LAB: SUPERLAB (Mikrotik MTCNA)

, , ,
Berikut topologi yaang bakal kita gunai buat ngelab.

MATERI:
  • NAT
  • DHCP SERVER
  • FIREWAL FILTER
  • LOAD BALANCE
  • BRIDGING
  • BRIDGING RSTP DAN STP
  • MANAGEMENT BANDWITH
  • NSTP
  • ADDRESS LIST
  • TRANSPARENT DNS
  • DHCP RELAY
  • MAKE STATIC
TUJUAN :

  • Semua Client dapat terhubung ke Internet
  • Masing-masing client dapat berkomunikasi
  • PC Client IDN Bisa terhubung tanpa harus meminta menunggu tersdianya ip address
  • Router IDN_R4 dan IDN_R3 di Bridging
  • Client di IDN_R3 tidak bisa ping ke IDN_R1 ((Chain=input)Time Out)
  • Bandwith upload - download di limitasi pada IDN_R3
  • IDN_R6 Block paket ICMP


#BRIDGE
#ROUTER4
Kita lakukan bridging untuk router4 dan router5, sehingga nantinya kita tidak perlu merouting lagi, karena router yang kita bridge nantinya akan berada dalam satu network.
  [admin@MikroTik] > system identity set name=IDN_R4
  [admin@IDN_R4] > interface bridge add name=Bridge-1
  [admin@IDN_R4] > interface bridge port add interface=ether2 bridge=Bridge-1 
  [admin@IDN_R4] > interface bridge port add interface=ether4 bridge=Bridge-1
  [admin@IDN_R4] > ip address add address=192.168.1.1/24 interface=Bridge-1
  [admin@IDN_R4] > ip address add address=34.34.34.4/29 interface=ether3
#ROUTER4
Seperti yang terlihat pada di topologi, karena router 4 dan router 5 sudah kita bridging, maka untuk konfigurasi DHCP servernya cukup pada salah satu router saja. Maka kita lakukan konfigurasi DHCP pada router 4
[admin@IDN_R4] > ip dhcp-server setup                   
  Select interface to run DHCP server on 

  dhcp server interface: Bridge-1
  Select network for DHCP addresses 

  dhcp address space: 192.168.1.0/24
  Select gateway for given network 

  gateway for dhcp network: 192.168.1.1
  Select pool of ip addresses given out by DHCP server 

  addresses to give out: 192.168.1.2-192.168.1.254
  Select DNS servers 

  dns servers: 8.8.8.8
  Select lease time 

  lease time: 10m

  [admin@IDN_R4] > ip route add dst-address=35.35.35.0/29 gateway=34.34.34.3,192.168.1.2
#ROUTER5
Router 5 kita bridge, sementara agar bisa berkomunikasi dengan network 34.34.34.0/29 maka kita perlu untuk melakukan routing, kali ini kita melakukannya dengan mneggunakan routing statik
  [admin@MikroTik] > system identity set name=IDN_R5
  [admin@IDN_R5] > interface bridge add name=Bridge-1
  [admin@IDN_R5] > interface bridge port add interface=ether2 bridge=Bridge-1 
  [admin@IDN_R5] > interface bridge port add interface=ether4 bridge=Bridge-1
  [admin@IDN_R5] > ip address add address=192.168.1.2/24 interface=Bridge-1
  [admin@IDN_R5] > ip address add address=35.35.35.5/29 interface=ether3
  [admin@IDN_R5] > ip route add dst-address=34.34.34.0/29 gateway=192.168.1.1,35.35.35.3

  [admin@IDN_R3] > ip address add address=34.34.34.3/29 interface=ether1 
  [admin@IDN_R3] > ip address add address=35.35.35.3/29 interface=ether3
#DHCP Ke SW3
#ROUTER3
Pada Router 3, sesuai topologi diatas, maka kita konfigurasi DHCP untuk interface ether 4
  [admin@IDN_R3] > ip dhcp-server setup 
  Select interface to run DHCP server on 

  dhcp server interface: ether4
  Select network for DHCP addresses 

  dhcp address space: 192.168.3.0/24
  Select gateway for given network 

  gateway for dhcp network: 192.168.3.1
  Select pool of ip addresses given out by DHCP server 

  addresses to give out: 192.168.3.2-192.168.3.254
  Select DNS servers 
  
  dns servers: 13.13.13.1
  Select lease time 

  lease time: 10m
  [admin@IDN_R3] >

#STATIC ROUTE
Agar masing-masing router dapat berkomunikasi maka kita lakukan routing.
 #ROUTER 4 to ROUTER 1-3
  [admin@IDN_R4] > ip route add dst-address=13.13.13.0/29 gateway=34.34.34.3,192.168.1.2
 #ROUTER 4 to ROUTER 1
  [admin@IDN_R4] > ip route add dst-address=11.11.11.0/30 gateway=34.34.34.3,192.168.1.2 
 
 #ROUTER 5 to ROUTER 1-3
  [admin@IDN_R5] > ip route set dst-address=13.13.13.0/29 gateway=35.35.35.3,192.168.1.1
 #ROUTER 5 to ROUTER 1
  [admin@IDN_R5] > ip route add dst-address=11.11.11.0/30 gateway=35.35.35.3

 #ROUTER 1 to ROUTER 3-4
  [admin@IDN_R1] > ip route add dst-address=34.34.34.0/29 gateway=13.13.13.3 
 #ROUTER 1 to ROUTER 3-5
  [admin@IDN_R1] > ip route add dst-address=35.35.35.0/29 gateway=13.13.13.3
 #ROUTER 1 to CLIENT BRIDGE
  [admin@IDN_R1] > ip route add dst-address=192.168.1.0/24 gateway=13.13.13.3 
 #ROUTER 1 to ROUTER 3 CLIENT
  [admin@IDN_R1] > ip route add dst-address=192.168.3.0/24 gateway=13.13.13.3
 #ROUTER 4 to CLIENT ROUTER 4/3
  [admin@IDN_R4] > ip route set dst-address=192.168.3.0/24 gateway=34.34.34.3,192.168.1.2
 #ROUTER 5 to CLIENT ROUTER 4/3
  [admin@IDN_R5] > ip route add dst-address=192.168.3.0/24 gateway=35.35.35.3,192.168.1.1

 #ROUTER 3 to CLIENT ROUTER 4/5
  [admin@IDN_R3] > ip route add dst-address=192.168.1.0/24 gateway=34.34.34.3,35.35.35.5
#DEFAULT ROUTE
Agar tiap device dapat terhubung dengan dunia luar (internet), maka dibutuhkan default route
#DEFAULT ROUTE
#ROUTER 1
[admin@IDN_R4] > ip route add dst-address=0.0.0.0/0 gateway=11.11.11.1

#ROUTER 4 to ANYWHERE 
[admin@IDN_R4] > ip route add dst-address=0.0.0.0/0 gateway=34.34.34.3

#ROUTER 5 to ANYWHERE 
[admin@IDN_R5] > ip route add dst-address=0.0.0.0/0 gateway=35.35.35.3
Selanjutnya kita lakukan bridginf untuk router 7 dengan router 9 dan router 8 dengan router 10
  
#BRIDGING
#ROUTER 7
[admin@MikroTik] > system identity set name=IDN_R7
[admin@IDN_R7] > interface bridge add name=bridge-2
[admin@IDN_R7] > interface bridge port add interface=ether4 bridge=bridge-2 
[admin@IDN_R7] > interface bridge port add interface=ether2 bridge=bridge-2  

[admin@IDN_R7] > ip address add address=79.79.79.7/24 interface=bridge-2 
[admin@IDN_R7] > ip address print 
Flags: X - disabled, I - invalid, D - dynamic 
#   ADDRESS            NETWORK         INTERFACE                                             
0   79.79.79.7/24      79.79.79.0      bridge-2                                              
[admin@IDN_R7] > interface bridge port add interface=ether5 bridge=bridge-2  
[admin@IDN_R7] > interface bridge port print 
Flags: X - disabled, I - inactive, D - dynamic 
#    INTERFACE                      BRIDGE                     PRIORITY  PATH-COST    HORIZON
0    ether4                         bridge-2                       0x80         10       none
1    ether2                         bridge-2                       0x80         10       none
2    ether5                         bridge-2                       0x80         10       none

#ROUTER 9
[admin@MikroTik] > system identity set name=IDN_R9
[admin@IDN_R9] > interface bridge add name=bridge-2
[admin@IDN_R9] > interface bridge port add interface=ether2 bridge=bridge-2 
[admin@IDN_R9] > interface bridge port add interface=ether4 bridge=bridge-2  
[admin@IDN_R9] > interface bridge port add interface=ether5 bridge=bridge-2  
[admin@IDN_R9] > ip address add address=79.79.79.9/24 interface=bridge-2

Agar tidak terjadi looping, maka kita atur protocol type dari interface bridge tersebut menjadi rstp
#RSTP
#ROUTER 7
[admin@IDN_R7] > interface bridge set protocol-mode=rstp disabled=no numbers= 0

#ROUTER 9
[admin@IDN_R9] > interface bridge set protocol-mode=rstp disabled=no numbers=0

Ini masih belum final yaa, Insya Allah kita lanjutkan lagi pada kesempatan selanjutnya
di
Label: , , ,

2 comments:

  1. Anas FalahuddinAugust 14, 2017 at 1:26 PM

    Itu pakai gns3 gan ? kalau iya, vmnya pakai virtualbox atau vmware ? thank's before

    ReplyDelete
    Replies
    1. alexadipatiAugust 15, 2017 at 1:06 PM

      Iya, pakai GNS3. VMnya bisa menggunakan VMWare maupun VirtualBox. Untuk lab diatas menggunakan VirtualBox.

      Untuk terus mengikuti artikel/lab terbaru, silahkan pantau di https://alexpranozal.wordpress.com/
      Kita udah pindah ruangan ke wordpress.

      Delete

Tak ada gading yang tak retak!!
Komentar dan masukan yang bersifat membangun selalu kami harapkan, demi kebaikan bersama.

Subscribe to: Post Comments (Atom)

Pages

Created By SoraTemplates | Distributed By Gooyaabi Templates