#Rule buat mesin linux yang di jadiin gateway
#!/bin/sh
/sbin/iptables -F
/sbin/iptables -t nat -F
/sbin/iptables -t mangle -F #ignore if you get an error here
/sbin/iptables -X #deletes every non-builtin chain in the table
/sbin/iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
/sbin/iptables -A INPUT -m state --state NEW -i ! eth0 -j ACCEPT
# only if both of the above rules succeed, use
/sbin/iptables -P INPUT DROP
/sbin/iptables -A FORWARD -i eth0 -o eth1 -m state --state ESTABLISHED,RELATED -j ACCEPT
/sbin/iptables -A FORWARD -i eth1 -o eth0 -j ACCEPT
# use this line if you have a static IP address from your ISP
# replace your static IP with x.x.x.x
/sbin/iptables -t nat -A POSTROUTING -o eth0 -j SNAT --to 202.69.97.130
# use this line only if you have dynamic IP address from your ISP
/sbin/iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
/sbin/iptables -A FORWARD -i eth0 -o eth0 -j REJECT
Konfigurasi rsync
Server Target
#rsync.conf
uid=nobody
gid=nobody
[secret]
comment=backup file
path=/home/backup
read only=no
hosts allow = x.x.x.x #ip_server_backup
hosts deny = *
list = yes
############
jalankan rsync
# rsync --daemon
###########
Server Backup
rsync -a --delete ip_server_target::secret /home/backup_server
agar berjalan otomatis masukan ke cron
Konfigurasi PHP with JPEG
Tulisan ini untuk mengatasi jika kita meng-konfigure PHP kita dengan dukungan GD dari RPM yang mensuppport PNG dan JPEG (juga dari RPM) tetapi tidak aktif modul JPEG-nya.
1.Pastikan GD, libpng dan libpng-devel dalam format RPM sudah terinstall (cek dengan perintah # rpm -qa|grep gd dan # rpm -qa|grep libpng)
2.Install modul JPEG degan terlebih dahulu mendownload source-nya dgan cara #wget http://www.photopost.com/jpegsrc.v6b.tar.gz
3.Extrac dgn perintah tar -zxvf jpegsrc.v6b.tar.gz -C /usr/local/src
4.#cd /usr/local/src/jpegsrc
5.#./configure
# make
# make test
# make install
# make install-lib
# make install-headers
6.#cd /usr/local/src/php-4.3.11/
7.#./configure' '--with-apxs2' '--enable-track-vars' '--with-mysql' '--with-pgsql' '--with-gd' '--with-jpeg-dir=/usr/lib' '--with-png-dir=/usr/local/lib' '--with-ttf' '--enable-gd-native-ttf' '--enable-magic-quotes' '--enable-versioning' '--with-zlib' '--enable-xml' '--enable-sigchild' '--enable-sockets'
#make
#make install
URL cara instal portsentry http://www.falkotimme.com/howtos/chkrootkit_portsentry/index.php
#shorewall rule
ACCEPT loc:10.1.1.0/24 fw tcp 53
ACCEPT loc:10.1.1.0/24 fw udp 53
ACCEPT loc:10.1.1.0/24 fw tcp 8080 -
REDIRECT loc:10.1.1.0/24 8080 tcp 80 - !10.1.1.1
ACCEPT loc:10.1.1.0/24 fw tcp 21,22,80,67,68,10000 -
ACCEPT net fw tcp 21,22,53,80 -
ACCEPT $FW loc:10.1.1.0/24 tcp 80,68,67,443,440,10000,8080 -
#dhcpd.conf
ddns-update-style none;
option routers 10.1.1.1;
# Konek-langsung
subnet 10.1.0.0 netmask 255.255.0.0 {
option routers 10.1.1.1;
option subnet-mask 255.255.0.0;
option domain-name "mercubuana.com";
option domain-name-servers 10.1.1.1;
option nis-domain "mercubuana.com";
range dynamic-bootp 10.1.90.100 10.1.90.200;
default-lease-time 21600;
max-lease-time 43200;
}
host tukangserver {
hardware ethernet 00:50:ba:62:b5:a4;
fixed-address 10.1.80.3;
}
route add -net 192.168.1.0 netmask 255.255.255.0 eth0
adds a route for the 192.168.1 network for eth0
the default for the netmask would be the same
This is done when ifconfig is done for eth0.
route add 192.168.1.15 eth0
adds an explicit route for a single host
probably not needed
route add default gw 192.168.1.1
adds a default route
route del -net 192.168.1.0
deletes a network route
route del 192.168.1.15
deletes an explicit route for a single host
probably not needed
route del default gw 192.168.1.1
deletes a default route
Solusi bila instalasi modul perl (cpan) di redhat:
"'export LANG=C' before running 'perl Makefile.PL' or 'make' is the
current workaround for this issue"
Apa yg harus dilakukan jika apachectl bawaan oracle 9i tdak mau di start
Jawab:
Tambahkan "export DISPLAY=:42.0" di ORACLE_HOME/Apache/Apache/bin/apachectl
Dokumen terkait:
http://www.dbforums.com/printthread.php?threadid=800347
##Create User On Oracle##
create user user_name identified by user_pass default tablespace users temporary tablespace temp;
grant connect, resource to user_name;
grant imp_full_database to user_name;
grant exp_full_database to user_name;
grant dba to user_name;
##PHP with Oracle###
./configure --with-apxs2 --enable-track-vars --with-mysql --with-pgsql --with-jpeg --with-png --enable-xml --with-zlib --with-oci8=/opt/oracle/product/9.2.0 -with-oracle=/opt/oracle/product/9.2.0 --enable-sigchild --enable-sockets
URL menarik mengenai instalasi beberapa aplikasi di mesin LINUX dalam bahasa Indonesia:
http://efnet.linux.or.id
http://www.cakraweb.com/~asfik
URL menarik mengenai panduan menginstall oracle di mesin LINUX:
http://www.puschitz.com
Perintah untuk melihat jumlah memory terpasang di linux:
#grep MemTotal /proc/meminfo
Melihat swap space, berjalan:
cat /proc/swaps
Link daftar port-port standar:
http://www.chebucto.ns.ca/~rakerman/port-table.html
Link daftar ip server yang digunakan oleh yahoo messenger:
http://oldfaq.phoneboy.com/fom-serve/cache/241.html