div><span class="Apple-style-span" style="font-weight: normal;"><span class="Apple-style-span" style="font-family:'courier new';">MAXSMTPD=`cat /var/qmail/control/concurrencyincoming`</span></span></div><div><span class="Apple-style-span" style=" font-weight: normal;font-family:'courier new';"><span class="Apple-style-span" style=" font-weight: bold; font-family:Arial;"><div><span class="Apple-style-span" style="font-weight: normal; ">...</span></div><div><span class="Apple-style-span" style="font-weight: normal; ">...</span></div><div><span class="Apple-style-span" style="font-weight: normal; ">...</span></div><div><span class="Apple-style-span" style="font-weight: normal;"><br /></span></div><div><span class="Apple-style-span" style="font-weight: normal;">Then, qmail working without qmail queue scanner.</span></div></span></span></div></div></span></div></span><div class="blogger-post-footer">Andrew Pakpahan Blog</div>Andrew Pakpahanhttp://www.blogger.com/profile/12607273539900513127noreply@blogger.com1tag:blogger.com,1999:blog-15784143.post-40434788252682584562008-10-03T12:28:00.004+07:002008-10-03T12:48:30.925+07:00Mail Server Error! Siap-siap migrasi ke Mail Server Baru<span class="fullpost">Seminggu ini aku berusaha agar mail server yang telah berjalan selama 2 tahun lebih itu dapat berfungsi dengan normal kembali. Berbagai jenis forum sudah aku kunjungi, berbagai jenis kata kunci sudah aku gunakan di google dan juga yahoo search. Beratus-ratus halaman sudah aku baca tapi tetap saja aku tidak menemukan solusi yang tepat untuk permasalahan di mail server ini. </span><div><br /></div><div><span class="fullpost"></span>Apa yang harus aku lakukan dengan error di bawah ini? (*diambil dari /var/log/maillog server email) <br /><div><div><br /></div><div><div><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';">Requeuing: Insecure directory in $ENV{PATH} while running with -T switch at /var/qmail/bin/qmail-scanner-queue.pl line 1351, <stdin> line 51.</stdin></span></span></div><div><br /></div><div>Mungkin ada yang tahu solusi dari masalah ini? Aku sudah tidak tahu harus berbuat apa lagi. Mail Server ini tadinya berjalan dengan "baik" selama kurang lebih dua tahun. </div><div><br /></div><div>Adapun mail server ini menggunakan : </div><div><ul><li>OS: Fedora Core 4 (Iya, aku tau udah versi lama... tapi masih stabil lho..) </li><li>Qmailrocks (Ini sumber dari semua masalah itu ) </li></ul><div>Mungkin memang sudah saatnya aku membangun server email yang baru, yang lebih stabil dan mudah manajemennya. </div><div><br /></div><div>Sekarang aku lagi menjajaki untuk membangun server email dengan menggunakan: </div><div><ul><li>Ubuntu 8.04 </li><li>Zimbra Collaboration Suite</li></ul><div><span class="Apple-style-span" style="font-weight: bold;">Siap Berjuang!!! Where there is a will. There is a way.</span></div></div><div><blockquote></blockquote><br /></div></div></div></div></div><div class="blogger-post-footer">Andrew Pakpahan Blog</div>Andrew Pakpahanhttp://www.blogger.com/profile/12607273539900513127noreply@blogger.com1tag:blogger.com,1999:blog-15784143.post-36326964122449856392008-09-27T17:39:00.007+07:002008-10-03T12:49:23.481+07:00Install ipp2p di Ubuntu Hardy (8.04) Server<span class="fullpost"><p align="justify"></p><blockquote></blockquote><blockquote></blockquote><blockquote>Traffik p2p yang berada pada layer 7 TCP/IP tidak dapat di blok begitu saja menggunakan iptables yang terinstall di ubuntu dapper. Untuk mem-filter paket-paket p2p diperlukan plugin tambahan pada netfilter diantaranya ipp2p yang dapat diperoleh dari <a href="http://www.ipp2p.org/" title="http://www.ipp2p.org/">http://www.ipp2p.org/<blockquote></blockquote></a></blockquote><a href="http://www.ipp2p.org/" title="http://www.ipp2p.org/"></a><p></p> <p> Setelah coba cari-cari kesana kemari barangkali sudah ada paket deb dari ipp2p ternyata hasilnya nihil. Jadi untuk menginstall ipp2p mau tidak mau harus di compile sendiri.<br /></p> <p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';"># apt-get install build-essential</span></span></p> <p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';"># apt-get install linux-headers</span></span></p><p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';"># apt-get install iptables-dev</span></span></p> <p>ambil source dari kernel dan iptables</p> <p><span class="Apple-style-span" style="font-size:small;"># apt-get install linux-source</span></p><p><span class="Apple-style-span" style="font-size:small;"># apt-get source iptables</span></p> <p>silakan sesuaikan versi kernel dengan yang Anda gunakan. source kernel hasil apt-get ada di /usr/src/linux-source-2.6.24.tar.bz2 silakan di ekstrak</p> <p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';"># cd /usr/src $sudo tar xvjf linux-source-2.6.24.tar.bz2</span></span></p><p>dan buat symbolic link /usr/src/linux ke hasil ekstract tadi</p> <p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';"># sudo ln -s /usr/src/linux-source-2.6.24 /usr/src/linux</span></span></p> <p>Source iptables hasil apt-get ada di folder yang aktif. copy dan ekstrak ke /usr/src sehingga didapat folder /usr/src/iptables-1.3.8.0debian1 persiapan sudah selesai, silakan unduh source ipp2p dari <a href="http://ipp2p.org/downloads/ipp2p-0.8.2.tar.gz" title="http://ipp2p.org/downloads/ipp2p-0.8.2.tar.gz ">http://ipp2p.org/downloads/ipp2p-0.8.2.tar.gz </a> dan juga file patchnya! (ini penting untuk menghindari error seperti ini) </p><p></p><p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';">make -C /lib/modules/2.6.24-19-server/build SUBDIRS=/usr/src/ipp2p-0.8.2 modules</span></span></p><p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';">make[1]: Entering directory `/usr/src/linux-headers-2.6.24-19-server'</span></span></p><p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';"> CC [M] /usr/src/ipp2p-0.8.2/ipt_ipp2p.o</span></span></p><p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';">/usr/src/ipp2p-0.8.2/ipt_ipp2p.c: In function âmatchâ:</span></span></p><p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';">/usr/src/ipp2p-0.8.2/ipt_ipp2p.c:751: error: âconst struct sk_buffâ has no member named ânhâ</span></span></p><p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';">/usr/src/ipp2p-0.8.2/ipt_ipp2p.c: At top level:</span></span></p><p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';">/usr/src/ipp2p-0.8.2/ipt_ipp2p.c:871: warning: initialization from incompatible pointer type</span></span></p><p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';">/usr/src/ipp2p-0.8.2/ipt_ipp2p.c:874: warning: initialization from incompatible pointer type</span></span></p><p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';">/usr/src/ipp2p-0.8.2/ipt_ipp2p.c: In function âinitâ:</span></span></p><p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';">/usr/src/ipp2p-0.8.2/ipt_ipp2p.c:883: error: implicit declaration of function âipt_register_matchâ</span></span></p><p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';">/usr/src/ipp2p-0.8.2/ipt_ipp2p.c: In function âfiniâ:</span></span></p><p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';">/usr/src/ipp2p-0.8.2/ipt_ipp2p.c:888: error: implicit declaration of function âipt_unregister_matchâ</span></span></p><p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';">make[2]: *** [/usr/src/ipp2p-0.8.2/ipt_ipp2p.o] Error 1</span></span></p><p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';">make[1]: *** [_module_/usr/src/ipp2p-0.8.2] Error 2</span></span></p><p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';">make[1]: Leaving directory `/usr/src/linux-headers-2.6.24-19-server'</span></span></p><p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';">make: *** [ipt_ipp2p.ko] Error 2</span></span></p><p></p><p>Pertama download file ipp2p</p><p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';"># wget http://ipp2p.org/downloads/ipp2p-0.8.2.tar.gz</span></span></p><p>Selanjutnya download file patch</p><p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';"># wget http://sources.gentoo.org/viewcvs.py/*checkout*/gentoo-x86/net-firewall/ipp2p/files/ipp2p-0.8.2-kernel-2.6.22.patch</span></span></p><p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';"># tar xvzf ipp2p-0.8.2.tar.gz</span></span></p><p></p><p><span class="Apple-style-span" style="font-family:'courier new';"><span class="Apple-style-span" style="font-size:small;"># cd ipp2p-0.8.2</span></span></p><p>Sebelum dicompile, harus ada baris yang diedit terlebih dahulu di makefilenya</p><p><span class="Apple-style-span" style="font-size:small;"># vi Makefile </span></p><p>Cari baris ini: ld -shared -o libipt_ipp2p.so libipt_ipp2p.o<br />Kemudian ganti dengan ini: $(CC) -shared -o libipt_ipp2p.so libipt_ipp2p.o</p><p></p><p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';"># patch -p1 <../ipp2p-0.8.2-kernel-2.6.22.patch</span></span></p><p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';">patching file ipt_ipp2p.c</span></span></p><p>Selanjutnya kompile ipp2p</p><p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';"># make<br /></span></span></p><p></p><p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';">make -C /lib/modules/2.6.24-19-server/build SUBDIRS=/usr/src/ipp2p-0.8.2 modules</span></span></p><p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';">make[1]: Entering directory `/usr/src/linux-headers-2.6.24-19-server'</span></span></p><p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';"> CC [M] /usr/src/ipp2p-0.8.2/ipt_ipp2p.o</span></span></p><p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';"> Building modules, stage 2.</span></span></p><p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';"> MODPOST 1 modules</span></span></p><p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';"> CC /usr/src/ipp2p-0.8.2/ipt_ipp2p.mod.o</span></span></p><p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';"> LD [M] /usr/src/ipp2p-0.8.2/ipt_ipp2p.ko</span></span></p><p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';">make[1]: Leaving directory `/usr/src/linux-headers-2.6.24-19-server'</span></span></p><p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';">gcc -O3 -Wall -DIPTABLES_VERSION=\"1.3.8\" -I/usr/src/iptables-1.3.8/include -fPIC -c libipt_ipp2p.c</span></span></p><p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';">gcc -shared -o libipt_ipp2p.so libipt_ipp2p.o</span></span></p><p><span class="Apple-style-span" style=" ;font-family:'courier new';font-size:13px;"><br /></span></p><p>Setelah selesai, ini adalah isi dari direktori ipp2p</p><p><span class="Apple-style-span" style="font-family:'courier new';"><span class="Apple-style-span" style="font-size:small;"># ls<br /></span></span></p><p></p><p><span class="Apple-style-span" style="font-family:'courier new';"><span class="Apple-style-span" style="font-size:small;">COPYING ipt_ipp2p.ko ipt_ipp2p.o libipt_ipp2p.so README</span></span></p><p><span class="Apple-style-span" style="font-family:'courier new';"><span class="Apple-style-span" style="font-size:small;">ipt_ipp2p.c ipt_ipp2p.mod.c libipt_ipp2p.c Makefile</span></span></p><p><span class="Apple-style-span" style="font-family:'courier new';"><span class="Apple-style-span" style="font-size:small;">ipt_ipp2p.h ipt_ipp2p.mod.o libipt_ipp2p.o Module.symvers</span></span></p><p></p><p></p><p></p><p></p> <p>Copy file tersebut ke library iptables</p><p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';"># cp libipt_ipp2p.so /lib/iptables<br /># cp ipt_ipp2p.ko /lib/modules/`uname -r`/kernel/net/ipv4/netfilter</span></span></p> <p>lalu jalankan depmod</p> <p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';"># depmod -a</span></span></p> <p>silakan test apakah sudah bisa digunakan</p> <p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';">$ sudo iptables -m ipp2p –-help</span></span></p> <p>kalo udah ada, silakan baca manual untuk menggunakannya ^_^ untuk mengucapkan selamat tinggal pada paket2 p2p silakan ketikkan:</p> <p><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-family:'courier new';">$sudo iptables -A FORWARD -m ipp2p –ipp2p -j DROP</span></span></p> <p>referensi:</p> <ul> <li><a href="http://www.blogger.com/cp%20ipt_ipp2p.ko%20/lib/modules/%60uname%20-r%60/kernel/net/ipv4/netfilter">http://iyank4.dagdigdug.com/2008/04/25/install-ipp2p-pada-ubuntu-dapper-server/</a><br /></li><li><a href="http://www.debian-administration.org/articles/562">http://www.debian-administration.org/articles/562</a></li><li><a href="http://securepoint.com/lists/html/LARTC/2007-03/msg00075.html">http://securepoint.com/lists/html/LARTC/2007-03/msg00075.html</a></li><li><a href="http://securepoint.com/lists/html/LARTC/2007-03/msg00077.html">http://securepoint.com/lists/html/LARTC/2007-03/msg00077.html</a></li><li><a href="http://fedoraforum.org/forum/archive/index.php/t-180325.html">http://fedoraforum.org/forum/archive/index.php/t-180325.html</a></li></ul><br /><br /><br /></span><div class="blogger-post-footer">Andrew Pakpahan Blog</div>Andrew Pakpahanhttp://www.blogger.com/profile/12607273539900513127noreply@blogger.com6tag:blogger.com,1999:blog-15784143.post-36354475993681341752008-09-25T11:38:00.003+07:002008-10-03T12:50:01.122+07:00Blok Established Connection di Server dengan Cutter<span class="fullpost">Baru dapet "ilmu" baru untuk ngedrop establised connection di server. Caranya dengan menggunakan aplikasi cutter.</span><div><br /></div><div><span class="fullpost"></span>Cara menggunakannya cukup mudah. Misalnya anda ingin memblok koneksi http (port 80) dari IP 10.0.0.21, cukup dengan:</div><div><br /></div><div>#cutter 10.0.0.21 80 </div><div><br /></div><div>Cukup mudah bukan! Ini ada contoh yang saya ambil langsung dari websitenya:</div><div><br /></div><div><div><span class="Apple-style-span" style="font-size:small;"><span class="Apple-style-span" style="font-weight: bold;">cutter ip-address</span></span></div><div><span class="Apple-style-span" style="font-size:small;"><br /></span></div><div><span class="Apple-style-span" style="font-size:small;">Example: "cutter 10.10.0.45"</span></div><div><span class="Apple-style-span" style="font-size:small;"><br /></span></div><div><span class="Apple-style-span" style="font-size:small;">Cuts all connections passing through the firewall between any ports on the specified ip-address (either a "private" or "public" address) and any other hosts. This can be used to close down all incoming connections to a particular server, all outgoing connections from a particular client or all outgoing connections to a server.</span></div><div><span class="Apple-style-span" style="font-size:small;">cutter ip-address port</span></div><div><span class="Apple-style-span" style="font-size:small;"><br /></span></div><div><span class="Apple-style-span" style="font-size:small;">Example: "cutter 200.1.2.3 80"</span></div><div><span class="Apple-style-span" style="font-size:small;"><br /></span></div><div><span class="Apple-style-span" style="font-size:small;">Cuts all connections to or from the specified ip-address/port pair. This allows the user to be a little more specific than the previous example and allows targetting of specific services on specific hosts.</span></div><div><span class="Apple-style-span" style="font-size:small;">cutter ip-address-1 port-1 ip-address-2</span></div><div><span class="Apple-style-span" style="font-size:small;"><br /></span></div><div><span class="Apple-style-span" style="font-size:small;">Example "cutter 200.1.2.3 22 10.10.0.45"</span></div><div><span class="Apple-style-span" style="font-size:small;"><br /></span></div><div><span class="Apple-style-span" style="font-size:small;">Cuts all connections between ip-address-2 and ip-address-1/port-1. This allows the user to cut connections between a specified "client" and a particular service on a specified host. Our example closes host 10.10.0.45's SSH connection to server 200.1.2.3.</span></div><div><span class="Apple-style-span" style="font-size:small;">cutter ip-address-1 port-1 ip-address-2 port-2</span></div><div><span class="Apple-style-span" style="font-size:small;"><br /></span></div><div><span class="Apple-style-span" style="font-size:small;">Example: "cutter 200.1.2.3 22 10.10.0.45 32451"</span></div><div><span class="Apple-style-span" style="font-size:small;"><br /></span></div><div><span class="Apple-style-span" style="font-size:small;">Cuts the specific connection between the two ip/port number pairs given.</span></div></div><div><div><span class="fullpost"><br /><a href="http://www.lowth.com/cutter/">http://www.lowth.com/cutter/</a><br /><br /></span></div></div><div class="blogger-post-footer">Andrew Pakpahan Blog</div>Andrew Pakpahanhttp://www.blogger.com/profile/12607273539900513127noreply@blogger.com0tag:blogger.com,1999:blog-15784143.post-5167158166257847932008-09-22T20:35:00.002+07:002008-09-22T20:38:17.968+07:00Cara blok peer to peer di jaringan dengan server linuxBarusan nyari cara ngeblok peer to peer client di linux, ternyata caranya cukup mudah cukup dengan menginstall L7 filter dan kemudian jalankan konfigurasi di firewall (iptables) dan selesai. <div><br /></div><div>Di bawah ini link ke tutorialnya </div><div><br /></div><div><a href="http://linux2.arinet.org/index.php?option=com_content&task=view&id=148&Itemid=1">http://irvian.blogspot.com/2008/06/menginstall-netfilter-layer7-di-ubuntu.html</a><br /></div><div><br /></div><div>How to block p2p traffic: </div><div><br /></div><div><a href="http://linux2.arinet.org/index.php?option=com_content&task=view&id=148&Itemid=1">http://linux2.arinet.org/index.php?option=com_content&task=view&id=148&Itemid=1</a><br /></div><div class="blogger-post-footer">Andrew Pakpahan Blog</div>Andrew Pakpahanhttp://www.blogger.com/profile/12607273539900513127noreply@blogger.com0tag:blogger.com,1999:blog-15784143.post-84442933647368537982008-09-04T19:57:00.004+07:002008-10-03T12:51:05.029+07:00Google Chrome Lebih Cepat Membuka Website Google (Blogger, Gmail, Google Search)<span class="fullpost">Sekarang aku lagi posting pake <a href="http://www.google.com/chrome">Google Chrome</a>, perasaan sih lebih cepat waktu membuka website-website yang kepunyaaan Google, seperti Gmail, Google Search , Youtube, dll. Apa itu cuman perasaan aku aja ya? </span><div><br /></div><div>Soalnya selama ini aku menggunakan <a href="http://www.opera.com/">Opera</a> dan <a href="http://www.mozilla.com/">Firefox</a> secara rutin juga jadi bisa langsung kelihatan perbedaannya. </div><div><br /></div><div>Tapi untuk membuka website lainnya, sepertinya kecepatan Google Chrome ini masih sama/lebih lambat dari Opera atau Firefox. Jadi gak sabar nunggu versi stablenya. Kapan ya?</div><div><br /></div><div><br /></div><div class="blogger-post-footer">Andrew Pakpahan Blog</div>Andrew Pakpahanhttp://www.blogger.com/profile/12607273539900513127noreply@blogger.com3tag:blogger.com,1999:blog-15784143.post-63618245152224666552008-09-04T19:53:00.004+07:002008-10-05T20:30:22.647+07:00Membatasi voucher hotspot mikrotik berdasarkan waktu aktif<span class="fullpost">Ini dapet dari <a href="http://www.forummikrotik.com/dude-and-user-manager/249-hotspot-di-usermanager.html">forum mikrotik indonesia</a>:</span><div><br /></div><div><div>Pertama tama pastikan userman anda sudah bekerja dengan baik. saya hanya sedikit memberikan contoh nilai voucher [misal: murah] Rp. 10.000,- dengan access internet selama 100 menit dan masa expirednya hingga 14 hari. saya pikir anda pasti sudah memahami besaran tersebut.</div><div><br /></div><div>kedua: membuat expired time</div><div>- pada menu credits</div><div>- click add</div><div>- beri name=murah</div><div>- beri time=2w ini sama dengan 14 hari</div><div>- full price=10000</div><div>- tekan add untuk selesai.</div><div><br /></div><div>ketiga: membuat user dengan nilai voucher murah dan berapa speed yang diberikan.</div><div>- pada menu users</div><div>- click add</div><div>- isikan username pada kotak user name</div><div>- isikan password pada kotak password</div><div>- isikan lama access pada kotak uptime-limit=1h40m</div><div>- isikan speed: bila diperlukan</div><div>- Rate limit RX=32000 TX=28000</div><div>- Burst Rate RX=44000 TX=44000 [bila perlu]</div><div>- Burst time RX=10 TX=10 [bila perlu]</div><div>- set priority [bila perlu]</div><div>- set dan arahkan murah pada kotak pemilih add time</div><div><br /></div><div>cara diatas adalah user tersebut akan menggunakan access internet 100 menit atau 14 hari masa aktif terhitung sejak login pertama adapun speed yang dimiliki user tersebut pada 10 detik pertama akan menggunakan speed 44kbps downloading dan 44kbps uploading dan setelah sepuluh detik pertama tersebut speed tersebut akan menjadi 32kbps downloading dan 28kbps untuk uploading.</div><div><br /></div><div><div>note:</div><div><br /></div><div><span class="Apple-style-span" style="font-weight: bold;">4w2d=30 hari dan 1h40m=100 menit</span></div><div>tapi ingat usermanager tidak bisa set dengan satu bulan, tapi bisa set dengan berapa hari aktif time nya. ... itu semua terserah anda mau jualan dengan harga dan lama berapa...</div></div><div><br /></div></div><div class="blogger-post-footer">Andrew Pakpahan Blog</div>Andrew Pakpahanhttp://www.blogger.com/profile/12607273539900513127noreply@blogger.com14