Sunday, 1 January 2017

Superlab Mikrotik ( Lab 8 )

Assalamualaikum,

Topologi



Tujuan

- Mengkonfigurasi PPPoE Server dan Client
- Firewall Filter Rule
- Drop packet menggunakan address list
- Logging packet ICMP dengan firewall
- DNS Static pada router
- DHCP Server
- The dude monitoring

Konfigurasi


R1

Tambahkan interface bridge untuk menghubungkan  PC2 dan PC3.
[admin@Mikrotik] > system identity set name=R1
[admin@R1] > interface bridge add name=bridge
[admin@R1] > interface bridge port add interface=ether3 bridge=bridge
[admin@R1] > interface bridge port add interface=ether4 bridge=bridge
[admin@R1] > ip dhcp-client add interface=ether1 add-default-route=yes use-peer-dns=yes use-peer-ntp=yes disable=no
[admin@R1] > ip address add address=192.168.1.1/30 interface=ether2
[admin@R1] > ip address add address=192.168.10.1/24 interface=bridge
Setelah itu konfigurasi router agar dapat terhubung ke internet. Lalu tambahkan nat pada router. 

[admin@R1] > ip dns set servers=8.8.8.8 allow-remote-requests=yes
[admin@R1] > ip firewall nat add chain=srcnat action=masquerade out-interface=ether1
Lakukan konfigurasi yang sama kepada router lainnya agar router dan client dapat mengakses internet. 
R2 
[admin@Mikrotik] > system identity set name=R2
[admin@R2] > ip dhcp-client add interface=ether1 add-default-route=yes use-peer-dns=yes use-peer-ntp=yes disable=no
[admin@R2] > ip address add address=192.168.2.1/30 interface=ether2
[admin@R2] > ip address add address=192.168.20.1/24 interface=ether3
[admin@R2] > ip dns set servers=8.8.8.8 allow-remote-requests=yes
[admin@R2] > ip firewall nat add chain=srcnat action=masquerade out-interface=ether1
Setelah kedua router tersebut dapat terhubung dengan internet, tambahkan dhcp server untuk setiap jaringan local yang ada pada setiap router kecuali untuk PC1 dan PC7.
[admin@R1] > ip dhcp-server setup
Select interface to run DHCP server on

dhcp server interface: bridge1
Select network for DHCP addresses

dhcp address space: 192.168.10.0/24
Select gateway for given network

gateway for dhcp network: 192.168.10.1
Select pool of ip addresses given out by DHCP server

addresses to give out: 192.168.10.2-192.168.10.254
Select DNS servers

dns servers: 8.8.8.8
Select lease time

lease time: 3d
 [admin@R2] > ip dhcp-server setup
Select interface to run DHCP server on

dhcp server interface: ether3
Select network for DHCP addresses

dhcp address space: 192.168.20.0/24
Select gateway for given network

gateway for dhcp network: 192.168.20.1
Select pool of ip addresses given out by DHCP server

addresses to give out: 192.168.20.2-192.168.20.254
Select DNS servers

dns servers: 8.8.8.8
Select lease time

lease time: 3d
Setelah itu tambahkan  PPPoE server pada R1 agar PC1 mendapatkan accress internet menggunakan layanan PPPoe.
[admin@R1] > ip pool add name=PPPoE ranges=192.168.1.2-192.168.1.254
[admin@R1] > ppp profile add name=PPPoE local-address=192.168.1.1 remote-address=192.168.1.2
[admin@R1] > interface pppoe-server server add interface=ether2 service-name=PPPoE default-profile=PPPoE
[admin@R1] > ppp secret add name=idn password=12345 service=pppoe profile=PPPoE
[admin@R1] > ip firewall nat add chain=srcnat src-address=192.168.1.2-192.168.1.254 out-interface=ether1 action=masquerade
Setelah itu konfigurasi PC agar menggunakan sambungan PPPoE yang sudah dibuat.  


Firewall filter (Nyusul)
Firewall Logging (Nyusul)

Share this