Mungkin ini bisa membantu anda.
1. Pastikan antara server warnet anda bisa di ping-pong dr client/server itu
sendiri
2. install squid ( RH 6.2 sdh menyediakannya)
3. memberikan batasan untuk jaringan dari external masuk ke sistem
pada /etc/host.deny
ALL:ALL
4. memberikan ijin kepada internal network untuk keluar
pada /etc/host.allow
ALL:127.0.0.1
ALL:192.168.0.1/255.255.255.0 #atau 192.168.0.
5. pada /etc/sysctl.conf
net.ipv4.ip_forward=1
net.ipv4.ip.conf.all=1
kernel.sysrg =0
net.ipv4.ip_always.defrag=0
6. pada /etc/sysconfig/network
NETWORKING=yes
FORWARD_IPV4=yes
sisipkan script dibawah ini pada /etc/rc.d/rc.local
/sbin/ipchains -F input
/sbin/ipchains -F output
/sbin/ipchains -F forward
/sbin/modprobe ip_masq_autofw
/sbin/modprobe ip_masq_ftp
/sbin/modprobe ip_masq_irc
ports=6660,6661,6662,6663,6664,6665,6666,6667,6668,6669,6670
/sbin/modprobe ip_masq_mfw
/sbin/modprobe ip_masq_cuseeme
/sbin/modprobe ip_masq_portfw
/sbin/modprobe ip_masq_quake
/sbin/modprobe ip_masq_user
echo 1 > /proc/sys/net/ipv4/ip_forward
echo 1 > /proc/sys/net/ipv4/conf/all/rp_filter
ipchains -P forward DENY
ipchains -A forward -s 192.168.0.0/24 -j MASQ
no aktifkan dgn ( ; ) service yg kira2x kurang perlu di /etc/inetd.conf
=====================================================================
Your squid setting
=====================================================================
7. pada /etc/squid/squid.conf
; Configur dibawah ini dgn asumsi :
; IP Server Warnet : 192.168.0.1
; Netmask : 255.255.255.0
http_port 8080
icp_port 0
acl QUERY urlpath_regex cgi-bin \?
no_cache deny QUERY #Avoid caching cgi scripts
cache_mem 24 MB #tergantung jumlah memory
tips 1/3 mem total
cache_swap_low 90
cache_swap_high 95
debug_options ALL,1 #Establish minimum debug
level
maximum_object_size 4096 KB
ipcache_size 1024
ipcache_low 90
ipcache_high 95
fqdncache_size 1024
redirect_rewrites_host_header off
cache_dir ufs /scache 512 16 256
cache_access_log /scache/access.log
cache_log /scache/cache.log
cache_store_log /scache/store.log
emulate_httpd_log on
pid_filename /var/run/squid.pid
client_netmask 255.255.255.0
cache_dns_program /usr/lib/squid/dnsserver
dns_children 20
dns_nameservers 192.168.0.1
redirect_children 10
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320
replacement_policy GSDF
reference_age 2 week
quick_abort_min 16 KB #Allow server to abort if
requesting aborts
quick_abort_max 16 KB
quick_abort_pct 95 #But continue if less than 16
KB left or 95+% done
negative_ttl 5 minutes
positive_dns_ttl 6 hours
negative_dns_ttl 5 minutes
connect_timeout 120 seconds
peer_connect_timeout 30 seconds
read_timeout 15 minutes
request_timeout 30 seconds
client_lifetime 1 day
half_closed_clients on
pconn_timeout 120 seconds
ident_timeout 10 seconds
shutdown_lifetime 30 seconds
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl pegelnet src 192.168.0.0/255.255.255.0
acl SSL_ports port 443 563
acl Safe_ports port 21 70 80 98 210 443 563 1025-65535
acl Safe_ports port 280
acl Safe_ports port 488
acl Safe_ports port 591
acl Safe_ports port 777
acl CONNECT method CONNECT
http_access allow manager localhost
http_access allow manager
http_access allow pegelnet
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow localhost
http_access deny all
icp_access allow all
miss_access allow all
cache_mgr [EMAIL PROTECTED]
cache_effective_user squid
cache_effective_group squid
announce_period 1 day
httpd_accel_with_proxy on
httpd_accel_uses_host_header off
logfile_rotate 10
query_icmp off
buffered_logs off
cachemgr_passwd my-secret-pass all
8. setelah selesai edit squid.conf
set dan aktifkan direktory cache # squid -z
aktifkan squid # squid start
dan hidupkan squid sebagai daemon pada # setup
=====================================================================
setting dns server [named]
terus terang masih bingung, (sleepless pls :) mohon dilengkapi
=====================================================================
9. pada /etc/resolv.conf
domain pegellinux.net
search indosat.net.id
nameserver 202.155.0.10
nameserver 202.155.0.15
10. pada /etc/host.conf
order hosts, bind
multi on
11. cek dengan nslookup
# nslookup www.altavista.com
bila tidak ada pesan error maka dns server udah jalan
dan hidupkan sbg daemon pada #setup
----------------------------------------
SUMBER : waxx <[EMAIL PROTECTED]>
----------------------------------------
----- Original Message -----
From: <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Thursday, December 21, 2000 10:43 AM
Subject: [setup] Server Warnet
> Dear linuxer
>
> Saya sudah install RedHat 6.2 untuk server yang rencananya mau saya jadiin
> server warnet (koneksi Dial-Up). Saya sudah bisa detec modem, dan
melakukan
> koneksi ke internet pake wvdial.
> Masalahnya saya ngga tau mengkonfigurasi RH 6.2 tersebut agar bisa
> mem-forward ip address yang
> ada di lokal network tersebut (untuk Ip masquerade).
>
> Ada yang bisa tologin gue ngga
> Maaf masih newbie
>
> Exandy
--------------------------------------------------------------------------
Utk berhenti langganan, kirim email ke [EMAIL PROTECTED]
Dapatkan FAQ milis dg mengirim email kosong ke [EMAIL PROTECTED]
Informasi arsip di http://www.linux.or.id/milis.php3
Pengelola dapat dihubungi lewat [EMAIL PROTECTED]
