J. Instalasi dan Konfigurasi VPN Server

Hits: 735
  1. Topologi Jaringan

 

Konfigurasi Server :
--------------------------------------------------
- Sistem Operasi        : Linux Debian 10 (Buster)
- Hostname              : ns100.sekolah100.sch.id
- IP Address NIC 1      : 10.20.30.128/24
- Gateway               : 10.20.30.254
- DNS                   : 10.20.30.254
- IP Address NIC 2      : 192.168.100.1/24
- Domain                : sekolah100.sch.id

- Seting DHCP Server    : Yes
- Seting DNS Server     : Yes


Konfigurasi Client :
--------------------------------------------------
- Sistem Operasi        : Windows XP
- IP Address            : Assigned by DHCP

 

 

  1. Seting Server

    1. Konfigurasi DHCP Server
      Konfigurasi dan seting DHCP Server dapat dilihat pada artikel "Instalasi dan Konfigurasi DHCP Server"

    2. Konfigurasi DNS Server
      Konfigurasi dan seting DNS Server dapat dilihat pada artikel "Instalasi dan Konfigurasi DNS Server"

       

    3. Konfigurasi VPN Server

      Update dan upgrade debian Buster

      root@ns100:~# apt -y update && apt -y upgrade

       

      Install paket pptpd

      root@ns100:~# apt -y install pptpd

Setting up ppp (2.4.7-2+4.1+deb10u1) ...
Created symlink /etc/systemd/system/multi-user.target.wants/pppd-dns.service → /lib/systemd/system/pppd-dns.service.
Setting up pptpd (1.4.0-11+b1) ...
update-rc.d: warning: start and stop actions are no longer supported; falling back to defaults
Processing triggers for systemd (241-7~deb10u5) ...
Processing triggers for man-db (2.8.5-2) ...
Processing triggers for libc-bin (2.28-10) ...

       

      Konfigurasi pptpd.conf

      root@ns100:~# nano /etc/pptpd.conf

###############################################################################
# $Id$
#
# Sample Poptop configuration file /etc/pptpd.conf
#
# Changes are effective when pptpd is restarted.
###############################################################################

# TAG: ppp
#       Path to the pppd program, default '/usr/sbin/pppd' on Linux
#
#ppp /usr/sbin/pppd

# TAG: option
#
#
#
# (Recommended)
#localip 192.168.0.1
#remoteip 192.168.0.234-238,192.168.0.245
# or
#localip 192.168.0.234-238,192.168.0.245
#remoteip 192.168.1.234-238,192.168.1.245
#

localip 192.168.100.1,10.20.30.128
remoteip 192.168.100.20-30

       

      Konfigurasi user pptp

      root@ns100:~# nano /etc/ppp/chap-secrets

# Secrets for authentication using CHAP
# client        server  secret          IP addresses

hyd             pptpd   hyd123          *
paijo           pptpd   paijo123        *
user1           pptpd   user1           *
user2           pptpd   user2           *
user3           pptpd   user3           *
user4           pptpd   user4           *

       

      Konfigurasi DNS untuk user pptp

      root@ns100:~# nano /etc/ppp/pptpd-options

###############################################################################
# $Id$
#
# Sample Poptop PPP options file /etc/ppp/pptpd-options
# Options used by PPP when a connection arrives from a client.
# This file is pointed to by /etc/pptpd.conf option keyword.
# Changes are effective on the next connection.  See "man pppd".
#
# You are expected to change this file to suit your system.  As
# packaged, it requires PPP 2.4.2 and the kernel MPPE module.
###############################################################################


# Authentication

# Name of the local system for authentication purposes

# Network and Routing

# If pppd is acting as a server for Microsoft Windows clients, this
# option allows pppd to supply one or two DNS (Domain Name Server)
# addresses to the clients.  The first instance of this option
# specifies the primary DNS address; the second instance (if given)
# specifies the secondary DNS address.
# Attention! This information may not be taken into account by a Windows
# client. See KB311218 in Microsoft's knowledge base for more information.
#ms-dns 10.0.0.1
#ms-dns 10.0.0.2
#
ms-dns 192.168.100.1
ms-dns 10.10.129.5
ms-dns 8.8.8.8

       

      Restart service pptpd

      root@ns100:~# /etc/init.d/pptpd restart
      [ ok ] Restarting pptpd (via systemctl): pptpd.service.

 

 

  1. Pengujian dari jaringan lokal Server VPN

    Membuat Network Connection VPN di Windows XP 

     

     

    Konek ke Server VPN

     

     

 

 

  1. Pengujian dari jaringan luar atau publik internet

    Topologi jaringan

     

    Seting VPN di Windows 10

     

    Memriksa IP address yang di dapat dari Server VPN melalui jaringan publik

    C:\Users\HYD ipconfig

Windows IP Configuration
Ethernet adapter Ethernet:
Ethernet adapter Ethernet 3:

PPP adapter HYD VPN Connection :

   Connection-specific DNS Suffix  . :
   IPv4 Address. . . . . . . . . . . : 192.168.100.21
   Subnet Mask . . . . . . . . . . . : 255.255.255.255
   Default Gateway . . . . . . . . . : 0.0.0.0

     

    Ping ke Server VPN

    C:\Users\HYD ping 10.20.30.128

Pinging 10.20.30.128 with 32 bytes of data:
Reply from 10.20.30.128: bytes=32 time<1ms TTL=64
Reply from 10.20.30.128: bytes=32 time<1ms TTL=64
Reply from 10.20.30.128: bytes=32 time<1ms TTL=64
Reply from 10.20.30.128: bytes=32 time<1ms TTL=64

Ping statistics for 10.20.30.128:
    Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms

     

    Ping ke client yang berada di bawah jaringan lokal Server VPN

    C:\Users\HYD ping 192.168.100.20

Pinging 192.168.100.20 with 32 bytes of data:
Reply from 192.168.100.20: bytes=32 time=1ms TTL=127
Reply from 192.168.100.20: bytes=32 time=1ms TTL=127
Reply from 192.168.100.20: bytes=32 time<1ms TTL=127
Reply from 192.168.100.20: bytes=32 time<1ms TTL=127

Ping statistics for 192.168.100.20:
    Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 1ms, Average = 0ms

     

    Konek ke Internet

 

 

  1. Selesai

    Semoga bermanfaat