Jumat, 29 Agustus 2008

setting hotspot dengan mikrotik





Dokumentasi setting hotspot :

topologi :

internet gateway
(192.168.254.254)
|
|
|
|
(eth internet 192.168.254.2/24)
|mikrotik hotspot gateway|
(eth lokal 192.168.2.254/24)
|
|
|
|
(user hotspot / dhcp)

1. rename ethernate

[admin@MikroTik] > interface ethernet print
Flags: X - disabled, R - running
# NAME MTU MAC-ADDRESS ARP
0 R internet 1500 10:E0:4C:39:42:30 enabled
1 R lokal 1500 00:E0:4C:F0:02:F6 enabled

2. input ip address :

[admin@MikroTik] > ip address print
Flags: X - disabled, I - invalid, D - dynamic
# ADDRESS NETWORK BROADCAST INTERFACE
0 192.168.254.2/24 192.168.254.0 192.168.254.255 internet
1 192.168.2.254/24 192.168.2.0 192.168.2.255 lokal

3. input gateway :

[admin@MikroTik] > ip route print
Flags: X - disabled, A - active, D - dynamic,
C - connect, S - static, r - rip, b - bgp, o - ospf
# DST-ADDRESS PREF-SRC G GATEWAY DISTANCE INTERFACE
0 ADC 192.168.2.0/24 192.168.2.254 lokal
1 ADC 192.168.254.0/24 192.168.254.2 internet
2 A S 0.0.0.0/0 r 192.168.254.254 internet

4. input nat :

[admin@MikroTik] > ip firewall nat print
Flags: X - disabled, I - invalid, D - dynamic
0 chain=srcnat action=masquerade

1 chain=srcnat src-address=192.168.2.0/24 action=masquerade

2 ;;; masquerade hotspot network
chain=srcnat src-address=192.168.2.0/24 action=masquerade

5. marking connection dan marking routing

[admin@MikroTik] > ip firewall mangle print
Flags: X - disabled, I - invalid, D - dynamic
0 chain=output dst-address-list=nice action=mark-connection
new-connection-mark=mark-local-con passthrough=yes

1 chain=output connection-mark=mark-local-con action=mark-routing
new-routing-mark=mark-routing-local passthrough=yes

5. input dns :

[admin@MikroTik] > ip dns print
primary-dns: 202.134.0.155
secondary-dns: 0.0.0.0
allow-remote-requests: no
cache-size: 2048KiB
cache-max-ttl: 1w
cache-used: 102KiB

6. setup dhcp :

[admin@MikroTik] > ip dhcp-server print
Flags: X - disabled, I - invalid
# NAME INTERFACE RELAY ADDRESS-POOL LEASE-TIME ADD-ARP
0 dhcp1 lokal dhcp_pool1 3d

Sampai disini coba dicek koneksitasnya,
ping dari mikrotik ke gateway
ping dari mikrotik ke dns
ping dari mikrotik ke internet
ping dari mikrotik ke user

ping dari user ke mikrotik
ping dari user ke dns
ping dari mikrotik ke internet

pastikan semua sudah berjalan dengan normal
kalau ada yang belum normal coba dicek kembali konfigurasi dan settingan diatas,
pengkabelan, kondisi card lan, kondisi koneksi internet dsb.

7. setup ip hotspot

[admin@MikroTik] > ip hotspot print
Flags: X - disabled, I - invalid, S - HTTPS
# NAME INTERFACE ADDRESS-POOL PROFILE IDLE-TIMEOUT
0 hotspot1 lokal dhcp_pool1 hsprof1 5m

8. setup profil hotspot :

[admin@MikroTik] > ip hotspot profile print
Flags: * - default
0 * name=”default” hotspot-address=0.0.0.0 dns-name=”” html-directory=hotspot
rate-limit=”” http-proxy=0.0.0.0:0 smtp-server=0.0.0.0
login-by=cookie,http-chap http-cookie-lifetime=3d split-user-domain=no
use-radius=no

1 name=”hsprof1″ hotspot-address=192.168.2.254 dns-name=”warnetpanda.com”
html-directory=hotspot rate-limit=”” http-proxy=0.0.0.0:0
smtp-server=0.0.0.0 login-by=cookie,http-chap http-cookie-lifetime=3d
split-user-domain=no use-radius=yes radius-accounting=yes
radius-interim-update=received nas-port-type=wireless-802.11
radius-default-domain=”” radius-location-id=”” radius-location-name=””

9. aktivasi radius

[admin@MikroTik] > radius print
Flags: X - disabled
# SERVICE CALLED-ID DOMAIN ADDRESS SECRET
0 hotspot 192.168.2.254 123456

10. buat account user manager :

[admin@MikroTik] > tool user-manager customer print
Flags: X - disabled
0 subscriber=masjamal login=”masjamal” password=”xxxxxx”
time-zone=+00:00 permissions=owner parent=masjamal

11. akses user manager dari remote komputer : http://192.168.2.254/userman
username : masjamal passwd : xxxxxx

12. dari gui user manager : setting router : add, name : masjamal_router ip-address=192.168.2.254 secret=123456

[admin@MikroTik] > tool user-manager router print
Flags: X - disabled
0 subscriber=masjamal name=”masjamal_router” ip-address=192.168.2.254
shared-secret=”123456″

13. add credit / paket-paket tarip hotspot

[admin@MikroTik] > tool user-manager credit print
# SUBSCRIBER NAME TIME FULL-PRICE EXTEND-PRICE
0 masjamal paket prepaid 1h 3000 unavailable

14. add user hotspot :

[admin@MikroTik] > tool user-manager user print
Flags: X - disabled, A - active
0 subscriber=masjamal username=”demo” password=”demo” uptime-used=6m58s
download-used=200604 upload-used=26166 last-seen=jul/27/2008 16:24:22
credit-count=0 credit-left=0s credit-duration=0s credit-price=0
credit-till-time=jan/01/1970 00:00:00 credit-time-added=0s

1 subscriber=masjamal username=”demo2″ password=”demo2″ uptime-used=47m14s
download-used=4003686 upload-used=306165 last-seen=jul/27/2008 17:24:44
credit-count=1 credit-left=0s credit-duration=1h credit-price=3000
credit-till-time=jul/27/2008 17:24:43 credit-time-added=0s

15. disable user hotspot :

[admin@MikroTik] > ip hotspot user print
Flags: X - disabled, D - dynamic
# SERVER NAME ADDRESS PROFILE UPTIME
0 X admin default 5m5s

16. coba akses hotspot dari computer klient. masukkan id login dan passwd yang telah dibuat

17. semoga berhasil

18. settingan mikrotik ini belum dimasukkan firewall, silahkan lihat topik pembahasan firewall untuk menambahkan firewall.

19. jangan lupa passwd mikrotiknya diganti

Diposting oleh di

Tidak ada komentar:

Posting Komentar

Langganan: Posting Komentar (Atom)