tag:blogger.com,1999:blog-27851782571399558022011-07-08T11:50:09.940+07:00Apa yang kamu lihat, Apa yang kamu pelajari, Dan Apa yang kamu lakukan...Tape Uwiehttp://www.blogger.com/profile/12958472702638257190noreply@blogger.comBlogger51100tag:blogger.com,1999:blog-2785178257139955802.post-53721528577059916152010-08-18T08:45:00.002+07:002010-08-18T08:53:28.078+07:00<span class="Apple-style-span" style=";font-family:Calibri;color:black;" ><span class="Apple-style-span" style=";font-family:Arial,Helvetica,sans-serif;font-size:small;" ><div style="margin: 0px; padding: 10px 0px 0px;"><span class="Apple-style-span" style="font-family:Verdana,sans-serif;"><b>Pertama</b> : Setelah kita mendapatkan IP Public, selanjutnya kita akan melakukan konfigurasi PPP -> PPTP SERVER. (Point To Point Tunneling Protocol).</span></div><span class="Apple-style-span"></span></span></span><div id="TixyyLink" style="background-color: transparent; border: medium none; overflow: hidden; text-align: left; text-decoration: none;color:black;"><br /></div><div class="separator" style="clear: both; text-align: center;"><a href="http://1.bp.blogspot.com/_-KXHPDKPHqc/S-IOxRbvGNI/AAAAAAAAAGQ/NqLpvMQZzhI/s1600/04.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img src="http://1.bp.blogspot.com/_-KXHPDKPHqc/S-IOxRbvGNI/AAAAAAAAAGQ/NqLpvMQZzhI/s320/04.jpg" border="0" /></a></div><div id="TixyyLink" style="background-color: transparent; border: medium none; overflow: hidden; text-align: left; text-decoration: none;color:black;"><span class="Apple-style-span" style=";font-family:Verdana,sans-serif;color:black;" ><span class="Apple-style-span" style="font-family:Calibri;"><span class="Apple-style-span" style=";font-family:Arial,Helvetica,sans-serif;font-size:small;" ><span class="Apple-style-span"><span class="Apple-style-span" style="font-family:Verdana,sans-serif;"><b><span class="Apple-style-span"> </span></b></span></span></span></span></span></div><div id="TixyyLink" style="background-color: transparent; border: medium none; overflow: hidden; text-align: left; text-decoration: none;color:black;"><span class="Apple-style-span" style=";font-family:Verdana,sans-serif;color:black;" ><span class="Apple-style-span" style="font-family:Calibri;"><span class="Apple-style-span" style=";font-family:Arial,Helvetica,sans-serif;font-size:small;" ><span class="Apple-style-span"><span class="Apple-style-span" style="font-family:Verdana,sans-serif;"><b><span class="Apple-style-span">Kedua </span></b><span class="Apple-style-span">: Kita buat New Interface </span><b><span class="Apple-style-span">PPTP Server</span></b><span class="Apple-style-span">. Gak perlu setting macam-macam, langsung aja Klik </span><b><span class="Apple-style-span">OK</span></b><span class="Apple-style-span">.</span></span></span></span></span></span></div><div id="TixyyLink" style="background-color: transparent; border: medium none; overflow: hidden; text-align: left; text-decoration: none;color:black;"><span class="Apple-style-span" style=";font-family:Verdana,sans-serif;color:black;" ><span class="Apple-style-span" style="font-family:Calibri;"><span class="Apple-style-span" style=";font-family:Arial,Helvetica,sans-serif;font-size:small;" ><span class="Apple-style-span"><span class="Apple-style-span" style="font-family:Verdana,sans-serif;"><span class="Apple-style-span"> </span></span></span></span></span></span><div class="separator" style="clear: both; text-align: center;"><a href="http://4.bp.blogspot.com/_-KXHPDKPHqc/S-IPQANnJRI/AAAAAAAAAGY/qG4yI73yscI/s1600/05.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img src="http://4.bp.blogspot.com/_-KXHPDKPHqc/S-IPQANnJRI/AAAAAAAAAGY/qG4yI73yscI/s320/05.jpg" border="0" /></a></div><div id="TixyyLink" style="background-color: transparent; border: medium none; overflow: hidden; text-align: left; text-decoration: none;color:black;"><span class="Apple-style-span" style=";font-family:Verdana,sans-serif;color:black;" ><span class="Apple-style-span" style="font-family:Calibri;"><span class="Apple-style-span" style=";font-family:Arial,Helvetica,sans-serif;font-size:small;" ><span class="Apple-style-span"><div style="margin: 0px; padding: 10px 0px 0px;"><span class="Apple-style-span" style="font-family:Verdana,sans-serif;"><b><span class="Apple-style-span">Ketiga</span></b><span class="Apple-style-span"> : Kita membuat IP Pool, atau sekelompok IP Address yang akan kita buat untuk mengalokasikan sejumlah IP Address untuk V</span><b><span class="Apple-style-span">PN Client per-user</span></b><span class="Apple-style-span"> yang nanti akan terkoneksi ke Mikrotik VPN Server kita. Selain mengunakan IP Pool, kita juga bisa memberikan IP Address per-user satu per satu. Tapi jika jumlah VPN Client-nya banyak maka cara inilah yang tepat untuk kita lakukan. Caranya : Klik menu </span><b><span class="Apple-style-span">IP – POOL.</span></b></span></div><div style="margin: 0px; padding: 10px 0px 0px;"><span class="Apple-style-span" style="font-family:Verdana,sans-serif;"><b><span class="Apple-style-span"> </span></b></span></div></span></span></span></span><div class="separator" style="clear: both; text-align: center;"><a href="http://3.bp.blogspot.com/_-KXHPDKPHqc/S-IPv99HOHI/AAAAAAAAAGg/yK0ANwz_4P8/s1600/06.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img src="http://3.bp.blogspot.com/_-KXHPDKPHqc/S-IPv99HOHI/AAAAAAAAAGg/yK0ANwz_4P8/s320/06.jpg" border="0" /></a></div><div id="TixyyLink" style="background-color: transparent; border: medium none; overflow: hidden; text-align: left; text-decoration: none;color:black;"><span class="Apple-style-span" style=";font-family:Verdana,sans-serif;color:black;" ><span class="Apple-style-span" style="font-family:Calibri;"><span class="Apple-style-span" style=";font-family:Arial,Helvetica,sans-serif;font-size:small;" ><span class="Apple-style-span"><div style="margin: 0px; padding: 10px 0px 0px;"><span class="Apple-style-span" style="font-family:Verdana,sans-serif;"><b><span class="Apple-style-span">Keempat </span></b><span class="Apple-style-span">: Dari menu </span><b><span class="Apple-style-span">IP - Pool</span></b><span class="Apple-style-span">, selanjutnya buat </span><b><span class="Apple-style-span">New IP Pool</span></b><span class="Apple-style-span">. Misalnya kita alokasikan IP Address :192.168.88.10 – 192.168.88.20 dan kita berikan nama </span><b><span class="Apple-style-span">vpn-client</span></b><span class="Apple-style-span">.</span></span></div><div style="margin: 0px; padding: 10px 0px 0px;"><span class="Apple-style-span" style="font-family:Verdana,sans-serif;"><span class="Apple-style-span"> </span></span></div></span></span></span></span><div class="separator" style="clear: both; text-align: center;"><a href="http://4.bp.blogspot.com/_-KXHPDKPHqc/S-IQGoxppQI/AAAAAAAAAGo/irKaCibaDoI/s1600/07.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img src="http://4.bp.blogspot.com/_-KXHPDKPHqc/S-IQGoxppQI/AAAAAAAAAGo/irKaCibaDoI/s320/07.jpg" border="0" /></a></div><div id="TixyyLink" style="background-color: transparent; border: medium none; overflow: hidden; text-align: left; text-decoration: none;color:black;"><span class="Apple-style-span" style="font-family:Verdana,sans-serif;"><span class="Apple-style-span" style=";font-family:Calibri;color:black;" ><span class="Apple-style-span" style=";font-family:Arial,Helvetica,sans-serif;font-size:small;color:white;" ><span class="Apple-style-span" style="color:black;"><div style="margin: 0px; padding: 10px 0px 0px;color:black;"><span class="Apple-style-span" style="font-family:Verdana,sans-serif;"><b><span class="Apple-style-span">Kelima </span></b><span class="Apple-style-span">: Selanjutnya kita lihat </span><b><span class="Apple-style-span">IP Pool</span></b><span class="Apple-style-span"> yang kita buat telah berhasil dengan baik.</span></span></div><div style="margin: 0px; padding: 10px 0px 0px;color:black;"><span class="Apple-style-span" style="font-family:Verdana,sans-serif;"><span class="Apple-style-span"> </span></span></div><div style="margin: 0px; padding: 10px 0px 0px;"><img alt="" class="aligncenter" src="http://artikel.xcode.or.id/files/images/mikrotik-ppptp/Mikrotik-PPPTP-05.JPG" style="display: block; margin: 0px auto; max-width: 100%; padding: 0px;" title="VPN" height="244" width="320" /></div></span></span></span></span><div id="TixyyLink" style="background-color: transparent; border: medium none; overflow: hidden; text-align: left; text-decoration: none;color:black;"><span class="Apple-style-span" style="font-family:Verdana,sans-serif;"><span class="Apple-style-span" style=";font-family:Calibri;color:black;" ><span class="Apple-style-span" style=";font-family:Arial,Helvetica,sans-serif;font-size:small;color:white;" ><span class="Apple-style-span" style="color:black;"><div style="margin: 0px; padding: 10px 0px 0px;color:black;"><span class="Apple-style-span" style="font-family:Verdana,sans-serif;"><b><span class="Apple-style-span">Keenam </span></b><span class="Apple-style-span">: Selanjutnya kita buat sebuah Profile dengan nama </span><b><span class="Apple-style-span">VPS-VPN</span></b><span class="Apple-style-span"> (atau terserah suka-suka anda). Local Address adalah IP Address yang digunakan sebagai </span><b><span class="Apple-style-span">VPN Gateway</span></b><span class="Apple-style-span"> oleh Mikrotik. </span><b><span class="Apple-style-span">Remote Address</span></b><span class="Apple-style-span"> adalah IP Address yang akan diberikan kepada masing-masing </span><b><span class="Apple-style-span">VPN Client dan IP Address</span></b><span class="Apple-style-span"> inilah yang dikenali dan berkomunikasi dengan PC yang lain.</span></span></div><div style="margin: 0px; padding: 10px 0px 0px;"><img alt="" class="aligncenter" src="http://artikel.xcode.or.id/files/images/mikrotik-ppptp/Mikrotik-PPPTP-06.jpg" style="display: block; margin: 0px auto; max-width: 100%; padding: 0px;" title="VPN" height="320" width="306" /></div></span></span></span></span><div id="TixyyLink" style="background-color: transparent; border: medium none; overflow: hidden; text-align: left; text-decoration: none;color:black;"><br /><span class="Apple-style-span" style="font-family:Verdana,sans-serif;"><span class="Apple-style-span" style=";font-family:Calibri;color:black;" ><span class="Apple-style-span" style=";font-family:Arial,Helvetica,sans-serif;font-size:small;color:white;" ><span class="Apple-style-span" style="color:black;"><div style="margin: 0px; padding: 10px 0px 0px;color:black;"><span class="Apple-style-span" style="font-family:Verdana,sans-serif;"><b><span class="Apple-style-span">Ketujuh </span></b><span class="Apple-style-span">: Selanjutnya kita klik </span><b><span class="Apple-style-span">PPTP SERVER</span></b><span class="Apple-style-span">. Option inilah yang menentukan Fitur </span><b><span class="Apple-style-span">PPTP SERVER</span></b><span class="Apple-style-span"> berfungsi apa tidak pada Mikrotik kita. Aktifkan / centang tanda checkmark “</span><b><span class="Apple-style-span">ENABLE</span></b><span class="Apple-style-span">” lalu pilih </span><b><span class="Apple-style-span">Default Profile</span></b><span class="Apple-style-span"> yang telah kita buat pada langkah keenam.</span></span></div><div style="margin: 0px; padding: 10px 0px 0px;"><img alt="" class="aligncenter" src="http://artikel.xcode.or.id/files/images/mikrotik-ppptp/Mikrotik-PPPTP-08.jpg" style="display: block; margin: 0px auto; max-width: 100%; padding: 0px;" title="VPN" height="264" width="320" /></div></span></span></span></span><div id="TixyyLink" color="black" style="background-color: transparent; border: medium none; overflow: hidden; text-align: left; text-decoration: none;"><br /><span class="Apple-style-span" style="font-family:Verdana,sans-serif;"><span class="Apple-style-span" style=";font-family:Calibri;color:black;" ><span class="Apple-style-span" style=";font-family:Arial,Helvetica,sans-serif;font-size:small;color:white;" ><span class="Apple-style-span" style="color:black;"><div style="margin: 0px; padding: 10px 0px 0px;color:black;"><span class="Apple-style-span" style="font-family:Verdana,sans-serif;"><b><span class="Apple-style-span">Kedelapan </span></b><span class="Apple-style-span">: Langkah selanjutnya adalah membuat User VPN di menu tab </span><b><span class="Apple-style-span">“SECRETS”</span></b><span class="Apple-style-span">. </span><b><span class="Apple-style-span">Setting Username, Password, Service</span></b><span class="Apple-style-span"> : </span><b><span class="Apple-style-span">PPTP dan Profile VPS-VPN</span></b><span class="Apple-style-span"> seperti gambar dibawah ini :</span></span></div><div style="margin: 0px; padding: 10px 0px 0px;"><img alt="" class="aligncenter" src="http://artikel.xcode.or.id/files/images/mikrotik-ppptp/Mikrotik-PPPTP-09.jpg" style="display: block; margin: 0px auto; max-width: 100%; padding: 0px;" title="VPN" height="267" width="320" /></div></span></span></span></span><div id="TixyyLink" style="background-color: transparent; border: medium none; color: black; overflow: hidden; text-align: left; text-decoration: none;"><br /><span class="Apple-style-span" style=";font-family:Verdana,sans-serif;color:black;" ><span class="Apple-style-span" style="font-family:Calibri;"><span class="Apple-style-span" style=";font-family:Arial,Helvetica,sans-serif;font-size:small;" ><span class="Apple-style-span"><span class="Apple-style-span" style="font-family:Verdana,sans-serif;"><span class="Apple-style-span" style="font-family:Arial,Helvetica,sans-serif;"><strong style="margin: 0px; padding: 0px;"><span class="Apple-style-span" style="font-family:Verdana,sans-serif;"><span class="Apple-style-span">Kesembilan </span><span class="Apple-style-span" style="font-weight: normal;"><span class="Apple-style-span">: Sampai disini tugas membangun </span></span><span class="Apple-style-span">VPN Server</span><span class="Apple-style-span" style="font-weight: normal;"><span class="Apple-style-span"> telah selesai dibuat dan langkah selanjutnya adalah membuat setting VPN Client di PC atau Laptop kita.<br /><br />sumber : <a href="http://alifaljabar.blogspot.com/2010/05/vpn-virtual-private-network.html">http://alifaljabar.blogspot.com/2010/05/vpn-virtual-private-network.html</a><br /></span></span></span></strong></span></span></span></span></span></span></div></div></div></div></div></div></div></div><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/2785178257139955802-5372152857705991615?l=tapeuwie.blogspot.com' alt='' /></div>Tape Uwiehttp://www.blogger.com/profile/12958472702638257190noreply@blogger.com0tag:blogger.com,1999:blog-2785178257139955802.post-3219379983161033952010-08-18T08:22:00.003+07:002010-08-18T08:48:48.725+07:00Kali ini berkesempatan untuk menghubungkan 2 site yang sama2 mengunakan IPCOP versi 1.4.21 ( dengan IPsec VPN nya dan yang dipakai adalah paket openswan).<br /><br />Jaringan yang ada sebagai berikut<br /><br />gren1 -- site1 ---- internet ----- site2 --- green2<br /><br />green1 adalah 192.168.1.0/24<br /><br />site1 dengan IP Public 201.130.2.3 dengan hostname site1.localdomain<br /><br />green2 adalah 192.168.2.0/24<br /><br />site2 dengan IP Public 201.130.132.5 dengan hostname site2.localdomain<br /><br /><span style="font-weight: bold;">langkah2nya</span><br /><br />1. Global Setting<br /><br /> Di site1<br /><div style="margin-left: 40px;">isi "Public IP or FQDN for RED interface or <%defaultroute>:" dengan 201.130.2.3, check "enabled" dan tekan Save<br /></div><br /> Di site2<br /><div style="margin-left: 40px;">isi "Public IP or FQDN for RED interface or <%defaultroute>:" dengan 201.130.132.5, check "enabled" dan<br />tekan Save<br /></div><br />2. Generate Root/Host Certificates<br /><br /> di site1 : Tekan tombol "Generate Root/Host Certificates" dan isikan berikut dibawah<br /><div style="margin-left: 40px;">- Organization name : site1<br />- IPCops Hostname : site1.localdomain<br />- country : indonesia<br />- Tekan tombol "Generate Root/Host Certificates" dan tunggu beberapa saat<br />- dowload root certificate dan ganti namanya ke cacert.site1.pem<br />- download host certificate dan ganti namanya ke hostcert.site1.pem<br /></div><br /> di site2 : Tekan tombol "Generate Root/Host Certificates" dan isikan berikut dibawah<br /><div style="margin-left: 40px;">- Organization name : site2<br />- IPCops Hostname : site2.localdomain<br />- country : indonesia<br />- Tekan tombol "Generate Root/Host Certificates" dan tunggu beberapa saat<br />- dowload root certificate dan ganti namanya ke cacert.site2.pem<br />- download host certificate dan ganti namanya ke hostcert.site2.pem<br /></div><br />3. Upload CA certificates<br /> di site1<br /><div style="margin-left: 40px;">- CA Name : site2<br />- Browse dan pilih file "cacert.site2.pem<br />- Tekan tombol "Upload CA Certificate" dan ini akan menambahkan CA certificate dari site2 ke site1 dan akan nampak di baris ke 3 di certificate authorities.<br /></div><br /> di site2<br /><div style="margin-left: 40px;">- CA Name : site1<br />- Browse dan pilih file "cacert.site1.pem"<br />- Tekan tombol "Upload CA Certificate" dan ini akan menambahkan CA<br />certificate dari site1 ke site2 dan akan nampak di baris ke 3 di certificate authorities.</div><br />4. Membuat Koneksi<br /> di site1 : Tekan tombol "ADD" dan pilih "net-to-net" Virtual Private Network" untuk conection type dan isikan dibawah ini<br /><div style="margin-left: 40px;">- Name : site2<br />- Host IP address : Red (201.130.2.3)<br />- local subnet : 192.168.1.0/255.255.255.0<br />- Remote Host/IP : 201.130.132.5<br />- Remote subnet : 192.168.2.0/ 255.255.255.0<br />- di "Authentication" section pilih "Upload a Certificate dan browse<br />file "hostcert.site2.pem"<br />- terakhir tekan tombol "Save"<br /></div><br />di site2 : Tekan tombol "ADD" dan pilih "net-to-net" Virtual Private Network" untuk conection type dan isikan dibawah ini<br /><div style="margin-left: 40px;">- Name : site1<br />- Host IP address : Red (201.130.132.5)<br />- local subnet : 192.168.21.0/255.255.255.0<br />- Remote Host/IP : 201.130.2.3<br />- Remote subnet : 192.168.12.0/ 255.255.255.0<br />- di "Authentication" section pilih "Upload a Certificate dan browse file "hostcert.site1.pem"<br />- terakhir tekan tombol "Save"<br /></div><br />5. selesai dan biarkan beberapa saat maka koneksi nya akan<br />berubah "Open'<br /><br />Sumber : <a href="http://kafemis.blogspot.com/2009/06/net2net-vpn-di-ipcop.html">http://kafemis.blogspot.com/2009/06/net2net-vpn-di-ipcop.html</a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/2785178257139955802-321937998316103395?l=tapeuwie.blogspot.com' alt='' /></div>Tape Uwiehttp://www.blogger.com/profile/12958472702638257190noreply@blogger.com0tag:blogger.com,1999:blog-2785178257139955802.post-60279789686891438932009-06-01T16:41:00.001+07:002009-06-01T16:43:06.571+07:00<div class="top_post"><span style="text-decoration: underline;">Hasil Copast</span><br /></div> <div class="content"> <style>.fullpost{display:inline;}</style> <p>wah sepertinya kawan2 kita sekarang kalo mau daftar id baru di nusareborn harus dengan sedikit lebih susah di karena hobi leaver menyebabkan pembatasa daftar id dengan sistem kirim email di sertai biodata negh cara daftar di nusa reborn . . .<br /><br />Cara Membuat ID NusaReborn PvPGN Server:<br /><br />Pembuatan ID NusaReborn mulai 28 February 2009 yang bertepatan dengan 1 tahun NusaReborn PvPGN Server. Telah kami persulit dimana pelanggaran² user semakin meningkat dikarenakan pembuatan ID yang sangat mudah, Sehingga user tidak menghargai ID yang mereka gunakan.<br /><br />Berikut Langkah² Pendaftaran ID Battlenet NusaReborn:<br /><span class="fullpost"><br /><br /><span style="font-weight: bold; font-style: italic; color: rgb(51, 102, 255);">1. Kirimkan Email Kepada: g_e_n_t_h_o_n_x@nusa.net.id</span><br /><span style="font-weight: bold; font-style: italic; color: rgb(51, 102, 255);">2. Subject: Pendaftaran ID Battlenet NusaReborn</span><br /><span style="font-weight: bold; font-style: italic; color: rgb(51, 102, 255);">3. Lampirkan scan-an kartu identitas anda melalui Attachement</span><br /><span style="font-weight: bold; font-style: italic; color: rgb(51, 102, 255);">4. Tuliskan Message sebagai berikut:</span><br /><br /><span style="font-weight: bold;"># IP Address anda: ? (Lihat IP Address Anda Disini)</span><br /><span style="font-weight: bold;"># Username: ? (Max.character 15, character yang diperbolehkan: A-Z 0-9 _ ~ ^ [ ] { } = - +)</span><br /><span style="font-weight: bold;"># Password: ? (Max.character 12)</span><br /><br /><br /><span style="font-weight: bold;">Dengan ini saya secara sadar dan tidak ada tekanan dari pihak manapun. Bersedia menaati &amp; mengikuti semua RULE yang ada di NusaReborn dan siap menerima sanksi bila melakukan Pelanggaran.</span><br /><br /><br />negh gambar contoh cara mengirimnya (klik untuk memperjelasnya)<br /><a onblur="try {parent.deselectBloggerImageGracefully();} catch(e) {}" href="http://3.bp.blogspot.com/_Kz4HpKV3B-g/Seis513d78I/AAAAAAAAAGA/xHk88azrmns/s1600-h/battlenetnsr.jpg"><img style="margin: 0px auto 10px; display: block; text-align: center; cursor: pointer; width: 323px; height: 279px;" src="http://3.bp.blogspot.com/_Kz4HpKV3B-g/Seis513d78I/AAAAAAAAAGA/xHk88azrmns/s320/battlenetnsr.jpg" alt="" id="BLOGGER_PHOTO_ID_5325696669077860290" border="0" /></a><span style="color: red;"><b>"Perhatikan yang di beri tanda Merah"</b></span><br /><br /><span style="color: red;"><b>Perlu di perhatikan untuk si pendaftar:</b></span><br /><span style="color: red;"><b>1. Proses pembuatan ID Max 10 hari, terhitung dari Tanggal Pengiriman</b></span><br /><span style="color: red;"><b>2. Tidak perlu mengirimkan berulang² cukup mengirimkan satu kali saja</b></span><br /><span style="color: red;"><b>3. Kartu identitas yang anda lampirkan harus dalam masa berlaku dan asli</b></span><br /><b><span style="color: rgb(255, 0, 0);">4. Bila dianggap tidak memenuhi syarat maka <i>Tidak Akan Di Proses + Tanpa Pemberitahuan</i></span></b><br /><span class="fullpost"><br /><br /><span style="font-weight: bold; font-style: italic;">INGAT SATU KTP SATU ID . . .! ! !<br /><br />UNTUK LEBIH DETAILNY ANDA MASUK KE FORUM NUSAREBORN<br /><br /><a href="http://forum.nusa.net.id/">FORUM.NUSA.NET.ID</a><br /><br />thankz regard . . .<br /><br /><span style="font-style: italic;"></span></span><span style="font-style: italic;">source: NusaReborn Forum</span><span style="font-weight: bold; font-style: italic;"><br /></span></span></span></p> </div><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/2785178257139955802-6027978968689143893?l=tapeuwie.blogspot.com' alt='' /></div>Tape Uwiehttp://www.blogger.com/profile/12958472702638257190noreply@blogger.com0tag:blogger.com,1999:blog-2785178257139955802.post-56580901891594013632009-03-29T17:11:00.003+07:002009-03-29T17:22:28.774+07:00Tutorial ini di kutip dari Forum Mikrotik yang dibuat oleh kucingGarong<br /><br /><b># SETUP MIKROTIK (base 1)</b><br />1. setelah mikrotik terinstall dengan baik dan benar jalankan mikrotik anda<br />2. masukkan username &amp; password, dalam hal ini karena masih baru maka default usernam : admin pasword : <i>blank</i><br />3. ganti nama ethernet anda jika anda mau, dalam hal ini anda dapat memberikan nama apa saja = [kucing@mikrotik] >interface<br /> [kucing@mikrotik] interface >print (melihat dulu berapa banyak ethernet yg terpasang)<br /> [kucing@mikrotik] interface >set 0 name=LAN<br /> [kucing@mikrotik] interface >set 1 name=WAN<br />4. kemudian nambahkan ip addressnya<br /> [kucing@mikrotik] >ip address<br />[kucing@mikrotik] ip address >add address=192.168.0.1/255.255.0.0 interface=LAN ----> ini untuk ip interface lokal<br />[kucing@mikrotik] ip address >add address=203.90.1.1/255.255.255.240 interface=WAN ---> ini untuk ip global yg di dapet dari ISP<br />5. kemudian masukin gatewaynya<br /> [kucing@mikrotik] > ip route<br />[kucing@mikrotik] ip route >add gateway=xxx.xxx.xxx.xxx/xxx.xxx.xxx.xxx ----> ini merupakan gateway untuk keluar<br />6. kemudian setup webproxy<br /> [kucing@mikrotik] >ip web-proxy<br /> [kucing@mikrotik] ip web-proxy >set enable=yes<br /> [kucing@mikrotik] ip web-proxy >set transparent-proxy=yes<br />[kucing@mikrotik] ip web-proxy >set max-object-size=1200KiB ---> ini supaya nge loadnya ngacir si web proxy<br />7. kemudian tambahkan rule supaya si client yg menggunakan port 80 akan di oper ke web-proxy<br /> [kucing@mikrotik] >ip firewall nat<br />[kucing@mikrotik] ip firewall nat >add chain=dstnat protocol=tcp dst-port=80 action=redirect to-ports=3128<br />8. kemudian masukan dns nya<br /> [kucing@mikrotik] >ip dns<br /> [kucing@mikrotik] ip dns >set primary-dns=xxx.xxx.xxx.xxx<br /> [kucing@mikrotik] ip dns >set secondary-dns=xxx.xxx.xxx.xxx<br />9. Sekarang masqurade interface WANnya<br /> [kucing@mikrotik]>ip firewall nat<br /> [kucing@mikrotik] ip firewall nat>add chain=srcnat out-interface=WAN action=masquerade<br />10. sekarang coba ping ke gateway &amp; dns dari mikrotik, kalo REPLY berarti dah konek<br />11. heuehuueeuhehehueuheuh selesai juga dah tutorial ke 2 gw<br /><br /><b>----TUTORIAL SETUP HOTSPOT----</b><br />1.[kucing@mikrotik]>ip hotspot<br />2.[kucing@mikrotik] ip hotspot>setup<br />hotspot interface:LAN<br />local address of network:xxx.xxx.xxx.xxx/xx -->ip dari inteface LAN<br />masqurade network:yes<br />address pool of network:xxx.xxx.xxx.xxx-xxx.xxx.xxx.xxx<br />select certificate:none<br />ip address of SMTP server:0.0.0.0<br />DNS server:<br />DNS name:<br />name of local hotspot user: admin ----> user untuk masuk ke halam hotspot<br />password for the user:<br />3. sekarang buka web browser, ketikan ip addressnya hotspot<br />4.masukan username yg telah di buat tadi<br />5.walah berhasil kan......<br /><br /><b>------TUTORIAL USER MANAGER WITH HOTSPOT-------</b><br /><br />1. enable dulu use-radius di hotspot<br /> [kucing@mikrotik]>ip hotspot profile<br />2. [kucing@mikrotik] ip hotspot profile>print<br />3. akan terlihat profile2 yg telah di buat, kemudian tentukan profile mana yg akan di pake di use-radius<br /> [kucing@mikrotik]ip hotspot profile> set 0 use-radius=yes<br /> 0 = merupakan nomor profile<br />4.sekarang bikin radiusnya<br /> [kucing@mikrotik]>radius<br /> [kucing@mikrotik]radius>add address=127.0.0.1<br /> [kucing@mikrotik]radius>print<br /> [kucing@mikrotik]radius>set 0 service=hotspot, login secret=12345678<br />5.sekarang bikin owner untuk di usermanager<br /> [kucing@mikrotik]>/ tool user-manager customer add login="test" password="test" permissions=owner<br />6.sekarang bikin penghubung/supaya si mikrotik ngeroute ke usermanager<br />[kucing@mikrotik]>/ tool user-manager router add subscriber=MikroTik ip-address=127.0.0.1 shared-secret=12345678<br />7.nah setelah ini smua dah di buat, sekarang untuk ngetes apakah usermanager dah konek apa blom<br />8.buka web browser ketik " 127.0.0.1/userman "<br />9.akan tampil halaman login userman, masukin dah tuh username=test password=test<br />10.huehueuhehuuehehuehuheu.....akhirnya kelar juga tutorial usermanagernya<br /><br /><b>------TUTORIAL 2 ISP IN 1 ROUTER WITH LOADBALANCING------</b><br />/ ip address<br />add address=192.168.0.1/24 network=192.168.0.0 broadcast=192.168.0.255 interface=Local comment="" \<br /> disabled=no<br />add address=10.111.0.2/24 network=10.111.0.0 broadcast=10.111.0.255 interface=wlan2 \<br /> comment="" disabled=no<br />add address=10.112.0.2/24 network=10.112.0.0 broadcast=10.112.0.255 interface=wlan1 \<br /> comment="" disabled=no<br />/ ip firewall mangle<br />add chain=prerouting in-interface=Local connection-state=new nth=1,1,0 \<br /> action=mark-connection new-connection-mark=odd passthrough=yes comment="" \<br /> disabled=no<br />add chain=prerouting in-interface=Local connection-mark=odd action=mark-routing \<br /> new-routing-mark=odd passthrough=no comment="" disabled=no<br />add chain=prerouting in-interface=Local connection-state=new nth=1,1,1 \<br /> action=mark-connection new-connection-mark=even passthrough=yes comment="" \<br /> disabled=no<br />add chain=prerouting in-interface=Local connection-mark=even action=mark-routing \<br /> new-routing-mark=even passthrough=no comment="" disabled=no<br />/ ip firewall nat<br />add chain=srcnat connection-mark=odd action=src-nat to-addresses=10.111.0.2 \<br /> to-ports=0-65535 comment="" disabled=no<br />add chain=srcnat connection-mark=even action=src-nat to-addresses=10.112.0.2 \<br /> to-ports=0-65535 comment="" disabled=no<br />/ ip route<br />add dst-address=0.0.0.0/0 gateway=10.111.0.1 scope=255 target-scope=10 routing-mark=odd \<br /> comment="" disabled=no<br />add dst-address=0.0.0.0/0 gateway=10.112.0.1 scope=255 target-scope=10 routing-mark=even \<br /> comment="" disabled=no<br />add dst-address=0.0.0.0/0 gateway=10.112.0.1 scope=255 target-scope=10 comment="" \<br /> disabled=no<br /><br /><b><i>Mangle</i></b><br /><br />/ ip address<br />add address=192.168.0.1/24 network=192.168.0.0 broadcast=192.168.0.255 interface=Local comment="" \<br /> disabled=no<br />add address=10.111.0.2/24 network=10.111.0.0 broadcast=10.111.0.255 interface=wlan2 \<br /> comment="" disabled=no<br />add address=10.112.0.2/24 network=10.112.0.0 broadcast=10.112.0.255 interface=wlan1 \<br /> comment="" disabled=no<br /><br /><i>router punya 2 upstream (WAN) interfaces dengan ip address 10.111.0.2/24 and 10.112.0.2/24. dan interface LAN dengan nama interface "Local" dan ip address 192.168.0.1/24.<br /></i><br /><br />/ ip firewall mangle<br /><br />add chain=prerouting in-interface=Local connection-state=new nth=1,1,0 \<br /> action=mark-connection new-connection-mark=odd passthrough=yes comment="" \<br /> disabled=no<br /><br />add chain=prerouting in-interface=Local connection-mark=odd action=mark-routing \<br /> new-routing-mark=odd passthrough=no comment="" disabled=no<br /><br />add chain=prerouting in-interface=Local connection-state=new nth=1,1,1 \<br /> action=mark-connection new-connection-mark=even passthrough=yes comment="" \<br /> disabled=no<br />add chain=prerouting in-interface=Local connection-mark=even action=mark-routing \<br /> new-routing-mark=even passthrough=no comment="" disabled=no<br /><br /><br /><br /><i><b><br />NAT</b></i><br /><br />/ ip firewall nat<br />add chain=srcnat connection-mark=odd action=src-nat to-addresses=10.111.0.2 \<br /> to-ports=0-65535 comment="" disabled=no<br />add chain=srcnat connection-mark=even action=src-nat to-addresses=10.112.0.2 \<br /> to-ports=0-65535 comment="" disabled=no<br /><br /><br /><i><b><br />Routing</b></i><br /><br />/ ip route<br />add dst-address=0.0.0.0/0 gateway=10.111.0.1 scope=255 target-scope=10 routing-mark=odd \<br /> comment="" disabled=no<br />add dst-address=0.0.0.0/0 gateway=10.112.0.1 scope=255 target-scope=10 routing-mark=even \<br /> comment="" disabled=no<br />add dst-address=0.0.0.0/0 gateway=10.112.0.1 scope=255 target-scope=10 comment="" \<br /> disabled=no comment="gateway for the router itself"<br /><br /><b># SETUP QUEUE</b><br /><i>mungkin banyak tersebar dimana2 bagaimana cara untuk membatasi BW, tapi kali ini saya mau mencoba memberikan tutorial yg sudah saya uji terlebih dahulu selama 40 jam 30 menit 100 detik dan berfungsi 100% dengan sempurna</i><br /><br />oke kita mulai saja=<br /><br />1. kita bikin/setup mangle dulu =<br /> [Kucing@mikrotik] > ip firewall mangle print<br />Flags: X - disabled, I - invalid, D - dynamic<br /> 0 UP LOAD<br /> chain=prerouting in-interface=LAN<br /> src-address=xxx.xxx.xxx.xxx/xx action=mark-packet<br /> new-packet-mark=test-up passthrough=no<br /><br /> 1 MARK-KONEKSI<br /> chain=forward src-address=xxx.xxx.xxx.xxx/xx<br /> action=mark-connection<br /> new-connection-mark=test-conn passthrough=yes<br /><br /> 2 ;;; DOWN DIRECT KONEKSI<br /> chain=forward in-interface=WAN<br /> connection-mark=test-conn action=mark-packet<br /> new-packet-mark=test-down passthrough=no<br /><br /> 3 ;;; DOWN VIA PROXY<br /> chain=output out-interface=LAN<br /> dst-address=xxx.xxx.xxx.xxx/xx action=mark-packet<br /> new-packet-mark=test-down passthrough=no<br /><br />2. Tahap terahkir adalah membuat queue tree=<br /><br />[Kucing@mikrotik] > queue tree pr<br />Flags: X - disabled, I - invalid<br /> 0 name="download" parent=LAN packet-mark=test-down<br /> limit-at=32000 queue=default priority=8<br /> max-limit=32000 burst-limit=0<br /> burst-threshold=0 burst-time=0s<br /><br /> 1 name="UPLOAD" parent=global-in<br /> packet-mark=test-up limit-at=32000<br /> queue=default priority=8<br /> max-limit=32000 burst-limit=0<br /> burst-threshold=0 burst-time=0s<br /><br />di sini saya menggunakan queue typenya adalah <b>PCQ</b> kenapa, karena <b>PCQ </b><i>bisa secara otomatis membagi trafik per client</i><br /><br /><b>TUTORIAL MISAHIN BW LOKAL DAN INTERNATIONAL</b><br /><br />1. Bikin src-address list dengan nama nise<br /><br />2. atau dengan copy-paste src-address yg di sediain oleh nise<br /><a onclick="urchinTracker ('/outgoing/http_www_datautama_net_id_harijanto_mikrotik_datautama_nice_php');" rel="nofollow" href="http://www.datautama.net.id/harijanto/mikrotik/datautama-nice.php" target="_blank">http://www.datautama.net.id/harijant...utama-nice.php</a><br />copy-paste bisa di lakukan dari putty.exe<br /><br />3. Bikin mangel / supaya tau itu koneksi &amp; paket nya dateng dari lokal ato international<br />/ ip firewall mangle<br />- add chain=forward src-address-list=nice action=mark-connection \<br />new-connection-mark=con-indonesia passthrough=yes comment=”mark all \<br />indonesia source connection traffic” disabled=no <b>----> untuk lokal</b><br /><br />- add chain=forward dst-address-list=nice action=mark-connection \<br />new-connection-mark=con-indonesia passthrough=yes comment=”mark all \<br />indonesia destination connection traffic” disabled=no <b>----> untuk lokal</b><br /><br />- add chain=forward src-address-list=!nice action=mark-connection \<br />new-connection-mark=con-overseas passthrough=yes comment=”mark all \<br />overseas source connection traffic” disabled=no <b>---> Untuk International</b><br /><br />- add chain=forward dst-address-list=!nice action=mark-connection \<br />new-connection-mark=con-overseas passthrough=yes comment=”mark all \<br />overseas destination connection traffic” disabled=no<br /><br />- add chain=prerouting connection-mark=con-indonesia action=mark-packet \<br />new-packet-mark=indonesia passthrough=yes comment=”mark all indonesia \<br />traffic” disabled=no <b>---> paket lokal</b><br /><br />- add chain=prerouting connection-mark=con-overseas action=mark-packet \<br />new-packet-mark=overseas passthrough=yes comment=”mark all overseas \<br />traffic” disabled=no <b>----> paket international</b><br /><br />4. Bikin simple queue =<br />/ queue simple<br />- add name=”test-indonesia” target-addresses=xxx.xxx.xxx.xxx/xx \<br />dst-address=0.0.0.0/0 interface=all parent=none packet-marks=indonesia \<br />direction=both priority=8 queue=default/default limit-at=0/0 \<br />max-limit=256000/256000 total-queue=default disabled=no <b>---> 256 UPLOAD &amp; DOWNLOAD (LOKAL)</b><br /><br />- add name=”test-overseas” target-addresses=xxx.xxx.xxx.xxx/xx \<br />dst-address=0.0.0.0/0 interface=all parent=none packet-marks=overseas \<br />direction=both priority=8 queue=default/default limit-at=0/0 \<br />max-limit=128000/128000 total-queue=default disabled=no <b>----> 256 UPLOAD &amp; DOWNLOAD (INTERNATIONAL)</b><br /><br />5. Untuk mengetahui benar ato tidaknya silahkan mengunjungi<br /><a onclick="urchinTracker ('/outgoing/http_www_sijiwae_net_speedtest_');" rel="nofollow" href="http://www.sijiwae.net/speedtest/" target="_blank">http://www.sijiwae.net/speedtest/</a> ---> liat di kolom kecepatan koneksi<br /><br /><b>TUTORIAL SETING IP-PROXY &amp; CONTOH PENGGUNANNYA (BASIC)</b><br />1. Mulai dengan mengkonfigure ip-proxy<br /><i>/ip proxy<br />enabled: yes<br />src-address: 0.0.0.0<br />port: 8080 <b>---> bisa menggunakan port selain 8080</b><br />parent-proxy: 0.0.0.0:0<br />parent-proxy-port : 3128 <b>---> kalo ada lebih dari satu proxy</b><br />cache-drive: system<br />cache-administrator: "TESTING"<br />max-disk-cache-size: none<br />max-ram-cache-size: none<br />cache-only-on-disk: no<br />maximal-client-connections: 1000<br />maximal-server-connections: 1000<br />max-object-size: 512KiB<br />max-fresh-time: 3d</i><br /><br />2. Sekarang buat supaya proxynya jadi transparan<br /><i>/ip firewall nat<br />chain=dstnat protocol=tcp dst-port=80 action=redirect to-ports=8080</i> <b>--->letakan setelah masquarade</b><br /><br />3. Pastiin supaya proxy ente2 ga ada yg pake<br /><i>/ip firewall filter<br />chain=input in-interface=<u><b>PUBLIC-INTERFACE</b></u> src-address=0.0.0.0/0 protocol=tcp dst-port=8080 action=drop</i><br /><br />4. Contoh untuk memblok suatu site<br /><i>/ip proxy access<br />dst-host=www.google.com action=deny</i><br /><b>bisa juga memblok per ip, dengan memasukan src-address</b><br /><br />5. Contoh untuk memblok/memberhentikan suatu jenis file<br /><i>/ip proxy access<br />path=*.exe action=deny<br />path=*.mp3 action=deny<br />path=*.zip action=deny<br />path=*.rar action=deny.</i><br /><br />6. Contoh lain<br /><i>/ip proxy access<br />dst-host=:sex action=deny</i> <b>---> akan memblok semua site yg ada kata <u>SEX</u></b><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/2785178257139955802-5658090189159401363?l=tapeuwie.blogspot.com' alt='' /></div>Tape Uwiehttp://www.blogger.com/profile/12958472702638257190noreply@blogger.com0tag:blogger.com,1999:blog-2785178257139955802.post-47686355124672548162009-03-27T11:00:00.009+07:002009-03-28T16:05:36.583+07:00<a onblur="try {parent.deselectBloggerImageGracefully();} catch(e) {}" href="http://i85.photobucket.com/albums/k57/becouz/queueoptions.png"><img style="margin: 0pt 10px 10px 0pt; float: left; cursor: pointer; width: 410px; height: 317px;" src="http://i85.photobucket.com/albums/k57/becouz/queueoptions.png" alt="" border="0" /></a><strong><em>Kerio MailServer</em></strong> provides a protection system that enables users to define who will be allowed to send email via this server and where. Anyone can connect to the SMTP server to send messages to local domains. However, only authorized users will be allowed to send email to other domains. <p>Antispam protection of the mailserver enables users to define who will be allowed to use this server and what actions he/she can perform. If the SMTP server is available from the Internet, any client can connect and use the server to send an email message. The server can be misused to send spam messages. Recipients of such email messages will see your SMTP server as the sender in the source text and might block receiving messages sent from this server.</p> <p><span id="more-1653"></span></p> <p>The Parameters can be also set:</p> <p><strong>Relay Control Tab<br /></strong><br />Use the Relay control tab to set groups of allowed IP addresses and/or user authentication against SMTP server.</p> <p style="text-align: center;"><a onclick="pageTracker._trackPageview('/outgoing/i85.photobucket.com/albums/k57/becouz/smtpdel.png?referer=http://becouz.net/category/computer');javascript:pageTracker._trackPageview('/outgoing/i85.photobucket.com/albums/k57/becouz/smtpdel.png');" rel="nofollow" href="http://i85.photobucket.com/albums/k57/becouz/smtpdel.png" target="_blank"><img style="width: 410px; height: 337px;" class="aligncenter" rel="nofollow" src="http://i85.photobucket.com/albums/k57/becouz/smtpdel.png" alt="" /></a></p> <p><strong>Allow relay only for<br /></strong> Use this option to activate user authentication by IP addresses or usernames and passwords (see below). Generally, authenticated users can use email messages to any domain via this server, whereas unauthorized users can send messages only to local domains.</p> <p><strong>Users from IP address group<br /></strong> Use this option to define a group of IP addresses from which email can be sent to any domain. Use the IP address group menu to choose an item from the list of groups defined in Configuration Definition IP Address Groups. Use the Edit button to edit a selected group or to create a new one (see chapter IP Address Groups).</p> <p><strong>Users authenticated through SMTP server for outgoing mail<br /></strong> Users authenticated through SMTP server using a valid username and password will be allowed to send email to any domain. Thus, all users that have their own accounts in Kerio MailServer will have this right.</p> <p><strong>Users authenticated through POP3 from the same IP address<br /></strong> Users authenticated through POP3 (username and password) will be granted relay access from their IP address for a given period of time. The default time period is 30 minutes.</p> <p>Authentication by IP addresses is independent from authentication by usernames, therefore users must meet at least one of these conditions.</p> <p><strong>Open relay</strong><br />In this mode, the SMTP server does not check users who use it to send email. Thus any user can send email messages to any domain. Warning:We recommend you not to use this mode if Kerio MailServer is available from the Internet. If you use this option, your server can be used for sending spam and it might be added to a blacklist of spam SMTP server database (see below).</p> <p><strong>Blacklists Tab<br /></strong><br />Kerio MailServer can also block incoming messages from servers that are considered as spam servers. For this purpose, it uses public databases of these servers located in the Internet or its own database (either an IP address group, or a list of servers in the Internet blacklists table).</p> <p>To define these parameters go to the Blacklists tab in Configuration SMTP Server.</p> <p style="text-align: center;"><a onclick="pageTracker._trackPageview('/outgoing/i85.photobucket.com/albums/k57/becouz/smtpprop.png?referer=http://becouz.net/category/computer');javascript:pageTracker._trackPageview('/outgoing/i85.photobucket.com/albums/k57/becouz/smtpprop.png');" rel="nofollow" href="http://i85.photobucket.com/albums/k57/becouz/smtpprop.png" target="_blank"><img style="width: 410px; height: 290px;" class="alignnone" rel="nofollow" src="http://i85.photobucket.com/albums/k57/becouz/smtpprop.png" alt="" /></a></p> <p>Kerio MailServer administrator can use a couple of different databases. These databases are independent and they can be used simultaneously. Users can also add databases in the Denied servers dialog box. This dialog is opened after you click Add.</p> <p style="text-align: center;"><img class="aligncenter" rel="nofollow" src="http://i85.photobucket.com/albums/k57/becouz/intblack.png" alt="" height="208" width="268" /></p> <p>ORDB Open Relay Database</p> <p>This service is free. For details, go to <a onclick="pageTracker._trackPageview('/outgoing/www.ordb.org/?referer=http://becouz.net/category/computer');javascript:pageTracker._trackPageview('/outgoing/www.ordb.org/');" rel="nofollow" href="http://www.ordb.org/" target="_blank">ordb.org</a></p> <p><strong>Open Relay Database</strong><br />Database of SMTP servers that are not protected from spam misuse.</p> <p>Logs about received email messages can be created for individual groups (the Log option) or messages can be rejected (the Block option). If the Log option is active, information is recorded into the Security log. The analysis of this log can be used to acquire a list of IP addresses of servers from which spam have been sent.</p> <p><strong>Custom IP address spammers database</strong><br />This option can be used to select a custom defined IP address group. Use the Edit button to edit the selection or to create a new group.</p> <p><strong>Security Options Tab</strong></p> <p>Apart from completely blocking certain senders Kerio MailServer provides options that limit, for example, sending too many messages or opening too many connections (known as DoS attack). These options can be set in the Security Options section.</p> <p style="text-align: center;"><a onclick="pageTracker._trackPageview('/outgoing/i85.photobucket.com/albums/k57/becouz/attackprotection.png?referer=http://becouz.net/category/computer');javascript:pageTracker._trackPageview('/outgoing/i85.photobucket.com/albums/k57/becouz/attackprotection.png');" rel="nofollow" href="http://i85.photobucket.com/albums/k57/becouz/attackprotection.png" target="_blank"><img style="width: 410px; height: 340px;" class="alignnone" rel="nofollow" src="http://i85.photobucket.com/albums/k57/becouz/attackprotection.png" alt="" /></a></p> <p><strong>Max. number of messages per hour…</strong><br />Maximum count of messages that can be sent from one IP address per hour. This protects the disc memory from overload by too many messages (often identical and undesirable).<br /><strong> </strong></p> <p><strong>Max. number of concurrent SMTP connections…</strong><br />Maximum number of concurrent TCP connections to the SMTP server from one IP address. This is a method of protection against DoS attacks (Denial of Service too many concurrent connections overload the system and no other users can connect to the server).</p> <p><strong>Max. number of unknown recipients …</strong><br />Also known as a Directory harvest attack, this condition is met when an application that guesses common usernames of recipients’ fails up to the number of allowed unknown recipients.</p> <p><strong>Do not apply these limits to IP address group</strong><br />Group of IP addresses on which the limitations will not be applied. This rule is often used for groups of local users (see the Relay Control tab). These users send all their outgoing mail through Kerio MailServer the count of messages sent by these users to this server is therefore much higher than the number of messages sent by external users (servers) that use it only to deliver mail to local domains.</p> <p><strong> Block if sender’s mail domain…</strong><br />When a message is received Kerio MailServer checks whether the sender’s domain has a record in DNS. If not, the message will be rejected. This feature protects from senders with fictional email addresses. Note: This function may slow down Kerio MailServer (responses of DNS servers may take up to several seconds).</p> <p><strong> Max. number of recipients in a message</strong><br />Maximum number of message recipients that will be accepted (in the Rcpt To: entry of the SMTP envelope). This will protect your server from possible loops between two or among more SMTP servers.<br /><strong> </strong></p> <p><strong>Max. number of failed commands…<br /></strong>Spam is often sent by special applications that connect to SMTP servers and ignore its error reports. If this option is enabled, Kerio MailServer will close the SMTP connection automatically after the defened number of failed commands has been expired.</p> <p><strong>Limit maximum incoming SMTP message size to</strong><br />Maximum size of a message that will be accepted by the SMTP server. This protects the server from being overloaded by large messages. The 0 value means that no limitation is set. For easy definition you can switch between kilobytes (KB) and megabytes (MB).</p> <p><strong>Maximum number of accepted Received headers (hops)</strong><br />This parameter helps the server block messages that have been trapped in a loop.</p> <p><strong>SMTP Delivery</strong></p> <p>In this section, the delivery parameters can be also set:</p> <p style="text-align: center;"><a onclick="pageTracker._trackPageview('/outgoing/i85.photobucket.com/albums/k57/becouz/deliveryqueue.png?referer=http://becouz.net/category/computer');javascript:pageTracker._trackPageview('/outgoing/i85.photobucket.com/albums/k57/becouz/deliveryqueue.png');" rel="nofollow" href="http://i85.photobucket.com/albums/k57/becouz/deliveryqueue.png" target="_blank"><img style="width: 410px; height: 268px;" class="alignnone" rel="nofollow" src="http://i85.photobucket.com/albums/k57/becouz/deliveryqueue.png" alt="" /></a></p> <p><strong>Deliver directly using DNS MX records</strong><br />Mail will be delivered directly to destination domains using MX records.<br /><strong> </strong></p> <p><strong>Use relay SMTP server</strong><br />All outgoing mail will be sent via another relay SMTP server.<br /><strong> </strong></p> <p><strong>Relay server hostname</strong><br />DNS name or IP address of relay SMTP server.<br /><strong> </strong></p> <p><strong>Relay server port</strong><br />Port where the relay SMTP is running. Typically the standard port 25 is used (this value is also set as Default).<br /><strong> </strong></p> <p><strong>Relay server requires authentication</strong><br />Use this option if relay server requires authentication of sender (Kerio MailServer) using username and password. Specify the User and Password entries.<br /><strong></strong></p> <p><strong>Authentication</strong><br />Method of authentication at the relay server: SMTP AUTH Command or POP3 before SMTP (users enter local POP3 mailbox first they will be authenticated and allowed to send mail via SMTP server. Username and password used here will be used to login to the mailbox and no messages can be read. Therefore you do not need to define mailbox in Configuration POP3 Download to send an email message.)<br /><strong> </strong></p> <p><strong>Use SSL if supported by remote SMTP server…</strong><br />When sending a message, SMTP server attempts to use encrypted connection first (SSL). If SSL connection is not supported, unencrypted connection will be used. Thus the maximal possible security of sent mail is ensured.</p> <p><strong>Queue Options</strong></p> <p>In this tab, mail queue can be set. It can be viewed in Status Mail Queue.</p> <p style="text-align: center;"><a onclick="pageTracker._trackPageview('/outgoing/i85.photobucket.com/albums/k57/becouz/queueoptions.png?referer=http://becouz.net/category/computer');javascript:pageTracker._trackPageview('/outgoing/i85.photobucket.com/albums/k57/becouz/queueoptions.png');" rel="nofollow" href="http://i85.photobucket.com/albums/k57/becouz/queueoptions.png" target="_blank"><img style="width: 410px; height: 273px;" class="alignnone" rel="nofollow" src="http://i85.photobucket.com/albums/k57/becouz/queueoptions.png" alt="" /></a></p> <p><strong>Maximum number of delivery threads</strong><br />Maximum number of delivery threads that will send messages from the queue (maximum count of messages sent at one moment). The value should be chosen with respect to processor capacity and to speed of the Internet connection.</p> <p><strong>Delivery retry interval</strong><br />Interval that will be used for repeated retry attempts for sending an email message.</p> <p><strong>Return the message to sender…</strong><br />If the message cannot be delivered by expiration of this interval, it will be returned to sender. It will be automatically removed from the queue and no more delivery attempts will be taken by the server.</p> <p>You can also use preset time units (minutes, hours, days) to specify the interval.</p> <p>However, these time units will not be considered if the messages are delivered via relay SMTP server.</p> <p><strong>Send warning to sender…</strong><br />If the message could not be delivered by expiration of this period, sender will be sent a warning (server will continue in sending attempts).<br /><strong> </strong></p> <p><strong>Report language</strong><br />Language that will be used for error, warning and informative reports. Note:Reports are stored in the reports subdirectory of the directory where Kerio MailServer is installed (UTF-8 coding is used). Administrator can modify individual reports or add a new language report version.</p> <p>Note: Just to remember, for more information read : <a onclick="pageTracker._trackPageview('/outgoing/www.redline-software.com?referer=http://becouz.net/category/computer');javascript:pageTracker._trackPageview('/outgoing/www.redline-software.com');" rel="nofollow" href="http://www.redline-software.com/" target="_blank">redline-software.com</a></p><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/2785178257139955802-4768635512467254816?l=tapeuwie.blogspot.com' alt='' /></div>Tape Uwiehttp://www.blogger.com/profile/12958472702638257190noreply@blogger.com0