Implicit SSL
Due to the number of steps required setting up a secure FTP server is relatively difficult because of this I have split this over two pages. The procedure is incremental first create a server certificate ensure it runs on a local network and finally configure for Internet access.
Server certificate
FileZilla has a built in certificate generator making this process very easy.
Enable SSL support:
1. Start the server by double clicking on filezila_start.bat
2. Start the administration interface, double click on filezilla_admin.bat
3. Select Edit > Settings
4. From the left menu clcik on SSL/TLS settings A)
5. Check Enable SSL/TSL support B)
6. Default Allow explicit SSL/TLS on normal connections C)
7. Checks Force explicit SSL/TLS D)
8. Default Listen for SSL/TLS –only connections on port 990 E)
9. Click Generate new certificate F)
Note: No need to fill in Private key or Certificate files or Key password boxes.
Fill in certificate details:
11. Seclect Key size 4096bit G)
12. Insert 2-Digit country code H)
13. Fill in some real or dummy information a)-f)
14. Fill in Common name I) Use localhost or your real domain name
15. Use browse J) and navigate to folder *\udrive\filezilla_server
this is where the certificate will be saved.
16. Click Generate certificate K) this will take a while.
17. When complete click OK L)
Enable user to use SSL:
18. From admin select Edit > Users
19. Select a user account M)
20. Check Bypass N)
21. Check Force SSL for user login O)
22. Click OK P)
23. Restart server
Client
I am assuming your are using FireFox and FireFTP
1. Enter a host R) either use IP address 127.0.0.1 or host name localhost
2. Enter an Account name Q) Can be anything you like.
3. Enter login name S) e.g fred (ftp user name)
4. Enter password T) for fred (ftp user account password)
5. Click on Connection tab U)
6. From the drop down menu V) select Implicit SSL (Good)
7. Check the port number 990 is set W)
8. Finally click OK X)
Local test:
From FireFTP click the Connect button enter name an password.
Your browser will have a whinge, create a certificate exception.
FTP folder will display.
Local network test:
On another PC connected to your network repeat the above steps 1-11.
Note: At step 1 enter your PC’s IP address. (See previous page how to obtain IP address)
That confirms you can access the FTP server across your network.
Source : http://wiki.uniformserver.com
Kamis, 11 Agustus 2011
Selasa, 19 Juli 2011
[Solved] Error 1606: Could not access network location 0\” in windows Xp
The error was faced by one of our readers who was irritated with the problem that whenever he tried to install or uninstall any program there comes an error message reading “Error 1606:Could not access network location 0\”
Well the fix is not that difficult but requires some Registry Tweaking so it would be better if you have a backup of your registry, but if you are confident enough then you can do it without that as well.
Steps:
1. Type regedit in the Run box to open the registry editor.
2. Now navigate to HKEY_CURRENT_USER -> Software -> Microsoft -> Windows -> Current Version -> Explorer -> User Shell Folders
3. Locate the key named “Recent” in the right side and delete it by right clicking on it.
4. Windows may require a restart.
The problem would have gone but if it hasn’t then have a look at these MS articles.
Well the fix is not that difficult but requires some Registry Tweaking so it would be better if you have a backup of your registry, but if you are confident enough then you can do it without that as well.
Steps:
1. Type regedit in the Run box to open the registry editor.
2. Now navigate to HKEY_CURRENT_USER -> Software -> Microsoft -> Windows -> Current Version -> Explorer -> User Shell Folders
3. Locate the key named “Recent” in the right side and delete it by right clicking on it.
4. Windows may require a restart.
The problem would have gone but if it hasn’t then have a look at these MS articles.
Senin, 11 Juli 2011
Installing LAMP on Ubuntu 10.04 and 10.10
If you're developing websites, it's nice to be able to test your code in the privacy of your own computer rather that out in the public internet. In order to do that, you'll need to install a webserver on your development computer. LAMP (Linux, Apache, MySQL, php) is one of the most common web hosting platforms, so it's a perfect environment for you to build and test your website code. If you carefully follow these step by step instructions, you'll have your own LAMP setup running in no time.
Install LAMP on Ubuntu
The Ubuntu developers have made it easy to install the LAMP server packages with a single command. Simply open a terminal window and enter the following.
sudo apt-get install lamp-server^
No, that's not a typo. Please make sure to include the caret (^). The command will not work without it.
sudo apt-get install lamp-server^
The apt package manager will show all the packages that need to be installed. Hit to confirm that you want to install them.
LAMP packages
You will then be prompted to change the password for the root user on the MySQL database.
Set MySQL root password
Enter the password you want. You'll be prompted to enter it a second time to confirm.
After you confirm your password, apt will continue to install the rest of the packages.
Congratulations, your LAMP installation is now complete! That was the easy part, now you need to get a few things configured to make your system easy to work with.
Test Apache
Open a web browser and enter the address http://localhost/. You should see a web page that says "It Works!"
Testing Apache
Test php
Now that you know Apache works, you'll want to test the php installation. You'll need to create a file in /var/www called testing.php. Open a terminal and enter:
sudo nano /var/www/testing.php
Enter the following line into the text editor, save the file and exit.
Next, restart Apache with the following terminal command:
sudo /etc/init.d/apache2 restart
Now go back to your web browser and enter the address http://localhost/testing.php/. You should see a page displaying version information for your php installation.
php Information
Configure MySQL
Since I'm installing LAMP for a web development environment, I want the MySQL database to be bound to the localhost IP address. This should be 127.0.0.1 for your system. You can verify it with this terminal command.
cat /etc/hosts | grep localhost
You'll now want to verify that the correct bind address is set up in MySQL's my.cnf file.
cat /etc/mysql/my.cnf | grep bind-address
You should see a line that looks like this:
bind-address = 127.0.0.1
If the IP address doesn't match the one for your system, you'll need to edit the my.cnf file to correct it.
Install phpMyAdmin
You don't need to install phpMyAdmin, but it's a much easier way to get in and adjust things in your MySQL database if you're not familiar with MySQL's commands. You can install phpMyAdmin from the command line with:
sudo apt-get install libapache2-mod-auth-mysql phpmyadmin
The installation will prompt you to select a web server for automatic configuration.
phpMyAdmin Setup
This is important! Use the space bar on your keyboard to select apache2. Make sure there's a * next to apache2 like the picture below and then hit. (Click the picture to enlarge it and see what I'm talking about.)
phpMyAdmin Setup: select apache2
The next screen will explain some information about database configuration. Hit the key to move on.
phpMyAdmin database config
Another screen will come up asking if you want to configure a new database called dbconfig-common. Since this is a fresh installation, use the key to select Yes and hit .
phpMyAdmin dbconfig-common
You'll be prompted next to enter the MySQL root password. Enter the MySQL root password that you created earlier, hit to select Ok and hit .
MySQL root password
You'll then be prompted to enter a MySQL application password for phpmyadmin. You can hit and a random password will be generated. I chose to use the same password that I used for the root MySQL password.
MySQL application password
If you enter your own password, a password confirmation screen will come up. Confirm your password.
MySQL application password confirmation
Your phpMyAdmin installation and configuration is now complete.
Testing phpMyAdmin
Open your web browser and enter the address http://localhost/phpmyadmin/. You should see a page like this.
phpMyAdmin log in
You can log in with the username root and the root password that you created earlier.
Logged into phpMyAdmin
Congratulations, you're now ready to start building your local website. If you're only working on one site you can put all of your files into /var/www. If you'll be working on multiple sites you may want to consider some additional Apache configuration to keep things neat and clean on you system.
Install LAMP on Ubuntu
The Ubuntu developers have made it easy to install the LAMP server packages with a single command. Simply open a terminal window and enter the following.
sudo apt-get install lamp-server^
No, that's not a typo. Please make sure to include the caret (^). The command will not work without it.
sudo apt-get install lamp-server^
The apt package manager will show all the packages that need to be installed. Hit
LAMP packages
You will then be prompted to change the password for the root user on the MySQL database.
Set MySQL root password
Enter the password you want. You'll be prompted to enter it a second time to confirm.
After you confirm your password, apt will continue to install the rest of the packages.
Congratulations, your LAMP installation is now complete! That was the easy part, now you need to get a few things configured to make your system easy to work with.
Test Apache
Open a web browser and enter the address http://localhost/. You should see a web page that says "It Works!"
Testing Apache
Test php
Now that you know Apache works, you'll want to test the php installation. You'll need to create a file in /var/www called testing.php. Open a terminal and enter:
sudo nano /var/www/testing.php
Enter the following line into the text editor, save the file and exit.
Next, restart Apache with the following terminal command:
sudo /etc/init.d/apache2 restart
Now go back to your web browser and enter the address http://localhost/testing.php/. You should see a page displaying version information for your php installation.
php Information
Configure MySQL
Since I'm installing LAMP for a web development environment, I want the MySQL database to be bound to the localhost IP address. This should be 127.0.0.1 for your system. You can verify it with this terminal command.
cat /etc/hosts | grep localhost
You'll now want to verify that the correct bind address is set up in MySQL's my.cnf file.
cat /etc/mysql/my.cnf | grep bind-address
You should see a line that looks like this:
bind-address = 127.0.0.1
If the IP address doesn't match the one for your system, you'll need to edit the my.cnf file to correct it.
Install phpMyAdmin
You don't need to install phpMyAdmin, but it's a much easier way to get in and adjust things in your MySQL database if you're not familiar with MySQL's commands. You can install phpMyAdmin from the command line with:
sudo apt-get install libapache2-mod-auth-mysql phpmyadmin
The installation will prompt you to select a web server for automatic configuration.
phpMyAdmin Setup
This is important! Use the space bar on your keyboard to select apache2. Make sure there's a * next to apache2 like the picture below and then hit
phpMyAdmin Setup: select apache2
The next screen will explain some information about database configuration. Hit the
phpMyAdmin database config
Another screen will come up asking if you want to configure a new database called dbconfig-common. Since this is a fresh installation, use the
phpMyAdmin dbconfig-common
You'll be prompted next to enter the MySQL root password. Enter the MySQL root password that you created earlier, hit
MySQL root password
You'll then be prompted to enter a MySQL application password for phpmyadmin. You can hit
MySQL application password
If you enter your own password, a password confirmation screen will come up. Confirm your password.
MySQL application password confirmation
Your phpMyAdmin installation and configuration is now complete.
Testing phpMyAdmin
Open your web browser and enter the address http://localhost/phpmyadmin/. You should see a page like this.
phpMyAdmin log in
You can log in with the username root and the root password that you created earlier.
Logged into phpMyAdmin
Congratulations, you're now ready to start building your local website. If you're only working on one site you can put all of your files into /var/www. If you'll be working on multiple sites you may want to consider some additional Apache configuration to keep things neat and clean on you system.
Rabu, 11 Mei 2011
Mengubah batas maksimum koneksi pada Windows XP
Sebagai pengguna komputer, mungkin pernah ada kejadian yaitu pada komputer yang menjalankan Windows XP atau Windows 2000, ketika kita mencoba untuk terhubung ke komputer Windows XP baik untuk sharing folder maupun printer, kita menerima sebuah pesan seperti berikut: "No more connections can be made to this remote computer at this time because there are already as many connections as the computer can accept". Hal ini bisa terjadi karena jumlah koneksi dari client ke komputer tersebut sudah mencapai jumlah maksimum yaitu 10 koneksi.
Segala bentuk koneksi baik itu sharing file/ folder, printer, dll yang tidak ada aktivitasnya selama interval waktu tertentu, secara otomatis akan diputuskan oleh sistem. Defaultnya, batas waktu untuk autodisconnect ini adalah sekitar 15 menit. Ketika koneksi ini diputus, maka salah satu jalur koneksi (dari 10 jalur koneksi) dapat dipakai oleh koneksi dari komputer lain yang sebelumnya tidak bisa terhubung (lihat message diatas).
Pada umumnya kita sering merestart komputer server, agar semua jalur koneksi kembali kosong, sehingga user lain yang membutuhkan koneksi ke server dapat segera terhubung. Hal ini tentu sangat merepotkan terlebih jika komputer server (dengan sistem operasi windows xp) ini memiliki jumlah client lebih dari 10. Artinya setiap client harus secara bergantian dalam melakukan koneksi ke server ini.
Untuk mengubah batas maksimum koneksi pada windows XP ini, kita dapat menggunakan program yang bernama Intelligent TCPIP.SYS Patcher (definisi Patch bisa dibaca disini)
Cara menggunakan :
1. Download file pendukung disini
2. Extract file PatchTCPIP.zip
3. Jalankan file PatchTCPIP.exe
4. Pada bagian Do you really want to change the limit to 50? (Y=Yes / N=No / C=Change limit), ketik "Y"
5. Tunggu sampai proses pengeditan berakhir
6. Restart komputer
7. Setelah login kembali, coba jalankan kembali file PatchTCPIP.exe, dan lihat pada bagian Current maximum concurrent half-open connection sudah berubah dari 10 ke 50. Artinya batas maksium koneksi ke windows XP tidak lagi hanya 10 client, tetapi menjadi 50 client.
Segala bentuk koneksi baik itu sharing file/ folder, printer, dll yang tidak ada aktivitasnya selama interval waktu tertentu, secara otomatis akan diputuskan oleh sistem. Defaultnya, batas waktu untuk autodisconnect ini adalah sekitar 15 menit. Ketika koneksi ini diputus, maka salah satu jalur koneksi (dari 10 jalur koneksi) dapat dipakai oleh koneksi dari komputer lain yang sebelumnya tidak bisa terhubung (lihat message diatas).
Pada umumnya kita sering merestart komputer server, agar semua jalur koneksi kembali kosong, sehingga user lain yang membutuhkan koneksi ke server dapat segera terhubung. Hal ini tentu sangat merepotkan terlebih jika komputer server (dengan sistem operasi windows xp) ini memiliki jumlah client lebih dari 10. Artinya setiap client harus secara bergantian dalam melakukan koneksi ke server ini.
Untuk mengubah batas maksimum koneksi pada windows XP ini, kita dapat menggunakan program yang bernama Intelligent TCPIP.SYS Patcher (definisi Patch bisa dibaca disini)
Cara menggunakan :
1. Download file pendukung disini
2. Extract file PatchTCPIP.zip
3. Jalankan file PatchTCPIP.exe
4. Pada bagian Do you really want to change the limit to 50? (Y=Yes / N=No / C=Change limit), ketik "Y"
5. Tunggu sampai proses pengeditan berakhir
6. Restart komputer
7. Setelah login kembali, coba jalankan kembali file PatchTCPIP.exe, dan lihat pada bagian Current maximum concurrent half-open connection sudah berubah dari 10 ke 50. Artinya batas maksium koneksi ke windows XP tidak lagi hanya 10 client, tetapi menjadi 50 client.
Jumat, 29 April 2011
Blok Facebook di Jam Kerja dengan Firewall di mikrotik Router
Buat firewall untuk block akses ke facebook
/system script add name="fb-unblock" policy=write,read,policy,test,sniff source={/ip firewall filter set [/ip firewall filter find content="facebook"] disable="yes"
/system script add name="fb-block" policy=write,read,policy,test,sniff source={/ip firewall filter set [/ip firewall filter find content="facebook"] disable="no"
Kemudian Atur jadwal sesuai kebutuhan Anda :
/system scheduler add name="fb-08:00" start-date=Nov/09/2009 start-time=08:00:00 interval=1d on-event="fb-block"
/system scheduler add name="fb-12:00" start-date=Nov/09/2009 start-time=12:00:00 interval=1d on-event="fb-unblock
/system scheduler add name="fb-13:00" start-date=Nov/09/2009 start-time=13:00:00 interval=1d on-event="fb-block"
/system scheduler add name="fb-17:00" start-date=Nov/09/2009 start-time=17:00:00 interval=1d on-event="fb-unblock"
Thanks To Majapahit Crew
/system script add name="fb-unblock" policy=write,read,policy,test,sniff source={/ip firewall filter set [/ip firewall filter find content="facebook"] disable="yes"
/system script add name="fb-block" policy=write,read,policy,test,sniff source={/ip firewall filter set [/ip firewall filter find content="facebook"] disable="no"
Kemudian Atur jadwal sesuai kebutuhan Anda :
/system scheduler add name="fb-08:00" start-date=Nov/09/2009 start-time=08:00:00 interval=1d on-event="fb-block"
/system scheduler add name="fb-12:00" start-date=Nov/09/2009 start-time=12:00:00 interval=1d on-event="fb-unblock
/system scheduler add name="fb-13:00" start-date=Nov/09/2009 start-time=13:00:00 interval=1d on-event="fb-block"
/system scheduler add name="fb-17:00" start-date=Nov/09/2009 start-time=17:00:00 interval=1d on-event="fb-unblock"
Thanks To Majapahit Crew
Setting Anti DDOS di Router Mikrotik
Mencegah lebih baik dari pada mengobati, itulah pepatah lama yang masih berlaku dari jaman sebelum peradaban sampai dengan akhir dunia ini,
begitu juga di dunia Cyber ini, untuk kelancaran arus keluar masuka internet dan untuk menghindari traffic berlebihan yang sengaja seseorang kirimkan untuk mempengaruhi koneksi kita , bahkan bisa membuat koneksi internet kita drop, maka dari itu saya mencoba untuk berbagi setingan Anti DDOS di router Mikrotik
adapun setingannya sebagai berikut :
/ip firewall filter add chain=input protocol=tcp dst-port=1337 action=add-src-to-address-list address-list=DDOS address-list-timeout=15s comment="" disabled=no
/ip firewall filter add chain=input protocol=tcp dst-port=7331 src-address-list=knock action=add-src-to-address-list address-list=DDOS address-list-timeout=15m comment="" disabled=no
/ip firewall filter add chain=input connection-state=established action=accept comment="accept established connection packets" disabled=no
/ip firewall filter add chain=input connection-state=related action=accept comment="accept related connection packets" disabled=no
/ip firewall filter add chain=input connection-state=invalid action=drop comment="drop invalid packets" disabled=no
/ip firewall filter add chain=input protocol=tcp psd=21,3s,3,1 action=drop comment="Prot Scanner Detection" disabled=no
/ip firewall filteradd chain=input protocol=tcp connection-limit=10,32 action=add-src-to-address-list address-list=black_list address-list-timeout=1d comment="enter to blok ip black attacker" disabled=no
/ip firewall filter add chain=input protocol=icmp action=jump jump-target=ICMP comment="jump target chain ICMP" disabled=no
/ip firewall filter add chain=input action=jump jump-target=services comment="jump target chain services" disabled=no
/ip firewall filter add chain=input action=log log-prefix="Filter" comment="Write review Attacker's" disabled=no
/ip firewall filter add chain=input src-address=Subnet wAN action= accept comment="list IP yang boleh akses ke router"
/ip firewall filter add chain=input src-address=Subnet LAN action=accept
/ip firewall filter add chain=input src-address=Subnet DMZ action=accept
/ip firewall filter add chain=input action=drop comment="Blok All Undetection" disabled=no
Selamat mencoba,
Thanks To Mojopahit Crew
begitu juga di dunia Cyber ini, untuk kelancaran arus keluar masuka internet dan untuk menghindari traffic berlebihan yang sengaja seseorang kirimkan untuk mempengaruhi koneksi kita , bahkan bisa membuat koneksi internet kita drop, maka dari itu saya mencoba untuk berbagi setingan Anti DDOS di router Mikrotik
adapun setingannya sebagai berikut :
/ip firewall filter add chain=input protocol=tcp dst-port=1337 action=add-src-to-address-list address-list=DDOS address-list-timeout=15s comment="" disabled=no
/ip firewall filter add chain=input protocol=tcp dst-port=7331 src-address-list=knock action=add-src-to-address-list address-list=DDOS address-list-timeout=15m comment="" disabled=no
/ip firewall filter add chain=input connection-state=established action=accept comment="accept established connection packets" disabled=no
/ip firewall filter add chain=input connection-state=related action=accept comment="accept related connection packets" disabled=no
/ip firewall filter add chain=input connection-state=invalid action=drop comment="drop invalid packets" disabled=no
/ip firewall filter add chain=input protocol=tcp psd=21,3s,3,1 action=drop comment="Prot Scanner Detection" disabled=no
/ip firewall filteradd chain=input protocol=tcp connection-limit=10,32 action=add-src-to-address-list address-list=black_list address-list-timeout=1d comment="enter to blok ip black attacker" disabled=no
/ip firewall filter add chain=input protocol=icmp action=jump jump-target=ICMP comment="jump target chain ICMP" disabled=no
/ip firewall filter add chain=input action=jump jump-target=services comment="jump target chain services" disabled=no
/ip firewall filter add chain=input action=log log-prefix="Filter" comment="Write review Attacker's" disabled=no
/ip firewall filter add chain=input src-address=Subnet wAN action= accept comment="list IP yang boleh akses ke router"
/ip firewall filter add chain=input src-address=Subnet LAN action=accept
/ip firewall filter add chain=input src-address=Subnet DMZ action=accept
/ip firewall filter add chain=input action=drop comment="Blok All Undetection" disabled=no
Selamat mencoba,
Thanks To Mojopahit Crew
Selasa, 08 Maret 2011
Featured
Senin, 14 September 2009
Cara Membuat DNS Server di Ubuntu 9.04
Dalam pembelajaran kali ini saya ingin menjelaskan tentang cara membuat DNS server pada ubuntu 9.04.pengalaman saya jika ingin mengetahui banyak tentang dns server sebaiknya pahami dulu apa itu DNS server???
DNS Server (Domain Name System) : sistem yang menyimpan informasi tentang nama host maupun nama domain dalam bentuk basis data tersebar (distributed database) di dalam jaringan komputer, misalkan: internet. DNS menyediakan alamat ip untuk setiap nama host dan mendata setiap server transmisi surat (mail exchange server) yang menerima surat elektronik (email) untuk setiap domain. Lebih lengkapnya cari aja di wilkipedia... hehe,,,,
Untuk pembuatan DNS nya berikut ini :
1. Pertama - tama update dulu ubuntu-mu.
#apt-get update
root@rafflesia-desktop:~# apt-get update
#apt-get install bind9
3. Setelah proses install bind selesai selanjutnya kamu buat Domain yang akan kamu jadikan DNS nya, dengan mengedit file /etc/bind/named.conf.local
rafflesia@rafflesia-desktop:~$ sudo gedit /etc/bind/named.conf.local
lalu edit file named.conf.local
//
// Do any local configuration here
//
// Consider adding the 1918 zones here, if they are not used in your
// organization
//include "/etc/bind/zones.rfc1918";
zone "domain-lu.com" IN {
type master;
file "/etc/bind/domain-lu.com";
};
zone "0.168.192.in-addr.arpa" IN {
type master;
file "/etc/bind/db.domain-lu.com";
};
lalu simpan dengan ctrl+S
(zone "0.168.192.in-addr.arpa" IN maksudnya zona ip pada domain yang dijadikan DNS server.pada penulisan tersebut memang dibalik, jadi jika ip komputer yang akan kamu jadikan sebagai DNS sever adalah 192.168.0.120 maka penulisannya adalah "0.168.192". ip terakhir memang tidak tidak ditulis.bingung yaw,, hehe,,diulang bacanya dan dipahami browww....
4. Lalu kamu buat nama domain-lu.com di directory /etc/bind/domain-lu.com
dengan mengcopy db.127. caranya:
rafflesia@rafflesia-desktop:~$ sudo cp /etc/bind/db.127 /etc/bind/domain-lu.com
Setelah itu kamu copy juga db.127 untuk db.domain-lu.com caranya :
rafflesia@rafflesia-desktop:~$ sudo cp /etc/bind/db.127 /etc/bind/db.domain-lu.com
5. Lalu kamu edit file /etc/bind/domain-lu.com caranya :
rafflesia@rafflesia-desktop:~$ gedit /etc/bind/domain-lu.com
lalu akan muncul text editor yang berisi
;
; BIND reverse data file for local loopback interface
;
$TTL 604800
@ IN SOA ns.domain-lu.com. root.domain-lu.com. (
1 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ IN NS ns.domain-lu.com.
@ IN A ip_domain-lu
www IN A ip_domain-lu
lalu simpan dengan ctrl+S
(ip_domain-lu maksudnya adalah ip komputer yang ingin dijadikan sebagai DNS server)
6. Kemudian setelah itu kamu edit file db.domain-lu.com yang uda kamu buat tadi.
caranya : rafflesia@rafflesia-desktop:~$ gedit /etc/bind/db.domain-lu.com
muncul deh file tersebut berupa text editor.
;
; BIND reverse data file for local loopback interface
;
$TTL 604800
@ IN SOA ns.domain-lu.com. root.domain-lu.com. (
1 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ IN NS ns.domain-lu.com.
@ IN PTR ip_domain-lu
ns IN A ip_domain-lu
lalu simpan dengan ctrl+S
7. Setelah itu ganti ip DNS server kamu dengan ip kamu.. paham kan maksudnya broww, dengan mengedit file /etc/resolv.conf
caranya : rafflesia@rafflesia-desktop:~$ sudo gedit /etc/resolv.conf
# Generated by NetworkManager
nameserver 202.134.1.10
nah, umpama nameserver kamu awalnya 202.134.1.10 sekarang kamu ganti dengan ip_komputer yang kamu jadikan DNS server, jadi :
# Generated by NetworkManager
nameserver 192.168.0.120
disini saya menggunakan ip 192.168.0.120 jadi nameserver nya saya isi 192.168.0.120 jadi ya kamu isi ip_komputer yang kamu jadikan DNS server.
paham kan bosssss. hehe,,,
8. Lalu langkah berikutnya adalah restart bind nya
caranya : rafflesia@rafflesia-desktop:~$ sudo /etc/init.d/bind9 restart
* Stopping domain name service... bind9 [ OK ]
* Starting domain name service... bind9 [ OK ]
jika peringatan tersebut menunjukkan semuanya OK maka konfigurasi DNS kamu berhasil,tidak ada masalah pada konfigurasi DNS yang telah kamu buat. tetapi bila ada peringatan yang menunjukan fail maka se segeralah mengecek kembali konfigurasi DNS yang kamu buat tadi, bisa jadi ada yang kurang,salah penulisan maupun kode juga berpengaruh...
9. Okey kita lanjut, jika tadi proses restart bind9 telah berhasil maka kamu nslookup domain nya.
caranya : rafflesia@rafflesia-desktop:~$ nslookup domain-lu.com
Server: 192.168.0.120
Address: 192.168.0.120#53
Name: domain-lu.com
Address: 192.168.0.120
saya menggunakan ip komputer 192.168.0.120 .Jadi server dan address akan menunjukkan ip komputer kamu yang di jadikan DNS server
10. Lalu kamu ping deh di terminal domain-lu.com apakah sudah terkoneksi apa belum.
caranya : rafflesia@rafflesia-desktop:~$ ping domain-lu.com
PING domain-lu.com (192.168.0.120) 56(84) bytes of data.
64 bytes from rafflesia-desktop.local (192.168.0.120): icmp_seq=1 ttl=64 time=0.032 ms
64 bytes from rafflesia-desktop.local (192.168.0.120): icmp_seq=2 ttl=64 time=0.061 ms
64 bytes from rafflesia-desktop.local (192.168.0.120): icmp_seq=3 ttl=64 time=0.056 ms
64 bytes from rafflesia-desktop.local (192.168.0.120): icmp_seq=4 ttl=64 time=0.054 ms
"(192.168.0.120)" maksudnya adalah server local kamu sekarang berpindah di komputer kamu yang uda kamu buat domain nya untuk dijadikan DNS server.
11. Lalu kamu buka firefox kemudian url nya kamu isi dengan nama domain yang uda kamu buat tadi. misalnya : www.domain-lu.com
Setting file resolv.conf
#nano /etc/resolv.conf
– tulis bagian dibawah –
search domainlo.com
nameserver 192.168.168.1
domain domainlo.com
domain www.domainlo.com
– berakhir diatas tulisan ini –
simpen dengan ctrl+x tekan y kemudian enter.
7. Buat file options di folder /etc/network
# nano /etc/network/options
– isikan seperti dibawah ini –
ip_forward = yes
spoofprotect = yes
syncookies = no
– berakhir disini –
simpen make ctrl+x tekan y kemudian enter.
8. edit juga file hosts di folder /etc
#nano /etc/hosts
– tambahkan dibawahnya –
192.168.168.1 domainlo.com
– berakhir diatas tulisan ini –
simpen seperti biasa
9. restart program bind dan network nya
#/etc/init.d/bind9 restart
#/etc/init.d/networking restart
10. Test dengan perintah
#dig domainlo.com
Senin, 14 September 2009
Cara Membuat DNS Server di Ubuntu 9.04
Dalam pembelajaran kali ini saya ingin menjelaskan tentang cara membuat DNS server pada ubuntu 9.04.pengalaman saya jika ingin mengetahui banyak tentang dns server sebaiknya pahami dulu apa itu DNS server???
DNS Server (Domain Name System) : sistem yang menyimpan informasi tentang nama host maupun nama domain dalam bentuk basis data tersebar (distributed database) di dalam jaringan komputer, misalkan: internet. DNS menyediakan alamat ip untuk setiap nama host dan mendata setiap server transmisi surat (mail exchange server) yang menerima surat elektronik (email) untuk setiap domain. Lebih lengkapnya cari aja di wilkipedia... hehe,,,,
Untuk pembuatan DNS nya berikut ini :
1. Pertama - tama update dulu ubuntu-mu.
#apt-get update
root@rafflesia-desktop:~# apt-get update
#apt-get install bind9
3. Setelah proses install bind selesai selanjutnya kamu buat Domain yang akan kamu jadikan DNS nya, dengan mengedit file /etc/bind/named.conf.local
rafflesia@rafflesia-desktop:~$ sudo gedit /etc/bind/named.conf.local
lalu edit file named.conf.local
//
// Do any local configuration here
//
// Consider adding the 1918 zones here, if they are not used in your
// organization
//include "/etc/bind/zones.rfc1918";
zone "domain-lu.com" IN {
type master;
file "/etc/bind/domain-lu.com";
};
zone "0.168.192.in-addr.arpa" IN {
type master;
file "/etc/bind/db.domain-lu.com";
};
lalu simpan dengan ctrl+S
(zone "0.168.192.in-addr.arpa" IN maksudnya zona ip pada domain yang dijadikan DNS server.pada penulisan tersebut memang dibalik, jadi jika ip komputer yang akan kamu jadikan sebagai DNS sever adalah 192.168.0.120 maka penulisannya adalah "0.168.192". ip terakhir memang tidak tidak ditulis.bingung yaw,, hehe,,diulang bacanya dan dipahami browww....
4. Lalu kamu buat nama domain-lu.com di directory /etc/bind/domain-lu.com
dengan mengcopy db.127. caranya:
rafflesia@rafflesia-desktop:~$ sudo cp /etc/bind/db.127 /etc/bind/domain-lu.com
Setelah itu kamu copy juga db.127 untuk db.domain-lu.com caranya :
rafflesia@rafflesia-desktop:~$ sudo cp /etc/bind/db.127 /etc/bind/db.domain-lu.com
5. Lalu kamu edit file /etc/bind/domain-lu.com caranya :
rafflesia@rafflesia-desktop:~$ gedit /etc/bind/domain-lu.com
lalu akan muncul text editor yang berisi
;
; BIND reverse data file for local loopback interface
;
$TTL 604800
@ IN SOA ns.domain-lu.com. root.domain-lu.com. (
1 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ IN NS ns.domain-lu.com.
@ IN A ip_domain-lu
www IN A ip_domain-lu
lalu simpan dengan ctrl+S
(ip_domain-lu maksudnya adalah ip komputer yang ingin dijadikan sebagai DNS server)
6. Kemudian setelah itu kamu edit file db.domain-lu.com yang uda kamu buat tadi.
caranya : rafflesia@rafflesia-desktop:~$ gedit /etc/bind/db.domain-lu.com
muncul deh file tersebut berupa text editor.
;
; BIND reverse data file for local loopback interface
;
$TTL 604800
@ IN SOA ns.domain-lu.com. root.domain-lu.com. (
1 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
604800 ) ; Negative Cache TTL
;
@ IN NS ns.domain-lu.com.
@ IN PTR ip_domain-lu
ns IN A ip_domain-lu
lalu simpan dengan ctrl+S
7. Setelah itu ganti ip DNS server kamu dengan ip kamu.. paham kan maksudnya broww, dengan mengedit file /etc/resolv.conf
caranya : rafflesia@rafflesia-desktop:~$ sudo gedit /etc/resolv.conf
# Generated by NetworkManager
nameserver 202.134.1.10
nah, umpama nameserver kamu awalnya 202.134.1.10 sekarang kamu ganti dengan ip_komputer yang kamu jadikan DNS server, jadi :
# Generated by NetworkManager
nameserver 192.168.0.120
disini saya menggunakan ip 192.168.0.120 jadi nameserver nya saya isi 192.168.0.120 jadi ya kamu isi ip_komputer yang kamu jadikan DNS server.
paham kan bosssss. hehe,,,
8. Lalu langkah berikutnya adalah restart bind nya
caranya : rafflesia@rafflesia-desktop:~$ sudo /etc/init.d/bind9 restart
* Stopping domain name service... bind9 [ OK ]
* Starting domain name service... bind9 [ OK ]
jika peringatan tersebut menunjukkan semuanya OK maka konfigurasi DNS kamu berhasil,tidak ada masalah pada konfigurasi DNS yang telah kamu buat. tetapi bila ada peringatan yang menunjukan fail maka se segeralah mengecek kembali konfigurasi DNS yang kamu buat tadi, bisa jadi ada yang kurang,salah penulisan maupun kode juga berpengaruh...
9. Okey kita lanjut, jika tadi proses restart bind9 telah berhasil maka kamu nslookup domain nya.
caranya : rafflesia@rafflesia-desktop:~$ nslookup domain-lu.com
Server: 192.168.0.120
Address: 192.168.0.120#53
Name: domain-lu.com
Address: 192.168.0.120
saya menggunakan ip komputer 192.168.0.120 .Jadi server dan address akan menunjukkan ip komputer kamu yang di jadikan DNS server
10. Lalu kamu ping deh di terminal domain-lu.com apakah sudah terkoneksi apa belum.
caranya : rafflesia@rafflesia-desktop:~$ ping domain-lu.com
PING domain-lu.com (192.168.0.120) 56(84) bytes of data.
64 bytes from rafflesia-desktop.local (192.168.0.120): icmp_seq=1 ttl=64 time=0.032 ms
64 bytes from rafflesia-desktop.local (192.168.0.120): icmp_seq=2 ttl=64 time=0.061 ms
64 bytes from rafflesia-desktop.local (192.168.0.120): icmp_seq=3 ttl=64 time=0.056 ms
64 bytes from rafflesia-desktop.local (192.168.0.120): icmp_seq=4 ttl=64 time=0.054 ms
"(192.168.0.120)" maksudnya adalah server local kamu sekarang berpindah di komputer kamu yang uda kamu buat domain nya untuk dijadikan DNS server.
11. Lalu kamu buka firefox kemudian url nya kamu isi dengan nama domain yang uda kamu buat tadi. misalnya : www.domain-lu.com
Setting file resolv.conf
#nano /etc/resolv.conf
– tulis bagian dibawah –
search domainlo.com
nameserver 192.168.168.1
domain domainlo.com
domain www.domainlo.com
– berakhir diatas tulisan ini –
simpen dengan ctrl+x tekan y kemudian enter.
7. Buat file options di folder /etc/network
# nano /etc/network/options
– isikan seperti dibawah ini –
ip_forward = yes
spoofprotect = yes
syncookies = no
– berakhir disini –
simpen make ctrl+x tekan y kemudian enter.
8. edit juga file hosts di folder /etc
#nano /etc/hosts
– tambahkan dibawahnya –
192.168.168.1 domainlo.com
– berakhir diatas tulisan ini –
simpen seperti biasa
9. restart program bind dan network nya
#/etc/init.d/bind9 restart
#/etc/init.d/networking restart
10. Test dengan perintah
#dig domainlo.com
Langganan:
Postingan (Atom)