2009/12/19 Nyoman [D] <nyo...@royalperspective.com>: > On Sat, 2009-12-19 at 12:46 +0700, "mbah Darmo" wrote: >> 2009/12/19 Nyoman [D] <nyo...@royalperspective.com>: >> > On Sat, 2009-12-19 at 08:31 +0700, "mbah Darmo" wrote: >> >> > Ok... coba skr traceroute dari salah 1 client/user apakan bisa melewati >> >> > gateway bapak? dan paste hasilnya di sini >> >> > >> >> > Atau bisa juga dengan melakukan ping ke 125.163.182.189 kalau OK lanjut >> >> > ping ke domain... contoh google.com kalau OK harus sudah beres.. kalau >> >> > ping google.com gak bisa.. coba ping 216.239.61.104 (IP v4 nya google) >> >> > >> >> > Kalau ping ip google ok.. berarti masalah DNS di user/client >> >> > >> >> > Nyoman >> >> > >> >> >> >> @Pak Nyoman, >> >> saya coba dari client ping ke 125.163.182.189 bisa reply pak, kalo >> >> traceroute ato ping ke misalkan google.com gak bisa,request time >> >> out... >> >> thanks, >> >> >> > >> > Sudah baca dengak seksama dan berulang kali email saya di atas ?? >> > >> > Ok.. saya ulangi: >> > >> > kalau ping google.com gak bisa.. coba ping 216.239.61.104 (IP v4 nya >> > google) >> > >> > Kalau ping ip google ok.. berarti masalah DNS di user/client >> > >> > Jadi... apakah bapak sudah coba ping ke IP google ? atau IP domain >> > lain ? >> > >> > Coba paste hasil traceroute ke IP google atau IP yahoo >> > >> > FYI: >> > yahoo.com has address 209.191.93.53 >> > yahoo.com has address 69.147.114.224 >> > yahoo.com has address 209.131.36.159 >> > >> > google.com has address 64.233.181.104 >> > google.com has address 64.233.181.105 >> > google.com has address 64.233.181.106 >> > google.com has address 64.233.181.147 >> > google.com has address 64.233.181.99 >> > google.com has address 64.233.181.103 >> > >> > >> > Nyoman >> > >> @Pak Nyoman, >> sudah saya baca pak...,maaf tadi belum saya paste hasilnya, thanks, >> >> C:\Documents and Settings\hp>ping 125.163.182.189 >> >> Pinging 125.163.182.189 with 32 bytes of data: >> >> Reply from 125.163.182.189: bytes=32 time=6ms TTL=64 >> Reply from 125.163.182.189: bytes=32 time<1ms TTL=64 >> Reply from 125.163.182.189: bytes=32 time<1ms TTL=64 >> Reply from 125.163.182.189: bytes=32 time<1ms TTL=64 >> >> C:\Documents and Settings\hp>tracert google.com >> >> Tracing route to google.com [216.239.61.104] >> over a maximum of 30 hops: >> >> 1 <1 ms <1 ms <1 ms ns1.sctc.local [192.168.0.254] >> 2 * * * Request timed out. >> Trace complete. >> > > Aneh ya... kenapa traceroute tidak melewati IP 125.163.182.189 ? > > Bagaimana topology network bapak? > Apakah seperti ini?? > > 192.168.0.0/24 (LAN)-----|Mesin Linux sekaligus Proxy|---- Internet > > Makin penasaran.. masalahnya di mana ya... > Coba paste hasil traceroute ke IP 125.163.182.189 pak > > Nyoman >
@Pak Nyoman, Topologinya betul seperti yang pak Nyoman gambarkan, berikut ini hasil trace route ke 125.163.182.189: C:\Users\Administrator>tracert 125.163.182.189 Tracing route to 189.subnet125-163-182.speedy.telkom.net.id [125.163.182.189] over a maximum of 30 hops: 1 <1 ms <1 ms <1 ms 189.subnet125-163-182.speedy.telkom.net.id [125. 163.182.189] Trace complete. C:\Users\Administrator> FYI: berikut beberapa rule iptables yang saya eksekusi (mohon dikoreksi ya pak...) iptables -t nat -A PREROUTING -p tcp --dport 80 -j REDIRECT --to-ports 3128 iptables -t nat -A PREROUTING -p tcp --dport 81 -j REDIRECT --to-ports 3128 iptables -t nat -A PREROUTING -p tcp --dport 3124 -j REDIRECT --to-ports 3128 iptables -t nat -A PREROUTING -p tcp --dport 443 -j REDIRECT --to-ports 3128 iptables -t nat -A POSTROUTING -o eth2 -s 192.168.1.0/24 -j SNAT --to-source 125.163.182.189 iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j REDIRECT --to-ports 3128 iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 443 -j REDIRECT --to-ports 3128 iptables -table nat -A POSTROUTING -o eth0 -j MASQUERADE iptables -A OUTPUT -p tcp --dport 443 -j ACCEPT iptables -t nat -A POSTROUTING -s 192.168.0.0/24 -o eth2 -j SNAT --to 192.168.1.1/24 dimana: eth2 192.168.1.1/24 dari internet eth0 192.168.0.0/24 menuju LAN kami tunggu pencerahannya pak...,(maklum bar4u belajar iptables :D ) thanks & Regards, Supriyadi -- FAQ milis di http://wiki.linux.or.id/FAQ_milis_tanya-jawab Unsubscribe: kirim email ke tanya-jawab-unsubscr...@linux.or.id Arsip dan info milis selengkapnya di http://linux.or.id/milis
