Topology Network
==CARA MENGGANTI NAMA HOST==
[admin@Mikrotik] > system identity set name=RouterTKJ
[admin@RouterTKJ] >
[admin@RouterTKJ] >password
old-password : [Langsung enter]
new-password : RouterSMK
confirm-new-password : RouterSMK
==CARA MENAMBAHKAN IP ADDRESS==
[admin@RouterTKJ] >ip address add address=192.168.1.2/24 interface=ether1
[admin@RouterTKJ] >ip address add address=202.134.1.1/24 interface=ether2
[admin@RouterTKJ] >ip route add gateway=192.168.1.1
==CARA MENAMBAHKAN DNS==
[admin@RouterTKJ] >ip dns set servers=8.8.8.8 allow-remote-requests=yes
==CARA SETTING NAT-MASQUERADE==
[admin@RouterTKJ] >ip firewall nat add action=masquerade chain=srcnat
==SETTING DHCP-SERVER==
[admin@RouterTKJ] >ip dhcp-server setup
Select interface to run DHCP server on
Select interface to run DHCP server on
dhcp server interface: ether2
Select network for DHCP addresses
dhcp address space: 202.134.1.0/24
Select gateway for given network
gateway for dhcp network: 202.134.1.1
Select pool of ip addresses given out by DHCP server
addresses to give out: 202.134.1.2-202.134.1.254
Select DNS servers
dns servers: 192.168.1.1
lease time: 3d
==SETTING FIREWALL UNTUK BLOKIR SITUS DENGAN TRANSPARENT PROXY==
[admin@RouterTKJ] >ip proxy set enabled=yes port=3128 src-address=0.0.0.0 cache-administrator=rija@gmail.com
[admin@RouterTKJ] >ip firewall nat add chain=dstnat protocol=tcp src-address=0.0.0.0/0 dst-port=80 action=redirect to-ports=3128
[admin@RouterTKJ] >ip firewall nat add chain=dstnat protocol=tcp src-address=0.0.0.0/0 dst-port=80 action=redirect to-ports=3128
[admin@RouterTKJ] >ip proxy access add src-address=0.0.0.0/0 dst-host=*youtube* action=deny
[admin@RouterTKJ] >ip proxy access print [melihat list rules dari proxy]
[admin@RouterTKJ]>ip proxy access disable numbers=0 [mendisable aturan proxy block site nomer urut 0]
[admin@RouterTKJ]>ip proxy access enable numbers=0 [mengenable aturan proxy block site nomer urut 0]
JIKA INGIN MENGUJI PROXY TANPA KONEKSI INTERNET, MAKA SETTING MANUAL PROXY PADA BROWSER CLIENT UNTUK HTTP PROXY NYA “IP ETHER2 MIKROTIK” DAN “PORT” NYA ARAHKAN KE “3128”
UJI PADA PC / LAPTOP CLIENT YANG MENGGUNAKAN WINDOWS XP / 7
Buka Internet Explorer dan ketikan http://youtube.com
Jika muncul tampilan Error berarti situs youtube [http] nya berhasil di blok, jika mau belajar blok https silahkan cari di search engine google, banyak ko artikel yang membahas tentang bloking protocol https / port 443.
===============================================================================
Diatas konfigurasi ether1 mikrotik static
jika ether1 mikrotik ingin mendapatkan ip dns & route gateway secara otomatis dari modem (ISP) maka cukup setting ether1 mikrotik dengan mode dhcp-client
berikut cli dhcp client :
[admin@MikroTik] > ip dhcp-client add interface=ether1 disabled=no
Berikut cara meng enable wlan1 pada RB yang sudah support wireless internal
[admin@MikroTik] > interface wireless enable wlan1
.jpg)
