IT NETWORK SYSTEM ADMINISTRATION SOAL MODUL A (Waktu ... · SOAL MODUL A (Waktu Penyelesaian : 270...

IT NETWORK SYSTEM ADMINISTRATION – LKS GORONTALO 2019 November

12, 2019

PROVINSI GORONTALO

LOMBA KOMPETENSI SISWA (LKS) PROVINSI GORONTALO 2019 – 2020

IT NETWORK SYSTEM ADMINISTRATION

SOAL MODUL A

(Waktu Penyelesaian : 270 MENIT)

PART I Preparations - Sebelum melakukan pekerjaan konfigurasi, persiapkan semua

kebutuhan. Semua paket aplikasi yang dibutuhkan sudah harus

terinstalasi sebelum pekerjaan konfigurasi selanjutnya dilakukan.

- Untuk instalasi paket aplikasi dan update dilakukan menggunakan

repository lokal yang disediakan panitia.

- Ikuti instruksi selanjutnya dari juri diruangan masing-masing.

WORK TASK INSTALLATION (KABILASRV, TAPASRV) Basic configuration for all routers and servers

o Hostname : Following the description

o IP Address, Netmask, Gateway : Following the description

o Root Password, username, user password : Following the description

WORK TASK SERVER KABILASRV

o Create users with the names “charles” ,“richard”,”alwin”, and “doday” with the password “12345678”

o Install the services: 1. FTP Each user (“Richard” and “Charles”) will have a home directory. Make sure anonymous access in document root directory Make sure FTP users can only access in their home directory

2. DNS Configure and install DNS with two domain

skills28future.id to KABILASRV

gtloskills.net to TAPASRV

Create subdomain mail.gtloskills.net and cloud2.gtloskills.net

Create subdomain monitor.skills28future.id

and cloud1.skills28future.id


12, 2019

PROVINSI GORONTALO

3. Web Server (Apache2 including php5)

Create website “http://cloud1.skills28future.id” and “http://www.skills28future.id”

- Use the following code for index.html in http://cloud1.skills28future.id

<html>

<h1>Welcome to the cloud1 skills28future.id </h1>

</html>

- Use the following code for index.html in http://www.skills28future.id

<html>

<h1>Welcome to the skills28future.id </h1>

</html>

Enable https for website in KABILASRV

4. CA (openssl)

Configure as CA

CA attributes should be set as follows

- Country code is set to ID

- Organization is set to LKSD2020

Create a root CA certificate

Store the certificate in directory /cert

5. Cacti

Install cacti

Create an admin-user “master” with password “GtoSkills2020”

Create graph showing the statistics of the CPU, memory and interfaces

traffic of the TAPASRV, BONBOL-RO

Enable https for cacti access

6. SSH Server

Install SSH Server

Change SSH port default to 2812

Create SSH logins with banner messages before and after logins ########################################################### # welcome to skills28future.id # # All connection are monitored and record # ###########################################################

http://cloud1.skills28future.id/

http://www.skills28future.id/

http://cloud1.skills28future.id/

http://www.skills28future.id/


12, 2019

PROVINSI GORONTALO

WORK TASK SERVER TAPASRV

o Install the services: 1. Web Server (Apache2 including php5)

Create website “http://cloud2.gtloskills.net” and “http://www.gtloskills.net”

- Use the following code for index.html in http://cloud2.gtloskills.net

<html>

<h1>Welcome to the cloud1 gtloskills.net </h1>

</html>

- Use the following code for index.html in http://www.gtloskills.net

<html>

<h1>Welcome to the gtloskills.net </h1>

</html>

2. Mail

Make sure user “alwin” and “doday” have access via POP3, IMAP and

SMTP

Before you finish your project make sure you send an email message

from alwin to doday and another message from doday to alwin

Do not delete these email messages

3. DHCP

Create DHCP Pool INTERNET :

Range 192.168.104.51 – 192.168.104.100

Netmask: /24

Gateway: 192.168.104.254

DNS : 202.134.1.10

.

.

.


12, 2019

PROVINSI GORONTALO

WORK TASK SERVER KWANDANGSRV

o Create users with the names “juan” ,“sebastian”,”adhiongka”, and “adiatno” with the

password “12345678” o Install the services:

1. File Service (Samba)

Share “MANAGER”

o Path is /files/manager

o Give access only to users “juan” and “sebastian”

Share “GUEST”

o Path is /files/guest

o Enable read-only access to everyone


12, 2019

PROVINSI GORONTALO

PART II WORK TASK NETWORK CONFIGURATION (BONBOL_RO,

GORUT_RO)

WORK TASK ROUTER BONBOL_RO o Install the services:

1. Routing Enable Routing to router forward IPv4 Packet

2. DHCP Relay Configure DHCP Relay to TAPASRV for internet client

3. Firewall Internet network deny the ICMP Packet to cloud netwok Internet network can access to all website in cloud network Use NAT configuration internet network to cloud network Internet network deny the ICMP Packet to interface internet

BONBOL_RO WORK TASK ROUTER GORUT_RO o Install the services:

1. Routing Enable Routing to router forward IPv4 Packet

2. Firewall Deny all other traffic from internet to Private Network internet client can’t access to KWANDANGSRV before the vpn

established 3. VPN

Configure VPN for access to Private Network. Internet clients should connect to 192.168.104.253

Use address range 10.20.0.1 to 10.20.0.10 for VPN clients For login create a user “remote” with password “GtloSkills2020”


12, 2019

PROVINSI GORONTALO

PART III WORK TASK NETWORK CONFIGURATION (BONBOL_RO,

GORUT_RO) WORK TASK INTERNET CLIENT

o Make sure the internet client can access to cloud network o Make sure the internet client can access to private network (via GORUT_RO) through

VPN o Make sure the root CA certificate of KABILASRV is trusted o Make sure the client certificate is installed o Make sure the client can access samba shares o Make sure the client get dhcp service

WORK TASK INTERNAL CLIENT o Make sure the client can access samba shares

GOOD LUCK


12, 2019

PROVINSI GORONTALO

DESCRIPTION KWANDANGSRV Operating system Linux Debian 9.6

Hostname KWANDANGSRV

Root password LKSGTLO2020

Username Saronde

User password Gorontalo2020

Eth 0 121.121.121.100/26

TAPASRV Operating system Linux Debian 9.6

Hostname TAPASRV


Username Saronde


Eth 0 202.134.1.20/27

KABILASRV

Operating system Linux Debian 9.6

Hostname KABILASRV


Username Saronde


Eth 0 202.134.1.10/27

GORUT_RO Operating system Linux Debian 9.6

Hostname GORUT_RO


Username Saronde


Eth 0 192.168.104.253/24

Eth1:31 121.121.121.126/26

Eth1:21 121.121.121.1/26


12, 2019

PROVINSI GORONTALO

BONBOL_RO

Operating system Windows 10

Hostname BONBOL_RO


Username Saronde

Eth 0 192.168.104.254/24

Eth1 202.134.1.1/27

INTERNET Client


Computer Name INTERNET

Administrator password LKSGTLO2020

IP Address DHCP

INTERNAL Client


Computer Name INTERNAL

Administrator password LKSGTLO2020

IP Address 121.121.121.10/26

Desc :

(vSwitch ESXi: Configuration for vSwitch adjust to the topologi)

(setting connection for all devices as described in the topology)

IT NETWORK SYSTEM ADMINISTRATION SOAL MODUL A (Waktu ... · SOAL MODUL A (Waktu Penyelesaian : 270...

Documents

Transcript of IT NETWORK SYSTEM ADMINISTRATION SOAL MODUL A (Waktu ... · SOAL MODUL A (Waktu Penyelesaian : 270...