squid coss freebsd 7.1 bagian 4

Nasrul Kurniawan, 30.8.09

#=================================================
#history yang mungkin berguna
#=================================================
./configure --enable-kqueue --prefix=/usr/local/squid --enable-storeio=diskd,ufs,aufs,coss --enable-ipf-transparent --enable-dlmalloc --enable-snmp --enable-delay-pools --with-large-files --enable-large-cache-files --enable-removal-policies=heap,lru
70 15:45 apachectl start
71 15:45 ps ax | grep apache
72 15:45 ee /var/log/messages
73 15:46 ps ax | grep 977]
74 15:46 ps ax | grep 977
75 15:50 ee /etc/inetd.conf
76 15:51 /etc/rc.d/inetd restart
77 15:51 apachectl start
78 15:51 ps ax | grep apache
79 15:52 apachectl start
80 15:52 ee /var/log/messages
81 15:52 ps ax | grep 977
82 15:52 ps ax | grep inetd
83 15:53 kill -9 6021
84 15:53 apachectl start
85 15:53 ps ax | grep apache
86 15:53 apachectl start
87 15:54 history
88 15:54 /etc/rc.d/inetd restart
89 15:54 /etc/rc.d/inetd start
90 15:55 df -h
91 15:57 dd if=/dev/ad0s1d bs=1048576 count=2000 of=/cache0//squid-coss/coss1
92 15:57 dd if=/dev/ad0s1d bs=1048576 count=2000 of=/cache0/squid-coss/coss1
93 15:57 dd if=/dev/ad0s1d bs=1048576 count=2000 of=/cache0/squid-coss/coss1
94 15:58 mkdir /cache0/squid-coss
95 15:58 dd if=/dev/ad0s1d bs=1048576 count=2000 of=/cache0/squid-coss/coss1
96 16:00 dd if=/dev/ad0s1d bs=1048576 count=2000 of=/cache0/squid-coss/coss2
97 16:03 dd if=/dev/ad0s1d bs=1048576 count=2000 of=/cache0/squid-coss/coss3
98 16:07 pwd
99 16:07 ee file.txt
100 16:07 history >> jnp.txt
101 7:17 ee /etc/pf.conf
102 7:18 pfctl -f /etc/pf.conf
103 7:18 pfctl -f /etc/pf.conf
104 7:18 pfctl -f /etc/pf.conf
105 7:18 pfctl -f /etc/pf.conf
106 7:18 pfctl -f /etc/pf.conf
107 7:18 pfctl -f /etc/pf.conf
108 7:18 pfctl -f /etc/pf.conf
109 7:18 pfctl -f /etc/pf.conf
110 7:19 ee /var/log/messages
111 7:23 pfctl -f /etc/pf.conf
112 7:23 ee /var/log/messages
113 7:24 ee /usr/local/squid/etc/squid.conf
114 7:27 ee /usr/local/squid/etc/squid.conf
115 7:28 ee /etc/pf.conf
116 7:29 pfctl -F all
117 7:29 pfctl -f /etc/pf.conf
118 7:30 tail -f /usr/local/squid/var/logs/access.log
119 7:30 touch /usr/local/squid/var/logs/access.log
120 7:30 chown -Rv squid:squid /usr/local/squid/var/logs/access.log
121 7:30 chmod 777 /usr/local/squid/var/logs/access.log
122 7:31 touch /usr/local/squid/var/logs/cache.log
123 7:31 chown -Rv squid:squid /usr/local/squid/var/logs/cache.log
124 7:31 touch /usr/local/squid/var/logs/cache.log
125 7:31 tail -f /usr/local/squid/var/logs/access.log
126 7:31 cd /usr/local/squid/var/logs/
127 7:31 ls -al
128 7:32 chmod 755 store.log cache.log
129 7:32 ee cache.log
130 7:33 ee cache.log
131 7:35 ps ax
132 7:35 /usr/local/squid/sbin/squid -z
133 7:35 /usr/local/squid/sbin/squid -D
134 7:37 /usr/local/squid/sbin/squid -z
135 7:37 /usr/local/squid/sbin/squid -D
136 7:37 ee cache.log
137 7:39 cd /usr/local/squid/var/logs
138 7:39 ls -al
139 7:39 ee /var/log/messages
140 7:40 tail -f /usr/local/squid/var/logs/access.log
141 7:42 df -h
142 7:43 /usr/local/squid/sbin/squid -k rotate
143 7:43 ps ax | grep squid
144 7:43 ps ax | grep squid
145 7:43 ps ax | grep squid
146 7:43 ps ax | grep squid
147 7:43 ps ax | grep squid
148 7:43 tail -f /usr/local/squid/var/logs/access.log
149 7:43 ps ax | grep squid
150 7:44 df -h
151 7:45 cd /cache0
152 7:45 ls -al
153 7:45 cd cache-coss/
154 7:45 ls -al
155 7:52 tail -f /var/log/messages
156 8:04 cd /usr/local/squid/
157 8:04 ls -al
158 8:04 cd var/
159 8:04 ls -al
160 8:04 cd logs/
161 8:04 ls -al
162 8:04 cd ..
163 8:04 ls -al
164 8:04 chmod -Rv 777 logs/
165 8:04 cd logs/
166 8:04 ls -al
167 8:04 tail -f /usr/local/squid/var/logs/access.log
168 8:36 history
169 8:38 history > history.txt


at 8:43 AM 1 comments Links to this post
Labels:
Nasrul Kurniawan,

#=======================================================
#named.conf
#=======================================================
// $FreeBSD: src/etc/namedb/named.conf,v 1.26.2.2.2.1 2008/11/25 02:59:29 kensmith Exp $
//
// Refer to the named.conf(5) and named(8) man pages, and the documentation
// in /usr/share/doc/bind9 for more details.
//
// If you are going to set up an authoritative server, make sure you
// understand the hairy details of how DNS works. Even with
// simple mistakes, you can break connectivity for affected parties,
// or cause huge amounts of useless Internet traffic.

options {
// Relative to the chroot directory, if any
directory "/etc/namedb";
pid-file "/var/run/named/pid";
dump-file "/var/dump/named_dump.db";
statistics-file "/var/stats/named.stats";

// If named is being used only as a local resolver, this is a safe default.
// For named to be accessible to the network, comment this option, specify
// the proper IP address, or delete this option.
// listen-on port 53 {
// 192.168.0.1;
// 127.0.0.1;
// };
listen-on { 127.0.0.1; 192.168.0.1; };
// If you have IPv6 enabled on this system, uncomment this option for
// use as a local resolver. To give access to the network, specify
// an IPv6 address, or the keyword "any".
// listen-on-v6 { ::1; };

// These zones are already covered by the empty zones listed below.
// If you remove the related empty zones below, comment these lines out.
disable-empty-zone "255.255.255.255.IN-ADDR.ARPA";
disable-empty-zone "0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA";
disable-empty-zone "1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.IP6.ARPA";

// In addition to the "forwarders" clause, you can force your name
// server to never initiate queries of its own, but always ask its
// forwarders only, by enabling the following line:

forward only;

// If you've got a DNS server around at your upstream provider, enter
// its IP address here, and enable the line below. This will make you
// benefit from its cache, thus reduce overall DNS traffic in the Internet.

forwarders {
114.141.57.2;
};

/*
Modern versions of BIND use a random UDP port for each outgoing
query by default in order to dramatically reduce the possibility
of cache poisoning. All users are strongly encouraged to utilize
this feature, and to configure their firewalls to accommodate it.

AS A LAST RESORT in order to get around a restrictive firewall
policy you can try enabling the option below. Use of this option
will significantly reduce your ability to withstand cache poisoning
attacks, and should be avoided if at all possible.

Replace NNNNN in the example with a number between 49160 and 65530.
*/
// query-source address * port NNNNN;
};

// If you enable a local name server, don't forget to enter 127.0.0.1
// first in your /etc/resolv.conf so this server will be queried.
// Also, make sure to enable it in /etc/rc.conf.

// The traditional root hints mechanism. Use this, OR the slave zones below.
zone "." { type hint; file "named.root"; };

/* Slaving the following zones from the root name servers has some
significant advantages:
1. Faster local resolution for your users
2. No spurious traffic will be sent from your network to the roots
3. Greater resilience to any potential root server failure/DDoS

On the other hand, this method requires more monitoring than the
hints file to be sure that an unexpected failure mode has not
incapacitated your server. Name servers that are serving a lot
of clients will benefit more from this approach than individual
hosts. Use with caution.

To use this mechanism, uncomment the entries below, and comment
the hint zone above.
*/
/*
zone "." {
type slave;
file "slave/root.slave";
masters {
192.5.5.241; // F.ROOT-SERVERS.NET.
};
notify no;
};
zone "arpa" {
type slave;
file "slave/arpa.slave";
masters {
192.5.5.241; // F.ROOT-SERVERS.NET.
};
notify no;
};
zone "in-addr.arpa" {
type slave;
file "slave/in-addr.arpa.slave";
masters {
192.5.5.241; // F.ROOT-SERVERS.NET.
};
notify no;
};
*/

/* Serving the following zones locally will prevent any queries
for these zones leaving your network and going to the root
name servers. This has two significant advantages:
1. Faster local resolution for your users
2. No spurious traffic will be sent from your network to the roots
*/
// RFC 1912
zone "localhost" { type master; file "master/localhost-forward.db"; };
zone "127.in-addr.arpa" { type master; file "master/localhost-reverse.db"; };
zone "255.in-addr.arpa" { type master; file "master/empty.db"; };

// RFC 1912-style zone for IPv6 localhost address
zone "0.ip6.arpa" { type master; file "master/localhost-reverse.db"; };

// "This" Network (RFCs 1912 and 3330)
zone "0.in-addr.arpa" { type master; file "master/empty.db"; };

// Private Use Networks (RFC 1918)
zone "10.in-addr.arpa" { type master; file "master/empty.db"; };
zone "16.172.in-addr.arpa" { type master; file "master/empty.db"; };
zone "17.172.in-addr.arpa" { type master; file "master/empty.db"; };
zone "18.172.in-addr.arpa" { type master; file "master/empty.db"; };
zone "19.172.in-addr.arpa" { type master; file "master/empty.db"; };
zone "20.172.in-addr.arpa" { type master; file "master/empty.db"; };
zone "21.172.in-addr.arpa" { type master; file "master/empty.db"; };
zone "22.172.in-addr.arpa" { type master; file "master/empty.db"; };
zone "23.172.in-addr.arpa" { type master; file "master/empty.db"; };
zone "24.172.in-addr.arpa" { type master; file "master/empty.db"; };
zone "25.172.in-addr.arpa" { type master; file "master/empty.db"; };
zone "26.172.in-addr.arpa" { type master; file "master/empty.db"; };
zone "27.172.in-addr.arpa" { type master; file "master/empty.db"; };
zone "28.172.in-addr.arpa" { type master; file "master/empty.db"; };
zone "29.172.in-addr.arpa" { type master; file "master/empty.db"; };
zone "30.172.in-addr.arpa" { type master; file "master/empty.db"; };
zone "31.172.in-addr.arpa" { type master; file "master/empty.db"; };
zone "168.192.in-addr.arpa" { type master; file "master/empty.db"; };

// Link-local/APIPA (RFCs 3330 and 3927)
zone "254.169.in-addr.arpa" { type master; file "master/empty.db"; };

// TEST-NET for Documentation (RFC 3330)
zone "2.0.192.in-addr.arpa" { type master; file "master/empty.db"; };

// Router Benchmark Testing (RFC 3330)
zone "18.198.in-addr.arpa" { type master; file "master/empty.db"; };
zone "19.198.in-addr.arpa" { type master; file "master/empty.db"; };

// IANA Reserved - Old Class E Space
zone "240.in-addr.arpa" { type master; file "master/empty.db"; };
zone "241.in-addr.arpa" { type master; file "master/empty.db"; };
zone "242.in-addr.arpa" { type master; file "master/empty.db"; };
zone "243.in-addr.arpa" { type master; file "master/empty.db"; };
zone "244.in-addr.arpa" { type master; file "master/empty.db"; };
zone "245.in-addr.arpa" { type master; file "master/empty.db"; };
zone "246.in-addr.arpa" { type master; file "master/empty.db"; };
zone "247.in-addr.arpa" { type master; file "master/empty.db"; };
zone "248.in-addr.arpa" { type master; file "master/empty.db"; };
zone "249.in-addr.arpa" { type master; file "master/empty.db"; };
zone "250.in-addr.arpa" { type master; file "master/empty.db"; };
zone "251.in-addr.arpa" { type master; file "master/empty.db"; };
zone "252.in-addr.arpa" { type master; file "master/empty.db"; };
zone "253.in-addr.arpa" { type master; file "master/empty.db"; };
zone "254.in-addr.arpa" { type master; file "master/empty.db"; };

// IPv6 Unassigned Addresses (RFC 4291)
zone "1.ip6.arpa" { type master; file "master/empty.db"; };
zone "3.ip6.arpa" { type master; file "master/empty.db"; };
zone "4.ip6.arpa" { type master; file "master/empty.db"; };
zone "5.ip6.arpa" { type master; file "master/empty.db"; };
zone "6.ip6.arpa" { type master; file "master/empty.db"; };
zone "7.ip6.arpa" { type master; file "master/empty.db"; };
zone "8.ip6.arpa" { type master; file "master/empty.db"; };
zone "9.ip6.arpa" { type master; file "master/empty.db"; };
zone "a.ip6.arpa" { type master; file "master/empty.db"; };
zone "b.ip6.arpa" { type master; file "master/empty.db"; };
zone "c.ip6.arpa" { type master; file "master/empty.db"; };
zone "d.ip6.arpa" { type master; file "master/empty.db"; };
zone "e.ip6.arpa" { type master; file "master/empty.db"; };
zone "0.f.ip6.arpa" { type master; file "master/empty.db"; };
zone "1.f.ip6.arpa" { type master; file "master/empty.db"; };
zone "2.f.ip6.arpa" { type master; file "master/empty.db"; };
zone "3.f.ip6.arpa" { type master; file "master/empty.db"; };
zone "4.f.ip6.arpa" { type master; file "master/empty.db"; };
zone "5.f.ip6.arpa" { type master; file "master/empty.db"; };
zone "6.f.ip6.arpa" { type master; file "master/empty.db"; };
zone "7.f.ip6.arpa" { type master; file "master/empty.db"; };
zone "8.f.ip6.arpa" { type master; file "master/empty.db"; };
zone "9.f.ip6.arpa" { type master; file "master/empty.db"; };
zone "a.f.ip6.arpa" { type master; file "master/empty.db"; };
zone "b.f.ip6.arpa" { type master; file "master/empty.db"; };
zone "0.e.f.ip6.arpa" { type master; file "master/empty.db"; };
zone "1.e.f.ip6.arpa" { type master; file "master/empty.db"; };
zone "2.e.f.ip6.arpa" { type master; file "master/empty.db"; };
zone "3.e.f.ip6.arpa" { type master; file "master/empty.db"; };
zone "4.e.f.ip6.arpa" { type master; file "master/empty.db"; };
zone "5.e.f.ip6.arpa" { type master; file "master/empty.db"; };
zone "6.e.f.ip6.arpa" { type master; file "master/empty.db"; };
zone "7.e.f.ip6.arpa" { type master; file "master/empty.db"; };

// IPv6 ULA (RFC 4193)
zone "c.f.ip6.arpa" { type master; file "master/empty.db"; };
zone "d.f.ip6.arpa" { type master; file "master/empty.db"; };

// IPv6 Link Local (RFC 4291)
zone "8.e.f.ip6.arpa" { type master; file "master/empty.db"; };
zone "9.e.f.ip6.arpa" { type master; file "master/empty.db"; };
zone "a.e.f.ip6.arpa" { type master; file "master/empty.db"; };
zone "b.e.f.ip6.arpa" { type master; file "master/empty.db"; };

// IPv6 Deprecated Site-Local Addresses (RFC 3879)
zone "c.e.f.ip6.arpa" { type master; file "master/empty.db"; };
zone "d.e.f.ip6.arpa" { type master; file "master/empty.db"; };
zone "e.e.f.ip6.arpa" { type master; file "master/empty.db"; };
zone "f.e.f.ip6.arpa" { type master; file "master/empty.db"; };

// IP6.INT is Deprecated (RFC 4159)
zone "ip6.int" { type master; file "master/empty.db"; };

// NB: Do not use the IP addresses below, they are faked, and only
// serve demonstration/documentation purposes!
//
// Example slave zone config entries. It can be convenient to become
// a slave at least for the zone your own domain is in. Ask
// your network administrator for the IP address of the responsible
// master name server.
//
// Do not forget to include the reverse lookup zone!
// This is named after the first bytes of the IP address, in reverse
// order, with ".IN-ADDR.ARPA" appended, or ".IP6.ARPA" for IPv6.
//
// Before starting to set up a master zone, make sure you fully
// understand how DNS and BIND work. There are sometimes
// non-obvious pitfalls. Setting up a slave zone is usually simpler.
//
// NB: Don't blindly enable the examples below. :-) Use actual names
// and addresses instead.

/* An example dynamic zone
key "exampleorgkey" {
algorithm hmac-md5;
secret "sf87HJqjkqh8ac87a02lla==";
};
zone "example.org" {
type master;
allow-update {
key "exampleorgkey";
};
file "dynamic/example.org";
};
*/

/* Example of a slave reverse zone
zone "1.168.192.in-addr.arpa" {
type slave;
file "slave/1.168.192.in-addr.arpa";
masters {
192.168.1.1;
};
};
*/


at 8:39 AM 0 comments Links to this post
Labels:

squid coss freebsd 7.1 bagian 3

Nasrul Kurniawan,

#=====================================================
#load balancing dua koneksi induk speedy & isp dengan pf
#=====================================================
lan_net = "192.168.0.0/24" // ip lan
int_if = "rl2" //lan
ext_if1 = "rl0" // isp
ext_if2 = "rl1" // modem speedy
ext_gw1 = "xxx.xxx.xxx.xxx" //isp
ext_gw2 = "192.168.111.2" // modem speedy
set loginterface $ext_if1
set loginterface $ext_if2
set optimization aggressive

# scrub all
scrub in all
# nat outgoing connections on each internet interface
#nat on $int_if from {192.168.0.200} to any -> ($ext_if2)
#nat on $ext_if1 proto {tcp,udp,icmp} from $lan_net to any -> $ext_gw1
#nat on $ext_if2 proto tcp from {192.168.0.200} to any -> $ext_if2
#rdr on $int_if proto tcp from any to any port 21 -> 192.168.0.1 port 21
nat on $ext_if1 from $lan_net to any -> ($ext_if1)
nat on $ext_if2 from $lan_net to any -> ($ext_if2)
nat on $ext_if1 from $int_if to any -> ($ext_if1)
nat on $ext_if2 from $int_if to any -> ($ext_if2)
#rdr on $int_if proto tcp from {192.168.0.200,192.168.0.9,192.168.0.10,192.168.0.11} to any port www -> 192.168.0.1 port 3128
#rdr on $int_if proto tcp from {192.168.0.200} to any port www -> 192.168.0.1 port 3128
rdr on $int_if proto tcp from $lan_net to any port www -> 192.168.0.1 port 3128
# pass all outgoing packets on internal interface
pass out on $int_if from any to $lan_net
# pass in quick any packets destined for the gateway itself
pass in quick on $int_if from $lan_net to $int_if
# load balance outgoing tcp traffic from internal network.
pass in on $int_if route-to \
{ ($ext_if1 $ext_gw1), ($ext_if2 $ext_gw2) } round-robin \
proto tcp from $lan_net to any flags S/SA modulate state
#ftp
#nat-anchor "ftp-proxy/*"
#nat on $ext_if1 inet from $int_if -> ($ext_if1)
#rdr-anchor "ftp-proxy/*"
#pass in on $ext_if inet proto tcp to any port 21 \
# flags S/SA keep state
#pass out on $int_if inet proto tcp to any port 21 \
# user proxy flags S/SA keep state
#anchor "ftp-proxy/*"
# load balance outgoing udp and icmp traffic from internal network
#pass in on $int_if route-to { ($ext_if1 $ext_gw1), ($ext_if2 $ext_gw2) } round-robin proto { udp, icmp } from $lan_net to any keep state
# general "pass out" rules for external interfaces
pass out on $ext_if1 proto tcp from any to any flags S/SA modulate state
pass out on $ext_if1 proto { udp, icmp } from any to any keep state
pass out on $ext_if2 proto tcp from any to any flags S/SA modulate state
pass out on $ext_if2 proto { udp, icmp } from any to any keep state

at 8:38 AM 0 comments Links to this post
Labels:

squid coss freebsd 7.1 bagian 2

Nasrul Kurniawan,

#==========================================================
#konfigurasi squid.conf yg aku pakai dan alhmldh berjalan dengan baik langsung aku #documentasikan disini biar laen kali klu perlu tinggal copas
#==========================================================

http_port 3128 transparent
icp_port 3130
snmp_port 3401

acl QUERY urlpath_regex cgi-bin \? \.php$ \.asp$ \.shtml$ \.cfm$ \.cfml$ \.phtml$ \.php3$ \.js \.jsp
acl nocache-domain dstdomain server.nasrulkurniawan.net uns.ac.id siakad.uns.ac.id
always_direct allow QUERY
always_direct allow nocache-domain
no_cache deny QUERY
no_cache deny nocache-domain
cache_mem 128 MB
cache_swap_low 90
cache_swap_high 95
maximum_object_size 128 MB
maximum_object_size_in_memory 32 KB

#tambah tambahan
ipcache_size 4096
ipcache_low 98
ipcache_high 99
fqdncache_size 1024
cache_replacement_policy heap LFUDA
#cache_replacement_policy heap GDSF
memory_replacement_policy heap GDSF
#high_memory_warning 120 MB

acl mp3 urlpath_regex \.mp3$
acl exe urlpath_regex \.exe$
acl zip urlpath_regex \.zip$
acl dat urlpath_regex \.dat$
acl avi urlpath_regex \.avi$
acl 3gp urlpath_regex \.3gp$

#data mp2, exe, zip, dat, avi, 3gp tidak disimpan di cache hardisk
no_cache deny mp3
no_cache deny exe
no_cache deny zip
no_cache deny dat
no_cache deny avi
no_cache deny 3gp

cache_dir coss /cache0/cache-coss/coss1 2000 block-size=512 max-size=131072
#cache_dir coss /cache0/squid-coss/coss2 2000 block-size=512 max-size=131072
#cache_dir coss /cache0/squid-coss/coss3 2000 block-size=512 max-size=131072
#cache_dir coss /cache0/squid-coss/coss4 2000 block-size=512 max-size=131072
cache_dir coss /cache1/cache-coss/coss1 2000 block-size=512 max-size=131072
#cache_dir coss /cache1/squid-coss/coss2 2000 block-size=512 max-size=131072
#cache_dir coss /cache1/squid-coss/coss3 2000 block-size=512 max-size=131072
#cache_dir coss /cache1/squid-coss/coss4 2000 block-size=512 max-size=131072
cache_access_log /usr/local/squid/var/logs/access.log
cache_log /usr/local/squid/var/logs/cache.log
cache_swap_log /usr/local/squid/var/logs/%s

#cache_dir diskd /cache0 8000 16 256 Q1=72 Q2=64
#cache_dir diskd /cache1 8000 16 256 Q1=72 Q2=64
#cache_dir aufs /cache0/aufs 6000 16 128
#cache_dir aufs /cache1/aufs 6000 16 128
#cache_access_log /usr/local/squid/var/logs/access.log
#cache_log /usr/local/squid/var/logs/cache.log
#cache_store_log none

acl all src 0.0.0.0/0.0.0.0
acl lan_bagong src 192.168.0.0/24
acl private src 125.163.210.0/24
acl jnp src 222.124.162.0/24
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl manager proto cache_object

#port yang diijinkan untuk di request
acl SSL_ports port 443 563
acl SSL_ports port 2083 2096
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 563 # https, snews
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 631 # cups
acl Safe_ports port 777 # multiling http
acl Safe_ports port 901 # SWAT
acl purge method PURGE
acl CONNECT method CONNECT
acl FTP proto FTP

http_access allow lan_bagong
http_access allow private
http_access allow jnp
http_access allow localhost
http_access deny all
miss_access allow all
miss_access allow lan_bagong
always_direct allow lan_bagong
always_direct allow FTP

http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports

icp_access allow lan_bagong
icp_access allow private
icp_access allow localhost
icp_access deny all

acl cachemgr proto cache_object
http_access allow cachemgr lan_bagong
http_access allow cachemgr private
http_access allow cachemgr localhost
http_access deny cachemgr all
cachemgr_passwd admin info stats/objects
cachemgr_passwd admin all

cache_effective_user squid
cache_effective_group squid

visible_hostname http://cache.bagong.net
cache_mgr NOC-BagongNET
forwarded_for off

#refresh
refresh_pattern -i \.tar.gz$ 10080 90% 10080 override-expire override-lastmod reload-into-ims
refresh_pattern -i \.mp3$ 10080 90% 10080 override-expire override-lastmod reload-into-ims
refresh_pattern -i \.png$ 10080 90% 10080 override-expire override-lastmod reload-into-ims
refresh_pattern -i \.gif$ 10080 90% 10080 override-expire override-lastmod reload-into-ims
refresh_pattern -i \.jpg$ 10080 90% 10080 override-expire override-lastmod reload-into-ims
refresh_pattern -i \.jpeg$ 10080 90% 10080 override-expire override-lastmod reload-into-ims
refresh_pattern -i \.(mov|avi|qtm|mp?)$ 21600 90% 43200
refresh_pattern -i \.(3gp|wmv|wma|mpg|mpeg|mpga|rm|rv|vgp)$ 21600 90% 43200
#refresh_pattern -i \.(zip|exe|gz|Z|lha||rar|arj)$ 21600 90% 43200
#refresh_pattern -i \.(hqx|pdf|rtf|doc|swf)$ 100000 500% 99000000
#refresh_pattern -i \.(inc|cab|ad|txt|)$ 100000 500% 99000000
refresh_pattern ^http://photos.friendster.com/.* 720 100% 4320
refresh_pattern ^http://images.friendster.com/.* 720 100% 4320
refresh_pattern ^http://mail.yahoo.com/.* 720 100% 4320
refresh_pattern ^http://mail1.plasa.com/.* 720 100% 4320
refresh_pattern ^http://*.yahoo.*/.* 720 100% 4320
refresh_pattern ^http://*.google.*/.* 720 100% 4320
refresh_pattern ^http://*.friendster.*/.* 720 100% 4320
refresh_pattern ^http://*.doubleclick.*/.* 720 100% 4320
refresh_pattern ^http://www.yahoo.com/.* 720 100% 4320
refresh_pattern ^http://*.yimg.*/.* 720 100% 4320
refresh_pattern ^http://*.boleh.*/.* 720 100% 4320
refresh_pattern ^http://*.detik.*/.* 180 100% 4320
refresh_pattern ^http://*.detikinet.*/.* 180 100% 4320
refresh_pattern ^http://*.detikhot.*/.* 180 100% 4320
refresh_pattern ^http://*.detiportal.*/.* 180 100% 4320
refresh_pattern ^http://*.kompas.*/.* 180 100% 4320
refresh_pattern ^http://*.trans7.*/.* 720 100% 4320
refresh_pattern ^http://*.rcti.*/.* 720 100% 4320
refresh_pattern ^http://*.indosiar.*/.* 720 100% 4320
refresh_pattern ^http://*.kapanlagi.*/.* 720 100% 4320
refresh_pattern ^http://*.doubleclick.*/.* 720 100% 4320
refresh_pattern ^http://*.google-analytics.*/.* 720 100% 4320
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern . 0 20% 4320

# Penting untuk meningkatkan refresh Pattern
reload_into_ims on
pipeline_prefetch on
vary_ignore_expire on

quick_abort_min 12 KB
quick_abort_max 12 KB
quick_abort_pct 98
negative_ttl 1 minutes
positive_dns_ttl 60 seconds
negative_dns_ttl 30 seconds
store_avg_object_size 13 KB
store_objects_per_bucket 20

#TIMEOUTS
read_timeout 5 minutes
request_timeout 1 minutes
client_lifetime 360 minutes
half_closed_clients off
shutdown_lifetime 2 seconds

#youtube
#redirect_program /usr/local/squidguard/bin/squidGuard
#url_rewrite_program /usr/local/bin/python
#url_rewrite_children 10
#acl videocache_allow_url url_regex -i \.youtube\.com\/get_video\?
#acl videocache_allow_url url_regex -i \.googlevideo\.com\/videoplayback \.googlevideo\.com\/videoplay \.googlevideo\.com\/get_video\?
#acl videocache_allow_url url_regex -i \.google\.com\/videoplayback \.google\.com\/videoplay \.google\.com\/get_video\?
#acl videocache_allow_url url_regex -i \.google\.[a-z][a-z]\/videoplayback \.google\.[a-z][a-z]\/videoplay \.google\.[a-z][a-z]\/get_video\?
#acl videocache_allow_url url_regex -i(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\/videoplayback\?
#acl videocache_allow_url url_regex -i (25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\/videoplay\?
#acl videocache_allow_url url_regex -i (25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.(25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\/get_video\?
#acl videocache_allow_url url_regex -i proxy[a-z0-9\-][a-z0-9][a-z0-9][a-z0-9]?\.dailymotion\.com\/
#acl videocache_allow_url url_regex -i vid\.akm\.dailymotion\.com\/
#acl videocache_allow_url url_regex -i [a-z0-9][0-9a-z][0-9a-z]?[0-9a-z]?[0-9a-z]?\.xtube\.com\/(.*)flv
#acl videocache_allow_url url_regex -i bitcast\.vimeo\.com\/vimeo\/videos\/
#acl videocache_allow_url url_regex -i va\.wrzuta\.pl\/wa[0-9][0-9][0-9][0-9]?
#acl videocache_allow_url url_regex -i \.files\.youporn\.com\/(.*)\/flv\/
#acl videocache_allow_url url_regex -i \.msn\.com\.edgesuite\.net\/(.*)\.flv
#acl videocache_allow_url url_regex -i media[a-z0-9]?[a-z0-9]?[a-z0-9]?\.tube8\.com\/ mobile[a-z0-9]?[a-z0-9]?[a-z0-9]?\.tube8\.com\/
#acl videocache_allow_url url_regex -i \.mais\.uol\.com\.br\/(.*)\.flv
#acl videocache_allow_url url_regex -i \.video[a-z0-9]?[a-z0-9]?\.blip\.tv\/(.*)\.(flv|avi|mov|mp3|m4v|mp4|wmv|rm|ram)
#acl videocache_allow_url url_regex -i video\.break\.com\/(.*)\.(flv|mp4)
#acl videocache_allow_dom dstdomain .mccont.com dl.redtube.com .cdn.dailymotion.com
#acl videocache_deny_url url_regex -i http:\/\/[a-z][a-z]\.youtube\.com http:\/\/www\.youtube\.com
#url_rewrite_access deny videocache_deny_url
#url_rewrite_access allow videocache_allow_url
#url_rewrite_access allow videocache_allow_dom
#redirector_bypass on

at 8:34 AM 0 comments Links to this post
Labels:

squid coss freebsd 7.1 bagian 1

Nasrul Kurniawan,

#=================================================
#Compile Kernel setelan pass buat proxy ku
#=================================================
# $FreeBSD: src/sys/i386/conf/GENERIC,v 1.474.2.15.2.1 2008/11/25 02:59:29 kensmith Exp $
machine i386
#cpu I486_CPU
#cpu I586_CPU
cpu I686_CPU
ident admin

# To statically compile in device wiring instead of /boot/device.hints
#hints "GENERIC.hints" # Default places to look for devices.

makeoptions DEBUG=-g # Build kernel with gdb(1) debug symbols

options SCHED_ULE # ULE scheduler
options PREEMPTION # Enable kernel thread preemption
options INET # InterNETworking
options INET6 # IPv6 communications protocols
options SCTP # Stream Control Transmission Protocol
options FFS # Berkeley Fast Filesystem
options SOFTUPDATES # Enable FFS soft updates support
options UFS_ACL # Support for access control lists
options UFS_DIRHASH # Improve performance on big directories
options UFS_GJOURNAL # Enable gjournal-based UFS journaling
options MD_ROOT # MD is a potential root device
options NFSCLIENT # Network Filesystem Client
options NFSSERVER # Network Filesystem Server
options NFSLOCKD # Network Lock Manager
options NFS_ROOT # NFS usable as /, requires NFSCLIENT
options MSDOSFS # MSDOS Filesystem
options CD9660 # ISO 9660 Filesystem
options PROCFS # Process filesystem (requires PSEUDOFS)
options PSEUDOFS # Pseudo-filesystem framework
options GEOM_PART_GPT # GUID Partition Tables.
options GEOM_LABEL # Provides labelization
options COMPAT_43TTY # BSD 4.3 TTY compat [KEEP THIS!]
options COMPAT_FREEBSD4 # Compatible with FreeBSD4
options COMPAT_FREEBSD5 # Compatible with FreeBSD5
options COMPAT_FREEBSD6 # Compatible with FreeBSD6
options SCSI_DELAY=5000 # Delay (in ms) before probing SCSI
options KTRACE # ktrace(1) support
options STACK # stack(9) support
options SYSVSHM # SYSV-style shared memory
options SYSVMSG # SYSV-style message queues
options SYSVSEM # SYSV-style semaphores
options _KPOSIX_PRIORITY_SCHEDULING # POSIX P1003_1B real-time extensions
options KBD_INSTALL_CDEV # install a CDEV entry in /dev
options ADAPTIVE_GIANT # Giant mutex is adaptive.
options STOP_NMI # Stop CPUS using NMI instead of IPI
options AUDIT # Security event auditing
#options KDTRACE_HOOKS # Kernel DTrace hooks

# To make an SMP kernel, the next two lines are needed
options SMP # Symmetric MultiProcessor Kernel
device apic # I/O APIC

# CPU frequency control
device cpufreq

# Bus support.
device eisa
device pci

# Floppy drives
device fdc

# ATA and ATAPI devices
device ata
device atadisk # ATA disk drives
device ataraid # ATA RAID drives
device atapicd # ATAPI CDROM drives
device atapifd # ATAPI floppy drives
device atapist # ATAPI tape drives
options ATA_STATIC_ID # Static device numbering

# SCSI Controllers
device ahb # EISA AHA1742 family
device ahc # AHA2940 and onboard AIC7xxx devices
options AHC_REG_PRETTY_PRINT # Print register bitfields in debug
# output. Adds ~128k to driver.
device ahd # AHA39320/29320 and onboard AIC79xx devices
options AHD_REG_PRETTY_PRINT # Print register bitfields in debug
# output. Adds ~215k to driver.
device amd # AMD 53C974 (Tekram DC-390(T))
device hptiop # Highpoint RocketRaid 3xxx series
device isp # Qlogic family
#device ispfw # Firmware for QLogic HBAs- normally a module
device mpt # LSI-Logic MPT-Fusion
#device ncr # NCR/Symbios Logic
device sym # NCR/Symbios Logic (newer chipsets + those of `ncr')
device trm # Tekram DC395U/UW/F DC315U adapters

device adv # Advansys SCSI adapters
device adw # Advansys wide SCSI adapters
device aha # Adaptec 154x SCSI adapters
device aic # Adaptec 15[012]x SCSI adapters, AIC-6[23]60.
device bt # Buslogic/Mylex MultiMaster SCSI adapters

device ncv # NCR 53C500
device nsp # Workbit Ninja SCSI-3
device stg # TMC 18C30/18C50

# SCSI peripherals
device scbus # SCSI bus (required for SCSI)
device ch # SCSI media changers
device da # Direct Access (disks)
device sa # Sequential Access (tape etc)
device cd # CD
device pass # Passthrough device (direct SCSI access)
device ses # SCSI Environmental Services (and SAF-TE)

# RAID controllers interfaced to the SCSI subsystem
#device amr # AMI MegaRAID
#device arcmsr # Areca SATA II RAID
#device asr # DPT SmartRAID V, VI and Adaptec SCSI RAID
#device ciss # Compaq Smart RAID 5*
#device dpt # DPT Smartcache III, IV - See NOTES for options
#device hptmv # Highpoint RocketRAID 182x
#device hptrr # Highpoint RocketRAID 17xx, 22xx, 23xx, 25xx
#device iir # Intel Integrated RAID
#device ips # IBM (Adaptec) ServeRAID
#device mly # Mylex AcceleRAID/eXtremeRAID
#device twa # 3ware 9000 series PATA/SATA RAID

# RAID controllers
#device aac # Adaptec FSA RAID
#device aacp # SCSI passthrough for aac (requires CAM)
#device ida # Compaq Smart RAID
#device mfi # LSI MegaRAID SAS
#device mlx # Mylex DAC960 family
#device pst # Promise Supertrak SX6000
#device twe # 3ware ATA RAID

# atkbdc0 controls both the keyboard and the PS/2 mouse
device atkbdc # AT keyboard controller
device atkbd # AT keyboard
device psm # PS/2 mouse

device kbdmux # keyboard multiplexer

device vga # VGA video card driver

device splash # Splash screen and screen saver support

# syscons is the default console driver, resembling an SCO console
device sc

device agp # support several AGP chipsets

# Power management support (see NOTES for more options)
#device apm
# Add suspend/resume support for the i8254.
device pmtimer

# PCCARD (PCMCIA) support
# PCMCIA and cardbus bridge support
#device cbb # cardbus (yenta) bridge
#device pccard # PC Card (16-bit) bus
#device cardbus # CardBus (32-bit) bus

# Serial (COM) ports
device sio # 8250, 16[45]50 based serial ports
device uart # Generic UART driver

# Parallel port
#device ppc
#device ppbus # Parallel port bus (required)
#device lpt # Printer
#device plip # TCP/IP over parallel
#device ppi # Parallel port interface device
#device vpo # Requires scbus and da

# If you've got a "dumb" serial or parallel PCI card that is
# supported by the puc(4) glue driver, uncomment the following
# line to enable it (connects to sio, uart and/or ppc drivers):
#device puc

# PCI Ethernet NICs.
device de # DEC/Intel DC21x4x (``Tulip'')
device em # Intel PRO/1000 Gigabit Ethernet Family
device igb # Intel PRO/1000 PCIE Server Gigabit Family
device ixgb # Intel PRO/10GbE Ethernet Card
device le # AMD Am7900 LANCE and Am79C9xx PCnet
device txp # 3Com 3cR990 (``Typhoon'')
device vx # 3Com 3c590, 3c595 (``Vortex'')

# PCI Ethernet NICs that use the common MII bus controller code.
# NOTE: Be sure to keep the 'device miibus' line in order to use these NICs!
device miibus # MII bus support
device age # Attansic/Atheros L1 Gigabit Ethernet
#device ale # Atheros AR8121/AR8113/AR8114 Ethernet
device bce # Broadcom BCM5706/BCM5708 Gigabit Ethernet
device bfe # Broadcom BCM440x 10/100 Ethernet
device bge # Broadcom BCM570xx Gigabit Ethernet
device dc # DEC/Intel 21143 and various workalikes
device et # Agere ET1310 10/100/Gigabit Ethernet
device fxp # Intel EtherExpress PRO/100B (82557, 82558)
device jme # JMicron JMC250 Gigabit/JMC260 Fast Ethernet
device lge # Level 1 LXT1001 gigabit Ethernet
device msk # Marvell/SysKonnect Yukon II Gigabit Ethernet
device nfe # nVidia nForce MCP on-board Ethernet
device nge # NatSemi DP83820 gigabit Ethernet
#device nve # nVidia nForce MCP on-board Ethernet Networking
device pcn # AMD Am79C97x PCI 10/100 (precedence over 'le')
device re # RealTek 8139C+/8169/8169S/8110S
device rl # RealTek 8129/8139
device sf # Adaptec AIC-6915 (``Starfire'')
device sis # Silicon Integrated Systems SiS 900/SiS 7016
device sk # SysKonnect SK-984x & SK-982x gigabit Ethernet
device ste # Sundance ST201 (D-Link DFE-550TX)
device stge # Sundance/Tamarack TC9021 gigabit Ethernet
device ti # Alteon Networks Tigon I/II gigabit Ethernet
device tl # Texas Instruments ThunderLAN
device tx # SMC EtherPower II (83c170 ``EPIC'')
device vge # VIA VT612x gigabit Ethernet
device vr # VIA Rhine, Rhine II
device wb # Winbond W89C840F
device xl # 3Com 3c90x (``Boomerang'', ``Cyclone'')

# ISA Ethernet NICs. pccard NICs included.
device cs # Crystal Semiconductor CS89x0 NIC
# 'device ed' requires 'device miibus'
device ed # NE[12]000, SMC Ultra, 3c503, DS8390 cards
device ex # Intel EtherExpress Pro/10 and Pro/10+
device ep # Etherlink III based cards
device fe # Fujitsu MB8696x based cards
device ie # EtherExpress 8/16, 3C507, StarLAN 10 etc.
device sn # SMC's 9000 series of Ethernet chips
device xe # Xircom pccard Ethernet

# Wireless NIC cards
#device wlan # 802.11 support
#device wlan_wep # 802.11 WEP support
#device wlan_ccmp # 802.11 CCMP support
#device wlan_tkip # 802.11 TKIP support
#device wlan_amrr # AMRR transmit rate control algorithm
#device wlan_scan_ap # 802.11 AP mode scanning
#device wlan_scan_sta # 802.11 STA mode scanning
#device an # Aironet 4500/4800 802.11 wireless NICs.
#device ath # Atheros pci/cardbus NIC's
#device ath_hal # Atheros HAL (Hardware Access Layer)
#device ath_rate_sample # SampleRate tx rate control for ath
#device awi # BayStack 660 and others
#device ral # Ralink Technology RT2500 wireless NICs.
#device wi # WaveLAN/Intersil/Symbol 802.11 wireless NICs.
#device wl # Older non 802.11 Wavelan wireless NIC.

# Pseudo devices.
device loop # Network loopback
device random # Entropy device
device ether # Ethernet support
device sl # Kernel SLIP
device ppp # Kernel PPP
device tun # Packet tunnel.
device pty # Pseudo-ttys (telnet etc)
device md # Memory "disks"
device gif # IPv6 and IPv4 tunneling
device faith # IPv6-to-IPv4 relaying (translation)
device firmware # firmware assist module

# The `bpf' device enables the Berkeley Packet Filter.
# Be aware of the administrative consequences of enabling this!
# Note that 'bpf' is required for DHCP.
device bpf # Berkeley packet filter

# USB support
#device uhci # UHCI PCI->USB interface
#device ohci # OHCI PCI->USB interface
#device ehci # EHCI PCI->USB interface (USB 2.0)
#device usb # USB Bus (required)
#device udbp # USB Double Bulk Pipe devices
#device ugen # Generic
#device uhid # "Human Interface Devices"
#device ukbd # Keyboard
#device ulpt # Printer
#device umass # Disks/Mass storage - Requires scbus and da
#device ums # Mouse
#device ural # Ralink Technology RT2500USB wireless NICs
#device rum # Ralink Technology RT2501USB wireless NICs
#device urio # Diamond Rio 500 MP3 player
#device uscanner # Scanners
# USB Serial devices
#device ucom # Generic com ttys
#device uark # Technologies ARK3116 based serial adapters
#device ubsa # Belkin F5U103 and compatible serial adapters
#device ubser # BWCT console serial adapters
#device uftdi # For FTDI usb serial adapters
#device uipaq # Some WinCE based devices
#device uplcom # Prolific PL-2303 serial adapters
#device uslcom # SI Labs CP2101/CP2102 serial adapters
#device uvisor # Visor and Palm devices
#device uvscom # USB serial support for DDI pocket's PHS
# USB Ethernet, requires miibus
#device aue # ADMtek USB Ethernet
#device axe # ASIX Electronics USB Ethernet
#device cdce # Generic USB over Ethernet
#device cue # CATC USB Ethernet
#device kue # Kawasaki LSI USB Ethernet
#device rue # RealTek RTL8150 USB Ethernet

# FireWire support
#device firewire # FireWire bus code
#device sbp # SCSI over FireWire (Requires scbus and da)
#device fwe # Ethernet over FireWire (non-standard!)
#device fwip # IP over FireWire (RFC 2734,3146)
#device dcons # Dumb console driver
#device dcons_crom # Configuration ROM for dcons

#pf
device pf
device pflog
device pfsync

#ipf direktory firewall /etc/sysconfig
options IPFIREWALL
options IPFIREWALL_VERBOSE
options IPFIREWALL_VERBOSE_LIMIT=10
options IPFIREWALL_DEFAULT_TO_ACCEPT

#untuk optimasi squid untuk dukungan diskd
#options MSGMNB=32768
#options MSGMNI=164
#options MSGSEG=8196
#options MSGSSZ=512
#options MSGTQL=2048

#optimasi coss
options VFS_AIO
options MSGMNB=8192
options MSGMNI=40
options MSGSEG=512
options MSGSSZ=64
options MSGTQL=2048
options SHMSEG=16
options SHMMNI=32
options SHMMAX=2097152
options SHMALL=4096

#Untuk support altq cbq atau bandwidth shaping
options ALTQ
options ALTQ_CBQ
options ALTQ_RED
options ALTQ_RIO
options ALTQ_HFSC
options ALTQ_PRIQ
options ALTQ_NOPCC


at 8:24 AM 0 comments Links to this post
Labels:

Talk Show "Cyber Crime or Cyber Community" di SGM

Nasrul Kurniawan, 12.8.09

4 hari setelah acara dalam Expo d3 ilkom uns (Minggu 9/08/2009 pukul 13.00)saya di undang untuk hadir dalam acara talkshow bertajuk "cyber crime or cyber commuity" mewakili yogyafree regional solo bersama komunitas IT di kota solo laenya.Hadir pula :

  1. Bengawan.org : Pak Benyamin
  2. KPLI Solo : Mas Yanun
  3. Yogyafree Regional Solo : Nasrul Kurniawan
ada satu lagi yg ikut tampil di depan acara yaitu mas hendri , sbg moderator acara.sebelumnya mas hendri hadir di acara expo d3 ilkom beberapa hari sebelum acara ini.sbg pemateri seminar linux (KPLI Solo).

sedikit berbagi di acara tersebut saya sedikit berbagi pengalaman hacking (walaupun saya jg msh newbie).banyak diskusi di talkhow bertajuk "Cyber crime or Cyber community".di awal acara dari moderator d3 saya d sodorkan beberapa pertanyaan untuk di jelaskan di dalam laptop kecilmungil.entah aku sedikit lupa karena banyak sekali pertanyaan yg harus saya jawab sbg penghatar acara.sebelum masuk ke yg laen laen.di antaranya

  1. apa itu cryber crime
  2. tujuan hacking
  3. apa yg di dapat dari hacking
  4. mengapa org suka hacking
  5. tools apa saja yg di pakai dalam hacking
  6. ..... dst sampai sebelas pertanyaan,karena aku cuman ingat banyaknya no pertanyaan yg aku jawab langsung untuk pemanasan acara.
kemudian balabalab selesai aku ngomong.. di lanjut ke yg temen temen yg laen.
di akhir acara saya sedikit mendemokan langkah langkah merubah tampilan situs milik org laen(deface).mulai dari cara mencari bugs,menggunakan bugs,mencari target web untuk di deface dan merubah tampilan halaman depannya.

berita mengenai acara ini bisa di baca di blog sahabat saya (hadir pula dalam ngisi acara tersebut) di url berikut ini http://hendri.staff.uns.ac.id/2009/08/seminar-cyber-community/

at 12:40 PM 2 comments Links to this post
Labels:

PAGELARAN AKBAR "ROAD to SRAGEN CYBER CITY" 12-15 AGS 2009

Nasrul Kurniawan, 2.8.09

Alhamdulillah...
Setelah sekian lama Fortimas berusaha berjuang untuk terus memberikan kontribusi pada masyarakat Sragen, setelah beberapa kali berupaya merencanakan menggelar event global untuk kepentingan masyarakat Sragen tertunda karena berbagai sebab. Akhirnya Fortimas diberikan kesempatan untuk mewujudkannya.


Dalam rangka memeriahkan Dirgahayu Republik Indonesia yang ke 64, Fortimas bekerja sama dengan TELKOM SPEEDY akan menggelar pagelaran akbar Multi Event yang akan diselenggarakan pada tanggal 12 - 15 Agustus 2009, bertempat di Plasa TELKOM Sragen.

Tujuan dari acara ini adalah sebagai ajang pengenalan dan pembelajaran masyarakat tentang internet beserta seluruh aplikasinya, termasuk basic trouble shooting, security dari mulai newbie sampai expert yang akan dibagi dalam berbagai sesi, antara lain :

- panduan internet dasar
- pengenalan internet sehat untuk rakyat
- basic trouble shooting internet connection + how to setting modem speedy
- internet security
- panduan dasar Blogging dan pencanangan "Sragen ngeBLOG"
- Training Internet bersertifikat (Mendapatkan sertifikat gratis dari TELKOM)

Hanya itu? TIDAK!
Masih ada sesi-sesi lainnya :

- Pengenalan Open source dan legalitas software
- Pengenalan dan demo "komunikasi LIVE dengan internet menggunakan media Audio Visual (Voice & Camera)"
- Sharing Experience "Speedy Sragen FaceBook Community"
- Seminar "Smart & Healthy Internet",
- Pencanangan Sragen Cyber City dan Speedy Sragen FaceBook Community

Sudah? Eittss.. tunggu dulu.

Buat kamu para maniak Gamers....!!
Ikuti kompetisi Game online yang akan digelar dari hari pertama sampai hari terakhir pagelaran ini digelar, dan buktikan kalo kamu emang pantas menyandang predikat Gamers Sejati..!
(akan disediakan sejumlah PC untuk kompetisi Game ini, tapi kamu juga bisa membawa laptop sendiri. Koneksi internet disediakan gratis.)

Hemm.. masih belum cukup?

Buat kamu yang punya Grup Band Indie, ini giliran kamu& grup band kamu unjuk kebolehan...!!!

Event ini juga akan bertambah lengkap dengan adanya PARADE BAND INDIE Sragen, yang terkemas dalam Parade Band "SpeedyTrek". Dimana pemenang nantinya akan dibantu untuk promo lewat komunitas "SpeedyTrek" tingkat nasional.

1 lagi.. PAMERAN KOMPUTER !!!
Buat kamu yang lagi pengen belanja komputer, laptop, atau hardware dan accesories lainnya, ini kesempatan yang baik bagi kamu untuk berbelanja! Karena event ini akan semakin lengkap dengan kehadiran stan2 pameran komputer, laptop dan accesoriesnya.

Nggak punya duit?? Jangan khawatirr... Akan ada support dari pihak Bank, yang siap untuk membantu membelikan kamu perangkat komputer / laptop dengan sistem nyicil!


N.B : TELKOM SPEEDY juga akan menyediakan 10 Titik Hotspot di area Pagelaran ini, selama event berlangsung. Buat kamu yang pengen nongkrong ngumpul sama temen2 sambil bawa laptop sendiri, jangan khawatir bakal kesulitan akses internet atau kehabisan jatah internet..!


Hehehe.. gimana? Masih gak tertarik buat datang pada tanggal 12 s/d 15 Agustus nanti di Plasa TELKOM Sragen? :sip:
Pokoknya nyesel deh kalo kamu gak datang

info from http://www.fortimas.or.id

at 5:46 PM 0 comments Links to this post
Labels:
Subscribe to: Posts (Atom)

Komentar Terbaru

Recent Post Advanced

Posting Terbaru