Tidak Bisa Ping Ke Gateway

Diskusi tentang Ubuntu Server baik webserver, database server, samba server dan service lainnya serta jaringan menggunakan Sistem Operasi Ubuntu.
Post Reply
User avatar
AanChoto

Tidak Bisa Ping Ke Gateway

Post 03 Apr 2011, 02:04

Maaf Kalau salah Kamar
saya baru mencoba install ubuntu server untuk proxy
Ip di ubuntu sudah saya masukkan
eth0 Link encap:Ethernet HWaddr 00:22:15:b9:23:00
inet addr:192.168.3.2 Bcast:192.168.3.7 Mask:255.255.255.248
inet6 addr: fe80::222:15ff:feb9:2300/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:3073 errors:0 dropped:0 overruns:0 frame:0
TX packets:3659 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:262340 (262.3 KB) TX bytes:483858 (483.8 KB)
Interrupt:26

lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:4 errors:0 dropped:0 overruns:0 frame:0
TX packets:4 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:384 (384.0 B) TX bytes:384 (384.0 B)
untuk setinggan di Mikrotik Gateway saya sudah saya buatkan
Flags: X - disabled, I - invalid, D - dynamic
# ADDRESS NETWORK BROADCAST INTERFACE
0 192.168.1.10/24 192.168.1.0 192.168.1.255 ether1
1 10.10.0.1/22 10.10.0.0 10.10.3.255 bridge1
2 192.168.2.1/29 192.168.2.0 192.168.2.7 proxy
3 192.168.3.1/29 192.168.3.0 192.168.3.7 proxy
tapi saya masih belum bisa ping ke gateway

mohon bantuan master semua
sebagai tambahan
ini squid.conf saya
# OPTIONS FOR AUTHENTICATION
# -----------------------------------------------------------------------------

auth_param basic children 5
auth_param basic realm Squid proxy-caching web server
auth_param basic credentialsttl 2 hours
auth_param basic casesensitive off

# ACCESS CONTROLS
# -----------------------------------------------------------------------------

acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563 873 # https snews rsync
acl Safe_ports port 80 # http
acl Safe_ports port 20 21 # ftp
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 631 # cups
acl Safe_ports port 10000 # webmin
acl Safe_ports port 901 # SWAT
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl Safe_ports port 873 # rsync
acl Safe_ports port 110 # POP3
acl Safe_ports port 25 # SMTP
acl Safe_ports port 2095 2096 # webmail from cpanel
acl Safe_ports port 2082 2083 # cpanel
acl CONNECT method CONNECT

acl purge method PURGE
acl CONNECT method CONNECT
http_access allow manager localhost
http_access deny manager
http_access allow purge localhost
http_access deny purge
http_access deny !Safe_ports !SSL_ports
http_access deny CONNECT !SSL_ports !Safe_ports

# OPTIONS FOR X-Forwarded-For
# -----------------------------------------------------------------------------

# follow_x_forwarded_for deny all
# acl_uses_indirect_client on
# delay_pool_uses_indirect_client on
# log_uses_indirect_client on

# SSL OPTIONS
# -----------------------------------------------------------------------------

# ssl_unclean_shutdown off
# sslproxy_version 1

# NETWORK OPTIONS
# -----------------------------------------------------------------------------

http_port 8080 transparent

zph_mode tos
zph_local 0x30
# zph_sibling 0
zph_parent 0
zph_option 136

# OPTIONS WHICH AFFECT THE NEIGHBOR SELECTION ALGORITHM
# -----------------------------------------------------------------------------

dead_peer_timeout 10 seconds
hierarchy_stoplist cgi-bin ?

# MEMORY CACHE OPTIONS
# -----------------------------------------------------------------------------

cache_mem 8 MB
maximum_object_size_in_memory 6 KB
memory_replacement_policy heap GDSF

# DISK CACHE OPTIONS
# -----------------------------------------------------------------------------

cache_replacement_policy heap LFUDA
cache_dir aufs /home/proxy1 21000 16 256
store_dir_select_algorithm round-robin
max_open_disk_fds 100
maximum_object_size 128 MB
minimum_object_size 0 KB
maximum_object_size_in_memory 128 KB
cache_swap_low 98
cache_swap_high 99
half_closed_clients off
negative_ttl 1 minutes
# minimum_object_size 0 KB
# update_headers on

# LOGFILE OPTIONS
# -----------------------------------------------------------------------------

access_log /usr/local/squid/logs/access.log squid
# logfile_daemon /usr/local/libexec/squid/logfile-daemon
cache_log /usr/local/squid/logs/cache.log
cache_store_log none
# logfile_rotate 10
emulate_httpd_log off
# log_ip_on_direct on
# mime_table /usr/local/etc/squid/mime.conf
# log_mime_hdrs off
pid_filename /var/run/squid.pid
cache_swap_log /var/log/squid/swap.state
dns_nameservers /etc/resolv.conf
# debug_options ALL,1
# log_fqdn off
# client_netmask 255.255.255.255
# strip_query_terms on
# buffered_logs off
# netdb_filename /usr/local/squid/logs/netdb.state

# OPTIONS FOR FTP GATEWAYING
# -----------------------------------------------------------------------------

ftp_user anonymous@
ftp_list_width 32
ftp_passive on
ftp_sanitycheck on
ftp_telnet_protocol on

# OPTIONS FOR EXTERNAL SUPPORT PROGRAMS
# -----------------------------------------------------------------------------

# ufs_log_build_program /usr/local/libexec/squid/ufs_rebuild
# coss_log_build_program /usr/local/libexec/squid/coss_rebuild
# diskd_program /usr/local/libexec/squid/diskd-daemon
# unlinkd_program /usr/local/libexec/squid/unlinkd
# pinger_program /usr/local/libexec/squid/pinger

# OPTIONS FOR URL REWRITING
# -----------------------------------------------------------------------------

redirector_bypass off
# storeurl_rewrite_children 5
# storeurl_rewrite_concurrency 0
# rewrite_access deny all
# url_rewrite_children 5
# url_rewrite_concurrency 0
# url_rewrite_host_header on
# storeurl_bypass off
# location_rewrite_children 5
# location_rewrite_concurrency 0

# OPTIONS FOR TUNING THE CACHE
# -----------------------------------------------------------------------------

# Refresh Pattern
#---------------------------------------------------------------#

# pictures & images
refresh_pattern -i \.(gif|png|jpeg|jpg|bmp|tif|tiff|ico)$ 10080 50% 43200 override-expire override-lastmod reload-into-ims ignore-reload ignore-no-cache ignore-auth ignore-private
refresh_pattern -i \.(xml|html|htm|js|txt|css|php)$ 10080 50% 43200 override-expire override-lastmod reload-into-ims ignore-reload ignore-no-cache ignore-auth

#sound, video multimedia
refresh_pattern -i \.(flv|x-flv|mov|avi|qt|mpg|mpeg|swf)$ 10080 50% 43200 override-expire override-lastmod reload-into-ims ignore-reload ignore-no-cache
refresh_pattern -i \.(wav|mp3|mp4|au|mid)$ 10080 50% 43200 override-expire override-lastmod reload-into-ims ignore-reload ignore-no-cache ignore-auth ignore-private

# files
refresh_pattern -i \.(iso|deb|rpm|zip|tar|tgz|ram|rar|bin|ppt|doc)$ 10080 90% 43200 ignore-no-cache ignore-auth
refresh_pattern -i \.(zip|gz|arj|lha|lzh)$ 10080 100% 43200 override-expire ignore-no-cache ignore-auth
refresh_pattern -i \.(rar|tgz|tar|exe|bin)$ 10080 100% 43200 override-expire ignore-no-cache ignore-auth
refresh_pattern -i \.(hqx|pdf|rtf|doc|swf)$ 10080 100% 43200 override-expire ignore-no-cache ignore-auth
refresh_pattern -i \.(inc|cab|ad|txt|dll)$ 10080 100% 43200 override-expire ignore-no-cache ignore-auth

# -- refresh pattern for specific sites -- #
refresh_pattern ^http://*.jobstreet.com.*/.* 720 100% 10080 override-expire override-lastmod ignore-no-cache
refresh_pattern ^http://*.indowebster.com.*/.* 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-reload ignore-no-cache ignore-auth
refresh_pattern ^http://*.21cineplex.*/.* 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-reload ignore-no-cache ignore-auth
refresh_pattern ^http://*.atmajaya.*/.* 720 100% 10080 override-expire ignore-no-cache ignore-auth
refresh_pattern ^http://*.kompas.*/.* 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
refresh_pattern ^http://*.theinquirer.*/.* 720 100% 10080 override-expire ignore-no-cache ignore-auth
refresh_pattern ^http://*.blogspot.com/.* 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
refresh_pattern ^http://*.wordpress.com/.* 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache
refresh_pattern ^http://*.photobucket.com/.* 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
refresh_pattern ^http://*.tinypic.com/.* 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
refresh_pattern ^http://*.imageshack.us/.* 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
refresh_pattern ^http://*.kaskus.*/.* 720 100% 28800 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
refresh_pattern ^http://www.kaskus.com/.* 720 100% 28800 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
refresh_pattern ^http://*.detik.*/.* 720 50% 2880 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
refresh_pattern ^http://*.detiknews.*/*.* 720 50% 2880 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
refresh_pattern ^http://video.liputan6.com/.* 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
refresh_pattern ^http://static.liputan6.com/.* 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
refresh_pattern ^http://*.friendster.com/.* 720 100% 10080 override-expire override-lastmod ignore-no-cache ignore-auth
refresh_pattern ^http://*.facebook.com/.* 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
refresh_pattern ^http://apps.facebook.com/.* 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
refresh_pattern ^http://*.fbcdn.net/.* 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
refresh_pattern ^http://profile.ak.fbcdn.net/.* 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
refresh_pattern ^http://static.playspoon.com/.* 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
refresh_pattern ^http://cooking.game.playspoon.com/.* 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
refresh_pattern -i http://[^a-z\.]*onemanga\.com/? 720 80% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
refresh_pattern ^http://media?.onemanga.com/.* 720 80% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
refresh_pattern ^http://*.yahoo.com/.* 720 80% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
refresh_pattern ^http://*.google.com/.* 720 80% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
refresh_pattern ^http://*.forummikrotik.com/.* 720 80% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth
refresh_pattern ^http://*.linux.or.id/.* 720 100% 10080 override-expire override-lastmod reload-into-ims ignore-no-cache ignore-auth

# max_stale 1 week
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern -i (/cgi-bin/|\?) 0 0% 0
refresh_pattern . 0 20% 4320

# quick_abort_min 16 KB
# quick_abort_max 16 KB
# quick_abort_pct 95

# read_ahead_gap 16 KB
# negative_ttl 5 minutes
# positive_dns_ttl 6 hours
# negative_dns_ttl 1 minute
# range_offset_limit 0 KB
# minimum_expiry_time 60 seconds
# store_avg_object_size 13 KB
# store_objects_per_bucket 20

# HTTP OPTIONS
# -----------------------------------------------------------------------------

request_header_max_size 20 KB
reply_header_max_size 20 KB
request_body_max_size 0 allow all
ie_refresh off
header_access Accept-Encoding deny hotmail
acl apache rep_header Server ^Apache
broken_vary_encoding allow apache
# request_body_delay_forward_size 0 allow all
acl shoutcast rep_header X-HTTP09-First-Line ^ICY.[0-9]
upgrade_http0.9 deny shoutcast
# via on
# cache_vary on
# collapsed_forwarding off
# collapsed_forwarding_timeout 30
# refresh_stale_hit 0 seconds
# vary_ignore_expire off
# request_entities off
# log_http_violations off
# relaxed_header_parser on
# server_http11 off
# ignore_expect_100 off

# TIMEOUTS
# -----------------------------------------------------------------------------

forward_timeout 4 minutes
connect_timeout 1 minute
peer_connect_timeout 1 minute
read_timeout 15 minutes
request_timeout 5 minutes
persistent_request_timeout 1 minutes
client_lifetime 60 minutes
half_closed_clients off
pconn_timeout 120 seconds
# ident_timeout 10 seconds
shutdown_lifetime 10 seconds

# ADMINISTRATIVE PARAMETERS
# -----------------------------------------------------------------------------

cache_mgr telematika.net@gmail.com/trouble-call:0852-7272-1141
#cache_mgr MAAF_SEDANG_ADA_PERMASALAHAN_DI_JARINGAN_PUSAT_@_TERIMA_KASIH
cache_effective_user squid
cache_effective_group squid
visible_hostname proxy.centerpoinet.net
# cachemgr_passwd squid-cache goldennet
# mail_program mail
# httpd_suppress_version_string off
# umask 027

# OPTIONS FOR THE CACHE REGISTRATION SERVICE
# -----------------------------------------------------------------------------

# announce_period 0
# announce_host tracker.ircache.net
# announce_port 3131

# HTTPD-ACCELERATOR OPTIONS
# -----------------------------------------------------------------------------

# httpd_accel_no_pmtu_disc off

# DELAY POOL PARAMETERS
# -----------------------------------------------------------------------------

# delay_pools 0
# delay_pools 2 # 2 delay pools
# delay_class 1 2 # pool 1 is a class 2 pool
# delay_class 2 3 # pool 2 is a class 3 pool
# delay_access 1 allow some_big_clients
# delay_access 1 deny all
# delay_access 2 allow lotsa_little_clients
# delay_access 2 deny all
# delay_initial_bucket_level 50

# WCCPv1 AND WCCPv2 CONFIGURATION OPTIONS
# -----------------------------------------------------------------------------

# wccp_router 0.0.0.0
# wccp_version 4
# wccp2_rebuild_wait on
# wccp2_forwarding_method 1
# wccp2_return_method 1
# wccp2_assignment_method 1
# wccp2_service standard 0
# wccp2_weight 10000
# wccp_address 0.0.0.0
# wccp2_address 0.0.0.0

# PERSISTENT CONNECTION HANDLING
# -----------------------------------------------------------------------------

# client_persistent_connections on
# server_persistent_connections on
# persistent_connection_after_error off
# detect_broken_pconn off

# CACHE DIGEST OPTIONS
# -----------------------------------------------------------------------------

# digest_generation on
# digest_bits_per_entry 5
# digest_rebuild_period 1 hour
# digest_rewrite_period 1 hour
# digest_swapout_chunk_size 4096 bytes
# digest_rebuild_chunk_percentage 10

# SNMP OPTIONS
# -----------------------------------------------------------------------------

snmp_port 3401
snmp_access allow snmppublic localhost
snmp_access deny all
# snmp_incoming_address 0.0.0.0
# snmp_outgoing_address 255.255.255.255

# ICP OPTIONS
# -----------------------------------------------------------------------------

icp_port 3130
icp_hit_stale on
query_icmp on
icp_query_timeout 0
# htcp_port 4827
# log_icp_queries on
# udp_incoming_address 0.0.0.0
# udp_outgoing_address 255.255.255.255
# udp_outgoing_address6 ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff
# udp_incoming_address6 ::0
# minimum_direct_hops 4
# minimum_direct_rtt 400
# netdb_low 900
# netdb_high 1000
# netdb_ping_period 5 minutes
# test_reachability off
# maximum_icp_query_timeout 2000
# minimum_icp_query_timeout 5

# MULTICAST ICP OPTIONS
# -----------------------------------------------------------------------------

# mcast_miss_addr 255.255.255.255
# mcast_miss_ttl 16
# mcast_miss_port 3135
# mcast_miss_encode_key XXXXXXXXXXXXXXXX
mcast_icp_query_timeout 2000

# INTERNAL ICON OPTIONS
# -----------------------------------------------------------------------------

# icon_directory /usr/local/etc/squid/icons
# global_internal_static on
# short_icon_urls off

# ERROR PAGE OPTIONS
# -----------------------------------------------------------------------------

# error_directory /usr/local/etc/squid/errors/English
# tcp_reset_on_all_errors off
# blank_error_pages off

# OPTIONS INFLUENCING REQUEST FORWARDING
# -----------------------------------------------------------------------------

# nonhierarchical_direct on
prefer_direct off
# ignore_ims_on_miss off

# ADVANCED NETWORKING OPTIONS
# -----------------------------------------------------------------------------

max_filedescriptors 8192
## FreeBSD
#accept_filter httpready
## Linux
#accept_filter data
# tcp_recv_bufsize 0 bytes
# incoming_rate 30

# DNS OPTIONS
# -----------------------------------------------------------------------------

# check_hostnames on
# allow_underscore on
# dns_retransmit_interval 5 seconds
# dns_timeout 2 minutes
# dns_defnames off
hosts_file /etc/hosts
# dns_testnames netscape.com internic.net nlanr.net microsoft.com
# append_domain .yourdomain.com
# ignore_unknown_nameservers on
# ipcache_size 1024
# ipcache_low 90
# ipcache_high 95
# fqdncache_size 1024

# MISCELLANEOUS
# -----------------------------------------------------------------------------

forwarded_for off
client_db on
reload_into_ims on
coredump_dir /var/spool/squid
pipeline_prefetch on
shutdown_lifetime 10 seconds
logfile_rotate 14
# memory_pools on
# memory_pools_limit 5 MB
# cachemgr_passwd secret shutdown
# cachemgr_passwd lesssssssecret info stats/objects
# cachemgr_passwd disable all
# maximum_single_addr_tries 1
# retry_on_error off
# as_whois_server whois.ra.net
# as_whois_server whois.ra.net
# offline_mode off
# uri_whitespace strip
# coredump_dir none
# balance_on_multiple_ip on
# high_response_time_warning 0
# high_page_fault_warning 0
# high_memory_warning 0 KB
# sleep_after_fork 0
# zero_buffers off
# windows_ipaddrchangemonitor on
# n_aiops_threads -1
# client_socksize -1
# load_check_stopen on
# load_check_stcreate on
# download_fastest_client_speed off


User avatar
yudiarbi
Contact:

Post 03 Apr 2011, 02:41

routingnya dimainin bos, tp sebelume topologinya spt ap tuh?oh ya proxynya pake port 8080 ya?takute port itu ad yg make, kok gak ke standard squid aj di 3128?maaf kl salah..... :D


User avatar
AanChoto

Post 03 Apr 2011, 08:53

Tipologinya

Modem====Mikrotik====Client
|
|
Proxy

sudah saya coba mainin rotingan di NAt
dan ganti IP tapi masih sama,,,

untuk port di squid sudah saya ganti di 3128 transparent

SOLVED
/etc/resolve.conf masih bawaan IP yang Lama

terima Kasih bantuan Master Semua


Post Reply

Who is online

Users browsing this forum: No registered users and 105 guests