Banyak teman yang mengeluh jika menggunakan DNS nawala akses internet menjadi lambat
saya coba mencari solusi untuk mempercepat akses DNS nawala dengan membuat Caching
Nameserver di Windows XP, pilihan jatuh ke BIND Ok kita langsung ke coba saja
1. Googling cari BIND for windows dan download, berikut salah satu link yang saya dapat
ftp://ftp.iij.ad.jp/pub/network/isc/bind9/9.7.2/BIND9.7.2.zip
2. Setelah anda selesai Download, anda hanya perlu mengextract file tersebut ke suatu folder
untuk memulai install anda bisa eksekusi file BINDInstall.exe dalam contoh ini saya
install BIND ke folder C:\BIND
3. Untuk mempermudah menjalankan BIND dari sembarang folder kita perlu men setup path variable
enviroment untuk BIND, dari Control Panel -> System -> Advanced -> Enviroment Variable.
Klik Edit isi Path di System Variable dan tambahkan variable berikut C:\BIND\bin
4. Sekarang anda buat dua folder di dalam C:\BIND, satu C:\BIND\log dua C:\BIND\zone
5. Buat file dengan nama named.conf dan anda simpan di folder C:\BIND\etc
isi file tersebut seperti di bawah ini
options {
directory "c:\bind\zone";
allow-query { localhost; };
forwarders { 180.131.144.144; 180.131.145.145; };
forward only; query-source address * port 53;
};
logging {
channel queries_log {
file "c:\bind\log\queries.log";
print-severity yes;
print-time yes;
};
category queries { queries_log ; };
};
zone "localhost." IN {
type master;
file "localhost.zone";
allow-update { none; };
};
zone "0.0.127.in-addr.arpa." IN {
type master;
file "localhost.rev";
allow-update { none; };
};
include "c:\bind\etc\rndc.key";
6. setelah ini buat dua file di folder C:\BIND\zone satu localhost.zone dua localhost.rev
isi file
localhost.zone
$TTL 86400
@ IN SOA @ root (
42 ; serial
3H ; refresh
15M ; retry
1W ; expiry
1D ) ; minimum
IN NS @
IN A 127.0.0.1
IN AAAA ::1
localhost.rev
$TTL 86400
@ IN SOA localhost. root.localhost. (
2010022700 ; Serial
28800 ; Refresh
14400 ; Retry
3600000 ; Expire
86400 ) ; Minimum
IN NS localhost.
1 IN PTR localhost.
7. Buka command promt dan jalankan perintah berikut
cd C:\BIND\bin
rndc-confgen -a
8. Buat satu buah file lagi di folder C:\Windows\system32\Drivers\etc dan namakan file
tersebut resol.conf
nameserver 127.0.0.1
9. Sekarang kita perlu menjalankan service BIND terlebih dahulu. Dari Control Panel ->
Administrative Tools -> Services dan start ISC BIND Service
10. Setting di Properti TCP/IP Local Area Connection DNS ke 127.0.0.1
11. Jika semua konfigurasi sudah benar maka kita tinggal test saja, buka command prompt
dan jalankan perintah berikut
dig www.detik.com
setelah itu perhatikan Query time jika ini pertama di jalankan nilai query time mungkin
agak tinggi
Query time: 453 msec
coba sekali lagi
dig www.detik.com
perhatikan bedanya
Jika anda ingin mem flush cache nameserver cukup jalankan perintah ini dari command prompt
rndc flush
Sekian dan terima kasih semoga bermanfaat
Jumat, 26 November 2010
Kamis, 25 November 2010
Menjadikan Windows XP jadi Router
Kadang kala kita butuh menjadikan Windows XP kita jadi router,
ada trick dari pada kita mengaktifkan ICS di Device yang terkoneksi
ke internet, yang biasanya akan me reset settingngan TCP/IP di XP
menjadi 192.168.1.1 dan kita akan terpaksa merubah kembali settingan
TCP/IP XP kita, untuk itu kita hanya perlu merubah key di regedit
berikut adalah key yang perlu di rubah
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\IPEnableRouter
Jadikan REG_DWORD 0 menjadi 1, maka XP kita sudah menjadi router/gateway
jadi kita bisa sharing koneksi
ada trick dari pada kita mengaktifkan ICS di Device yang terkoneksi
ke internet, yang biasanya akan me reset settingngan TCP/IP di XP
menjadi 192.168.1.1 dan kita akan terpaksa merubah kembali settingan
TCP/IP XP kita, untuk itu kita hanya perlu merubah key di regedit
berikut adalah key yang perlu di rubah
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\IPEnableRouter
Jadikan REG_DWORD 0 menjadi 1, maka XP kita sudah menjadi router/gateway
jadi kita bisa sharing koneksi
Senin, 22 November 2010
Install Flash Player di Ubuntu
Buka terminal tulis command di bawah ini untuk install flash player
$ sudo apt-get install flashplugin-nonfree
Jika firefox tidak mengeluarkan suara coba install oss
$ sudo apt-get install alsa-oss
$ sudo apt-get install flashplugin-nonfree
Jika firefox tidak mengeluarkan suara coba install oss
$ sudo apt-get install alsa-oss
Sabtu, 20 November 2010
Konfigurasi Pervasive Workgroup 10 untuk Client Magic 7/8
Configure Microkernel Router
* Access
- Gateway Durability uncheck
- Use Local Microkernel Engine check
- Use Remote Microkernel Engine check
- Use IDS uncheck
- Number of Load Retries 5
- Wire Encryption If Needed
- Wire Encryption Level Medium
* Communication protocols
- Enable Auto Reconnect uncheck
- Conecton Timeout in sec 15
- Supported Protocols
- SPXII uncheck
- TCP/IP check
- NETBIOS uncheck
* Performance tuning
- Use Cache Engine uncheck
* Security
- Runtime Server Support Yes
* Application characteristics
- Embedded Spaces check
- Splash Screen uncheck
- Verify Key Length check
Configure Local Engine
* Information
- Encoding windows-1252
* Access
- Accept Remote Request check
- Prompt for Client Credencials uncheck
- Allow Client-stored Credentials check
- Allow Cache Engine Connections check
- Wire Encryption If Needed
- Wire Encryption Level Medium
* Communication protocols
- Enable Auto Reconnect uncheck
- TCP/IP Multihomed check
- NetBIOS Port 66
- Auto Reconnect Timeout in sec 180
- TCP/IP Port 1583
- Listen IP Address 0.0.0.0
- Supported Protocols
- SPXII uncheck
- TCP/IP check
* Compatibility
- Create File Version 6.x
- System Data If Needed
* Data integrity
- Archival Logging Selected Files uncheck
- Transaction Durability uncheck
- Transaction Logging check
- Operation Bundle Limit 65535
- Initiation Time Limit in msec 10000
- Wait Lock Timeout in msec 15000
* Debugging default
- Trace Operation uncheck
- Number of Bytes from Data Buffer 128
- Number of Bytes from Key Buffer 128
- Trace File LOcation C:\Documents and Settings\All Users\
- Select Operations All check
* Directories default
- Transaction Log Directory C:\PVSW\bin\MKDE\LOG
- Working Directory blank
- DBNames Configuration Location C:\WINDOWS
* Memory usage default
- System Cache uncheck
- Allocate Resources at Startup uncheck
- Back Buffer Size in byte(s) 0
- Minimal State Delay in msec 300000
* Performance tuning
- Index Balancing uncheck
- Limit Segment Size to 2Gb check
- Cache Allocation Size in MB 64
- Log Buffer Size in byte(s) 1046576
- Number of Input/Output Threads 32
- Communications Threads 16
- Transaction Log Size in byte(s) 2097152
- Max Microkernel Memory Usage 60
- File Growth Factor 15
Jumat, 19 November 2010
Mengetahui perfoma squid
Dari terminal jalankan perintah berikut dengan akses root
[root@proxy squid]# squidclient -p 3128 mgr:info
HTTP/1.0 200 OK
Server: squid/2.6.STABLE21
Date: Sat, 20 Nov 2010 03:55:19 GMT
Content-Type: text/plain
Expires: Sat, 20 Nov 2010 03:55:19 GMT
Last-Modified: Sat, 20 Nov 2010 03:55:19 GMT
X-Cache: MISS from proxy.angsana.lan
X-Cache-Lookup: MISS from proxy.angsana.lan:3128
Via: 1.0 proxy.angsana.lan:3128 (squid/2.6.STABLE21)
Proxy-Connection: close
Squid Object Cache: Version 2.6.STABLE21
Start Time: Fri, 19 Nov 2010 08:11:30 GMT
Current Time: Sat, 20 Nov 2010 03:55:19 GMT
Connection information for squid:
Number of clients accessing cache: 12
Number of HTTP requests received: 104083
Number of ICP messages received: 0
Number of ICP messages sent: 0
Number of queued ICP replies: 0
Request failure ratio: 0.00
Average HTTP requests per minute since start: 87.9
Average ICP messages per minute since start: 0.0
Select loop called: 4141085 times, 17.152 ms avg
Cache information for squid:
Request Hit Ratios: 5min: 21.9%, 60min: 11.3%
Byte Hit Ratios: 5min: 2.9%, 60min: 1.7%
Request Memory Hit Ratios: 5min: 0.0%, 60min: 1.5%
Request Disk Hit Ratios: 5min: 50.0%, 60min: 52.9%
Storage Swap size: 460732 KB
Storage Mem size: 8156 KB
Mean Object Size: 13.68 KB
Requests given to unlinkd: 31954
Median Service Times (seconds) 5 min 60 min:
HTTP Requests (All): 0.10857 0.30459
Cache Misses: 0.22004 0.44492
Cache Hits: 0.03066 0.03066
Near Hits: 0.02899 0.03622
Not-Modified Replies: 0.00179 0.00379
DNS Lookups: 0.00669 0.01940
ICP Queries: 0.00000 0.00000
Resource usage for squid:
UP Time: 71028.763 seconds
CPU Time: 539.778 seconds
CPU Usage: 0.76%
CPU Usage, 5 minute avg: 0.70%
CPU Usage, 60 minute avg: 1.24%
Process Data Segment Size via sbrk(): 19988 KB
Maximum Resident Size: 0 KB
Page faults with physical i/o: 2
Memory usage for squid via mallinfo():
Total space in arena: 20120 KB
Ordinary blocks: 19973 KB 444 blks
Small blocks: 0 KB 0 blks
Holding blocks: 244 KB 1 blks
Free Small blocks: 0 KB
Free Ordinary blocks: 146 KB
Total in use: 20217 KB 99%
Total free: 146 KB 1%
Total size: 20364 KB
Memory accounted for:
Total accounted: 16083 KB
memPoolAlloc calls: 15737672
memPoolFree calls: 15593786
File descriptor usage for squid:
Maximum number of file descriptors: 1024
Largest file desc currently in use: 216
Number of file desc currently in use: 67
Files queued for open: 0
Available number of file descriptors: 957
Reserved number of file descriptors: 100
Store Disk files open: 0
IO loop method: epoll
Internal Data Structures:
33708 StoreEntries
1736 StoreEntries with MemObjects
1730 Hot Object Cache Items
33669 on-disk objects
Kayaknya belum OPtimal nih, ada yang bisa bantu
Senin, 08 November 2010
Cara setting transparent proxy clearos dalam mode standalone
Topologi :
modem ----------- Router ------------ Switch ---------- Client.....
...................................|..............................................
...................................|..............................................
....................ClearOS proxy server....................................
......................(Standalone mode).....................................
...................................................................
Alokasi IP
WAN Mikrotik 115.124.xx.xx
LAN Mikrotik 192.168.1.254
PROXY Mikrotik 192.168.3.2
ClearOS 192.168.3.1
Kebetulan saya menggunakan Mikrotik RB450
OK kita setting interfaces dan ip untuk mikrotik terlebih dahulu
/interface ethernet
set 0 arp=enabled auto-negotiation=yes bandwidth=unlimited/unlimited comment=\
"" disabled=no full-duplex=yes mac-address=00:0C:42:3D:XX:XX master-port=\
none mtu=1500 name=WAN speed=100Mbps
set 1 arp=enabled auto-negotiation=yes bandwidth=unlimited/unlimited comment=\
"" disabled=no full-duplex=yes mac-address=00:0C:42:3D:XX:XX master-port=\
none mtu=1500 name=LAN speed=100Mbps
set 3 arp=enabled auto-negotiation=yes comment="" disabled=no full-duplex=yes \
mac-address=00:0C:42:3D:XX:XX mtu=1500 name=proxy speed=100Mbps
/ip address
add address=115.124.XX.XX/30 broadcast=115.124.xx.xx comment="" disabled=no \
interface=WAN network=115.124.XX.XX
add address=192.168.1.254/24 broadcast=192.168.1.255 comment="" disabled=no \
interface=LAN network=192.168.1.0
add address=192.168.3.2/30 broadcast=192.168.3.3 comment="" disabled=no \
interface=proxy network=192.168.3.0
Setelah kita set DNS,NAT untuk LAN
/ip firewall nat
add action=src-nat chain=srcnat comment="" disabled=no dst-address=0.0.0.0/0 \
out-interface=to_isp src-address=192.168.1.0/24 to-addresses=\
115.124.XX.XX to-ports=0-65535
/ip dns
set allow-remote-requests=yes cache-max-ttl=1w cache-size=2048KiB \
max-udp-packet-size=512 primary-dns=202.182.XX.XX secondary-dns=\
202.159.XX.XX
/ip dns static
add address=192.168.3.1 disabled=no name=proxy ttl=1d
Setting IP Address Client
misal untuk client1
IP : 192.168.1.1
netmask : 255.255.255.0
gateway : 192.168.1.254
dns1 : 192.168.1.254
dns2 : 202.182.XX.XX
Test client untuk Browsing seharusnya sudah bisa kalau belum bisa periksa kembali
setting di atas sampai client bisa browsing
OK selanjutnya persiapan untuk proxy
buat NAT di Mikrotik untuk Proxy
/ip firewall nat
add action=src-nat chain=srcnat comment="link proxy" disabled=no dst-address=\
0.0.0.0/0 out-interface=WAN src-address=192.168.3.0/30 to-addresses=\
115.124.XX.XX to-ports=0-65535
add action=dst-nat chain=dstnat comment="transproxy" disabled=\
no dst-port=80,8080 in-interface=to_swicht protocol=tcp src-address=\
!192.168.3.1 to-addresses=192.168.3.1 to-ports=3128
setelah itu install CLearOS
install ClearOS Server Standalone Mode - No Firewall
edit file /etc/firewall, cari dan ganti parameter berikut
SQUID_TRANSPARENT="on"
[root@proxy etc]# cat firewall | grep SQUID
SQUID_TRANSPARENT="on"
edit file /etc/resolv.conf, tambahkan nameserver (DNS) ISP anda
[root@proxy etc]# cat resolv.conf
nameserver 202.182.xx.xx
pastikan gateway proxy sudah ke IP PROXY Mikrotik, jika menggunakan ClearOS
sudah ada di menu network->ip setting klik edit ikuti wizardnya dan jangan
lupa gateway dan dns nya sudah benar, untuk memastikan bisa lihat file ifcfg-eth0
ada di direktory /etc/sysconfig/network-scripts
[root@proxy network-scripts]# cat ifcfg-eth0
DEVICE=eth0
TYPE="Ethernet"
ONBOOT="yes"
USERCTL="no"
BOOTPROTO="static"
IPADDR="192.168.3.1"
NETMASK="255.255.255.0"
HWADDR="00:50:da:93:4c:53"
GATEWAY="192.168.3.2"
Jalankan Web Proxy ada di menu
gateway -> Web Proxy
klik start dan buat automatic
Jangan lupa buat acl nya dulu yah di Squid bisa dari webconfignya kok
Jangan lupa buat acl nya dulu yah di Squid bisa dari webconfignya kok
Sekarang Proxy kita sudah siap di uji coba
Rabu, 03 November 2010
Konfigurasi Pervasive Server 9.1 untuk Client menggunakan Magic 7/8
Configure Microkernel Router
* Access
- Gateway Durability uncheck
- Use Local Microkernel Engine check
- Use Remote Microkernel Engine check
- Use IDS uncheck
- Number of Load Retries 5
- Wire Encryption If Needed
- Wire Encryption Level Medium
* Communication protocols
- Enable Auto Reconnect uncheck
- Conecton Timeout in sec 15
- Supported Protocols
- SPXII uncheck
- TCP/IP check
- NETBIOS uncheck
* Performance tuning
- Use Cache Engine uncheck
* Security
- Runtime Server Support Yes
* Application characteristics
- Embedded Spaces check
- Splash Screen uncheck
- Verify Key Length check
Configure Local Engine
* Information
- Encoding windows-1252
* Access
- Accept Remote Request check
- Prompt for Client Credencials uncheck
- Allow Client-stored Credentials check
- Allow Cache Engine Connections uncheck
- Wire Encryption If Needed
- Wire Encryption Level Medium
* Communication protocols
- Enable Auto Reconnect uncheck
- TCP/IP Multihomed check
- Auto Reconnect Timeout in sec 15
- TCP/IP Port 1583
- Listen IP Address 0.0.0.0
- Supported Protocols
- SPXII uncheck
- TCP/IP check
* Compatibility
- Create File Version 9.x
- System Data If Needed
* Data integrity
- Archival Logging Selected Files uncheck
- Transaction Durability uncheck
- Transaction Logging check
- Operation Bundle Limit 65535
- Initiation Time Limit in msec 10000
- Wait Lock Timeout in msec 15000
* Debugging default
- Trace Operation uncheck
- Number of Bytes from Data Buffer 128
- Number of Bytes from Key Buffer 128
- Trace File LOcation C:\PVSW\bin\MKDE.TRA
- Select Operations All check
* Directories default
- Transaction Log Directory C:\PVSW\bin\MKDE\LOG
- Working Directory blank
- DBNames Configuration Location C:\WINDOWS
* Memory usage default
- System Cache uncheck
- Allocate Resources at Startup uncheck
- Back Buffer Size in byte(s) 0
- Minimal State Delay in msec 300000
* Performance tuning
- Index Balancing uncheck
- Limit Segment Size to 2Gb uncheck
- Communications Threads 32
- Cache Allocation Size in byte(s) 429382656
- Log Buffer Size in byte(s) 1046576
- Number of Input/Output Threads 64
- Transaction Log Size in byte(s) 2097152
- Max Microkernel Memory Usage 60
- File Growth Factor 15
Langganan:
Postingan (Atom)