NUBSolutions

Just another WordPress.com weblog

Archive for the ‘asbsmf’ Category

Aktifasi IP Forward dan Internet routing pada linux 2

Posted by nubsolutions on June 15, 2009

Kadang-kadang,saat memasukkan perintah ip forward dibawah ini:

#echo 1 > /proc/sys/net/ipv4/ip_forward

fungsi ip forward akan hilang setelah di restart. Hal itu terjadi karena terjadi error pada saat penyimpanan di /proc/sys/net/ipv4/ip_forward. Untuk mensiasatinya, simpan command diatas tersebut di /etc/rc.d/rc.local. Sehingga pada saat linux di restart, fungsi ip forward akan langsung aktif.

Advertisements

Posted in asbsmf | Leave a Comment »

VPN Bagian 1

Posted by nubsolutions on April 29, 2009

OS: FC9

########SISI SERVER##########
[root@vpn ~]# rpm -qa | grep pptp
pptp-1.7.1-4.fc9.i386
pptpd-1.3.4-1.fc9.1.i386

Install pptpd
[root@localhost Download]# wget http://poptop.sourceforge.net/yum/stable/packages/pptpd-1.3.4-1.fc9.1.i386.rpm
–2009-04-06 15:44:30– http://poptop.sourceforge.net/yum/stable/packages/pptpd-1.3.4-1.fc9.1.i386.rpm
Resolving poptop.sourceforge.net… 216.34.181.96
Connecting to poptop.sourceforge.net|216.34.181.96|:80… connected.
HTTP request sent, awaiting response… 200 OK
Length: 83410 (81K) [application/x-rpm]
Saving to: `pptpd-1.3.4-1.fc9.1.i386.rpm’

100%[======================================>] 83,410 83.7K/s in 1.0s

2009-04-06 15:44:33 (83.7 KB/s) – `pptpd-1.3.4-1.fc9.1.i386.rpm’ saved [83410/83410]

[root@localhost Download]# ls
pptpd-1.3.4-1.fc9.1.i386.rpm
[root@localhost Download]# rpm -ivh pptpd-1.3.4-1.fc9.1.i386.rpm
warning: pptpd-1.3.4-1.fc9.1.i386.rpm: Header V3 DSA signature: NOKEY, key ID 862acc42
Preparing… ########################################### [100%]
1:pptpd ########################################### [100%]
[root@localhost Download]# rpm -qa | grep ppt
pptpd-1.3.4-1.fc9.1.i386

cari module ppp

[root@localhost Download]# wget ftp://fr2.rpmfind.net/linux/fedora/updates/9/x86_64.newkey/ppp-devel-2.4.4-7.fc9.i386.rpm
–2009-04-06 15:58:30– ftp://fr2.rpmfind.net/linux/fedora/updates/9/x86_64.newkey/ppp-devel-2.4.4-7.fc9.i386.rpm
=> `ppp-devel-2.4.4-7.fc9.i386.rpm’
Resolving fr2.rpmfind.net… 195.220.108.108
Connecting to fr2.rpmfind.net|195.220.108.108|:21… connected.
Logging in as anonymous … Logged in!
==> SYST … done. ==> PWD … done.
==> TYPE I … done. ==> CWD /linux/fedora/updates/9/x86_64.newkey … done.
==> SIZE ppp-devel-2.4.4-7.fc9.i386.rpm … 45215
==> PASV … done. ==> RETR ppp-devel-2.4.4-7.fc9.i386.rpm … done.
Length: 45215 (44K)

100%[=======================================>] 45,215 29.4K/s in 1.5s

2009-04-06 15:58:36 (29.4 KB/s) – `ppp-devel-2.4.4-7.fc9.i386.rpm’ saved [45215]

[root@localhost Download]# ls
ppp-devel-2.4.4-7.fc9.i386.rpm pptpd-1.3.4-1.fc9.1.i386.rpm
[root@localhost Download]# ls -la
total 144
drwxr-xr-x 2 mis mis 4096 2009-04-06 15:58 .
drwx—— 26 mis mis 4096 2009-04-06 14:48 ..
-rw-r–r– 1 root root 45215 2009-04-06 15:58 ppp-devel-2.4.4-7.fc9.i386.rpm
-rw-r–r– 1 root root 83410 2008-05-15 04:49 pptpd-1.3.4-1.fc9.1.i386.rpm
[root@localhost Download]# rpm -ivh ppp-devel-2.4.4-7.fc9.i386.rpm
warning: ppp-devel-2.4.4-7.fc9.i386.rpm: Header V3 DSA signature: NOKEY, key ID 6df2196f
Preparing… ########################################### [100%]
1:ppp-devel ########################################### [100%]
[root@localhost Download]#

Edit pptpd.conf
[root@vpn etc]# vi /etc/pptpd.conf
name *
auth
+chap
ms-dns 200.x.x.x
proxyarp
debug
lock
nobsdcomp
novjccomp
nologfd
ppp /usr/sbin/pppd
option /etc/ppp/options.pptpd
debug
logwtmp
localip 202.x.x.x
remoteip 10.10.1.150-155

Edit user akses
[root@vpn ppp]# vi chap-secrets
# Secrets for authentication using CHAP
# client server secret IP addresses
hr * hr *
ra * ra *

check selinux secara command line, inaktifkan selinux, untuk lokalisir agar fungsi VPN benar benar jalan
#cat/selinux/enforce

jika nilai 1 berarti aktif
jika nilai 0 berarti tidak aktif

untuk disable

#echo 0 >/selinux/enforce

untuk enable

#echo 1 >/selinux/enforce

jika ingin secara permanent, maka buka file /etc/selinux/config

pada bagian SELINUX=enforcing , diganti jadi disabled

Bila masih belum bisa login juga, masukkan service vpn di dalan firewall, atau matikan dulu fungsi firewall untuk memastikan vpn sudah berjalan dengan benar.

Aktifasi IP Forwarding
vim/etc/sysctl.conf
net.ipv4.ip_forward = 1

jika ingin aktifasi langsung
[root@localhost sbin]# /sbin/sysctl -w net.ipv4.ip_forward=1

#########MONITORING##############
[root@vpn etc]# ps ax | grep pptp*
3218 pts/0 R+ 0:00 grep pptpd.conf

LOG Authentikasi VPN User jika berhasil

Oct 11 16:01:25 vpn pptpd[20519]: CTRL: Client 202.136.x.x control connection started
Oct 11 16:01:25 vpn pptpd[20519]: CTRL: Starting call (launching pppd, opening GRE)
Oct 11 16:01:25 vpn pppd[20522]: Plugin /usr/lib/pptpd/pptpd-logwtmp.so loaded.
Oct 11 16:01:25 vpn pppd[20522]: pptpd-logwtmp: $Version$
Oct 11 16:01:25 vpn pppd[20522]: pppd 2.4.4 started by root, uid 0
Oct 11 16:01:25 vpn pppd[20522]: Using interface ppp0
Oct 11 16:01:25 vpn pppd[20522]: Connect: ppp0 /dev/pts/1
Oct 11 16:01:25 vpn pptpd[20519]: CTRL: Ignored a SET LINK INFO packet with real ACCMs!
Oct 11 16:01:25 vpn pppd[20522]: found interface eth1 for proxy arp
Oct 11 16:01:25 vpn pppd[20522]: local IP address 202.x.x.x
Oct 11 16:01:25 vpn pppd[20522]: remote IP address 10.10.1.150
Oct 11 16:01:25 vpn pppd[20522]: pptpd-logwtmp.so ip-up ppp0 hr 202.136.x.x

########SISI CLIENT##########

Posted in asbsmf | Leave a Comment »

SSH login dengan specific port

Posted by nubsolutions on November 23, 2008

[root@mailserver ~]# ssh -l root 10.10.1.2 -p 9729
root@10.10.1.2’s password:
Last login: Tue Nov 11 15:27:25 2008
[root@pdc ~]#

[root@pdc tools]# pwd
/home/BackupAplikasi/tools

[root@pdc tools]# cp -R node32/ /home/tools/

Posted in asbsmf | Leave a Comment »

Installasi Ubuntu 7.04

Posted by nubsolutions on November 11, 2008

NAME

PERINTAH/KETERANGAN

Name

· Adminxxx/adminxxx

· xxx-div-user/xxx-div-user

Edit Source Repository

· sudo gedit /etc/apt/sources.list

· deb http://10.10.1.78/feisty feisty main multiverse restricted universe

Update Repository

· Sudo apt-get install (nama software) atau Sudo dpkg –i *.deb

· Dari Sinaptic packet manager

Joe, mc, openssh-server, dosemu, smbclient, samba-common, smbfs, unixodbc, motif-clients, cabextract, libstdc++5, tn5250, libnet-ssleay-perl, libauthen-pam-perl, libio-pty- perl, libmd5-perl, wine, xmms, xpdf, alien, gparted, gnomebaker, fuse-util, libfuse2-2, libntfs-3g, ntfs-3g-i328, libc6

Copy File dan Foler ke desktop

File IseriesAccess-5.4.0-2.2.i386.deb,

Folder webmin,

Folder jdk1.5.0_11 (di dalam folder as400files),

Folder tn5250j (di dalam folder as400files),

Folder font,

Folder .ies4linux(hidden di dalam folder linux application)

Install FONT

· Sudo mkdir /usr/share/fonts/truetype/msttcorefonts

· Jalankan di folder Font yang terletak di desktop melalui terminal (cd Desktop/fonts)

Sudo cabextract *.exe –d /usr/share/fonts/truetype/msttcorefonts

Install webmin

· Jalankan di folder webmin yang terletak di desktop melalui terminal (cd Desktop/webmin)

Sudo dpkg –i webmin_1.370_all.deb

· https://localhost:10000

Install AS400

Yang diperlukan :

Iseriesaccess

TN5250

TN5250j

· Sudo dpkg –i iseriesAcces-5.4.0-2.2.i386.deb

· Edit file xorg.conf dengan perintah sudo gedit /etc/X11/xorg.conf tambahkan [FontPath “unix/:7100”]

Membuat link:

· Sudo ln –s /opt/ibm/iSeriesAccess/lib /usr/lib

· Sudo ln –s /opt/ibm/iSeriesAccess/mri/en /opt/ibm/iseriesAccess/mri /en_US

· Sudo ln –s /opt/ibm/iSeriesAccess/bin/setup5250 /usr/bin/setup5250

· Sudo ln –s /opt/ibm/iSeriesAccess/bin/ibm5250 /usr/bin/ibm5250

· Sudo locale-gen en_US

· Sudo ln –sf /opt/ibm/iSeriesAcces/lib/libcwbcore.so /usr/lib/libcwbcore.so

· Sudo ln –sf /opt/ibm/iSeriesAcces/lib/libcwbrc.so /usr/lib/libcwbrc.so

· Restart computer, kemudian tes dengan memanggil setup5250 dan ibm5250

Setting AS400

Connection Deskription : AS400

IP Address : 10.10.1.7

Setting TN5250

Copy file .tn5250rc ke folder user misal /home/barrack

  • Sudo chmod 777 /home/barrack/.tn5250rc
  • Sudo chown barrack /home/barrack/.tn5250rc
  • Sudo chgrp barrack /home/barrack/.tn5250rc

Double Klik .tn5250rc yang telah di copy, kemudian ibm1 dengan IP Address dari AS400 (10.10.1.7)

Host = 10.10.1.7

outputcommand = scs2ascii | lpr –P(nama printer)

Panggil printer AS400 : lp5250d [nama printer didalam .tn5250rc]

Intall TN5250j

Copy folder jdk1.5.0_11 yang berada di dektop ke directory /opt/

Sudo mv nama_folder/ /opt/

Buat link :

· Sudo rm –Rf /usr/bin/java

· Sudo ln –s /opt/jdk1.5.0_11/bin/java /usr/bin/java

· Sudo ln –s /opt/jdk1.5.0_11/bin/jar /usr/bin/jar

Masuk ke directory as400files: jalankan perintah :

java –jar tn5250jinstall0.6.0.jar,

tunggu beberapa saat. Klik OK, Kemudian klik Next, Next lagi.

Pilih Accept, kemudian klik Next, Next dan Ok. Next, Next .

Pada pilihan Generate an automatic installation script klik done

Install IE

· Sudo mkdir /home/adminasb/.ies4linux

· Sudo chmod 777 /home/adminasb/.ies4linux

· Copy isi file yang ada di folder .ies4linux yang ada di desktop ke dicopy ke directory .ies4linux baru

· Setelah itu, jalankan perintah ini di folder .ies4linux baru

Sudo tar –zxvf *.tar.gz

· cd /ies4linux-2.0.5

· ./ies4linux

· Jawab no untuk semua pertanyaan

Installasi Samba

(optional)

Fungsi : Agar user bisa saling sharing data

· .Aktifkan seluruh library dan module yang mempunyai awalan samba*.*

· Logon sebagai administrator, Pilih folder user yang akan di share, click mouse kanan dan pilih sharing folder.(read only)

· Pada command line tambahkan user samba dengan perintah #sudo smbpasswd -a [nama user], masukan password yang sama

· Login lagi menggunakan account user dan Test sharing dari komputer lain.

Installasi VNC

(optional)

Fungsi : Agar kita bisa remote user untuk maintenance

· Login sebagai administrator, lewat synoptic packet manager, aktifkan seluruh module yang mempunyai awalan vnc*.*

· Untuk aktifasi dan masukan password, Masuk ke command line, jalankan perintah #vncserver

Gunakan password standar administrator

Pidgin Internet Mesenger

Diaktikan dengan menggunakan user sebelumnya yaitu user spark

Konfigurasi yang perlu diaktifkan

· lokasi pada Application–>internet–>Pidgin Internet Mesenger

· Protocol XMPP

· Screen Name = Nama User

· Domain = xxxjkt

· Resource = home

· Connect port = 5222

install all from text mode

sudo apt-get install joe mc openssh-server dosemu smbclient samba-common smbfs unixodbc motif-clients cabextract libstdc++5 tn5250 libnet-ssleay-perl libauthen-pam-perl libio-pty-perl libmd5-perl wine xmms xpdf alien gparted gnomebaker fuse-utils libfuse2 libntfs-3g0 ntfs-3g libc6

Backup Outlook Express/ Outlook

· Install Thunderbird

· Pada saat installasi thunderbird pilih opsi untuk import data email dari outlook express atau outlook (yang diimport adalah account settings, address book dan mail folders)

· Backup secara manual data ke directory yang kita inginkan, file tersebut berada pada c:\Document and Settings\nama user\Application Data\Thunderbird\….\local folders\Personal Folders.sbd

· Untuk Backup Address book, masuk ke menu Tools, Address Book.

· Pada Menu Address book pilih Tools, Export.

· Buat file backup dengan extension *.LDIF

Update library untuk video, mpeg, dll

(optional)

sudo apt-get install gstreamer*

Installasi XAMPP

(optional, ada user yg minta)

Pastikan default apache dimatikan pada servicesnya dan di stop

· sudo /etc/init.d/apache stop

Perintah yang dijalankan pada administrator

· sudo tar xvfz xampp-linux-1.5.x.x.tar.gz -C /opt

· sudo /opt/lampp/lampp start

·

· tambahkan juga pada file /etc/rc.local yaitu perintah /opt/lampp/lampp start &

· sudo /opt/lampp/lampp status

· check dengan jalankan http://localhost

Aktifasi security untuk XAMPP ini adalah dengan menjalankan perintah /opt/lampp/lampp security

Konfigurasi yang sudah di set.

Untuk akses http://localhost, username=lampp password=password

INSTALLASI WORKFLOW (BONITA)

Installasi JDK (JRE1.6.0_04)

Copy folder jre1.6.0_04 yang berada di direktory kita ke directory /opt/

Sudo mv nama_folder/ /opt/

· Sudo ln –s /opt/jre1.6.0_04/bin/java /usr/bin/java

· Sudo ln –s /opt/jre1.6.0_04/bin/jar /usr/bin/jar

Installasi WINE

Pada Ubuntu Ver 7.10 (Gutsy)

· Buang konfigurasi wine existing lewat Synaptic Package Manager

· Download dari internet wine versi terbaru (wine-0.9.56.tar.bz2)

· Install flex (flex_2.5.33-12build1_i386.deb), dengan menggunakan synaptic package manager–>file–>add downloaded packages

· Install bison (bison_2.3.dfsg-5_i386.deb), dengan menggunakan synaptic package manager–>file–>add downloaded packages

· Extract file wine kedalam directory yang sama

tar -jxvf wine-0.9.56.tar.bz2

· Pada directory tools jalankan ./wineinstall–>Ikuti petunjuk yang ada.

· Install MSOffice—>wine /media/cdrom0/setup.exe

·

Posted in asbsmf | Leave a Comment »

Membuat Samba Server

Posted by nubsolutions on November 11, 2008

Step by Step Samba Testing pada Fedora Core

0. Membuat direktory
#mkdir /home/sales
#mkdir /home/operational
#mkdir /home/mis
#mkdir /home/accounting
#mkdir /home/admin  (menambah group admin)

1. Check user dan group
#more /etc/passwd
#more /etc/group

2. membuat user dan direktory
#useradd -d /home/users/obama obama
#useradd -d /home/users/barack barack
#useradd -d /home/users/husein husein
#useradd -d /home/users/mark mark
#useradd -d /home/users/kein kein
3. Menambahkan password untuk user linux
#passwd obama
#passwd barack
#passwd husein
#passwd mark
#passwd kein

4. Menambahkan samba password
#smbpasswd -a obama
#smbpasswd -a barack
#smbpasswd -a husein
#smbpasswd -a mark
#smbpasswd -a kein

#smbpasswd -a  (menambahkan password administrator/root)

5. membuat group
# groupadd -f sales
# groupadd -f operational
# groupadd -f mis
# groupadd -f accounting
# groupadd -f admin

6. memasukan user kedalam group
# usermod -G operational barack
# usermod -G sales obama
# usermod -G mis husein
# usermod -G accounting mark
# usermod -G admin kein

7.check user siapa saja yang ada dalam group
# grep -r sales /etc/group
# grep -r operational /etc/group
# grep -r accounting /etc/group
# grep -r mis /etc/group

8. Mengganti group ownership
# chgrp operational -R /home/operational
# chgrp sales -R /home/sales
# chgrp mis -R /home/mis
# chgrp accounting -R /home/accounting
# chgrp admin -R /home/admin

9. Mengganti ownership file somefile.txt agar owner bisa read/write/execute, group member bisa read/execute sedangkan yang lain tidak bisa apa2
# chmod 750 somefile.txt
# chmod 775 /home/admin

10.Penambahan komputer id kedalam domain controller
masukan password root terlebih dulu
#smbpasswd -a

tambahkan setiap komputer
#useradd pc007$
#smbpasswd -a -m pc007

lakukan join domain pada windows anda

Pada saat join domain gunakan user root password xxxx

–>Lakukan test juga untuk join domain (mapping folder) untuk user linux

11. delete cron
rm -Fr /etc/cron.hourly/msec

11. mencari file yang diupdate 5 hari yg lalu
#find /home/sales/ -mtime -5
#find /home/accounting/ -user obama -type f
#find /home/accounting -name *.exe
#find /home/accounting -name *.exe -type f
#find /home -name *.exe

12. Melihat status samba
Melihat status samba
#ps -aux
root      4810  0.7  0.9  13452  2264 ?        Ss   09:27   0:00 smbd -D
root      4813  0.0  0.5  13452  1220 ?        S    09:27   0:00 smbd -D
root      4814  0.2  0.5   8756  1160 ?        Ss   09:27   0:00 nmbd -D

#smbstatus
#nmblookup -S pcmis02
#smbstatus |grep [nomor pid]

13.Mengganti password dari user
Download file changepassword dari alamat http://changepassword.sourceforge.net/

lakukan extract file
# tar zxvf changepassword-0.9.tar.gz

Lokasi username dan password untuk samba pada /etc/samba/smbpasswd

lakukan kompilasi
# ./configure –enable-cgidir=/var/www/cgi-bin –enable-smbpasswd=/etc/samba/smbpasswd –disable-squidpasswd

NOTE 1 :
Untuk FC7, posisi smbpasswd berada pada lokasi : /var/lib/samba/private/smbpasswd

NOTE 2 :
Untuk FC6, default smbpasswd berada pada posisi /etc/samba/ sehingga kita harus melakukan create directory pada /var/lib/samba/private/smbpasswd
kemudian buat suatu hardlink dengan perintah berikut
#ln -s /etc/samba/smbpasswd /var/lib/samba/private/smbpasswd
Kemudian lakukan compile lagi
#./configure –enable-cgidir=/var/www/cgi-bin –enable-smbpasswd=/var/lib/samba/private/smbpasswd –disable-squidpasswd

hasilnya adalah
.
.
.
checking for time.h… yes
checking for crypt in -lcrypt… yes

changepassword 0.9 Configuration
——————————–

Samba password file: /var/lib/samba/private/smbpasswd
Squid password file: no
Logo image         : none
Using Language file: languages/English.h
Apache cgi-bin dir : /var/www/cgi-bin

configure: creating ./config.status
config.status: creating Makefile
Now, type “make” and “make install””

Check status link
# ll
total 0
lrwxrwxrwx 1 root root 20 Jul 31 13:20 smbpasswd -> /etc/samba/smbpasswd

# make
gcc -c -o smbencrypt/SMBPasswdGen.o  smbencrypt/SMBPasswdGen.c
gcc -c -o smbencrypt/encrypt.o       smbencrypt/encrypt.c
gcc -c -o smbencrypt/md4.o           smbencrypt/md4.c
gcc -c -o smbencrypt/smbencrypt.o    smbencrypt/smbencrypt.c
.
.
.
terus sampai tidak ada error

# make install
cp changepassword.cgi /var/www/cgi-bin/changepassword.cgi
chmod 4755 /var/www/cgi-bin/changepassword.cgi

Membatasi akses kedalam samba server
pada file /etc/samba/smb.conf
[global]
hosts deny = ALL
host allow = 192.168.1. 128. (untuk user subnet tersebut dan localhost)

Perintah untuk menjalankan  samba server
#/etc/rc.d/init.d/smb stop
#/etc/rc.d/init.d/smb start
#/etc/rc.d/init.d/smb restart
#/etc/rc.d/init.d/smb status
#/etc/rc.d/init.d/smb reload (reload setting tanpa lakukan restart)

Contoh untuk konfigurasi untuk smb.conf
[global]
workgroup = UJUNGBERUNGDOM
server string = Samba Server
log file = /var/log/samba/%m.log
max log size = 50
add user script = /usr/sbin/useradd %u
delete user script = /usr/sbin/userdel %u
add group script = /usr/sbin/groupadd %g
delete group script = /usr/sbin/groupdel %g
delete user from group script = /usr/sbin/deluser %u %g
logon path = \\%L\Profiles\%U
logon home = \\%L\%U\Profiles
domain logons = Yes
os level = 33
preferred master = Yes
domain master = Yes
dns proxy = No
wins support = Yes
cups options = raw

[homes]
comment = Home Directories
read only = No
browseable = No

[printers]
comment = All Printers
path = /usr/spool/samba
printable = Yes
browseable = No

[umum]
path = /home/umum
force user = nobody
force group = nobody
read only = No
force create mode = 0777
force directory mode = 0777
guest ok = Yes

[mis]
path = /home/mis
valid users = obama
force group = mis
read only = No
force create mode = 0777
force directory mode = 0777
inherit permissions = Yes
delete veto files = Yes
veto files = /*.mp3/*.mpg/.recycle/
vfs objects = recycle, audit, extd_audit
recycle:versions = yes
recycle:keeptree = yes
recycle:repository = .recycle /%u/Recycle Bin

[accounting]
path = /home/accounting
valid users = mark
force group = mis
read only = No
force create mode = 0777
force directory mode = 0777
inherit permissions = Yes
delete veto files = Yes
veto files = /*.mp3/*.mpg/.recycle/
vfs objects = recycle, audit, extd_audit
recycle:versions = yes
recycle:keeptree = yes
recycle:repository = .recycle /%u/Recycle Bin

[sales]
path = /home/sales
valid users = kein
force group = mis
read only = No
force create mode = 0777
force directory mode = 0777
inherit permissions = Yes
delete veto files = Yes
veto files = /*.mp3/*.mpg/.recycle/
vfs objects = recycle, audit, extd_audit
recycle:versions = yes
recycle:keeptree = yes
recycle:repository = .recycle /%u/Recycle Bin

[operational]
path = /home/operational
valid users = mark
force group = mis
read only = No
force create mode = 0777
force directory mode = 0777
inherit permissions = Yes
delete veto files = Yes
veto files = /*.mp3/*.mpg/.recycle/
vfs objects = recycle, audit, extd_audit
recycle:versions = yes
recycle:keeptree = yes
recycle:repository = .recycle /%u/Recycle Bin

Posted in asbsmf | Leave a Comment »

Mengganti Password root ssh

Posted by nubsolutions on November 7, 2008

Untuk mengganti password ssh untuk root

#passwd

Jika terdapat masalah maka sebelum perintah tersebut jalankan perintah berikut ini terlebih dulu

#pwconv

Note:

Fungsinya adalah untuk menyatukan file /etc/passwd lama ke dalam file shadow yang baru.

Posted in asbsmf | Leave a Comment »

Aktifasi IP Forward dan Internet routing pada linux

Posted by nubsolutions on November 7, 2008

cek ip forward di gateway, 1 = enable, 0 = disable
# cat /proc/sys/net/ipv4/ip_forward
1

Jika belum aktif maka masukan perintah berikut ini

#echo 1 > /proc/sys/net/ipv4/ip_forward

Kemudian untuk menyimpan konfigurasi iptables, simpan pada file /etc/sysconfig/iptables-config

Pada posisi paling bawah tambahkan

iptables -t nat -A POSTROUTING -s 10.10.0.0/16 -o eth2 -j MASQUERADE

Note:

10.10.0.0/16 merupakan jaringan pada LAN lokal

eth2 merupakan interface ethernet yang terhubung ke internet (umumnya  address publik)

Posted in asbsmf | Leave a Comment »

Aktifasi VPN Server dan Interface Ethernet Secara Otomatis

Posted by nubsolutions on November 6, 2008

Untuk aktifasi service VPNServer dan Interface Ethernet secara otomatis maka tambahkan script pada file berikut ini.

Linux : Fedora Relase 9 (Sulphur)

/etc/rc.d/rc.local

service pptpd start

ifup eth0

ifup eth1

Posted in asbsmf | Leave a Comment »