UJIKOM PRACTICE

 UJIKOM PRACTICE 2023

CREATE BY @rallfor_real




//DONT FORGET TO PUT COMMENTS ON EVERY SETTING TO EASE INDENTIFICATION//



===========================================================================


//INTERNET GATEWAY


IP > DHCP CLIENT > ETH 1

IP > FIREWALL > NAT > OUT.INT:ETH 1 > ACTION:MASQUARADE


===========================================================================


//NTP (NETWORK TIME PROTOCOL)


/ADJUST THE TIME W REAL WORLD TIME/

SYSTEM > SNTP CLIENT:ENABLE > SERVER DNS:times.windows.com > SYSTEM > CLOCK:ENABLE TIME ZONE


===========================================================================


//WEB PROXY


IP > WEB PROXY:ENABLE > CACHE ADMINISTRATOR:name@binar.sch.id > CACHE ON DISK:ENABLE


===========================================================================


//PORT FORWARDING


IP > FIREWALL > NAT > CHAIN:DSTNAT > PROTOCOL:TCP > DST.PORT:80 > ACTION:REDIRECT > TO PORT:8080


===========================================================================


//IP ADDRESS LOCAL


IP > ADDRESSES > 192.168.100.1/25 > INT 2


===========================================================================


//DHCP SERVER


IP > DHCP SERVER > DHCP SETUP > INT 2 > NEXT UNTIL ADDRESS TO GIVE OUT 

> SET IP 192.168.100.2 - 192.168.100.100 


===========================================================================


// BLOCK ICMP PROTOCOL TO ROUTER, ROUTER LOG, N WLAN

 

/ROUTER/ 

IP > FIREWALL > FILTER RULES > CHAIN:INPUT > SRC ADD:192.168.100.2-192.168.100.50 > PROTOCOL:ICMP > ACTION:DROP


/WLAN/

IP > FIREWALL > FILTER RULES > CHAIN:FORWARD > SRC ADD:192.168.100.51-192.168.100.100 > DST ADD:192.168.200.0/24

> PROTOCOL:ICMP > ACTION:DROP


/ROUTER LOG/

IP > FIREWALL > FILTER RULES > CHAIN:INPUT > ACTION:LOG > LOG PREFIX:NAME

SYSTEM > LOGGING > PREFIX:NAME > ACTION:DISK


===========================================================================


//WIRELESS


IP > ADDRESS:192.168.200.1/24 > INT 3

IP > HOTSPOT > HOTSPOT SETUP > INT 3 > NEXT UNTIL ADDRESS POOL:192.168.200.2-192.168.200.100

> NEXT UNTIL DNS:8.8.8.8 > DNS NAME:name.binar.sch.id 


===========================================================================


//RADIUS & CONNECTING RADIUS TO HOTSPOT


RADIUS > SERVICE:HOTSPOT > ADDRESS:LOCALHOST > SECRET:NAME > INCOMING:ACCEPT

IP > HOTSPOT > SERVER PROFILES:HSPROF1 > RADIUS:ENABLE > LOGIN:COOKIE


===========================================================================


//CREATE 20 RANDOM USERS & CONFIG THE HOSTSPOT USERS & LIMIT HOSTPOT BANDWITH/TIME/ETC


OPEN A BROWSER > SEARCH BAR:192.168.100.1/userman

NOTE : IF IP CANT ACCESS USER MANAGEMENT DISABLE PORT FORWARDING 


LOGIN    : ADMIN

PASSWORD : EMPTY


TO DELETE EXISTING USERS OPEN WINBOX

TERMINAL> tool user-manager database clear


ROUTER > ADD > NEW > NAME:NAME > IP:LOCALHOST > SHARED SECRET:SECRET U CREATE

> TIME ZONE:+07:00


USERS > ADD > BATCH > NUMBERS OF USERS:20 

> USERNAME PREFIX:OPTIONAL (ITS LIKE A CODE ID) U CAN USE IT IF U LIKE

> USERNAME LENGHT: THE CHARACTER LENGHT OF USERS U CAN SET IT AS U LIKE

> PWD SAME AS LOGIN:ENABLE

> PASSWORD LENGHT: 6 OR AS U LIKE


>PROFILE > ADD > NAME:NAME > LIMITATION > ADD > NEW > NAME:NAME

 BACK TO PROFILE > ADD NEW LIMITATION > TIME:07:00:00 - 16:00:00


===========================================================================


//HACK TIPS IF THE TIME SET DOESNT WORK


IP > FIREWALL > FILTER RULES > ADD > CHAIN:FORWARD > SRC ADD:192.168.200.0/24 > OUT. INT:ETH1

> EXTRA > TIME:16:00.00 - 07:00.00 > ACTION:DROM


===========================================================================


//BLOCKING LINUX.ORG, MP3 & MKV

> IP > WEB PROXY > ACCESS > ADD > DST PORT:80 > DST HOST >linux.org > ACTION:DENY

> IP > WEB PROXY > ACCESS > ADD > DST PORT:80 > PATH:*.mp3 > ACTION:DENY

> IP > WEB PROXY > ACCESS > ADD > DST PORT:80 > PATH:*.mkv > ACTION:DENY


===========================================================================


//TEST DEMO//


//ETH


1. PING GOOGLE IN MIKROTIK TERMINAL

2. IPCONFIG IN CMD TO CHECK DHCP SERVER IP FOR ETH 2 MAKE SURE SUBNET MASK IS .128

3. CHECK LOCAL NETWORK ACCESS BY PINGING IN CMD (GOOGLE OR ETC)

4. PING GATEWAY FOR IP 2-50 PING WIRELESS GATEWAY FOR IP 51-100


//WIRELESS


4. CHANGE TIME IN MIKROTIK TO TEST WIRELESS TIME LIMITATION (IF THE INTERNET STILL ACTIVE JUST USE TIME SET HACK TIPS)

5. CHECK CAN YOU ACCESS LINUX.ORG OR DOWNLOAD MP3/MKV IF IT CANT THEN ITS WORKING


===========================================================================


 //     CONGRATULATIONS YOU'VE FINISHED UJIKOM //

// HOPEFULLY FOR THE REAL TEST U GUYS CAN EASLY PASS   //


===========================================================================






Komentar

Posting Komentar

Postingan populer dari blog ini

DOCKER MATERIAL PRACTICE

Gambar
 //DOCKER PRACTICE// created by @rallfor_real QUESTION      REQUIREMENTS #sudo su #docker pull httpd:alpine #docker pull mysql:5.7 #docker pull wordpress:latest //NUMBER 1 QUESTION// //CREATE CONTAINER W HTTPD #docker container create --name namabebas -p portbebas:80 httpd:alpine //NUMBER 2 QUESTION// //CREATE CONTAINER W OWN IMAGES pergi ke free-css.com dan cari template html dan salin link downloadnya balik ke server #wget https://link-template.com #unzip namazipnya.zip #nano Dockerfile ====================================== FROM httpd:alpine COPY /folderyangdiunzip/ /usr/local/apache2/htdocs ====================================== note : supaya Dockerfilenya bisa taro direktori path untuk ke index.html nya lihat gambar dibawah ini #docker build -t namaimages:1.0 .  #docker container create --name namacontainer -pportbebas:80 namaimages:1.0  #docker container start namacontainer #docker container create --name namact -p bebas:80 namaimages:1.0 Hasilnya cob...
Baca selengkapnya