No route to host. !.. hanya ke 1 website..ke website lain s

Diskusi tentang Ubuntu Server baik webserver, database server, samba server dan service lainnya serta jaringan menggunakan Sistem Operasi Ubuntu.
User avatar
bang_andi
Posts: 398
Joined: 03 Sep 2010, 09:07
Location: Di sekitar sungai musi...
Contact:

No route to host. !.. hanya ke 1 website..ke website lain s

Postby bang_andi » 17 May 2012, 00:01

Mohon pencerahannya dari kwn2...Biasanya akses internet lancar2 aja...tpi 2 hari ini ane ngalamin masalah seprti di bawah ini yaitu no route to host...anehnya hanya pada 1 website saja yaitu facebook..terkadang bisa browsing facebook kdg kagak bisa...tiba2 aja no route to host...apa masalah di routingnya, iptables-nya ? kalo ke tujuan website lain sih gk ada masalah (oke).. kalo sy ping fb dri sisi mikrotik sih bisa..nah berarti ada yg salah di ubuntu servernya + squid nya..tp kok tiba2 ya ?

Utk informasi sy pake mikrotik + ubuntu server 10.04 dg squid proxy 2.7 stable7

dan...

Dibawah ini nih kasusnya ?

While trying to retrieve the URL: http://www.facebook.com/

The following error was encountered:

* Connection to 31.13.79.20 Failed

The system returned:

(113) No route to host

The remote host or network may be down. Please try the request again.


Smoga thread ini menjadi referensi jikalau ada masalah yg sm sprt diatas...jd mohon bantuannya ?
User avatar
yudiarbi
Posts: 627
Joined: 22 Mar 2011, 09:31
Location: Probolinggo, Jawa Timur
Contact:

Re: No route to host. !.. hanya ke 1 website..ke website la

Postby yudiarbi » 17 May 2012, 02:58

gelar konfigurasi squidnya bro, sm iptablesnya
User avatar
bang_andi
Posts: 398
Joined: 03 Sep 2010, 09:07
Location: Di sekitar sungai musi...
Contact:

Re: No route to host. !.. hanya ke 1 website..ke website la

Postby bang_andi » 18 May 2012, 11:49

Oke..sprt yg diminta masterbro yudiarbi...sy newbie di mikrotik dan squid proxy (pake ubuntu server 10.04)...dan keduanya sy setting sendiri..makanya sy minta bantuan kwn2 disini..

1. Iptables-nya...sy cek dengan iptables -t nat -L

Chain PREROUTING (policy ACCEPT)
target prot opt source destination

Chain POSTROUTING (policy ACCEPT)
target prot opt source destination
MASQUERADE all -- localnet/24 anywhere

Chain OUTPUT (policy ACCEPT)
target prot opt source destination

or

/sbin/iptables -t nat -A POSTROUTING -s 10.5.50.0/255.255.255.0 -d 0/0 -j MASQUERADE

2. konfigurasi squid 2.7 Stable7-nya :


# WELCOME TO SQUID 2.7.STABLE7
# ----------------------------
#
acl all src all
acl manager proto cache_object
acl localhost src 127.0.0.1/32
acl s3a50net src 10.5.50.0/24
acl s3a60net src 10.5.60.0/24
acl to_localhost dst 127.0.0.0/8 0.0.0.0/32
acl webmin url_regex "/etc/webmin/webmin.acl"

#filter url yang akan diblokir
acl badurl dstdomain "/etc/squid/blocksites"
acl badsitus dstdomain "/etc/squid/blocksitusporno"
acl badkata url_regex -i "/etc/squid/blockkata"

#setting waktu akses
acl pagi time MTWHF 07:00-12:15
acl sore time MTWHF 13:15-16:00
acl forever time MTWHF 06:00-24:00

#setting tolak akses sesuai settingan waktu untuk domain yang ada di file
http_access deny pagi badurl
http_access deny sore badurl
http_access deny forever badsitus
http_access deny forever badkata


acl localnet src 10.0.0.0/8 # RFC1918 possible internal network
acl localnet src 172.16.0.0/12 # RFC1918 possible internal network
acl localnet src 192.168.0.0/16 # RFC1918 possible internal network

acl SSL_ports port 443 # https
acl SSL_ports port 563 # snews
acl SSL_ports port 873 # rsync
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 8000 # WAIS
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl Safe_ports port 631 # cups
acl Safe_ports port 873 # rsync
acl Safe_ports port 901 # SWAT
acl webmin_ports port 10000 # webmin
acl ssh_ports port 222 # ssh
acl purge method PURGE
acl CONNECT method CONNECT

http_access allow manager localhost
http_access deny manager
http_access allow purge localhost
http_access deny purge
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports

http_access allow localnet
http_access allow localhost
http_access allow s3a50net
http_access allow s3a60net
http_access allow webmin_ports
http_access allow ssh_ports
http_access allow CONNECT !webmin_ports
http_access allow CONNECT !ssh_ports
http_access deny all

icp_access allow localnet
icp_access deny all

http_port 3128 transparent

cache_mem 8 MB
maximum_object_size_in_memory 128 KB
cache_dir ufs /var/spool/squid 60000 64 512
minimum_object_size 0 bytes
maximum_object_size 128000 KB
cache_swap_low 90
cache_swap_high 95
access_log /var/log/squid/access.log squid
cache_log /var/log/squid/cache.log
cache_store_log /var/log/squid/store.log

#Refresh_pattern
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern -i (/cgi-bin/|\?) 0 0% 0
refresh_pattern (Release|Package(.gz)*)$ 0 20% 2880

refresh_pattern -i .(class|css|js|gif|jpg)$ 10080 100% 43200 reload-into-ims override-lastmod
refresh_pattern -i .(jpe|jpeg|png|bmp|tif)$ 10080 100% 43200 reload-into-ims override-lastmod
refresh_pattern -i .(tiff|mov|avi|qt|mpeg)$ 10080 100% 43200 reload-into-ims override-lastmod
refresh_pattern -i .(mp3|3gp|mpg|mpe|wav|au|mid)$ 10080 100% 43200 override-lastmod reload-into-ims
refresh_pattern -i .(exe|iso|tar|rar|zip|gz|arj|lha|lzh)$ 10080 100% 43200 override-lastmod reload-into-ims
refresh_pattern -i .(rar|tgz|tar|exe|bin)$ 10080 100% 43200 reload-into-ims override-lastmod
refresh_pattern -i .(hqx|pdf|rtf|doc|swf)$ 10080 100% 43200 reload-into-ims override-lastmod
refresh_pattern -i .(inc|cab|ad|txt|dll)$ 10080 100% 43200 reload-into-ims override-lastmod
refresh_pattern ^http:/*.facebook.*/.* 10080 90% 43200 reload-into-ims override-lastmod
refresh_pattern ^http:/*.detik.*/.* 10080 90% 43200 reload-into-ims override-lastmod

# web contents
refresh_pattern -i \.(class|css|js|xml)$ 1440 50% 10080 ignore-no-cache ignore-private reload-into-ims override-lastmod
refresh_pattern -i \.index\.(html|htm|php)$ 0 50% 1
refresh_pattern -i \.(cgi|asp|shtml|pl|html|htm)$ 0 20% 1

# banner IIX
refresh_pattern ^http:\/\/ads(1|2|3).kompas.com.*\/ 43200 99999% 129600 reload-into-ims ignore-reload override-expire ignore-no-cache
refresh_pattern ^http:\/\/img.ads.kompas.com.*\/ 43200 99999% 129600 reload-into-ims ignore-reload override-expire ignore-no-cache
refresh_pattern .kompasimages.com.*\.(jpg|gif|png|swf) 43200 99999% 129600 reload-into-ims ignore-reload override-expire ignore-no-cache
refresh_pattern ^http:\/\/openx.kompas.com.*\/ 43200 99999% 129600 reload-into-ims ignore-reload override-expire ignore-no-cache
refresh_pattern kaskus.\us.*\.(jp(e?g|e|2)|gif|png|swf) 43200 99999% 129600 reload-into-ims ignore-reload override-expire ignore-no-cache
refresh_pattern -i cdn-[a-z]\.kaskus.\us.*\.(jp(e?g|e|2)|gif|png) 43200 99999% 129600 reload-into-ims ignore-reload override-expire ignore-no-cache
refresh_pattern ^http:\/\/img.kaskus.us.*\.(jpg|gif|png|swf) 43200 99999% 129600 reload-into-ims ignore-reload override-expire ignore-no-cache
refresh_pattern ^.*(utm\.gif|ads\?|rmxads\.com|ad\.z5x\.net|bh\.contextweb\.com|bstats\.adbrite\.com|a1\.interclick\.com|ad\.trafficmp\.com|ads\.cubics\.com|ad\.xtendmedia\.com|\.googlesyndication\.com|advertising\.com|yieldmanager|game-advertising\.com|pixel\.quantserve\.com|adperium\.com|doubleclick\.net|adserving\.cpxinteractive\.com|syndication\.com|media.fastclick.net).* 43200 20% 43200 ignore-no-cache ignore-private

# ytimg, google, etc
refresh_pattern ^.*safebrowsing.*google 43200 999999% 43200 override-expire ignore-reload ignore-no-cache ignore-private
refresh_pattern ^http://((cbk|mt|khm|mlt)[0-9]?)\.google\.co(m|\.id) 43200 999999% 43200 override-expire ignore-reload ignore-private
refresh_pattern ytimg\.com.*\.jpg 43200 999999% 43200 override-expire ignore-reload
refresh_pattern ^http:\/\/www.onemanga.com.*\/ 43200 999999% 43200 reload-into-ims ignore-no-cache ignore-reload override-expire
refresh_pattern ^http://v\.okezone\.com/get_video\/([a-zA-Z0-9]) 43200 999999% 43200 override-expire ignore-reload ignore-no-cache ignore-private override-lastmod

# example line deb packages
refresh_pattern (\.deb|\.udeb)$ 129600 100% 129600
refresh_pattern . 0 20% 4320

quick_abort_min 0 KB
quick_abort_max 0 KB
quick_abort_pct 100

read_ahead_gap 30 KB
negative_ttl 30 seconds
positive_dns_ttl 24 hours
negative_dns_ttl 60 seconds
range_offset_limit 17 MB
store_avg_object_size 50 KB
request_header_max_size 1024 KB
reply_header_max_size 1024 KB
request_body_max_size 2 MB
peer_connect_timeout 45 seconds
request_timeout 1 minutes
persistent_request_timeout 1 minutes
client_lifetime 1 day
visible_hostname localhost
icp_port 3130
max_filedescriptors 32768


## FreeBSD
accept_filter httpready
## Linux
accept_filter data
incoming_rate 60

dns_nameservers 202.134.0.155 202.134.1.10
hosts_file /etc/hosts

ipcache_size 2048
ipcache_low 90
ipcache_high 95

Return to “Ubuntu Server”

Who is online

Users browsing this forum: Bing [Bot] and 3 guests