Follow us on...
Follow us on G+ Follow us on Twitter Follow us on Facebook Watch us on YouTube
Register
Page 1 of 4 123 ... LastLast
Results 1 to 15 of 46

Thread: DNS ga jalan

  1. #1
    Status
    Offline
    locantop's Avatar
    Member
    Join Date
    Jul 2007
    Posts
    268
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0

    DNS ga jalan

    Di mikrotik dah di seting DNS dan NAT nya. di mikrotik dah bisa ping ke dan . dan di clien harusnya kan setingan gatway dan dns nya masukin ip mikrotik kan. tp ini ga mau,jadi harus masukin dns ISP nya baru bsa konek.kenapa yah?kalau di masukin dns ip mikrotik ga bisa konek komp cliennya.?

  2. #2
    Status
    Offline
    okto_2005's Avatar
    Member Super Senior
    Join Date
    Jul 2007
    Posts
    655
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    wah ini di forum sebelah di masukin sini juga... gue jawab di forum sebelah juga
    gue tambahin sini,juga coba di forum ini ada tut dr pertama kali install sampe client bisa jalan, diikuti satu satu yah... Click here to enlarge :
    coba pake perintah ini, terus salin ke sini, isinya apa aja.
    /ip route pr
    /ip dns pr

  3. #3
    Status
    Offline
    locantop's Avatar
    Member
    Join Date
    Jul 2007
    Posts
    268
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by okto_2005 Click here to enlarge
    wah ini di forum sebelah di masukin sini juga... gue jawab di forum sebelah juga
    gue tambahin sini,juga coba di forum ini ada tut dr pertama kali install sampe client bisa jalan, diikuti satu satu yah... Click here to enlarge :
    coba pake perintah ini, terus salin ke sini, isinya apa aja.
    /ip route pr
    /ip dns pr
    /ip route pr

    # DST-ADDRESS PREF-SRC G GATEWAY DISTANCE INTERFACE
    0 ADC 10.81.11.0/24 10.81.11.133 ether2
    1 A S ;;; Gateway IIX
    58.65.240.0/24 r 10.81.11.129 ether2
    2 A S ;;; Gateway IIX
    58.65.241.0/24 r 10.81.11.129 ether2
    3 A S ;;; Gateway IIX
    58.65.242.0/24 r 10.81.11.129 ether2
    4 A S ;;; Gateway IIX
    58.65.243.0/24 r 10.81.11.129 ether2
    2084 A S ;;; Gateway IIX
    222.229.82.0/23 r 10.81.11.129 ether2
    2085 A S ;;; Gateway IIX
    222.229.84.0/23 r 10.81.11.129 ether2
    2086 A S ;;; Gateway IIX
    222.229.86.0/23 r 10.81.11.129 ether2
    2087 A S ;;; Default
    0.0.0.0/0 r 192.168.1.1 ether3

    /ip dns pri

    primary-dns: 202.58.162.1
    secondary-dns: 202.134.0.155
    allow-remote-requests: no
    cache-size: 2048KiB
    cache-max-ttl: 1w
    cache-used: 17KiB

    thanks yah

  4. #4
    Status
    Offline
    okto_2005's Avatar
    Member Super Senior
    Join Date
    Jul 2007
    Posts
    655
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    ini punya gue:

    C - connect, S - static, r - rip, b - bgp, o - ospf
    # DST-ADDRESS PREF-SRC G GATEWAY DISTANCE INTERFACE
    0 ADC 192.111.111.0/24 192.111.111.3 local
    1 ADC 202.aaa.bb.cc/29 202.aaa.bb.dd wan
    2 A S 0.0.0.0/0 r 202.aaa.bb.ee wan

    192.111.111.3 = ip mikrotik local
    192.111.111.0/24 = ip scope local
    202.aaa.bb.dd = ip public
    202.aaa.bb.cc = ip scope global / public
    202.aaa.bb.ee = ip gateway isp

    coba yg dns allow-remote-request kasi yes.

    di dns/gateway client pny gue set ke ip mikrotik

  5. #5
    Status
    Offline
    steve_luck_boy's Avatar
    Newbie
    Join Date
    Jul 2007
    Posts
    39
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0

    Talking

    Click here to enlarge Originally Posted by locantop Click here to enlarge
    /ip route pr

    # DST-ADDRESS PREF-SRC G GATEWAY DISTANCE INTERFACE
    0 ADC 10.81.11.0/24 10.81.11.133 ether2
    1 A S ;;; Gateway IIX
    58.65.240.0/24 r 10.81.11.129 ether2
    2 A S ;;; Gateway IIX
    58.65.241.0/24 r 10.81.11.129 ether2
    3 A S ;;; Gateway IIX
    58.65.242.0/24 r 10.81.11.129 ether2
    4 A S ;;; Gateway IIX
    58.65.243.0/24 r 10.81.11.129 ether2
    2084 A S ;;; Gateway IIX
    222.229.82.0/23 r 10.81.11.129 ether2
    2085 A S ;;; Gateway IIX
    222.229.84.0/23 r 10.81.11.129 ether2
    2086 A S ;;; Gateway IIX
    222.229.86.0/23 r 10.81.11.129 ether2
    2087 A S ;;; Default
    0.0.0.0/0 r 192.168.1.1 ether3

    /ip dns pri

    primary-dns: 202.58.162.1
    secondary-dns: 202.134.0.155
    allow-remote-requests: no
    cache-size: 2048KiB
    cache-max-ttl: 1w
    cache-used: 17KiB

    thanks yah
    wah lha iya bos wong allow-remote request masih no Click here to enlarge di yes dulu dah

  6. The Following User Says Thank You to steve_luck_boy For This Useful Post:


  7. #6
    Status
    Offline
    locantop's Avatar
    Member
    Join Date
    Jul 2007
    Posts
    268
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by steve_luck_boy Click here to enlarge
    wah lha iya bos wong allow-remote request masih no Click here to enlarge di yes dulu dah
    wakaka ia bro.dah bisa hehehe.Click here to enlarge semalaman cari2 masalahnya eh cuma itu doank.wakakak

  8. #7
    Status
    Offline
    [a]
    [a]'s Avatar
    Administrator
    Join Date
    Jun 2007
    Location
    Jakarta, Indonesia, Indonesia
    Posts
    1,729
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    1 (100%)
    huehehehhe.....yups...intinya cuma di satu parameter itu doang....

    selamat bergabung bro locantop

    Click here to enlarge


  9. #8
    Status
    Offline
    ponywaterhouse's Avatar
    Forum Guru
    Join Date
    Jul 2007
    Posts
    1,507
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    wew.. nice info lagi nih..
    baru tau gw ternyata bisa begini..
    kan enak, ga perlu ganti dns di masing2 client nya..

  10. #9
    Status
    Offline
    locantop's Avatar
    Member
    Join Date
    Jul 2007
    Posts
    268
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by [a] Click here to enlarge
    huehehehhe.....yups...intinya cuma di satu parameter itu doang....

    selamat bergabung bro locantop

    Click here to enlarge
    dah test 2 hari ini kenapa clien yang pake dns 202.134.0.155 lebih lancar koneksinya dari pada pake dns IP mikrotik nya.jadi ada beberapa web susah dibukanya kalau pake dns IP mikrotik tp kalau pakai dns dari telkom lancar terus in lagi test.

  11. #10
    Status
    Offline
    okto_2005's Avatar
    Member Super Senior
    Join Date
    Jul 2007
    Posts
    655
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    masa sih????

    punya gue lancar2 aja dari pertama kali pake mikrotik....
    mungkin routingnya masih ada yg salah ^^

    kok bagian akhir beda sama punya gue ya?????
    punya elo:
    2087 A S 0.0.0.0/0 r 192.168.1.1 ether3
    punya gue:
    2 A S 0.0.0.0/0 r 202.aaa.bb.ee wan

  12. #11
    Status
    Offline
    locantop's Avatar
    Member
    Join Date
    Jul 2007
    Posts
    268
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by okto_2005 Click here to enlarge
    masa sih????

    punya gue lancar2 aja dari pertama kali pake mikrotik....
    mungkin routingnya masih ada yg salah ^^

    kok bagian akhir beda sama punya gue ya?????
    punya elo:
    2087 A S 0.0.0.0/0 r 192.168.1.1 ether3
    punya gue:
    2 A S 0.0.0.0/0 r 202.aaa.bb.ee wan
    ternyata kalau routingnya dienable semua .ada beberapa situs ga bisa di buka.tp kalau cuma beberapa aja di enable baru bisa.apa ada yang bentruk yah di ip list iix di /ip route nya

  13. #12
    Status
    Offline
    d3v4's Avatar
    Forum Guru
    Join Date
    Jul 2007
    Location
    di alam baka
    Posts
    1,015
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by locantop Click here to enlarge
    /ip route pr

    # DST-ADDRESS PREF-SRC G GATEWAY DISTANCE INTERFACE
    0 ADC 10.81.11.0/24 10.81.11.133 ether2
    1 A S ;;; Gateway IIX
    58.65.240.0/24 r 10.81.11.129 ether2
    2 A S ;;; Gateway IIX
    58.65.241.0/24 r 10.81.11.129 ether2
    3 A S ;;; Gateway IIX
    58.65.242.0/24 r 10.81.11.129 ether2
    4 A S ;;; Gateway IIX
    58.65.243.0/24 r 10.81.11.129 ether2
    2084 A S ;;; Gateway IIX
    222.229.82.0/23 r 10.81.11.129 ether2
    2085 A S ;;; Gateway IIX
    222.229.84.0/23 r 10.81.11.129 ether2
    2086 A S ;;; Gateway IIX
    222.229.86.0/23 r 10.81.11.129 ether2
    2087 A S ;;; Default
    0.0.0.0/0 r 192.168.1.1 ether3

    /ip dns pri

    primary-dns: 202.58.162.1
    secondary-dns: 202.134.0.155
    allow-remote-requests: no
    cache-size: 2048KiB
    cache-max-ttl: 1w
    cache-used: 17KiB

    thanks yah
    gate nya ip privat semua ??

    ini pasti konfigurasi buat inet nya lewat speedy dan game nya lewat ISP ya Click here to enlarge

    dan pemisahannya pake /ip route dst-address<netiix> gateway=XXX.XXX.XXX.XXX

    ahahahahaha emang suka kaya' gitu brooo

    hmmm gw pernah buat yang kya' gini... masalahnya itu di DNS servernya

    jadi DNS telkom ga terima request dari ip yang bukan telkom dan DNS si ISP juga DENY ip yang bukan dari network nya dia, jadi yang bisa kebuka itu cuma yang udah ada di /ip dns cache pr

    alias yang udah pernah di cache ma mikrotik. MikrotIK itu bukan DNS SERVER tapi hanya dns cache jadi dia ga bakal bisa nyari resol-an sendiri.

    solusinya... pake salah satu DNS aja yang paling stabil misalkan DNS server si telkom paling stabil maka pake lah ke punya si telkom

    /ip dns set primary-dns=202.134.0.155

    set secondary nya klo bisa punya telkom juga... klo ga ada ya di kosongin aja

    /ip dns secondary-dns=0.0.0.0


    abis itu.... cek di /ip route pr

    yang kita inginkan adalah "jalur" punya telkom (a.k.a speedy) yang mengakses DNS server yang milik telkom jadi :

    hilangin route yang ke DNS telkom

    /ip route rem src-address=202.134.0.0/22 gateway=10.81.11.129

    atau /ip route pr trus di delet yang ke arah network 202.134.0.0/22 jadi mikrotik mengakses dns dan situs2 milik telkom lewat jalur telkom. jangan lupa cek ulang untuk network 202.134.0.0 harus tidak ada di /ip route pr

    naaaaah abis itu .....
    kita redirect semua request dns dari client ke arah DNS server telkom dan melewati jalur telkom daripada ngeganti2 dns di client kan repot Click here to enlarge

    /ip firewall nat add chain=dstnat src-address=0.0.0.0/0 protocol=udp dst-port=53 action=dst-nat to-addresses=202.134.0.155 to-ports=53

    /ip firewall nat add chain=dstnat src-address=0.0.0.0/0 protocol=udp dst-port=953
    action=dst-nat to-addresses=202.134.0.155 to-ports=953


    abis itu pastiin bentuk dns nya kek gini :
    [admin@MikroTik] ip firewall nat> /ip dns pr
    primary-dns: 202.134.0.155
    secondary-dns: 0.0.0.0
    allow-remote-requests: no <------------- ini ga papa
    cache-size: 2048KiB
    cache-max-ttl: 1w
    cache-used: 70KiB


    solusi ke 2

    buat DNS server sendiri brooooo gampang kok.. Click here to enlarge

    oke... di coba dulu brooo Click here to enlarge
    Last edited by d3v4; 10-07-2007 at 02:35.

  14. The Following 2 Users Say Thank You to d3v4 For This Useful Post:


  15. #13
    Status
    Offline
    [a]
    [a]'s Avatar
    Administrator
    Join Date
    Jun 2007
    Location
    Jakarta, Indonesia, Indonesia
    Posts
    1,729
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    1 (100%)
    setubuh...

    dude, there's something strange with your config...


  16. #14
    Status
    Offline
    widiatno's Avatar
    Baru Gabung
    Join Date
    Jul 2007
    Posts
    7
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    kalau pake 2 isp, trs 2 dns gimana?
    misal 1 pakai indosat, 1 pakay speedy

    sudah dicoba primer dns spedy, 2nd dns indosat ga bisa

    atau dns ga di isi tp di isi di masing2 client juga ga bisa

    ada yg tau pemecahannya?

    thx

  17. #15
    Status
    Offline
    locantop's Avatar
    Member
    Join Date
    Jul 2007
    Posts
    268
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by d3v4 Click here to enlarge
    gate nya ip privat semua ??

    ini pasti konfigurasi buat inet nya lewat speedy dan game nya lewat ISP ya Click here to enlarge

    dan pemisahannya pake /ip route dst-address<netiix> gateway=XXX.XXX.XXX.XXX

    ahahahahaha emang suka kaya' gitu brooo

    hmmm gw pernah buat yang kya' gini... masalahnya itu di DNS servernya

    jadi DNS telkom ga terima request dari ip yang bukan telkom dan DNS si ISP juga DENY ip yang bukan dari network nya dia, jadi yang bisa kebuka itu cuma yang udah ada di /ip dns cache pr

    alias yang udah pernah di cache ma mikrotik. MikrotIK itu bukan DNS SERVER tapi hanya dns cache jadi dia ga bakal bisa nyari resol-an sendiri.

    solusinya... pake salah satu DNS aja yang paling stabil misalkan DNS server si telkom paling stabil maka pake lah ke punya si telkom

    /ip dns set primary-dns=202.134.0.155

    set secondary nya klo bisa punya telkom juga... klo ga ada ya di kosongin aja

    /ip dns secondary-dns=0.0.0.0


    abis itu.... cek di /ip route pr

    yang kita inginkan adalah "jalur" punya telkom (a.k.a speedy) yang mengakses DNS server yang milik telkom jadi :

    hilangin route yang ke DNS telkom

    /ip route rem src-address=202.134.0.0/22 gateway=10.81.11.129

    atau /ip route pr trus di delet yang ke arah network 202.134.0.0/22 jadi mikrotik mengakses dns dan situs2 milik telkom lewat jalur telkom. jangan lupa cek ulang untuk network 202.134.0.0 harus tidak ada di /ip route pr

    naaaaah abis itu .....
    kita redirect semua request dns dari client ke arah DNS server telkom dan melewati jalur telkom daripada ngeganti2 dns di client kan repot Click here to enlarge

    /ip firewall nat add chain=dstnat src-address=0.0.0.0/0 protocol=udp dst-port=53 action=dst-nat to-addresses=202.134.0.155 to-ports=53

    /ip firewall nat add chain=dstnat src-address=0.0.0.0/0 protocol=udp dst-port=953
    action=dst-nat to-addresses=202.134.0.155 to-ports=953


    abis itu pastiin bentuk dns nya kek gini :
    [admin@MikroTik] ip firewall nat> /ip dns pr
    primary-dns: 202.134.0.155
    secondary-dns: 0.0.0.0
    allow-remote-requests: no <------------- ini ga papa
    cache-size: 2048KiB
    cache-max-ttl: 1w
    cache-used: 70KiB


    solusi ke 2

    buat DNS server sendiri brooooo gampang kok.. Click here to enlarge

    oke... di coba dulu brooo Click here to enlarge
    Flags: X - disabled, I - invalid, D - dynamic
    0 chain=srcnat out-interface=ether2 action=masquerade

    1 chain=srcnat out-interface=ether3 action=masquerade

    2 chain=dstnat src-address=0.0.0.0/0 protocol=udp dst-port=53
    action=dst-nat to-addresses=202.134.0.155 to-ports=53

    3 chain=dstnat src-address=0.0.0.0/0 protocol=udp dst-port=953
    action=dst-nat to-addresses=202.134.0.155 to-ports=953

    tuh nat nya dah bener lom?

    kalau 203.130.196.0 itu telkom bukan?

    jadi di clien tetep pakai dns dan gatway ip punya mikrotiknya yah
    Last edited by locantop; 10-07-2007 at 10:50.

 

 
Page 1 of 4 123 ... LastLast

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •