Follow us on...
Follow us on G+ Follow us on Twitter Follow us on Facebook Watch us on YouTube
Register
Page 2 of 3 FirstFirst 123 LastLast
Results 16 to 30 of 35
  1. #16
    Status
    Offline
    [a]
    [a]'s Avatar
    Administrator
    Join Date
    Jun 2007
    Location
    Jakarta, Indonesia, Indonesia
    Posts
    1,729
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    1 (100%)
    bro..ga jelas nih...

    itu pc clientnya connect ke WAN atau gimana ?

    bisa posting ulang topologynya tapi pake visio mungkin ??

    thanks..


  2. #17
    Status
    Offline
    d3v4's Avatar
    Forum Guru
    Join Date
    Jul 2007
    Location
    di alam baka
    Posts
    1,015
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by symbal_pecah Click here to enlarge
    kl rule itu saya coba topologinya spt ini "

    WAN ----- switch ----- mikroTik
    |
    |
    PC client

    switchnya unmanageable, jd item yang ada tanda seru negasi dr ip gateway.
    internet nya sebelah mana ? Click here to enlarge

  3. #18
    Status
    Offline
    okto_2005's Avatar
    Member Super Senior
    Join Date
    Jul 2007
    Posts
    655
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    TS nya kemana nih???? pertanyaan gue belum di jawab?????

  4. #19
    Status
    Offline
    walla's Avatar
    Baru Gabung
    Join Date
    Jul 2007
    Posts
    6
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    wah.. bro gue juga ada masalah ngeblock ping sesama jaringan LAN, bantuin give example donk

    thanks

  5. #20
    Status
    Offline
    c0nf's Avatar
    Contributor
    Join Date
    Jul 2007
    Location
    Bandung, Indonesia
    Posts
    1,816
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    wah, jadi kusut
    bro walla, coba diliat dulu postingan2 sblm nya. kalo ada yg kurang jelas, baru tanya ke sini yak Click here to enlarge

    Bro Okto_2005
    TS apaan yak ? jadi bingung heheheh
    inilah kalo kebanyakan minum Click here to enlarge

  6. #21
    Status
    Offline
    [a]
    [a]'s Avatar
    Administrator
    Join Date
    Jun 2007
    Location
    Jakarta, Indonesia, Indonesia
    Posts
    1,729
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    1 (100%)
    TS = Thread Starter bro....

    Click here to enlarge Click here to enlarge


  7. #22
    Status
    Offline
    c0nf's Avatar
    Contributor
    Join Date
    Jul 2007
    Location
    Bandung, Indonesia
    Posts
    1,816
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    owh
    ic ic
    maklum, lagi kumat bego nya
    hehehhe
    lanjuttttttttttttt............

  8. #23
    Status
    Offline
    nux
    nux's Avatar
    Member
    Join Date
    Jul 2007
    Posts
    268
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by symbal_pecah Click here to enlarge
    kl rule itu saya coba topologinya spt ini "

    WAN ----- switch ----- mikroTik
    |
    |
    PC client

    switchnya unmanageable, jd item yang ada tanda seru negasi dr ip gateway.
    maksudnya bung sysmbal_pecah begini:
    Click here to enlarge

    kok formatnya berubah ya???, tapi kalo di quote jadi bener lagi, aneh...Click here to enlarge

    btw, rule di mikrotik gimana tuh bung???

  9. #24
    Status
    Offline
    d3v4's Avatar
    Forum Guru
    Join Date
    Jul 2007
    Location
    di alam baka
    Posts
    1,015
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    klo masih satu network kek nya ga bakalan bisa... Click here to enlarge

  10. #25
    Status
    Offline
    walla's Avatar
    Baru Gabung
    Join Date
    Jul 2007
    Posts
    6
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    perlu bantuan seperti judul thread mo blocking sesama LAN
    topologi saya:

    WAN - ADSL - Mikrotik1 - Client 1 - Mikrotik2 - Client 2
    192.168.1.1 192.168.1.2 192.168.2.1 192.168.2.10 192.168.3.1

    Bisakah saya memblokir client2 untuk ping/sharing data ke client1?

  11. #26
    Status
    Offline
    [a]
    [a]'s Avatar
    Administrator
    Join Date
    Jun 2007
    Location
    Jakarta, Indonesia, Indonesia
    Posts
    1,729
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    1 (100%)
    bisa dunks...

    set ajah firewallnya untuk drop paket yang ga perlu di Mikrotik 2...


  12. The Following User Says Thank You to [a] For This Useful Post:

    roy

  13. #27
    Status
    Offline
    d3v4's Avatar
    Forum Guru
    Join Date
    Jul 2007
    Location
    di alam baka
    Posts
    1,015
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by walla Click here to enlarge
    perlu bantuan seperti judul thread mo blocking sesama LAN
    topologi saya:

    WAN - ADSL - Mikrotik1 - Client 1 - Mikrotik2 - Client 2
    192.168.1.1 192.168.1.2 192.168.2.1 192.168.2.10 192.168.3.1

    Bisakah saya memblokir client2 untuk ping/sharing data ke client1?
    ini beda network

    sedangkan punya TS :
    Click here to enlarge Originally Posted by gateway Click here to enlarge
    kk..,

    numpang tanya yah gimana seh caranya ngeblok/ ngebatasin semua trafic lokal.

    Pengennya seh biar semua client yang ada dalam satu LAN nga bisa nge ping satu sama lain atau ngaliat satu sama lain.

    makasi sebelumnya
    dalam satu LAN

    klo dalam satu network mustahil... klo beda network bisa

    lebih baik belajar prinsip nya dulu bro...


    contoh nya...

    contoh 1 : DALAM SATU NETWORK


    CLIENT A dengan ip address 192.168.1.1
    CLIENT B dengan ip address 192.168.1.2
    gateway 192.168.1.254

    jika di perhatikan
    network client A dan B 192.168.1.0/24 dan broadcastnya 192.168.1.255

    dalam satu hub/switch yang bukan manageble switch (seperti kata bro )

    ini mustahil di blok

    karena si komputer untuk "mengenali" tetangganya masing2 dia akan "broadcast di networknya". dengan kata lain... untuk mengenali tetangganya dia TIDAK MEMERLUKAN gateway


    contoh 2 DALAM BEDA NETWORK

    CLIENT A ip address 192.168.1.1 gateway 192.168.1.254 network 192.168.1.0/24 dan broadcast 192.168.1.255

    CLIENT B ip address 192.168.100.1 gateway 192.168.100.254 network 192.168.100.0/24 broadcast 192.168.100.255


    ini bisa di blok karena :

    CLIENT A untuk mengenali client B harus melalui gateway client A, begitu juga sebalik nya Client B untuk mengenali client A harus melalui gateway client B

    inilah yang di sebut "routing network"

    trus di mikrotik cara ngeblok nya gimana ?

    untuk kasus seperti kata bro Click here to enlarge

    di blok aja di mikrotik gateway nya yaitu di MIKROTIK 2, caranya /ip fire filter add chain=forward protocol=icmp action=drop


    untuk lebih jelas ini ada bahan untuk ip address, subneting/route network yang baik :










    konsep dasar itu penting apalagi di sertai dengan praktek.... hasilnya dahsyaaat broo Click here to enlarge
    Last edited by d3v4; 17-07-2007 at 01:03.

  14. #28
    Status
    Offline
    walla's Avatar
    Baru Gabung
    Join Date
    Jul 2007
    Posts
    6
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Bro d3v4 thanks untuk informasinya.. sebelomnya topologi saya begini:

    WAN - ADSL - Computer LAN 1.x - Computer LAN 2.x - Computer LAN 2.x - Mikrotik - Computer LAN 3.x

    ADSL/gateway 192.168.1.1
    Computer LAN 1.x 192.168.1.2

    Computer LAN 2.x 192.168.1.10 2NIC
    2.x 192.168.2.1(gateway mikrotik)

    Mikrotik 192.168.2.10
    192.168.3.1

    Computer LAN 3.x 192.168.3.2

    yang gue tanyakan itu bisakah computer LAN 3.x diblok access ke computer LAN 1.x? soalnya gue uda coba drop icmp di firewall rules semua pada gak bisa.. masi bisa akses

  15. #29
    Status
    Offline
    d3v4's Avatar
    Forum Guru
    Join Date
    Jul 2007
    Location
    di alam baka
    Posts
    1,015
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by walla Click here to enlarge
    Bro d3v4 thanks untuk informasinya.. sebelomnya topologi saya begini:

    WAN - ADSL - Computer LAN 1.x - Computer LAN 2.x - Computer LAN 2.x - Mikrotik - Computer LAN 3.x

    ADSL/gateway 192.168.1.1
    Computer LAN 1.x 192.168.1.2

    Computer LAN 2.x 192.168.1.10 2NIC
    2.x 192.168.2.1(gateway mikrotik)

    Mikrotik 192.168.2.10
    192.168.3.1

    Computer LAN 3.x 192.168.3.2

    yang gue tanyakan itu bisakah computer LAN 3.x diblok access ke computer LAN 1.x? soalnya gue uda coba drop icmp di firewall rules semua pada gak bisa.. masi bisa akses

    jadi kira2 seperti ini lah ya..

    INET -- ADSL --- hub-- 192.168.1.1 (PC)
    .........................|
    .........................|---- 192.168.1.2 (pc) 192.168.2.1 ----192.168.2.10 (mikrotik) 192.168.3.1 -- 192.168.3.XX (PC)


    coba di mikrotik di pasangin ini

    hapus semua rules firewall yang ada di mikrotik (input accept forward harus ga ada atau fire filter di bawah ini di letakkan di paling atas pada firewall filter)

    /ip fire filter add chain=forward dst-address=192.168.1.0/24 src-address=192.168.3.0/24 protocol=tcp action=drop
    /ip fire filter add chain=forward dst-address=192.168.1.0/24 src-address=192.168.3.0/24 protocol=udp action=drop
    /ip fire filter add chain=forward dst-address=192.168.1.0/24 src-address=192.168.3.0/24 protocol=icmp action=drop
    Click here to enlarge blokir akses dari 192.168.3.XX ke 192.168.1.XX

    jika tidak bisa juga :

    coba ketik ini di terminal trus paste di sini
    /ip address pr
    /ip route pr
    /ip firewall filter pr
    /ip firewall nat pr
    Last edited by d3v4; 17-07-2007 at 13:33.

  16. #30
    Status
    Offline
    okto_2005's Avatar
    Member Super Senior
    Join Date
    Jul 2007
    Posts
    655
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    apa ga dibuat gini aja:

    inet-adsl------------------ mikrotik -----switch/client(192.168.3.x)
    ...................................../.........\
    .................switch/client../.......... switch/client
    .................(192.168.1.x)..............(192.1 68.2.x)

    mikrotik kasi 4 NIC, terus blok icmp dan port 139,139 udp,tcp---> untuk sharing file

 

 
Page 2 of 3 FirstFirst 123 LastLast

Thread Information

Users Browsing this Thread

There are currently 2 users browsing this thread. (0 members and 2 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •