Scribd Logo
Upload

Welcome to Scribd!

  • Tutorial UKK ARDIB

    Uploaded by

    Kookie YT
    5 views2 pages
    This document provides instructions for configuring a Mikrotik router to function as a wireless access point, proxy server, and hotspot. It includes steps to enable DHCP, DNS, firewall rules, port forwarding for the web proxy, wireless settings, user authentication via MikroTik's cloud-based Mikhmon service, and time synchronization using NTP. Firewall rules are also added to block access to the router's IP range and limit wireless access during certain hours.

    Original Description:

    Copyright

    © © All Rights Reserved

    Available Formats

    DOCX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    This document provides instructions for configuring a Mikrotik router to function as a wireless access point, proxy server, and hotspot. It includes steps to enable DHCP, DNS, firewall rules, port forwarding for the web proxy, wireless settings, user authentication via MikroTik's cloud-based Mikhmon service, and time synchronization using NTP. Firewall rules are also added to block access to the router's IP range and limit wireless access during certain hours.

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    5 views2 pages

    Tutorial UKK ARDIB

    Uploaded by

    Kookie YT
    This document provides instructions for configuring a Mikrotik router to function as a wireless access point, proxy server, and hotspot. It includes steps to enable DHCP, DNS, firewall rules, port forwarding for the web proxy, wireless settings, user authentication via MikroTik's cloud-based Mikhmon service, and time synchronization using NTP. Firewall rules are also added to block access to the router's IP range and limit wireless access during certain hours.

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 2

    Setting awal

    1. Buka Winbox
    2. Pergi ke DHCP Client sampai BOUND
    3. Tambahkan IP Addres
    4. Allow remote request di DNS
    5. Masuk ke Firewall>NAT>srcnat>masqurade
    6. Pergi ke Firewall>FilterRules>chain input>action log>log centang>log prefix akses-router
    7. System>Logging>prefix akses-router>action disk
    8. Cek PING google.com
    9. Tambahkan DHCP server ke eth2 pool 100 user
    10. Pergi ke cmd> ipconfig /renew

    WebProxy

    1. Firewall>NAT>chain dstnat>protocol 6(tcp)>dst port 80>action redirect> to ports 8080


    2. IP>WebProxy>enable web proxy>isi cache administrator>centang cache on disk>apply
    3. Lalu klik acces>tambahkan rule>path *.mp3*>action deny>ok
    4. Lakukan hal yang sama pada .mkv, hanya diubah pada path
    5. Buat rule baru>dst host (isi web yang akan diblock)>action deny>ok
    6. OK

    Wireless

    1. Masuk ke wireless dan nyalakan>klik 2x>mode ap bridge>ssid Nama@ProxyUKK>OK


    2. IP>address>ip address untuk wlan>ok
    3. IP>DHCP Server> pool 100 user
    4. IP>Hostspot>Hostspot setup>dns name : NamaUKK.net>admin,admin
    5. server profile > klik 2x hsprof1>login>uncheck cookie>ok

    SNTP

    1. System>Clock>uncheck time zone autodetect


    2. System SNTP > enable> isi primary 0.id.pool.ntp.org > isi secondary
    1.id.pool.ntp.org>apply>ok

    MIKHMON

    1. System > User> Groups >isi nama : mikhmon > centang read, write, api, sensitive>ok
    2. System > User> Users >isi nama : mikhmonUser> group pilih mikhmon> isi password >ok
    3. Nyalakan mikhmon webserver > login mikhmon, 1234
    4. Router list> add router>session name : namaUKK> IP : ip ether2>username : mikhmonUser,
    pass : (yang dibuat)> hotspot name: Nama@ProxyUKK>Dns name : Namaukk.net> ok
    5. Klik connect
    6. Hotspot>userprofile>add>name : ukk>address pool: dhcp_pool1(dhcp pool untuk
    wlan)>shareduser: 1 >expired mode : remove&record>validity : 1d> > ok
    7. Klik generate > qty:5>server: hotspot1>user mode : username = password>name length: 4>
    characters : terserah> generate

    FIREWALL

    A. Blokir akses ke mikrotik (192.168.100.2-50)


    1. Chain: input>src add : 192.168.100.2-192.168.100.50>dst add: 192.168.100.1 >
    protokol: icmp > action : drop
    B. Blokir akses ke wireless
    1. Chain: forward>src add : 192.168.100.51-192.168.100.100>dst add:
    192.168.200.0/24 > protokol: icmp > action : drop
    C. Melimit jam wifi pada jam 07:00 – 16:00
    Buat 2 Rule :
    a. Jam 00:00 -07:00
    Chain: input>in interfaces : wlan1>extra >time > isi 00:00:00 - 07:00:00>
    action : drop
    b. Jam 16:00-24:00
    Chain: input>in interfaces : wlan1>extra >time > isi 14:00:00 – 1d00:00:00>
    action : drop

    Masuk ke firewall > nat > pilih rule untuk webproxy > isi in interface : wlan1> ok

    You might also like