Wednesday, March 25, 2015

SNMP

Install SNMP di Ubuntu server

Install paket SNMP

# sudo apt-get install snmp snmpd
$ sudo apt-get install snmp-mibs-downloader
 
buat file snmpd.conf baru :


mv /etc/snmp/snmpd.conf  /etc/snmp/snmpd.conf.org


 

buat file baru di /etc/snmp/snmpd.conf
isi dengan :




rocommunity  public
syslocation  DataCenter
syscontact   admin@pla.net



Buat snmpd membaca file snmpd yang baru dibuat untuk membaca semua interface



Edit /etc/default/snmpd

Ubah dari :


# snmpd options (use syslog, close stdin/out/err).
SNMPDOPTS='-Lsd -Lf /dev/null -u snmp -I -smux -p /var/run/snmpd.pid 127.0.0.1'



Menjadi :


# snmpd options (use syslog, close stdin/out/err).
#SNMPDOPTS='-Lsd -Lf /dev/null -u snmp -I -smux -p /var/run/snmpd.pid 127.0.0.1'
SNMPDOPTS='-Lsd -Lf /dev/null -u snmp -I -smux -p /var/run/snmpd.pid -c /etc/snmp/snmpd.conf'



dan restart snmpd


/etc/init.d/snmpd restart


 


Test dengan :


 
[root@op5 ~]# snmpwalk -v 1 -c public -O e ibsen
SNMPv2-MIB::sysDescr.0 = STRING: Linux ibsen 2.6.27-9-generic #1 SMP Thu Nov 20 21:57:00 UTC 2008 i686
SNMPv2-MIB::sysObjectID.0 = OID: NET-SNMP-MIB::netSnmpAgentOIDs.10
DISMAN-EVENT-MIB::sysUpTimeInstance = Timeticks: (68869) 0:11:28.69
SNMPv2-MIB::sysContact.0 = STRING: peter@it-slav.net
SNMPv2-MIB::sysName.0 = STRING: ibsen
SNMPv2-MIB::sysLocation.0 = STRING: "PDC, Peters DataCenter"
SNMPv2-MIB::sysORLastChange.0 = Timeticks: (1) 0:00:00.01
SNMPv2-MIB::sysORID.1 = OID: SNMP-FRAMEWORK-MIB::snmpFrameworkMIBCompliance
SNMPv2-MIB::sysORID.2 = OID: SNMP-MPD-MIB::snmpMPDCompliance
SNMPv2-MIB::sysORID.3 = OID: SNMP-USER-BASED-SM-MIB::usmMIBCompliance
SNMPv2-MIB::sysORID.4 = OID: SNMPv2-MIB::snmpMIB
SNMPv2-MIB::sysORID.5 = OID: TCP-MIB::tcpMIB
SNMPv2-MIB::sysORID.6 = OID: IP-MIB::ip


 


Melihat Informasi Network


 


snmptable -v 2c -c public -Cb localhost IF-MIB::ifTable


 SNMP table: IF-MIB::ifTable

 Index Descr             Type   Mtu    Speed      PhysAddress AdminStatus
     1    lo softwareLoopback 16436 10000000                           up
     2  eth0   ethernetCsmacd  1500        0 52:54:0:c7:69:58          up
     3  eth1   ethernetCsmacd  1500        0 52:54:0:a7:a3:24        down


 


$ snmpwalk localhost IF-MIB::ifDescr 


 


IF-MIB::ifDescr.1 = STRING: lo
IF-MIB::ifDescr.2 = STRING: eth0
IF-MIB::ifDescr.3 = STRING: eth1
~]$ snmpwalk localhost IF-MIB::ifOutOctets
IF-MIB::ifOutOctets.1 = Counter32: 10060699
IF-MIB::ifOutOctets.2 = Counter32: 650
IF-MIB::ifOutOctets.3 = Counter32: 0
~]$ snmpwalk localhost IF-MIB::ifInOctets
IF-MIB::ifInOctets.1 = Counter32: 10060699
IF-MIB::ifInOctets.2 = Counter32: 78650
IF-MIB::ifInOctets.3 = Counter32: 0


 


 

High Speed interfaces

For high-speed interfaces (100Mbps or above) you should use 64-bit counters if the device supports them:


    

  • ifHCInOctets: 1.3.6.1.2.1.31.1.1.1.6 (64-bit Octets in counter)
    • 

  • ifHCOutOctets: 1.3.6.1.2.1.31.1.1.1.10 (64-bit Octets out counter)
    • 

  • ifHCInUcastPkts:    1.3.6.1.2.1.31.1.1.1.7 (64-bit Packets in counter)
    • 

  • ifHCOutUcastPkts:   1.3.6.1.2.1.31.1.1.1.11 (64-bit Packets out counter)
    • 

  • ifHighSpeed: 1.3.6.1.2.1.31.1.1.1.15 (An estimate of the interface's current bandwidth in units of 1Mbps)
    • 


Low Speed interfaces

Lower speed interfaces can get by with 32-bit counters.  If you use 
32-bit counters on high-speed interfaces, they can wrap quickly; a 10 
Mbps stream of back-to-back, full-size packets causes ifInOctets to wrap in just over 57 minutes. At 100 Mbps, the minimum wrap time is 5.7 minutes, and at 1 Gbps, the minimum is 34 seconds Note 1


    

  • ifInOctets: 1.3.6.1.2.1.2.2.1.10 (32-bit Octets in counter)
    • 

  • ifOutOctets: 1.3.6.1.2.1.2.2.1.16 (32-bit Octets out counter)
    • 

  • ifInUcastPkts: 1.3.6.1.2.1.2.2.1.11 (32-bit Packets in counter)
    • 

  • ifOutUcastPkts: 1.3.6.1.2.1.2.2.1.17 (32-bit Packets out counter)
    • 

  • ifSpeed: 1.3.6.1.2.1.2.2.1.5 (Currently negotiated speed of the interface - Max: 4.294 Gbps)
    • 










Table . Available OIDs






OID
        Description
        



HOST-RESOURCES-MIB::hrSystem
        Contains general system information such as uptime, number of users, and number of running processes.
        


HOST-RESOURCES-MIB::hrStorage
        Contains data on memory and file system usage.
        


HOST-RESOURCES-MIB::hrDevices
        Contains a listing of all processors, network devices, and file systems.
        


HOST-RESOURCES-MIB::hrSWRun
        Contains a listing of all running processes.
        


HOST-RESOURCES-MIB::hrSWRunPerf
        Contains memory and CPU statistics on the process table from HOST-RESOURCES-MIB::hrSWRun.
        


HOST-RESOURCES-MIB::hrSWInstalled
        Contains a listing of the RPM database.
        









contoh :




snmpwalk -v 2c -c public localhost HOST-RESOURCE-MIB::hrSystem


 


contoh command yang lain :


 


 $ snmpnetstat -v 2c -c public -t 100 -Cn -Cp tcp localhost
Active Internet (tcp) Connections
Proto Local Address Remote Address (state)
tcp *.* *.* CLOSED
tcp *.32806 *.* CLOSED
tcp *.33103 *.* CLOSED
tcp *.33332 *.* CLOSED
tcp 127.0.0.1.8009 127.0.0.1.51617 ESTABLISHED
tcp 127.0.0.1.8009 127.0.0.1.51618 ESTABLISHED
tcp 127.0.0.1.31000 127.0.0.1.32000 ESTABLISHED
tcp 127.0.0.1.31002 127.0.0.1.32001 ESTABLISHED
tcp 127.0.0.1.32000 127.0.0.1.31000 ESTABLISHED
tcp 127.0.0.1.32001 127.0.0.1.31002 ESTABLISHED
tcp 127.0.0.1.51617 127.0.0.1.8009 ESTABLISHED
tcp 127.0.0.1.51618 127.0.0.1.8009 ESTABLISHED


 



MONITOR PEMAKAIAN HARDDISK



Disk Statistics

Edit snmpd.conf.

Tambahkan (assuming a machine with a single ‘/' partition) :



disk / 100000



atau



includeAllDisks 10%  untuk memonitor semua disk



OIDs untuk disk :



Path where the disk is mounted: .1.3.6.1.4.1.2021.9.1.2.1

Path of the device for the partition: .1.3.6.1.4.1.2021.9.1.3.1

Total size of the disk/partion (kBytes): .1.3.6.1.4.1.2021.9.1.6.1

Available space on the disk: .1.3.6.1.4.1.2021.9.1.7.1

Used space on the disk: .1.3.6.1.4.1.2021.9.1.8.1

Percentage of space used on disk: .1.3.6.1.4.1.2021.9.1.9.1

Percentage of inodes used on disk: .1.3.6.1.4.1.2021.9.1.10.1









#snmpget -v 1 -c "community" target_name_or_ip .1.3.6.1.4.1.2021.9.1.9.1





 CPU Statistics

 Load

1 minute Load: .1.3.6.1.4.1.2021.10.1.3.1

5 minute Load: .1.3.6.1.4.1.2021.10.1.3.2

15 minute Load: .1.3.6.1.4.1.2021.10.1.3.3

CPU

percentage of user CPU time: .1.3.6.1.4.1.2021.11.9.0

raw user cpu time: .1.3.6.1.4.1.2021.11.50.0

percentages of system CPU time: .1.3.6.1.4.1.2021.11.10.0

raw system cpu time: .1.3.6.1.4.1.2021.11.52.0

percentages of idle CPU time: .1.3.6.1.4.1.2021.11.11.0

raw idle cpu time: .1.3.6.1.4.1.2021.11.53.0

raw nice cpu time: .1.3.6.1.4.1.2021.11.51.0

Memory Statistics

Total Swap Size: .1.3.6.1.4.1.2021.4.3.0

Available Swap Space: .1.3.6.1.4.1.2021.4.4.0

Total RAM in machine: .1.3.6.1.4.1.2021.4.5.0

Total RAM used: .1.3.6.1.4.1.2021.4.6.0

Total RAM Free: .1.3.6.1.4.1.2021.4.11.0

Total RAM Shared: .1.3.6.1.4.1.2021.4.13.0

Total RAM Buffered: .1.3.6.1.4.1.2021.4.14.0

Total Cached Memory: .1.3.6.1.4.1.2021.4.15.0





Here is a sample structure of an OID

Iso (1).org(3).dod(6).internet(1).private(4).transition(868).products(2).chassis(4).card(1).slotCps(2)­

.­cpsSlotSummary(1).cpsModuleTable(1).cpsModuleEntry(1).cpsModuleModel(3).3562.3



  



Perl SNMP


modul yang digunakan :


use Net::SNMP;
use Net::SNMP::Interfaces; 


 


link install CPAN modul di Ubuntu :


 deb.perl.it/ubuntu/cpan-deb/



jika error install semua kebutuhan development di Ubuntu


 


apt-get install build essential 


 


 










Posted by



at





No comments:
  







































          

        

          

        

Tuesday, March 10, 2015


          

        









Cisco Catalyst 2960 Password Recovery










Cisco Catalyst 2900 series Password Recovery

Step-by-Step Procedure

Follow the password recovery procedure below.

    Attach a terminal or PC with terminal emulation (for example, Hyper Terminal) to the console port of the switch.

    Use the following terminal settings:

        Bits per second (baud): 9600

        Data bits: 8

        Parity: None

        Stop bits: 1

        Flow Control: Xon/Xoff

    Note: For additional information on cabling and connecting a terminal to the console port, refer to Connecting a Terminal to the Console Port on Catalyst Switches.

    Unplug the power cable.

    Power the switch and bring it to the switch: prompt:

    For 2900XL, 3500XL, 2940, 2950, 2960, 2970, 3550, 3560, and 3750 series switches, do this:

    Hold down the mode button located on the left side of the front panel, while you reconnect the power cable to the  switch.
    Catalyst Switch Series  LED Behavior and Mode Button Release Action
    2900XL, 3500XL, 3550  Release the Mode button when the LED above Port1x goes out.
    2940, 2950  Release the Mode button after approximately 5 seconds when the Status (STAT) LED goes out. When you release the Mode button, the SYST LED blinks amber.
    2960, 2970  Release the Mode button when the SYST LED blinks amber and then turns solid green. When you release the Mode button, the SYST LED blinks green.
    3560, 3750  Release the Mode button after approximately 15 seconds when the SYST LED turns solid green. When you release the Mode button, the SYST LED blinks green.

    

    For 2955 series switches only:

    The Catalyst 2955 series switches do not use an external mode button for password recovery. Instead the switch boot loader uses the break-key detection to stop the automatic boot sequence for the password recovery purposes. The break sequence is determined by the terminal application and operating system used. Hyperterm running on Windows 2000 uses Ctrl + Break. On a workstation running UNIX, Ctrl-C is the break key. For more information, refer to Standard Break Key Sequence Combinations During Password Recovery.

    The example below uses Hyperterm to break into switch: mode on a 2955.

        C2955 Boot Loader (C2955-HBOOT-M) Version 12.1(0.0.514), CISCO DEVELOPMENT TEST
        VERSION
        Compiled Fri 13-Dec-02 17:38 by madison
        WS-C2955T-12 starting...
        Base ethernet MAC Address: 00:0b:be:b6:ee:00
        Xmodem file system is available.
        Initializing Flash...
        flashfs[0]: 19 files, 2 directories
        flashfs[0]: 0 orphaned files, 0 orphaned directories
        flashfs[0]: Total bytes: 7741440
        flashfs[0]: Bytes used: 4510720
        flashfs[0]: Bytes available: 3230720
        flashfs[0]: flashfs fsck took 7 seconds.
        ...done initializing flash.
        Boot Sector Filesystem (bs:) installed, fsid: 3
        Parameter Block Filesystem (pb:) installed, fsid: 4

        *** The system will autoboot in 15 seconds ***
        Send break character to prevent autobooting.


        !--- Wait until you see this message before
        !--- you issue the break sequence.
        !--- Ctrl+Break is entered using Hyperterm.


        The system has been interrupted prior to initializing the flash file system to finish
        loading the operating system software:

        flash_init
        load_helper
        boot
        switch:

    Issue the flash_init command.

        switch: flash_init
        Initializing Flash...
        flashfs[0]: 143 files, 4 directories
        flashfs[0]: 0 orphaned files, 0 orphaned directories
        flashfs[0]: Total bytes: 3612672
        flashfs[0]: Bytes used: 2729472
        flashfs[0]: Bytes available: 883200
        flashfs[0]: flashfs fsck took 86 seconds
        ....done Initializing Flash.
        Boot Sector Filesystem (bs:) installed, fsid: 3
        Parameter Block Filesystem (pb:) installed, fsid: 4
        switch:

        !--- This output is from a 2900XL switch. Output from
        !--- other switches will vary slightly.

    Issue the load_helper command.

        switch: load_helper
        switch:

    Issue the dir flash: command.

    Note: Make sure to type a colon ":" after the dir flash.

    The switch file system is displayed:

        switch: dir flash:
        Directory of flash:/
        2    -rwx  1803357                  c3500xl-c3h2s-mz.120-5.WC7.bin

        !--- This is the current version of software.

        4    -rwx  1131                     config.text

        !--- This is the configuration file.

        5    -rwx  109                      info
        6    -rwx  389                      env_vars
        7    drwx  640                      html
        18   -rwx  109                      info.ver
        403968 bytes available (3208704 bytes used)
        switch:

        !--- This output is from a 3500XL switch. Output from
        !--- other switches will vary slightly.

    Type rename flash:config.text flash:config.old to rename the configuration file.

        switch: rename flash:config.text flash:config.old
        switch:

        !--- The config.text file contains the password
        !--- definition.

    Issue the boot command to boot the system.

        switch: boot
        Loading "flash:c3500xl-c3h2s-mz.120-5.WC7.bin"...###############################
        ################################################################################
        ######################################################################
        File "flash:c3500xl-c3h2s-mz.120-5.WC7.bin" uncompressed and installed, entry po
        int: 0x3000
        executing...

        !--- Output suppressed.
        !--- This output is from a 3500XL switch. Output from other switches
        !--- will vary slightly.

    Enter "n" at the prompt to abort the initial configuration dialog.

        --- System Configuration Dialog ---
        At any point you may enter a question mark '?' for help.
        Use ctrl-c to abort configuration dialog at any prompt.
        Default settings are in square brackets '[]'.
        Continue with configuration dialog? [yes/no]: n

        !--- Type "n" for no.

        Press RETURN to get started.

        !--- Press Return or Enter.

        Switch>

        !--- The Switch> prompt is displayed.

    At the switch prompt, type en to enter enable mode.

        Switch>en
        Switch#

    Type rename flash:config.old flash:config.text to rename the configuration file with its original name.

        Switch#rename flash:config.old flash:config.text
        Destination filename [config.text]

        !--- Press Return or Enter.

        Switch#

    Copy the configuration file into memory.

        Switch#copy flash:config.text system:running-config
        Destination filename [running-config]?

        !--- Press Return or Enter.

        1131 bytes copied in 0.760 secs
        Sw1#

    The configuration file is now reloaded.

    Overwrite the current passwords that you do not know. Choose a strong password with at least one capital letter, one number, and one special character.

    Note: Overwrite the passwords which are necessary. You need not overwrite all of the mentioned passwords.

        Sw1# conf t


        !--- To overwrite existing secret password

        Sw1(config)#enable secret 



        !--- To overwrite existing enable password

        Sw1(config)#enable password 



        !--- To overwrite existing vty password

        Sw1(config)#line vty 0 15
        Sw1(config-line)#password 

        Sw1(config-line)#login


        !--- To overwrite existing console password

        Sw1(config-line)#line con 0
        Sw1(config-line)#password 

    Write the running configuration to the configuration file with the write memory command.

        Sw1#write memory
        Building configuration...
        [OK]
        Sw1#










Posted by



at





No comments:
  

































          

        

          

        

Thursday, January 22, 2015


          

        










MEMBATASI SESSION IDM PADA MIKROTIK










Cara berikut untuk membatasi sessiion koneksi download pada IDM dengan menggunakan Mikrotik



langkah 1 :

masuk ke menu IP --> Firewall --> Tab Layer7. Tambahkan rule baru.

dengan nama : limit IDM

pada Regexp masukkan (copy paste) :  get /.*(user-agent: mozilla/4.0|range: bytes=)





























langkah 2  :

masuk ke filter

pada general masukkan:

chain : foward

protocol : tcp

























langkah 3 :

pada tab advanced masukkan

layer 7 protocol : limit IDM (nama rule yg dibuat tadi)













  











 Pada tab Extra :




- Limit : 2 (berapa koneksi yang mau dibuka)



- Netmask : 32







 



 



 



 



 



 



 



 



 



  Pada tab Action :


- Action : drop



 











































Setelah setingan dibuat dan dijalankan pada Mikrotik, silakan coba download lagi. 




Hasilnya, koneksi yang digunakan oleh IDM akan berkurang menjadi 2 koneksi saja.



 



sebelum 







 



 



















































sesudah :




















Posted by



at





No comments:
  










































BLOK FACEBOOK DAN YOUTUBE DENGAN MIKROTIK










berikut cara bloking facebook dan youtube dengan layer 7 protokol di mikrotik




langkah 1 :

buat rule regexp baru dan beri nama bloc (contoh)





























copy paste kode berikut :


^.+(facebook.com|youtube).*$


 


langkah 2 : 


buat filter rules 






 














































pada tab general pilih chain foward


 


 






 
















































pada tab advanced pilih bloc ( nama rule yang dibuat tadi) 


pada kolom layer 7 protocol


 


 






 














































pilih action : drop


 


 


selesai 










Posted by



at





No comments:
  

































        

      









Subscribe to:
Posts (Atom)