CLUSTER 3

Disusun oleh:

Nama : Muhammad Fadli Rapansyah

NISN/NIS : 0052164954/219890
Kelas : XII-TKJ
Koompetensi keahlian : Teknik Komputer dan Jaringan dasar

SMK NEGERI 3 JAKARTA

Jalan Garuda No.63 Kemayoran, Jakarta Pusat
Website : : smkn3jakarta.sch.id
TELP. 021-4209629
 A. Membuat Identity

Mikrotik Pada Pc Server

System > Identity > Identity : (Fadli Router ISP 1) > Apply > Ok

Mikrotik Pada Pc Client

System > Identity > Identity (Fadli_Router ISP 2) > Apply > Ok

Lalu menamakan indentity disetiap ether

B. Membuat User
Mikrotik Server
System > User > “+” > Name : Admin > Group (full) > Apply > Ok
System > User > “+” > Name : Fadli > Password 123> Group (full) > Apply >
Ok

Mikrotik Client
System > User > “+” > Name : Admin > Group (full) > Apply > Ok
System > User > “+” > Name : Fadli > Password 123> Group (full) > Apply >
Ok
C. Memberikan Akses Internet di Mikrotik Server

Mikrotik Server (Hal ini dilakukan hanya di Mikrotik Server)

1. IP > DHCP Client > “+” > Interface (ether1) > Apply > Ok

2. IP > Addresses > “+” > Address (172.16.50.25/29) > Interface (Ether2) > Apply >
Ok
3. “+” > Address (10.10.1.1/30) > Interface (Ether3) > Apply > Ok
1. IP > DHCP Server > DHCP Setup > Ether 2 > Next sampai DNS : 8.8.8.8 / 8.8.4.4 >
Next sampai menu Lease Time (00:05:00)

1. IP > Firewall > NAT > “+” > General > Chain (srcnat) > Out.Interface
(ether1) Kita akan mengambil internet dari port ether 1 > Action
(masquerade) > Apply > Ok

2. Internet akan tersambung dengan otomastis ke PC Server

D. Setting BGP Pada Mikrotik Server

1. Routing > BGP > Instances > Default “-“ > “+” > Name : Fadli_Router
ISP 1 >AS (65501) Router ID (10.10.10.1) > Apply > Ok

1. Routing > BGP > Peers > “+” > Instance (R1 ke r2) > Remote Address
(10.10.1.2) >
Remote AS (65502) > Apply > Ok.

2. Networks > Network > 10.10.1.0/30 > Apply > Ok

3. Networks > Network > 172.16.50.24/29 > Apply > Ok
4. Networks > Network > 192.168.32.0/24 > Apply > Ok
E. Memberikan IP pada Mikrotik Client

1. IP > Address > “+” > Address (10.10.1.2/30) > Interface (Ether1) > Apply > Ok
2. IP > Address > “+” > Address (192.168.1.65/26) > Interface (Ether2) > Apply >
Ok
3. IP > Address > “+” > Address (192.168.50.1/24) > Interface (wlan1) > Apply > Ok

F. Setting IP DHCP Server Mikrotik Client

1. IP > DHCP Server > DHCP Setup > Ether 2 > Next sampai Addresses to Give Out
(192.168.1.66 – 192.168.1.100) > Next sampai DNS (8.8.8.8/8.8.4.4) > Next sampai
menu Lease Time (00:02:00) lalu sukses
G. Setting BGP Mikrotik Client

1. Routing
2. Routing > BGP > Instances > Default “-“ > “+” > Name : Fadli Router
ISP 2>AS (65002) Router ID (10.10.10.2) > Apply > Ok

1. Routing > BGP > Peers > “+”> Instance (R2 ke R1) > Remote Address
(10.10.1.1) > Remote AS (65001) > Apply > Ok. Status “Established”

2. Networks > Network > 10.10.1.0/30 > Apply > Ok

3. Networks > Network > 192.168.1.64/26 > Apply > Ok
4. Networks > Network > 192.168.50.0/24 > Apply > Ok
 1. IP > Routes > “+” >Gateaway (10.10.1.1) > Ok. (Pastikan Status “AS”)

H. Menghidupkan Hotspot di Mikrotik Client

1. Wireless > Hidupkan wlan1 > Masuk wlan1 > Wireless > Mode (AP Bridge) >
Band (2GHz- B/G/N) > Rubah SSID (Fadli ) > Apply > Ok
2. IP > DHCP Server > DHCP Setup > wlan1 > Next sampai DNS
(8.8.8.8/8.8.4.4) > Di next sampai Lease Time dan ubah menjadi
(00:10:00)

3. IP > Hotspot > Server > Hotspot Setup > wlan1 > Select (none) > DNS
(8.8.8.8/8.8.4.4) > DNS Name (tkj-smkn3jakarta.id) > User (admin) & User
Password (0000)

Username Password Kecepatan Jumlah

Admin 0000 Unlimited 1

Manajemen 123 2 Mbps 1

Guru 456 1 Mbps 2

Asesi 789 512 Kbps 2
4. IP > Hotspot > User Profiles > Admin > Rate Limit (Unlimited) > Shared Users
(1) >Apply > Ok
5. IP > Hotspot > User Profiles > Manajemen > Rate Limit (2m) > Shared Users
(1) >Apply > Ok
6. IP > Hotspot > User Profiles > Guru > Rate Limit (1m) > Shared Users (2) >Apply
> Ok
7. IP > Hotspot > User Profiles > Asesi > Rate Limit (512 K) > Shared Users (2)
>Apply > Ok

8. IP > Hotspot > Users > “+” > Server (all) > Name (Admin) >
Password (0000) > Profile (Admin) > Apply > Ok
9. IP > Hotspot > Users > “+” > Server (all) > Name (Manajemen) >
Password (123) > Profile (Manajemen) > Apply > Ok
10. IP > Hotspot > Users > “+” > Server (all) > Name (Guru) > Password
(456) > Profile (Guru) > Apply > Ok
11. IP > Hotspot > Users > “+” > Server (all) > Name (Asesi) >Password
(789) > Profile (Asesi) > Apply > Ok
 I. Blokir Facebook

Mikrotik Server
1. IP > Firewall > Filter Rules > General (forward) > Out.Interfaces (all
Ethernet)
> Advanced > Content (Instagram.com) > Action (drop) >Apply >
Ok

Cobalah Buka Website instagram.com di PC dan Handphone

J. Menonaktifkan service FTP, Telnet

K.
Mikrotik Server
1. IP > Service > IP Service List > FTP, Telnet jangan lupa di Disable atau
Dinonaktifkan
• Mikrotik Client
2. IP > Service > IP Service List > FTP, Telnet jangan lupa di Disable atau
Dinonaktifkan

L. Hanya PC Server yang dapat akses Winbox Mikrotik Server

Mikrotik Server
1. IP > NAT > Filter Rules > Chain (Input) > Src. Address (!)(172.16.50.24/29) >
Protocol (6 TCP) > Dst. Port (8291) > Apply > Ok
Login Winbox di PC Client menggunakan IP dari PC Server, bila hasilnya seperti ini maka
konfigurasi sudah berhasil
M. Blokir Ekstensi (.MP4)

Mikrotik Client
1. IP > Web Proxy > General > Enabled > port (8080) > Access > “+” > Dst. Port
(80,443) > Path (*.mp4*) > Action (Deny) > Apply > Ok
2. Apply > Access > “+” > Dst. Port (80,443) > Path (*.mp4*) > Action (Deny) > Apply
> Ok

3. IP > NAT > “+” > General > Chain (dstnat) > Protocol (6/tcp) > Dst. Port (80) >
Out.Interface (wlan1) > Action (redirect) > To. Port (8080) > Apply > Ok
4. Cobalah download file MP4 di PC dan Handphone
 N. Blokir Ekstensi (.MP3 DAN .MKV)

Ip > Firlter Rules > chain forward > Protocol 6(tcp) >Dst port 80 >in interface Wlan >
Advencede> Content .mkv /.mp3 > Action DROP

O. Hanya PC Client yang dapat Mengakses Server

Mikrotik Client

1. IP > Firewall > General > Chain (Forward) > Src. Address
(192.168.1.64/24) > Action (Drop)> Apply > Ok

2. Ping IP Mikrotik pada Aplikasi di Handphone

P. Hanya PC Client yang dapat akses Winbox Mikrotik Client

Mikrotik Client
IP > NAT > Filter Rules > Chain (Input) > Src. Address (!)
(192.168.1.64/26) > Protocol (6 TCP) > Dst. Port (8291) > Apply > Ok
Q. Folder Sharing

PC Server
1. Buatlah Folder Kosong di Document lalu masukkan file sesuai keinginan kalian
2. Klik Kanan pada Folder yang telah dibuat > Give aaccess to > Specific People >
Buat akses people menjadi (Everyone) > add > Ubah menjadi (Read/Write) >
Shre > Done
 • PC Client
1. Bukalah (Windows + R) > Masukkan IP dari PC Server (\\172.16.50.30) > Buka
Folder yang telah dikirim oleh PC Server > lalu sudah terterelah folder yang telah
kita buat

R. Anti Virus

PC Client

Scaan Anti Virus Di windows defender

S. Monitoring Jaringan

PC Server
1. Menu Tools > Graphing > “+”> Interface (all) > Apply > Ok
2. Graphic Settings > Store Every (5 min)
3. Pergi ke Browser lalu ketik Gateaway dari PC Server tersebut
(172.16.50.25/graphs/) > ether2 > tampilan monitoring akan seperti ini

• PC Client
1. Menu Tools > Graphing > Icon (+) > Interface (wlan1) > Apply > Ok
2. Graphic Settings >pilih waktu Store Every (5 min)
Pergi ke Browser lalu ketik Gateaway dari PC Server tersebut
(192.168.15.65/graphs/) > wlan1 > tampilan monitoring akan seperti ini
PPTP SERVER
Pergi Ke Menu PPP lalu”+” lalu klik PPTP SERVER

“Ceklis Enable” > apply > ok

Pergi ke tab Secret lalu isi user> password> local address dan remote address
PPTP CLIENT
- Kemenu PPP lalu klik “+” lalu pilih PPTP CLIENT

Lalu Dial Out Lalu masukan IP mikrotik server di connect to: beserta user dan password
apply ok
Interfaces list > IP tunnel > Masukan ip local addres dan remote addres

Note : IP TUNNEL / TUNNELING OPSI LAIN

- Tes ping jalur Tunnel dari mikrotik server ke client dan client ke server