Posted by a. Rahman Isnaini r. Sutan on January 21, 2009
With All Respect,
Time passes by…
And now Obama has been taking the US.
I personally thank you & really appreciate for your visit & glad to share with you any of experience which in the purpose of helping anybody who needs all information exposed in this blog.
For a better management & self control, I’d like to inform that this blog http://risnaini.wordpress.com has been moved to http://www.ip-stories.com please re-bookmark your browser.
All post is completely similar & non of them ensured lost.
Please kindly be noted & really sorry for your inconvenience.
a. rahman isnaini r.sutan
Posted in technologies | Leave a Comment »
Posted by a. Rahman Isnaini r. Sutan on January 9, 2009
With All Respect,
This post has been moved to www.ip-stories.com [click & follow this link]
Please kindly noted & realy sorry for your inconvenience.
a. rahman isnaini r.sutan
Posted in Facebook, Game | 6 Comments »
Posted by a. Rahman Isnaini r. Sutan on November 4, 2008
Due to ipv6 limitation configuration in Windows XP, in a IPv6 Network.
Once your windows XP assigned IPv6 by DHCP Server either dedicated IPv6 DHCP server (linux/unix) or Cisco Router (12.3 (4) T).
###########################################
NOTE :
Windows XP would not get IPv6 Address from DHCP server until it has IPv4 installed on as well either input manually or IPv4 DHCP server as well.
############################################
You’ll see no DNS installed supposed to be dynamically on your IPCONFIG /ALL.
This case will not happen in Vista as it supports IPv6 in fully configuration.
Here the way to add static DNS in your Windows XP
a. Make sure IPv6 Installed [IPv6 Install]
b. Follow this steps :
C:\Documents and Settings\a. rahman isnaini> netsh
netsh>interface ipv6
netsh interface ipv6>add dns “wireless network connection” 2404:170:32::2
Ok.
netsh interface ipv6>exit
C:\Documents and Settings\a. rahman isnaini>ipconfig /all
Ethernet adapter Wireless Network Connection:
Connection-specific DNS Suffix . : hotspot-dea.indo.net.id
Description . . . . . . . . . . . : Intel(R) PRO/Wireless 3945ABG Network Connection
Physical Address. . . . . . . . . : 00-1F-3C-14-6E-25
Dhcp Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IP Address. . . . . . . . . . . . : 192.168.0.88
Subnet Mask . . . . . . . . . . . : 255.255.255.0
IP Address. . . . . . . . . . . . : fe80::21f:3cff:fe14:6e25%6
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DNS Servers . . . . . . . . . . . : 202.159.32.2
2404:170:32::2 <<
Posted in Cisco, IPv6, microsoft | 4 Comments »
Posted by a. Rahman Isnaini r. Sutan on October 30, 2008
During ID-IPv6 Task Force Event 30 October 2008 which is “Sosialisasi IPv6 & Hands On Traingin Dasar IPv6″, users able to have dual stack on their laptops. The DHCP server ran by Cisco Router 3725 with 12.3(4) T IOS version platform.
Trainer Today Cisco : Ade Yudha G (Cisco System), Christian (D-Net), Rahman Isnaini (Netsoft/IndoInternet).
Trainer Today Mikrotik : Niko (UfoAkses), Ervin A Taufik (IndoInternet).
Running Cisco as DHCP server for both IPv6 & IPv4 with NAT, configuration as below :
IPV6-GW#sh run
!
hostname IPV6-GW
!
ip subnet-zero
ip cef
!
!
no ip dhcp conflict logging
ip dhcp excluded-address 172.16.255.1
ip dhcp excluded-address 172.16.255.100
!
ip dhcp pool ipv4-postel
network 172.16.255.0 255.255.255.0
dns-server 202.159.32.2
domain-name ipv4.postel.go.id
netbios-node-type h-node
default-router 172.16.255.1
!
!
ip name-server 202.159.32.2
ip name-server 202.159.33.2
ip ips po max-events 100
ipv6 unicast-routing
ipv6 dhcp pool ipv6-postel
prefix-delegation 2404:170:DEAD:DEAD::/64 0005000400F1A4D07003
prefix-delegation pool prefix-pool lifetime 1800 60
dns-server 2404:170:32::2
domain-name ipv6.postel.go.id
!
interface FastEthernet0/0
description IPV6-BACKBONE
ip address 202.53.252.50 255.255.255.252
ip nat outside
ip virtual-reassembly
duplex auto
speed auto
ipv6 address 2404:170:251::AA/125
ipv6 enable
!
interface Serial0/0
no ip address
shutdown
clockrate 2000000
!
interface FastEthernet0/1
description DHCP-HOTSPOT-LAN
ip address 172.16.255.1 255.255.255.0
ip nat inside
ip virtual-reassembly
duplex auto
speed auto
ipv6 address 2404:170:DEAD:DEAD::1/64
ipv6 enable
ipv6 traffic-filter DHCP-OUT out
ipv6 nd other-config-flag
ipv6 dhcp server ipv6-postel
!
interface Serial0/1
ip address 10.10.10.10 255.255.255.252
ipv6 address 2008::1/64
ipv6 enable
clockrate 2000000
!
ip classless
ip route 0.0.0.0 0.0.0.0 202.53.252.49
!
no ip http server
no ip http secure-server
ip nat inside source list 50 interface FastEthernet0/0 overload
!
!
access-list 50 permit 172.16.255.0 0.0.0.255
ipv6 route ::/0 2404:170:251::A9
!
ipv6 access-list DHCP-OUT
remark FILTER-SECURE-POSTEL-IPV6-HOSTPOT
sequence 150 deny tcp any any range ftp-data telnet
sequence 151 deny tcp any any range 135 139
sequence 152 deny tcp any any range 161 162
sequence 153 deny tcp any any eq 6029
sequence 154 deny tcp any any range 67 68
sequence 155 deny tcp any any eq gopher
sequence 156 deny tcp any any eq finger
sequence 157 deny tcp any any eq www log
sequence 158 deny tcp any any eq 87
sequence 159 deny tcp any any eq sunrpc
sequence 160 deny tcp any any eq irc
sequence 161 deny tcp any any eq 372
sequence 162 deny tcp any any eq exec
sequence 163 deny tcp any any range login klogin
sequence 164 deny tcp any any eq cmd
sequence 165 deny tcp any any eq nntp
sequence 166 deny tcp any any eq uucp
sequence 167 deny tcp any any eq lpd
sequence 168 deny tcp any any eq 37
sequence 169 deny tcp any any eq 445
sequence 170 deny tcp any eq 445 any
sequence 171 deny tcp any any eq 450
sequence 172 deny tcp any any eq 1434
sequence 173 deny tcp any eq 1434 any
sequence 174 deny tcp any any eq 1524
sequence 175 deny tcp any any eq 2000
sequence 176 deny tcp any any range 2041 2049
sequence 177 deny udp any any range 135 netbios-ss
sequence 178 deny udp any any range snmp snmptrap
sequence 179 permit udp any any eq tftp
sequence 180 deny udp any any eq 1434
sequence 181 deny udp any eq 1434 any
sequence 182 deny udp any any eq time
sequence 183 deny udp any any eq tacacs
sequence 184 deny udp any any eq bootps
sequence 185 deny udp any any eq bootpc
sequence 186 deny udp any any eq sunrpc
sequence 187 deny udp any any eq 144
sequence 188 deny udp any any eq who
sequence 189 deny udp any any eq 515
sequence 190 deny udp any any eq rip
sequence 191 deny udp any any eq 27444
sequence 192 deny udp any any eq 31335
sequence 199 permit ipv6 any 2404:170:DEAD::/48
sequence 500 deny ipv6 any any log
!
end
Posted in Cisco, IPv6, dhcp | Leave a Comment »
Posted by a. Rahman Isnaini r. Sutan on October 23, 2008
Last week my HP 520 had a power module failure.
So, no Data, no Internet, no part of life.
Now it’s fine, after fixed by HP Service Center Indonesia.
It took only 3 Days to analyze & replace the module with a ready one.
(Could be faster than this without administration 
)
Any progress confirmed by Phone, no time wasted !.
It’s all for free since the warranty period.
A Better Improvement, thanks HP Service Center !
* note : this is not a promotion.
Location : Menara Bank Danamon, level 25 (Jl. Prof Satrio / facing Ambassador, Jakarta Selatan)
a. rahman isnaini r.sutan
2404:170:253::10
Posted in Notebook, service level | 3 Comments »
Posted by a. Rahman Isnaini r. Sutan on September 16, 2008
Tired of saving your cisco configuration manually ?
And changes made very often & too lazy to back up.
This how to save your configuration automatically & periodically.
– Below sample save in weekly period.
– And save configuration weekly to disk2 of my Core Router.
But firstly check your IOS support or not (12.4 for e.g).
Here how to check :
Your-ROUTER(config)#archive
How to configure :
Core-1(config)#archive
Core-1(config-archive)#path disk2:config-backup
Core-1(config-archive)#time-period 604800
Core-1#dir disk2: (sample)
5 -rw- 3276 Sep 12 2008 10:14:02 +07:00 config-backup
Other options at archive level :
default Set a command to its defaults
exit Exit from archive configuration mode
log Logging commands
maximum Maximum number of backup copies
no Negate a command or set its defaults
path Path for backups
rollback Rollback parameters
time-period Period of time in minutes to automatically archive the running-config
write-memory Enable automatic backup generation during write memory
a. rahman isnaini r.sutan
Posted in Cisco | Leave a Comment »
Posted by a. Rahman Isnaini r. Sutan on September 15, 2008
K-Lite Codec as one of most compatible video player that support many codecs compared to others media player.
First installation by default Video Renderer is set to Old Renderer which not allow you to load the subtitle correctly.
Here how to overcom this :
Change Playback output of Direct Show Video in View > Option tab setting.
a. rahman isnaini r.sutan
Posted in software | 2 Comments »
Posted by a. Rahman Isnaini r. Sutan on September 10, 2008
Since 1.5 GB Volume Based I’ve subscribed limited for 3 months “low rate” promotion.
And as well justifying 1.5 GB is pretty much againts my requirement.
Choosing INDOSAT Eco should fits what I need (POP3, SSH, Telnet, bit browsing).
-
ISAT Eco is Unlimited Product with speed of 256 Kbps till 2GB of volume achieved.
Exceeding this defined quota the speed will be adjusted to 64 kbps.
Not bad, 2 GB still pretty much quota I need to spent .
Now I don’t have to worry for quota over limit & pay for that over usage.
Though I believed, I even couldn’t spent this 2GB in a month
All I need to pay is Rp. 100.000 or with Tax will be Rp 110.000 (USD 110).
The Experience…
Even sometimes my bandwidth meter shows that it’s not really 256 kbps strictly allocated but burst a bit higher.
This just my test this morning [Sept, 15] I believe BTS-BSC-MSC in idle capacity due to everybody in a meeting or meet they boss for reports.
a. rahman isnaini r.sutan
Posted in Mobile | 11 Comments »
Posted by a. Rahman Isnaini r. Sutan on September 1, 2008
Till now I don’t have a good solution for running IPv6 simultanously with Mikrotik Wireless Hotspot.
The condition :
- Your LAN has a dual stack IPv6 / IPv4 installed
- You have to connect to Mikrotik Hotspot Gateway Enabled
- Your first access is browsing and will be redirected to Mikrotik Login Page
The Issue :
No matter you LAN NIC UP/DOWN or we can say connected or not..
With IPv6/IPv4 Dual stack installed, Your Wifi status is Connected but You have error page “Address Not Found” while trying to browse to log in.
What I have done :
Uninstalling IPv6 on Your NIC will help much.
The redirected login page, will be nicely appear waiting for your to enter username & password
It’s not happened on my another wifi network.
a. rahman isnaini r.sutan
Posted in IPv6, Mikrotik, wireless | 2 Comments »
Posted by a. Rahman Isnaini r. Sutan on September 1, 2008
Spending my time…
Trying to limit login from certain hosts include Cisco routers (OS Version Image : c7200-jk9o3s-mz.123-13.bin”) on a Juniper. The connection allowed is ssh.
Allowing cisco routers doesn’t seem to give a remote login successfully connected.
Cisco#ssh -l boss 192.168.1.145 [connection error:0]
Got this SSH log error on Juniper show log message tailed :
Sep 1 10:21:47 JunOS-GW sshd[38925]: Did not receive identification string from 192.168.1.146
Sep 1 10:21:47 JunOS-GW inetd[2541]: /usr/sbin/sshd[38925]: exit status 0xff00
Sep 1 10:22:15 JunOS-GW sshd[38926]: Did not receive identification string from 192.168.1.146
Sep 1 10:22:15 JunOS-GW inetd[2541]: /usr/sbin/sshd[38926]: exit status 0xff00
Sep 1 10:22:18 JunOS-GW sshd[38927]: Did not receive identification string from 192.168.1.146
Sep 1 10:22:18 JunOS-GW inetd[2541]: /usr/sbin/sshd[38927]: exit status 0xff00
Sep 1 10:22:23 JunOS-GW sshd[38928]: Did not receive identification string from 192.168.1.146
Sep 1 10:22:23 JunOS-GW inetd[2541]: /usr/sbin/sshd[38928]: exit status 0xff00
Sep 1 10:35:52 JunOS-GW sshd[39135]: Did not receive identification string from 192.168.1.146
Sep 1 10:35:52 JunOS-GW inetd[2541]: /usr/sbin/sshd[39135]: exit status 0xff00
Sep 1 10:36:03 JunOS-GW sshd[39136]: Did not receive identification string from 192.168.1.146
Sep 1 10:36:03 JunOS-GW inetd[2541]: /usr/sbin/sshd[39136]: exit status 0xff00
Sep 1 10:36:04 JunOS-GW sshd[39137]: Did not receive identification string from 192.168.1.146
Sep 1 10:36:04 JunOS-GW inetd[2541]: /usr/sbin/sshd[39137]: exit status 0xff00
Sep 1 10:36:05 JunOS-GW sshd[39138]: Did not receive identification string from 192.168.1.146
Sep 1 10:36:05 JunOS-GW inetd[2541]: /usr/sbin/sshd[39138]: exit status 0xff00
The symptom : Your outbound SSH on Cisco Router is version 1, while your juniper by default is version 2. Please add/enable ssh protocol-version 2 (v2) as well.. on your Juniper.
You@JunOS-GW# show
ssh {
root-login deny;
protocol-version [ v2 v1 ];
connection-limit 10;
}
[edit system services]
you@JunOS#set system services ssh protocol-version v1
you@JunOS#set system services ssh protocol-version v2
you@JunOS#set system services ssh protocol-version v1 v2 (nope sure this one ) try it)
Then commit ! [Thanks to Ang Kah from Bangky.Net for Inspiring]
a. rahman isnaini r.sutan
Posted in Juniper, security | Leave a Comment »
