INFO MEDIA PERDANA

ASHAMPOO ANTIVIRUS V. 1.50 2007

2007-10-15T08:25:00.000-07:00

Complete protection without the slowdown!

There are plenty of antivirus programs but some can put a heavy load on your system, eating up the processor power you need for your applications. Many people even turn their virus protection off when they are working to speed up their machines, leaving themselves wide open to attack. To make things worse, these complex antivirus programs are often equally complicated to use. At Ashampoo we believe tools are there to work for you, not to take over your computer. Ashampoo AntiVirus gives you comprehensive protection against viruses, worms, Trojans and dialers, but it’s so efficient you won’t even notice it’s there. And it’s so easy to use that it won’t waste any of your valuable time. Just set it and forget it and get on with more important things.

Set it and forget it – it’s all automatic
Once you have installed Ashampoo AntiVirus protection is automatic. It checks all new files and activity on your computer for both known threats and suspicious behavior and stops attacks before they can do any damage. Malicious hackers are creating new threats every day and an antivirus program is only as good as its updates. Ashampoo AntiVirus recognizes over 700,000 different threats. It comes with a year of free updates and the virus signatures are updated several times a day with information on the latest threats. Just switch on automatic protection and update checking and let the program take care of everything else for you.

Comprehensive antivirus technology
You don’t need to know everything that Ashampoo AntiVirus does to protect you but it may interest you: It doesn’t just scan email attachments and new files for threats. It also scans your computer’s memory and all critical system areas. If you want you can also define your own customized scans to perform systematic checks of all or part of your system, including removable media like CDs and DVDs and even external and portable devices. A special intelligent system known as heuristics analysis is used to identify as-yet unknown threats on the basis of suspicious behavior and stop them before they can do any damage. When infections are found you can choose to clean them immediately or you can put them in quarantine. This is a special protected area where the infected files cannot do any damage but they can be recovered if necessary – for example if you discover that the threat identified was harmless. All the operations performed by the program are recorded in detail in log files. You can view the contents of the logs at any time. A context menu item is added to Windows® Explorer that enables you to scan files directly without starting Ashampoo AntiVirus.

Features at a glance

* Comprehensive protection: Protects against over 470,000 viruses, worms, Trojans and dialers. Scans all critical system areas, memory, emails and files.
* Simple to use: Very intuitive user interface, no previous knowledge required. Configuration with slider controls that automatically display the settings.
* Low system load: You won’t notice it’s there so you’ll never feel tempted to turn your protection off.
* Daily updates: The virus signatures are updated several times a day and the program checks for updates automatically – every hour if you want. A high-speed server prevents update delays.
* Multiple scan modes: Automatic protection while you are working plus manual scans and scheduled scans performed automatically.
* Quarantine: Move infected or suspicious files to a locked quarantine area where they can’t do any damage.
* Windows® Explorer integration: Adds an option with which you can scan files for viruses directly in Windows® Explorer.

Technology highlights for the experts:

* Heuristic analysis: Advanced new algorithms for identifying and blocking unknown threats on the basis of suspicious behavior.
* User-defined scanning: Experienced users can define and schedule up to eight different automatic scans to be performed regularly or at specific times.
* Complete protection: Scans memory, critical system areas, hard drives, folders, archives, removable media and portable and external devices.
* XP Security Center integration: The program is fully compatible with Windows® XP Security Center (Windows® will automatically recognize that you have valid and up-to-date virus protection).
* Logging: Comprehensive logs are maintained of all program activities and can be viewed directly within the program at any time.
* Minimum load background scanning: The background scanning module is a completely new development that places a minimum load on your system resources.

Download:

http://rapidshare.com/files/61132120/Ashampoo_AV_1.50.rar

NOD32 ANTIVIRUS

2007-10-15T08:03:00.000-07:00

NOD32 Standard Edition offers well balanced protection against threats attacking your personal computer. Viruses, worms, trojans and other harmful programs will be kept a safe distance from your valuable data. Advanced methods of detection will even provide protection against attacks from as yet unnamed worms and viruses.

ThreatSense® Technology

The world's most advanced heuristic analysis can stop most of the latest, even unknown, viruses and worms. While the average user is waiting defenseless for a response from their antivirus company, this unique technology will protect you and so the risk of becoming a victim of the latest epidemic is reduced to a minimum.

download:

http://rapidshare.com/files/60739372/N32.rar

AVAST ANTIVIRUS V 4.7.892

2007-10-15T08:01:00.000-07:00

avast! 4 Home Edition is a full-featured antivirus package designed exclusively for home users and non-commercial use. Both of these conditions should be met! Our company offers the Home Edition free of charge, since, in our opinion, it is possible to avoid global virus spreading by efficient prevention; however, many users are not able to or do not want to pay for antivirus software. This page will show you the most important features of this program..

Download:

http://download509.avast.com/iavs4pro/setupeng.exe

Addon / Info

http://www.midload.com/file/5272/avast--Antivirus-4-7-892-serial-PiONEER.zip.html

SYMBIAN ANTIVIRUS 2007 AIO

2007-10-15T07:56:00.000-07:00

ncludes:
F-Secure Mobile Anti-Virus
Kaspersky Anti.Virus.Mobile.v2.0.32b
McAfee VirusScan.Mobile.v1.11
Norton Anti-Virus v1.2.2
Simworks_AntiVirus_v1.2.1
Symantec Mobile Security
SymMS_S60_70s
DOWNLOAD LINK:

http://rapidshare.com/files/51020799/Symbian_AntiViruses.2007.rar

PASSWORD =

xcv_infoesia-in-blogspot

Symantec Antivirus Coorporate Edition 10.1.6.600

2007-10-15T07:53:00.000-07:00

Symantec AntiVirus Corporate Edition 10.1.6.6000 Client for Windows 32/64-bit

1epds2.jpg
Symantec AntiVirus Corporate Edition 10.1 combines industry-leading, real-time malware protection for enterprise workstations and network servers with graphical Web-based reporting and centralized management and administration capabilities. The solution automatically detects and repairs the effects of spyware, adware, viruses, and other malicious intrusions to enable enterprise-wide system uptime.

Symantec System Centerâ�¢ enables centralized configuration, deployment, policy management, alerting and reporting, and allows administrators to audit the network to determine which nodes are vulnerable to virus attacks. Administrators can manage client and server groups logically, and can create, deploy, and lock down security policies and settings to keep systems up-to-date and properly configured.

Key Benefits :
- Ensures that servers and desktops stay updated and properly configured, saving time and cost of traveling from machine to machine.
- Detects and prevents spyware from spreading throughout the company infrastructure.
- Guards product from unauthorized access and attacks through integrated tamper protection.

Integrated response content from the leader in information security helps organizations maximize uptime, reduce cost of ownership, and ensure the integrity of their data. Real-time protection reduces the risk of spyware and adware reaching the system, while automatic removal enables easy disposal of security risks. Side-effect repair automatically cleans up registry entries, files, and load points after hard-to-find spyware infections. Administrators have the flexibility to set their own security spyware and adware policies on an application-by-application basis, and gain maximum control over protection settings via the existing Symantec AntiVirus Corporate Edition management interface. Enhanced tamper protection guards all processes and registry entries from unauthorized access and attacks. Potential virus threats are automatically submitted for analysis to Symantec Security Response, which provides repair and response content. A forensic tracing feature helps administrators determine the source of blended threats that spread through open file shares.

Advanced behavior blocking prevents client systems from being used for malicious outbound activities, such as sending worms via email. LiveUpdate technology provides a s ingle update to protect the enterprise from viruses, malware, and spyware. Client compliancy technology allows the administrator to ensure that mobile and remote systems connecting to corporate resources via VPN are compliant with security policies.

Key Features :
- Advanced, enterprise-wide virus protection and monitoring from a single management console.
- Real-time scanning capabilities automatically detects and removes spyware that attempts to run or install on a machine.
- Integrated Web-based graphical reporting and centralized management from one single console.
- Symantec tamper protection guards against unauthorized antivirus access and attacks, protecting users from viruses that attempt to disable security measures.

Symantec AntiVirus Corporate Edition 10.1 combines industry-leading, real-time malware protection for enterprise and network servers with graphical Web-based reporting and centralized management and administration capabilities. The solution automatically detects and repairs the effects of spyware, , viruses, and other malicious intrusions to enable enterprise-wide system uptime. System Centerâ�¢ enables centralized configuration, deployment, policy management, alerting and reporting, and allows administrators to audit the network to determine which nodes are vulnerable to virus attacks. Administrators can manage client and server groups logically, and can create, deploy, and lock down security policies and settings to keep systems up-to-date and properly configured.- Ensures that servers and desktops stay updated and properly configured, saving time and cost of traveling from machine to machine.- Detects and prevents spyware from spreading throughout the company infrastructure.- Guards product from unauthorized access and attacks through integrated tamper protection.Integrated response content from the leader in helps organizations maximize uptime, reduce cost of ownership, and ensure the integrity of their data. Real-time protection reduces the risk of reaching the system, while automatic removal enables easy disposal of . Side-effect repair automatically cleans up registry entries, files, and load points after hard-to- infections. Administrators have the flexibility to set their own spyware and adware policies on an application-by-application basis, and gain maximum control over protection settings via the existing Symantec AntiVirus Corporate Edition management interface. Enhanced tamper protection guards all processes and registry entries from unauthorized access and attacks. Potential virus threats are automatically submitted for analysis to Symantec Security Response, which provides repair and response content. A forensic tracing feature helps administrators determine the source of blended threats that spread through open file shares.Advanced behavior blocking prevents client systems from being used for malicious outbound activities, such as sending worms via email. LiveUpdate technology provides a s ingle update to protect the enterprise from viruses, malware, and spyware. Client compliancy technology allows the administrator to ensure that mobile and remote systems connecting to corporate resources via VPN are compliant with security policies.- Advanced, enterprise-wide virus protection and monitoring from a single management console.- Real-time scanning capabilities automatically detects and removes spyware that attempts to run or install on a machine.- Integrated Web-based graphical reporting and centralized management from one single console.- Symantec tamper protection guards against unauthorized antivirus access and attacks, protecting users from viruses that attempt to disable security measures.

32 Bit

http://rapidshare.com/files/62029564/Symantec_AntiVirus_Corporate_Edition_32bit.rar

64 Bit

http://rapidshare.com/files/62029774/Symantec.AntiVirus.Corporate.v10.1.6.6000.Client.x64.rar

pass = xcv_infoesia-in-blogspot

Panda Antivirus Plus Firewall 2007 v 6.00.02 (Patch Inc)

2007-10-15T07:50:00.001-07:00

Maximum protection against viruses, spyware and hackers!

The new Panda Antivirus + Firewall 2007 is much more than an antivirus. This solution will turn your PC into a fortress against hacker attacks and keep you safe from all types of viruses, spyware and online fraud. And now, for each Panda Antivirus + Firewall 2007 product purchase, you will obtain protection for up to 3 PC’s!
The new TruPrevent™ Technologies, developed by Panda Software, rapidly block attacks caused by unknown viruses and intruders, even before your antivirus has been updated to combat them. It also provides additional protection against network viruses, which spread rapidly via the Internet without needing to hide in e-mail messages or attached files.

Protects Against
---------------------
- Protects against all types of viruses
- Blocks and eliminates spyware
- Keeps hackers out
- TruPrevent™ Technologies: Double protection

Panda Antivirus Plus Firewall 2007 includes
-----------------------------------------------------
- Panda Antivirus
- Panda AntiSpyware
- Panda Firewall
- Panda TruPrevent

Download
------------

http://www.getupload.com/file/3013/PAV.rar.html

AVG ANtivirus Profesional v7.5.472a1024 - MUI

2007-10-15T07:13:00.000-07:00

AVG Anti-Virus has been protecting computers around the world for more than 10 years! AVG for workstations provide comprehensive antivirus protection for personal computers. The unique combination of detection methods (heueristic analysis, generic detection, scanning and integrity checking) ensures that your computer receives the maximum protection possible on multiple levels (Resident Shield, Email Scanner plug-ins, Personal Email Scanner, On-Demand and other tests, etc.). It is available as AVG Professional Single Edition for single workstation protection and AVG SoHo Edition (Small office - Home office) for home or small offices.

Features:
* Easy to use protection – install and forget
* New program versions and updates, for free, throughout the license duration
* Quality proven by all major antivirus certifications (VB100%, ICSA, West Coast Labs Checkmark)
* 24/7 technical support provided at no extra cost
* Improved virus detection based on better heuristics and NTFS data streams scanning
* Smaller installation and update files
* Improved user interface

Highlights include:
- Automatic update functionality
- The AVG Resident Shield, which provides real-time protection as files are opened and programs are run
- The AVG E-mail Scanner, which protects your e-mail
- The AVG On-Demand Scanner, which allows the user to perform scheduled and manual tests
- The AVG heueristic analysing monitor
- Free Virus Database Updates for the lifetime of the product
- AVG Virus Vault for safe handling of infected files
- Great customer satisfaction!

OS: Windows 98/ME/NT/2000/XP/XP Pro x64/Vista/Vista x64

Size: 29.0MB

Homepage:

http://www.grisoft.com

down.png

http://download.grisoft.cz/softw/70/filedir/inst/avg75avwt_472a1024.exe

Registration:

http://rapidshare.com/files/12282846/AVG-KEGE.rar.html

Serial

70-THXMV1-PU-C21-SFD8A-AZA-KI70
70-TVTMH4-PR-C21-SXBG9-WMM-9JTJ
70-THXMV1-PI-C21-SJNT7-3FQ-IFGS
70-THXMV1-PQ-C41-S79JQ-3F0-6KZ3
70-THXMV1-P2-C41-S5GMA-UMF-ESX7
70-THXMV1-P8-C41-S2ISU-PI4-4GNZ
70-THXMV1-P2-C41-SFCTJ-XVY-H3D4
70-THXMV1-P1-C41-S79HJ-2X2-F7GS
70-TVTMH4-PR-C21-SCWYL-AJY-76M
70-TVTMH4-PR-C21-S6CFV-APY-6BJ6
70-TVTMH4-PR-C21-SHRWA-K8Z-9DJW

Kapersky Anti - Virus 2007 + Up-To-Date Keys

2007-10-15T06:50:00.000-07:00

Kaspersky® Anti-Virus 7.0 provides you with traditional anti-virus protection based on the latest protection technologies. You can work, communicate, surf the internet and play online games on your computer safely and easily.
Product Highlights

* Three protection technologies against new and unknown threats: 1) Hourly automated database updates, 2) Preliminary behavior analysis, 3) On-going behavior analysis. New!
* Protection from viruses, Trojans and worms
* Protection from spyware and adware
* Real-time scanning for email, Internet traffic and files
* Protection from viruses when using ICQ and other IM clients
* Protection from all types of keyloggers. Improved!
* Detection of all types of rootkits. Improved!
* Automatic database updates

Additional Features

* Rollback of unwanted changes on your computer
* Self-defense of the antivirus program from being disabled or stopped
* Tools for creating a Rescue Disk
* Free technical support

Download Kaspersky Anti-Virus 2007 + Up-To-Date Keys:

http://rapidshare.com/files/60994351/kasav.keys.rar

Download Keys only:

http://w15.easy-share.com/7593021.html

BITDEFENDER TOTAL SECURITY 2008 32-bit

2007-10-05T17:56:00.000-07:00

BitDefender Total Security 2008 provides the ultimate proactive protection for your PCs. It combines state of the art protection against viruses, spyware, hackers, spam and other Internet security threats. Moreover, its system maintenance and PC backup tools keep your PC running fast and protected from data loss.

Top features
State of the art proactive protection against new viruses
Protects against phishing attacks by filtering all accessed web pages for fraud attempts
Helps prevent unauthorized access to your Wi-Fi network
New adaptive engines detect & block spam faster and more reliably than ever
Parental control blocks access to inappropriate websites and e-mail
Automated incremental backup backup copies your data to local or removable drives for safekeeping
Tune-up module improves PC performance

Code:
http://download.bitdefender.com/windows/desktop/total_security/final/en/bitdefender_totalsecurity_2008_32b.exe

Keygen:
Code:
http://rapidshare.com/files/54377607/All.BitDefender.Keygens.AIO.rar

WEB PAGE MAKER v. 2.5

2007-10-05T17:54:00.000-07:00

Web Page Maker is an easy-to-use web page editor that allows you to create and upload web pages in minutes without knowing HTML. Simply drag and drop objects onto the page and position them freely in the layout. It comes with several pre-designed templates that help you to get started. It also includes ready-to-use navigation bars that can be inserted into the page. Additional features include built-in color picker, Java script library, image library and built-in FTP client.

Code:
http://rapidshare.com/files/50251162/Web.Page.Maker.v2.5.rar

Hide IP v. 2.1

2007-10-05T17:51:00.000-07:00

Concerned about Internet privacy? Want to hide your IP address?
Hide IP Platinum is the software you are looking for! Keeping your privacy is simple and easy: the only thing you need to do is open Hide IP Platinum. Hide IP Platinum will find the proxy server available to you and set it as your proxy server automatically. There is nothing need you to concern. Hide IP Platinum have done everything for you!

Code:
http://rapidshare.com/files/32414386/HIP.v2.1.1.rar

mIRC 6.3

2007-10-05T17:48:00.000-07:00

mIRC 6.3 has been released! (August 16th 2007)
This version of mIRC offers full Vista compatability with support for limited user accounts, U3 support, support for tips (those small text balloons that pop up near the Windows tray) to notify you of various events such as incoming messages or users in your notify list coming on or leaving IRC, support for positioning the Treebar at top/bottom of the mIRC window, and a feature that allows you to switch between Normal and Compact modes. Compact mode makes mIRC behave like a messenger with the treebar filling the main window, all windows opening on the desktop, and so on.

Homepage:
Code:
http://www.mirc.com/

RAR File:
Code:
http://rapidshare.com/files/56987591/mIRC_6.3.rar

Password:
Code:
upbyalt

Contains:
- Installer
- Cracked file
- Keygen
- Read me

All files scanned for viruses by Norton AV.

Cute FTP Pro v.8.0.5

2007-10-05T17:46:00.000-07:00

What makes Cute FTP Professional the best choice? CuteFTP Professional provides easy-to-use yet powerful tools for tackling the complex challenges of data management and helps achieve HIPAA, GLBA and Sarbanes-Oxley compliance.

Code:
http://rapidshare.com/files/22581555/CFP_8_05_uploaded_by_mustafabakar.blogspot.com.rar

Addon

RarPass: www.dailyappz.com

FIREFOX MUCH FASTER!! (WORK 100%)

2007-10-05T17:43:00.000-07:00

1) Type "about:config" into the address bar and hit return. Scroll down and look for the following entries:

network.http.pipelining
network.http.proxy.pipelining
network.http.pipelining.maxrequests

Normally the browser will make one request to a web page at a time. When you enable pipelining it will make several at once, which really speeds up page loading.

2) Alter the entries as follows: (by double clicking them)

Set "network.http.pipelining" to "true"

Set "network.http.proxy.pipelining" to "true"

Set "network.http.pipelining.maxrequests" to some number like 30. This means it will make 30 requests at once. (I changed mine to 100, works great.)

3) Lastly right-click anywhere and select New-> Integer. Name it "nglayout.initialpaint.delay" and set its value to "0". This value is the amount of time the browser waits before it acts on information it recieves.

15 Coolest Firefox Tricks Ever

2007-10-05T17:42:00.000-07:00

Everybody’s favorite open-source browser, Firefox, is great right out of the box. And by adding some of the awesome extensions available out there, the browser just gets better and better.

But look under the hood, and there are a bunch of hidden (and some not-so-secret) tips and tricks available that will crank Firefox up and pimp your browser. Make it faster, cooler, more efficient. Get to be a Jedi master with the following cool Firefox tricks.

1) More screen space. Make your icons small. Go to View - Toolbars - Customize and check the “Use small icons” box.

2) Smart keywords. If there’s a search you use a lot (let’s say IMDB.com’s people search), this is an awesome tool that not many people use. Right-click on the search box, select “Add a Keyword for this search”, give the keyword a name and an easy-to-type and easy-to-remember shortcut name (let’s say “actor”) and save it. Now, when you want to do an actor search, go to Firefox’s address bar, type “actor” and the name of the actor and press return. Instant search! You can do this with any search box.

3) Keyboard shortcuts. This is where you become a real Jedi. It just takes a little while to learn these, but once you do, your browsing will be super fast. Here are some of the most common (and my personal favs):

* Spacebar (page down)
* Shift-Spacebar (page up)
* Ctrl+F (find)
* Alt-N (find next)
* Ctrl+D (bookmark page)
* Ctrl+T (new tab)
* Ctrl+K (go to search box)
* Ctrl+L (go to address bar)
* Ctrl+= (increase text size)
* Ctrl+- (decrease text size)
* Ctrl-W (close tab)
* F5 (reload)
* Alt-Home (go to home page)

4) Auto-complete. This is another keyboard shortcut, but it’s not commonly known and very useful. Go to the address bar (Control-L) and type the name of the site without the “www” or the “.com”. Let’s say “google”. Then press Control-Enter, and it will automatically fill in the “www” and the “.com” and take you there - like magic! For .net addresses, press Shift-Enter, and for .org addresses, press Control-Shift-Enter.

5) Tab navigation. Instead of using the mouse to select different tabs that you have open, use the keyboard. Here are the shortcuts:

* Ctrl+Tab (rotate forward among tabs)
* Ctrl+Shft+Tab (rotate to the previous tab)
* Ctrl+1-9 (choose a number to jump to a specific tab)

6) Mouse shortcuts. Sometimes you’re already using your mouse and it’s easier to use a mouse shortcut than to go back to the keyboard. Master these cool ones:

* Middle click on link (opens in new tab)
* Shift-scroll down (previous page)
* Shift-scroll up (next page)
* Ctrl-scroll up (decrease text size)
* Ctrl-scroll down (increase text size)
* Middle click on a tab (closes tab)

7) Delete items from address bar history. Firefox’s ability to automatically show previous URLs you’ve visited, as you type, in the address bar’s drop-down history menu is very cool. But sometimes you just don’t want those URLs to show up (I won’t ask why). Go to the address bar (Ctrl-L), start typing an address, and the drop-down menu will appear with the URLs of pages you’ve visited with those letters in them. Use the down-arrow to go down to an address you want to delete, and press the Delete key to make it disappear.

8) User chrome. If you really want to trick out your Firefox, you’ll want to create a UserChrome.css file and customize your browser. It’s a bit complicated to get into here, but check out this tutorial.

9) Create a user.js file. Another way to customize Firefox, creating a user.js file can really speed up your browsing. You’ll need to create a text file named user.js in your profile folder (see this to find out where the profile folder is) and see this example user.js file that you can modify. Created by techlifeweb.com, this example explains some of the things you can do in its comments.

10) about:config. The true power user’s tool, about.config isn’t something to mess with if you don’t know what a setting does. You can get to the main configuration screen by putting about:config in the browser’s address bar. See Mozillazine’s about:config tips and screenshots.

11) Add a keyword for a bookmark. Go to your bookmarks much faster by giving them keywords. Right-click the bookmark and then select Properties. Put a short keyword in the keyword field, save it, and now you can type that keyword in the address bar and it will go to that bookmark.

12) Speed up Firefox. If you have a broadband connection (and most of us do), you can use pipelining to speed up your page loads. This allows Firefox to load multiple things on a page at once, instead of one at a time (by default, it’s optimized for dialup connections). Here’s how:

* Type “about:config” into the address bar and hit return. Type “network.http” in the filter field, and change the following settings (double-click on them to change them):
* Set “network.http.pipelining” to “true”
* Set “network.http.proxy.pipelining” to “true”
* Set “network.http.pipelining.maxrequests” to a number like 30. This will allow it to make 30 requests at once.
* Also, right-click anywhere and select New-> Integer. Name it “nglayout.initialpaint.delay” and set its value to “0″. This value is the amount of time the browser waits before it acts on information it receives.

13) Limit RAM usage. If Firefox takes up too much memory on your computer, you can limit the amount of RAM it is allowed to us. Again, go to about:config, filter “browser.cache” and select “browser.cache.disk.capacity”. It’s set to 50000, but you can lower it, depending on how much memory you have. Try 15000 if you have between 512MB and 1GB ram.

14) Reduce RAM usage further for when Firefox is minimized. This setting will move Firefox to your hard drive when you minimize it, taking up much less memory. And there is no noticeable difference in speed when you restore Firefox, so it’s definitely worth a go. Again, go to about:config, right-click anywhere and select New-> Boolean. Name it “config.trim_on_minimize” and set it to TRUE. You have to restart Firefox for these settings to take effect.

15) Move or remove the close tab button. Do you accidentally click on the close button of Firefox’s tabs? You can move them or remove them, again through about:config. Edit the preference for “browser.tabs.closeButtons”. Here are the meanings of each value:

* 0: Display a close button on the active tab only
* 1:(Default) Display close buttons on all tabs
* 2:Don’t display any close buttons
* 3:Display a single close button at the end of the tab bar (Firefox 1.x behavior)

HOW TO - make your 56k dial-up modem faster!

2007-10-05T17:40:00.000-07:00

Ensure that you have the latest drivers for your modem, from the manufacturer & not Microsoft.

Here are some tweaks that will help you maximize throughput as best possible, for your 56K modem.
Please create a System Restore point before tweaking

Code:
Download Cablenut & use the following settings:

DefaultReceiveWindow = 8192
DefaultSendWindow = 4096
DisableAddressSharing = 1
InitialLargeBufferCount = 10
InitialMediumBufferCount = 24
InitialSmallBufferCount = 32
LargeBufferSize = 4096
MaxFastTransmit = 6400
MediumBufferSize = 1504
PriorityBoost = 0
SmallBufferSize = 128
TransmitWorker = 32
FastSendDatagramThreshold = 1024
EnableFastRouteLookup = 1
EnablePMTUDiscovery = 1
IgnorePushBitOnReceives = 0
GlobalMaxTcpWindowSize = 8760
MaxFreeTcbs = 2000
MaxHashTableSize = 4096
MaxNormLookupMemory = 5000000
SackOpts = 1
SynAttackProtect = 1
Tcp1323Opts = 0
TcpLogLevel = 1
MaxDupAcks = 2
TcpMaxHalfOpen = 100
TcpMaxHalfOpenRetried = 80
TcpRecvSegmentSize = 1460
TcpSendSegmentSize = 1460
TcpTimedWaitDelay = 30
TcpUseRFC1122UrgentPointer = 0
TcpWindowSize = 8760
MaxConnectionsPer1_0Server = 8
MaxConnectionsPerServer = 4
DefaultTTL = 128
DisableUserTOSSetting = 0
TcpMaxDataRetransmissions = 6
DefaultTOSValue = 92

Open your registry (start -> run -> type regedit) and change the following registry entry:

Export each registry setting before amending

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\AFD\Parameters
Add the parameter BufferMultiplier and give it a value of 400 hexidecimal which will make it 1024.

Download TCPOptimizer and use the following settings:

Under the settings tab select dial up and custom settings, in network adapter selection choose dial up adapter. Then use the following settings:

MaxMTU - 1500
TCP Receive Window - 8760
MTU Discovery - Yes
Black Hole Detect - No
Selective ACKs - Yes
Max Dup ACKs - 2
Time to Live (TTL) - 128
TCP 1323 Options - uncheck both boxes

Other settings:
Max Connections per Server - 4
Max Connections per 1.0 Server - 8

Then select Apply changes and reboot your computer.

Go to Network Connections from the Control Panel – right click on your internet connection and select properties, uninstall QoS Packet Scheduler.

Amend the following registry entries:

delete the following entry
HKEY_LOCAL_MACHINE/Software/Microsoft/Windows/CurrentVersion/Explorer/RemoteComputer/NameSpace/{D6277990-4C6A-11CF-8D87-00AA0060F5BF}

add the following entry:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\PriorityControl (if PriorityControl is not there, make the value) - on the right hand side right click and select new DWORD value, name it IrqXPriority (X = Irq assigned to your modem), then right click it and select modify and give
it a decimal value of 1.

This tweak will help web pages load faster, it has no real effect on download speeds, just helps your pc look up websites faster thereby speeding up
how fast the page loads and making websurfing more enjoyable.

Go to the registry entry and change the following settings:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\Tcpip\ServiceProvider

Class - 1
DnsPriority - 1
HostsPriority - 1
LocalPriority - 1
NetbtPriority - 1

Download TCPOptimiser in here
Code:
http://www.speedguide.net/files/TCPOptimizer.exe

TUTOR OTOMATIS PROXY

2007-10-05T17:01:00.000-07:00

Several of my clients have asked for a way to have browsers automatically pick up proxy settings if the PC (usually a laptop) is on the local LAN, but not use a proxy server if the PC is not on the local LAN. For instance, moving a laptop from a home network with no proxy server to the office LAN, with a BorderManager server.

The browser can be configured with a simple PROXY.PAC file. The PROXY.PAC file can be quite complex, providing for load-balancing, fault tolerance, or other uses. I would be happy to produce a custom proxy.pac file for you (as a paid consulting project). The examples here are pretty basic.

I have tested this PROXY.PAC file on Netscape, Mozilla, Firefox, Opera and Internet Explorer on Windows XP Professional and Windows 2000 Professional.

Note: This is not a method for remotely or permanently setting the proxy settings, which can be done in a number of ways (ZENworks, login script, proxy configuration files from Netscape or Microsoft, etc.) I will assume that you will visit the workstations and enter the proxy settings as necessary to point to the PROXY.PAC file. If the PC is to be moved off the local LAN, you will also need to copy the file to the PC.
How it works:

The .PAC file checks the local IP subnet address of the PC, and branches with an IF / ELSE statement. If the PC is located in a subnet that matches, a proxy server is used. If the PC is on any other subnet, a direct connection is used instead of the proxy.
function FindProxyForURL(url, host)

Code:

{
if (isInNet(myIpAddress(), "192.168.1.0", "255.255.255.0"))
return "PROXY 192.168.1.1:8080";
else
return "DIRECT";
}

In my example file #1, I check that the host is in the 192.168.1.0 (255.255.255.0) subnet. If it is, I tell the browser to use a proxy at IP address 192.168.1.1, using port 8080. Obviously, you may need to change the subnet, subnet mask and proxy address/port for your LAN configuration.

There are methods which can be used to check for multiple subnets in case you have more than one internal LAN subnet. Ask in the Novell Public Forums about more complex PROXY.PAC files. (Or hire me to develop one for your environment!)

Download my example PROXY.PAC file #1 HERE (simple version)
More Complex Version

I have had a number of occasions where I needed to bypass the http proxy for a particular web site. This is easily done with a PROXY.PAC file, by putting in an IF statement with the proper syntax. (You can have lots of IF statements if you want to do this for multiple web sites.)

Here is an example that bypasses proxy for a particular web site (principia.mo.techpaths.com) that was giving grief when going to it through the HTTP Proxy:

function FindProxyForURL(url, host)

Code:

{
if (shExpMatch(url, "http://principia.mo.techpaths.com*")) {
return "DIRECT";
}
if (isInNet(myIpAddress(), "192.168.1.0", "255.255.255.0"))
return "PROXY 192.168.1.1:8080";
else
return "DIRECT";
}

You can download this version of PROXY.PAC here.
Slightly More Complex PROXY.PAC Example - Multiple Proxy Bypass URL's (not for laptops)

In this example you can add multiple URL's to NOT use a proxy, and then proxy everything else. In this example, you do not have a check for the local network, so it would not be a good example for a laptop that moves between networks.

function FindProxyForURL(url, host)

Code:

Even More Complex PROXY.PAC Example - Multiple Proxy Bypass URL's with Local Address Check

In this example you can add multiple URL's to NOT use a proxy, and then proxy everything else. In this example, you have a check for the local network, so you can use this one on a laptop.

function FindProxyForURL(url, host)

Code:

{
// variable strings to return
var proxy_yes = "PROXY 192.168.1.1:8080";
var proxy_no = "DIRECT";
if (shExpMatch(url, "http://www.mycompanywebsite.com*")) { return proxy_no; }
if (shExpMatch(url, "http://www.myotherwebsite.com*")) { return proxy_no; }
if (shExpMatch(url, "http://www.my3rdlocalsite.com*")) { return proxy_no; }
if (shExpMatch(url, "http://192.168.1.100*")) { return proxy_no; }
// Proxy if PC is on local LAN
if (isInNet(myIpAddress(), "192.168.1.0", "255.255.255.0"))
return "PROXY 192.168.1.1:8080";
else
return "DIRECT";
}

Autoconfigure the Proxy Settings from the BorderManager Server (for Internet Explorer)

In this method, you point to a file being made available via the BorderManager miniwebserver. For a simple PROXY.PAC file and a PC that says on the local LAN, this doesn't make a lot of sense, as it is easier to just enter the proxy server address and port numbers. However, this technique is useful when you have complex PROXY.PAC files which do load balancing, etc.

1. Copy the PROXY.PAC file to the BorderManager SYS:ETC\PROXY\DATA directory.
2. In the browser proxy settings, configure the Automatic Proxy Configuration (Netscape) or Use Automatic Configuration Script (IE) URL to:

Code:

http://192.168.1.1:1959/data/proxy.pac

Where 192.168.1.1 must be changed to your BorderManager server's private IP address. The port 1959 is the default miniwebserver address.

If Internet Explorer doesn't see the file, it will default to using whatever proxy settings are configured under LAN settings.

Certain versions of Internet Explorer have a bug with .PAC files. This can be fixed with a patch. See the Microsoft article here.
Autoconfigure the Proxy Settings from a Local Copy of the PROXY.PAC File (IE or Netscape)

In this method, useful for laptops that travel on and off your LAN, you copy the file to some local directory, and point to it.

1. Copy the PROXY.PAC file to the C:\WINDOWS directory, or other directory of your choice.
2. In the browser proxy settings, configure the Automatic Proxy Configuration (Netscape) or Use Automatic Configuration Script (IE) URL to:
Netscape, use:

Code:

file:///c|/windows/proxy.pac

Internet Explorer, use:

Code:

file://c:/windows/proxy.pac

In Netscape, click on the Reload button.
Have Internet Explorer Automatically Configure Itself to Use a Proxy

There are ways to push the proxy settings (including PROXY.PAC) files to any browser, but Internet Explorere tends to be the easiest. In fact, you can have Internet Explorer automatically discover your PROXY.PAC file without you even having to touch the browser, if the browser is left at default settings. This is done by renaming PROXY.PAC to WPAD.DAT, and launching it from web server, using a local DNS entry. Please see this tip on methods for configuring browsers to pick up proxy settings.
Setting Proxy Settings on Browsers

For a number of reasons, HTTP Proxy is much better than the Transparent HTTP Proxy. Therefore, you will want all your browsers to point to the BorderManager HTTP Proxy IP address, port 8080, for HTTP, FTP and Security/SSL. The trick is getting all those browsers configured if you don't have time to run around manually setting them yourself. This tip lists several ways that you can push the settings out to the browsers without physically going to the PC.
Option 1 - Make the Users Do It Themselves!

No, this is not a joke. It is surprisingly effective, (especially if there is a teenager around, who will gladly run around doing it for everyone else).

In this method, you cut off web browsing access by disabling Transparent HTTP Proxy and using default filters, then you provide good instructions on how to set the proxy settings. You will want to at least provide some documentation with screenshots of each menu option the users have to click on, and the proper proxy settings. When users are given the choice of no internet access, or following a simple set of screenshots, 99% of them will get themselves on the Internet within 48 hours. You will then have the time to set up the management PCs, and the Help Desk will have time to help Aunt Betty when she gets confused.
Option 2 - Push the Browser Settings in the Login Script (for Internet Explorer)

Internet Explorer stores proxy settings in the registry. This makes it particularly easy to update, using a variety of methods. Even if your users do not normally use Internet Explorer as their usual browser, you will want to configure the proxy settings because many other applications key off proxy settings in Internet Explorer.

In this method, you determine the proper registry key for your version of IE, export the settings to a .REG file, and then use REGEDIT in the login script to push the settings to the PC. If you leave the setting in the login script for several days, most of the PC's should be updated by then, and you can remove or comment out the commands. Here is an example:

In the container login script add the lines

Code:

#Regedit /s z:\public\setpxy.reg

This assumes that the Z drive is mapped to SYS: of their local servers. Once this is done copy SETPXY.REG.to the Public directory.

To create the SETPXY.REG file, open notepad & type in as follows:

Code:

REGEDIT4 (or whatever version of REGEDIT is on your PC, such as REGEDT32)
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings]
"ProxyServer"=":8080"
"ProxyEnable"=dword:00000001
"ProxyOverride"=""

Change to the private IP address of your HTTP Proxy, and to 127.0.0.1 or any combination of URL's for which you want to bypass the proxy. (I advise you to experiment with this for a while to get the syntax done correctly).
Option 3 - Push the Browser Settings with ZENWorks Application Launcher

Using ZENWorks (NAL), you can create a forced-run, run-once application for any browser that sets the proxy settings on the browser. Internet Explorer is probably one of the easiest browser to set, since it has a predictable registry key for proxy settings.

Netscape uses a text file called PREFS.JS which can be easily modified by a ZENWorks app, but the location of the file might be different on each PC, depending on how Netscape was set up. Search some of your PC's for that file, and if you are lucky, all PC's may have the file in a common location under a directory called Default.
Option 4 - Use DHCP to Push WPAD Settings for Browsers

Newer browsers can pick up certain settings from DHCP. Those settings can then be leveraged to have the browser pick up the proxy settings. See this Novell TID:

Code:

http://support.novell.com/cgi-bin/search/searchtid.cgi?/2953490.htm

and this Microsoft technical article:

Code:

http://www.microsoft.com/TechNet/IE/reskit/ie5/part3/ch13sser.asp

This works for both Netscape and Internet Explorer. Also, see the Novell AppNote described below in option 6.

Caveat: I was simply never able to get this to work for some reason, but I was able to get Option 5 to work with Internet Explorer!
Option 5 -Use DNS & Web Server to Push WPAD Settings for Browsers

This one really took me a long time to figure out, but turns out to be pretty simple and easy. There is an option in Internet Explorer called Automatic Proxy Configuration. (As far as I know, as of August 15, 2003, this may be a feature only found in Internet Explorer). IE 6 comes with this option set by default.

The concept: When Internet Explorer is launched, it makes a DNS query for WPAD. is the Automatic Proxy Configuration option is checked. If it gets a DNS response, it will look for a file called WPAD.DAT at that location. WPAD.DAT is simply a PROXY.PAC file renamed to WPAD.DAT. (See the note on PROXY.PAC files below, which also links to a sample I provide at this web site). The WPAD.DAT file contains a bit of java script (which you write) telling the browser where a proxy server is located and when to use it.

The setup: First, you need a working PROXY.PAC file. You will end up renaming it, and launching it from a web server. If you already are launching it from a web server per my tip on PROXY.PAC files, you have only to set up a DNS entry. Your PC's need to be pointing to your own internal DNS server as their first option. (You can easily set up an internal DNS server with NetWare 5.0 or later.) The DNS server needs to have a WPAD entry for your domain. So if you have a domain called, for instance, CJC.COM, you would have a DNS 'A' record for WPAD.CJC.COM. You also need an internal web server - you cannot use the BorderManager miniwebserver here, or a web server that does not default to using port 80.

Take a working PROXY.PAC file, rename it to WPAD.DAT, and copy it to the root of the web server. You should be able to type HTTP://WPAD.CJC.COM/WPAD.DAT in Internet Explorer and get a file download prompt. If so, just set IE for auto proxy config and it should work.

Troubleshooting: I had a lot of problems making this work at first, until I understood just how Internet Explorer works, and how my web servers were working. The DNS part was simple. The PROXY.PAC/WPAD.DAT file was also simple, since I was already using a PROXY.PAC file. But it just wasn't working. The reason was essentially because I had an overly complex web server configuration on my system. I have Apache, Novonyx and iFolder (another instance of Apache) all running on the same server at the same time, giving up web pages on 5 different IP addresses. The issue I had was, I think, due to my web servers relying on redirection of URL's to the proper document root directories. I put copies of WPAD.DAT into various locations, but they didn't seem to work. When I typed the proper URL in IE, I did get a download prompt as described above! Turns out I did NOT get a download prompt if I typed in HTTP://192.168.10.245/WPAD.DAT - which was where I had my WPAD DNS entry. Internet Explorer resolved my WPAD.CJC.COM query to 192.168.10.245, and it then tried to pull the file from the IP address, not the URL, but my web servers weren't set up to take that sort of query. Eventually, I simply put the WPAD.DAT file in my iFolder document root directory and pointed DNS there. (Note: I have iFolder listening on a secondary IP address using port 80, not 52080...) As long as you can get the WPAD.DAT in the root directory of a web server listening on port 80 of an IP address called out in DNS, you should be fine.
Option 6 - Use Browser Customization Kits to Lock Down the Browser

Both Internet Explorer and Netscape can be customized by an administrator with settings that can then not be modified by the user. The idea here is to set up the browsers as required, and then push the customized browser to the workstation, perhaps with ZENWorks. See this link for customization kits for Netscape:

Code:

http://home.netscape.com/bisdev/distribution/index.html

You need the 'IEAK' (Internet Explorer Administration Kit) for your version of Internet Explorer. Unfortunately, Microsoft's site seems to change URL's of internal pages a lot, so I am not sure if the link below will get you where you want to go, but a search for IEAK or IE Toolkit should eventually link you to the toolkit you need, for your version of IE.

Code:

http://www.microsoft.com/windows/ieak/default.asp
PROXY.PAC Files

The methods above all describe ways to set the proxy to a particular HTTP proxy address. However, you may have laptops that move from your LAN to other LANs (at home, for instance) where no HTTP Proxy exists, or where there is a different HTTP Proxy address. Situations like this are best handled with a PROXY.PAC file. A PROXY.PAC file is a bit of java script that configures the browser's proxy settings. Instead of pointing the browser to the proxy, you point it to the PROXY.PAC file instead. The PROXY.PAC file can be extremely versatile (and complex). I have provided a simple example in this tip.
Other Documentation - Novell AppNote

Novell has an AppNote with some of this information at the following URL:

Code:

http://developer.novell.com/research/appnotes/2002/april/02/a020402.doc

This AppNote goes into much more detail on the WPAD and other options, and I recommend reading it

ProxyShell Hide IP Standart v2.2.0

2007-10-05T16:54:00.000-07:00

ProxyShell Hide IP is a powerful proxy software to hide IP address when you surfing by intelligently managing and using multiple proxies, makes you surf anonymously, protects your personal information and internet privacy. With ProxyShell Hide IP, you can hide IP address, surf the web without anyone knowing who you are, hide your own information and reading interests. ProxyShell Hide IP could also bypass restrictions if your IP address is blocked, post on bbs or send email without displaying your own IP.

ProxyShell Hide IP uses our own proxies and many public proxies to hide your IP address. Our unique algorithm effectively uses multiple proxies to handle your surfing requests simultaneously, offers faster speed, much better proxy errors recovery and stability. ProxyShell Hide IP is totally automatic and easy-to-use, you can just launch the browser and begin anonymous surfing, without worrying about what proxies you are using.

Download :

::http://rapidshare.com/files/60331207/ProxyShell.Hide.IP.v2.2.zip.html::

Or:

::http://www.4shared.com/file/25708443/633a8e9a/ProxyShellHideIPv22.html::

Keys Included + Keygen!

FREE HOSTING BUAT PARA UPLOADER

2007-10-05T16:52:00.000-07:00

Free File Hosting http://www.mediamax.com
25 GB of secure online storage
Download or share 1GB/month
Send files up to 25 MB in size

http://fileupyours.com
Everything unlimited

http://datapickup.com
Max File Size: 1.5GB
File deleted after 7 days

http://freespace.filefront.com
Max File Size: 1GB (Files cannot be larger than 1GB or take more than 10 hours to upload)
Everything else is unlimited.

http://www.yousendit.com
Max File Size: 1GB
File deleted after 7 days

http://www.transferbigfiles.com
Max File Size: 1GB
File deleted after 5 days/20 downloads

http://www.spread-it.com
Max File Size: 500MB
File deleted if not downloaded for 30 days

http://ftpz.us
Max File Size: 498MB
Everything else is unlimited

http://www.thefilehut.com
Max File Size: 250MB
Free registration required

http://www.megaupload.com
Max File Size: 250MB (used to be 500MB)
File deleted if not downloaded for 30 days

http://www.updownloadserver.com
Max File Size: 250MB (Uploads will be checked by an admin before publishing)

http://www.sharebigfile.com
Max File Size: 250MB
File deleted after 7 days

http://www.filecache.de
Max File Size: 125MB
File deleted if not downloaded for 30 days

http://www.pushfile.net
Max File Size: 100MB
File deleted if not downloaded for 7 days

http://www.dropload.com
Max File Size: 100MB
File deleted after 7 days or after the first download (yep.. it’s true) http://www.dropload.com/faq/index.ph…d=5&artlang=en

http://www.turboupload.com
Max File Size: 70MB

http://www.picapic.net
Max File Size: 60MB

http://www.nexmicrosystems.com
Max File Size: 60MB
File deleted after 30 days

http://www.savefile.com
Max File Size: 60MB
File deleted if not downloaded for 14 or 30 days. FAQ says 14, upload page says 30…

http://www.psychohost.com
Max File Size: 50MB
Everything else unlimited.

http://www.freeuploader.com
Max File Size: 50MB

http://www.ushareit.com
Max File Size: 50MB

http://sharefiles.ru
Max File Size: 50MB
File deleted after 30 days

http://www.wirefiles.com
Max File Size: 50MB

http://www.xshare.us
Max File Size: 50MB

http://app02.bonpoo.com/file.htm
Max File Size: 50MB

http://rapidshare.de
Max File size: 50MB
Download Limit: 50MB/hour
File deleted if not downloaded for 30 days

http://qfile.de
Max File size: 50MB
Download Limit: 50MB/hour
File deleted if not downloaded for 30 days

http://www.uploadhut.com
Max File Size: 50MB

http://www.gigashare.com
Max File Size: 50MB (multiple files upload option)

http://illhostit.com
Max File Size: 40MB

http://www.filebuffer.net
Max File Size: 40MB
Everything else seems to be unlimited

http://www.35mb.com
Max File Size: 35MB
Free registration required
Everything else is unlimited

http://up.li.ru
Max File Size: 32MB
File deleted after 3 days (2 months if file extension is jpg/jpeg/png)

http://sendmefile.com
Max File Size: 30MB
File deleted after 14 days

http://www.ultrashare.net
Max File Size: 30MB
File deleted if not downloaded for 30 days.

http://falcon.o-wh.com
Max File Size: 30MB

http://www.ripway.com
Max File Size: 30MB
Free registration required

http://www.mytempdir.com
Max File Size: 25MB
File deleted after 14 days

http://www.myfilestash.com
Max File Size: 25MB
Free registration required

http://www.myfileshack.com
Max File Size: 25MB
Free registration required

http://11mbit.de
Max File Size: 20MB

http://www.webfile.ru
Max File Size: 20MB
File deleted after 7 days

http://www.yourfilehost.com
Max File Size: 10MB
File deleted if not downloaded for 14 days

http://www.da_insane.boo.pl/d/upload/
Max File Size: 10MB

http://come2store.com
Max File Size: 10MB
Free registration required

http://webfilehost.com
Max File Size: 10MB
File deleted after 30 days

http://www.filecabi.net/free-video-hosting.html
Max File Size: 10MB
File deleted if not viewed for 30 days

http://www.putfile.com
Max File Size: 10MB
File deleted if not viewed for 6 months

http://uppit.com
Max File Size: 6MB
File deleted if not downloaded for 30 days

http://www.zippyvideos.com
Max File Size: 5MB
File deleted if not viewed for 60 days

http://www.desearch.net
Max File Size: 4MB

http://www.uploadx.net
Max File Size: 3MB

http://www.filepost.us
Max File Size: 3MB
Free registration required

http://www.thefilebucket.com
Max File Size: 2MB (not sure)
Free registration required

http://storagefun.com
Max File Size: 2MB
Free registration required

http://www.flypicture.com
Max File Size: 1MB
File deleted after 30 days

http://www.bestupload.com
Max File Size: 600K
File deleted if not downloaded for 30 days

http://www.fdrop.com

http://www.exbyte.net

Free image hosting

http://imageheap.com
Max File Size: 10MB

http://www.imagerage.com
Max File Size: 5MB

http://www.watotron.com/watupload/
Max File Size: 5MB

http://filehost.to
Max File Size: 5MB

http://www.imagexoom.com
Max File Size: 4MB

http://www.photoserver.us
Max File Size: 4MB (not sure)

http://www.xtra-image.com
Max File Size: 3MB

http://www.uploads.biz
Max File Size: 2MB

http://www.freeimagelibrary.com
Max File Size: 2MB

http://myphotohost.com
Max File Size: 2MB

http://www.thefreeimagehosting.com
Max File Size: 2MB

http://xs.to
Max File Size: 1.5MB

http://picsplace.to
Max File Size: 1.5MB

http://webdevote.com/webservices/imagehost/
Max File Size: 1MB

http://www.simpload.com
Max File Size: 1MB

http://www.myimagedepot.com
Max File Size: 1MB

http://www.myimagehosting.com
Max File Size: 1MB

http://www.imgsharing.com
Max File Size: 1MB

http://www.imageshack.us
Max File Size: 1MB

http://www.uploadimages.net
Max File Size: 1MB

http://www.picvault.info/
Max File Size: 1MB

http://www.thepicturebin.com
Max File Size: 1MB

http://www.iuploads.com/free_image_hosting/
Max File Size: 512K

http://www.imagesubmit.com
Max File Size: 450K

http://www.realimagehost.com
Max File Size: 256K

http://www.photobucket.com
Max File Size: 250K

http://tinypic.com
Max File Size: 250K

http://www.freefotofile.com
Max File Size: 200K

http://www.imgzone.info
Max File Size: 100K

http://www.solisstyle.com/ims/

http://fotopic.net/

Free BulletinBoards/Forums

http://www.phpbb.com - phpBB2 (PHP, mySQL)
http://woltlab.de - wbb1 (PHP, mySQL)
http://yabb.info - YaBB SE (PHP, mySQL)
http://openbb.com - OpenBB2 (PHP,mySQL)
http://www.invisionboard.com - Ibforums (PHP,mySQL AND CGI)
http://forum.snitz.com Snitz Forum2000 (ASP)
http://german-bulletin-board.de - gBB (PHP, mySQL) (Cool)
http://www.phorum.org/ - Phorum (PHP + MySQL; open source)
http://www.xmbforum.com/ - XMB (PHP + MySQL)
http://www.minibb.net/ - MiniBB (PHP + MySQL)
http://www.yabb.com/- YaBB original (CGI)
http://www.mybboard.com/ - MyBB/DevBB (PHP, MySQL)
http://www.xmbforum.com/ - XMB (PHP, mySQL
http://www.simplemessageboard.com/ - SMP (CFM, MSsql)
http://www.lokwa.com/ - lokwaBB (PHP, Mysql)
http://www.mercuryboard.com/ - MurcuryBoard (PHP, MySQL)
http://edge-programming.com/eboard/ - EBoard (PHP)
http://www.smartbb.net/ - SmartBB (PHP, Mysql)
http://www.icredibb.com/ - iBB (PHP, Mysql)
http://www.myboard.co.uk/ - myBoard (PHP, MySQL)
http://mybboard.com - DevBB (PHP, mysql)
http://www.versiforum.com - VersiForum (ASP)

Free Remotly Hosted Forums

http://upperboard.com/
http://forums.asp-dev.co.uk/
http://www.xsorbit.com/
http://www.proboards.com/
http://www.ezboard.com/
http://forums.hostultra.com/
http://www.network54.com/
http://www.everyone.net/
http://www.mycool.com
http://www.guestforum.com/
http://www.voy.com/
http://www.dk3.com/
http://www.homepagetools.com/ultraboard
http://www.swiftsolution.com/
http://groups.yahoo.com/
http://communities.msn.com/
http://on.starblvd.net/meet
http://forums.delphi.com/
http://www.suddenlaunch.com/
http://bb.bbboy.net/
http://www.eboards4all.com/

Free Subdomains

www.freeurl.com
www.jwdx.com
www.cjb.net
www.dot.tk
www.v3.com
www.hotredirect.com
www.internetjump.com
www.explode.to
www.zdos.com
www.webalias.com
www.reduce.to
www.warping.to
www.gosurfto.com
www.2000c.net
www.shorturl.com
www.has.it
www.doze.to
www.nigx.net
www.1fx.net
www.soar.to
www.123redirect.com
www.ipfox.com
www.webweaver.nu
www.ohgo.com
www.url-redirection.org
www.aliasnames.com
www.get-2.com
www.myredirector.com
www.dot.nu
www.tr.cx
www.kickme.to
www.rapworld.com/url/
www.dk3.com
www.xiy.net
www.url.animeumbrella.com
www.suite.net/url.htm
www.surftohere.com
www.israd.net
www.ontheweb.nu
www.globalredirect.com
www.flash.to
www.zooming.to
www.emu.vg
www.linkworld.to
www.rename.net
www.url4life.com
www.n2v.net
www.nethop.com
www.webmask.com
www.heroffice.com
www.crcpl.tsx.org
www.guruguru.to
www.iscool.net
www.dkanet.com
www.r67.com
www.uni.cc
www.fr.fm
www.d.bz
www.e33.de
www.de.vu
www.dd.vu
www.6x.to
www.b4.to
www.b6.to
www.h3.to
www.thx.to
www.rox.to
www.faster.as
www.hop2.de
www.tsx.to
www.tsx.org
www.bootme.to
www.2fbi.de
www.ubb.cc
www.IDz.net
http://zwap.to
www.xsub.ws
www.2b.to
www.elite.to
www.2fbi.de
www.suckz.de
www.b6.to
www.quickurl.com
http://www.9cy.net/myred/signup.php

Free Domains

http://www.freedomain.co.nr/ (Recommended)
http://www.dot.tk/ (redirection)
http://www.uni.cc/ (redirection, webhosting, OR domain)
http://www.ripn.net:8080/en/ (domain)
www.dhs.org
http://www.acidmist.com/
http://www.1millionfreedomains.com/ (requires reserve fee)

Free FileStorage

http://java.isavvix.com/freeback.jsp
http://www.myplay.com/
http://www.sharemation.com/
http://www.staroffice.com/
http://www.storagevault.net/
http://www.tiomeg.com/
http://briefcase.yahoo.com/
http://www.zden.com/Signup.asp?ID=136463

Free Pop3Mails

http://mail.uni.de
http://quickemail.de
http://gmx.net
http://mypad.com
http://kgb.cz
http://amexmail.com
http://freemail.web.de
http://hotmail.com (not sure)
http://uyeler.mynet.com
http://eng.mail.port.ru
http://passagen.se
http://cjb.net
http://myrealbox.com
http://mail.urbia.de
http://my-mail.ch
http://westonline.com
http://mundomail.net
http://www.hotpop.com
http://webmail.berlin.de
http://club.lemonde.fr
http://emailcity.de
http://mail.lycos.co.uk
http://epost.de
http://schondrin.de
http://freemail.nl
http://idlo.de
http://saintmail.net
http://topsurf.com
http://uk2.net
http://liquid2k.com
http://dostmail.com
http://china.com
http://hotpop.com
http://newmail.net
http://mail.arabia.com
http://mail.ofir.dk
http://home.se
http://epost.portalen.no
http://runbox.com
http://mail.tut.by

Free Email for your site

http://bigmailbox.com
http://zzn.com
http://i-p.com
http://oemmail.com

Free Counters/Stats for ur site

www.sitemeter.com
http://www.addfreestats.com
www.bravenet.com
www.admo.net
www.thecounter.com
http://www.extreme-dm.com/
http://www.nedstat.com/
www.stats4all.com
www.realtracker.com
http://www.analogstats.com
http://www.geocounter.net
www.webtrendslive.com
http://www.okcounter.com
http://www.vioclicks.com

Other Sites

http://www.narlytime.com
http://www.photobucket.com/
http://www.imageshack.us
http://www.deanfarnham.net
shyper.com
http://www.wmresource.org/
http://www.rapidshare.de
http://www.250free.com
www.100webspace.com Don’t know there’s a file size limit on…
http://www.yousendit.com/
http://www.walagata.com/
http://www.photobucket.com/
http://www.uploads.biz/
http://www.solisstyle.com/ims/splash.php
http://www.imagehosting.us.com/
http://www.bestupload.com/
http://www.hostmyimages.net/
http://www.realimagehost.com/
http://www.netpix.org/
http://www.imgzone.info/
http://host.pixerver.com/
http://www.iuploads.com/
http://www.hostmyfile.net/
http://www.flypicture.com/
http://www.picvault.info/
http://www.filehosting.org/
http://www.uploadimages.net/
http://www.hostmyfile.net/
http://www.xbox-connection.com/hostedimages/
http://yousendit.com
file size limit: 1 GB
http://dinghy.homeip.net/upload.php

TUTORIAL MIKROTIK VPN: Point to Point Tunnel Protocol (PPTP)

2007-09-27T13:02:00.000-07:00

PPTP (Point to Point Tunnel Protocol) supports encrypted tunnels over IP. The MikroTik RouterOS implementation includes support fot PPTP client and server.

General applications of PPTP tunnels:

* For secure router-to-router tunnels over the Internet
* To link (bridge) local Intranets or LANs (when EoIP is also used)
* For mobile or remote clients to remotely access an Intranet/LAN of a company (see PPTP setup for Windows for more information)

Each PPTP connection is composed of a server and a client. The MikroTik RouterOS may function as a server or client – or, for various configurations, it may be the server for some connections and client for other connections. For example, the client created below could connect to a Windows 2000 server, another MikroTik Router, or another router which supports a PPTP server.
Description
PPTP is a secure tunnel for transporting IP traffic using PPP. PPTP encapsulates PPP in virtual lines that run over IP. PPTP incorporates PPP and MPPE (Microsoft Point to Point Encryption) to make encrypted links. The purpose of this protocol is to make well-managed secure connections between routers as well as between routers and PPTP clients (clients are available for and/or included in almost all OSs including Windows).

PPTP includes PPP authentication and accounting for each PPTP connection. Full authentication and accounting of each connection may be done through a RADIUS client or locally.

MPPE 40bit RC4 and MPPE 128bit RC4 encryption are supported.

PPTP traffic uses TCP port 1723 and IP protocol GRE (Generic Routing Encapsulation, IP protocol ID 47), as assigned by the Internet Assigned Numbers Authority (IANA). PPTP can be used with most firewalls and routers by enabling traffic destined for TCP port 1723 and protocol 47 traffic to be routed through the firewall or router.

PPTP connections may be limited or impossible to setup though a masqueraded/NAT IP connection. Please see the Microsoft and RFC links at the end of this section for more information.
PPTP Client Setup
Submenu level : /interface pptp-client
Property Description
name (name; default: pptp-out1) - interface name for reference
mtu (integer; default: 1460) - Maximum Transmit Unit. The optimal value is the MTU of the interface the tunnel is working over decreased by 40 (so, for 1500-byte ethernet link, set the MTU to 1460 to avoid fragmentation of packets)
mru (integer; default: 1460) - Maximum Receive Unit. The optimal value is the MTU of the interface the tunnel is working over decreased by 40 (so, for 1500-byte ethernet link, set the MRU to 1460 to avoid fragmentation of packets)
connect-to (IP address)- the IP address of the PPTP server to connect to
user (string)- user name to use when logging on to the remote server
password (string; default: "")- user password to use when logging to the remote server
profile (name; default: default) - profile to use when connecting to the remote server
add-default-route (yes | no; default: no) - whether to use the server which this client is connected to as its default router (gateway)
Example
To set up PPTP client named test2 using username john with password john to connect to the 10.1.1.12 PPTP server and use it as the default gateway:

[admin@MikroTik] interface pptp-client> add name=test2 connect-to=10.1.1.12 \
\... user=john add-default-route=yes password=john
[admin@MikroTik] interface pptp-client> print
Flags: X - disabled, R - running
0 X name="test2" mtu=1460 mru=1460 connect-to=10.1.1.12 user="john"
password="john" profile=default add-default-route=yes

[admin@MikroTik] interface pptp-client> enable 0

Monitoring PPTP Client
Command name : /interface pptp-client monitor
Property Description
Statistics:

uptime (time) - connection time displayed in days, hours, minutes, and seconds
encoding (string) - encryption and encoding (if asymmetric, separated with '/') being used in this connection
status (string) - status of the client:
# Dialing – attempting to make a connection
# Verifying password... - connection has been established to the server, password verification in progress
# Connected – self-explanatory
# Terminated – interface is not enabled or the other side will not establish a connection

Example
Example of an established connection:

[admin@MikroTik] interface pptp-client> monitor test2
uptime: 4h35s
encoding: MPPE 128 bit, stateless
status: Connected
[admin@MikroTik] interface pptp-client>

PPTP Server Setup
Submenu level : /interface pptp-server server

[admin@MikroTik] interface pptp-server server> print
enabled: no
mtu: 1460
mru: 1460
authentication: mschap2
default-profile: default
[admin@MikroTik] interface pptp-server server>

Description
The PPTP server supports unlimited connections from clients. For each current connection, a dynamic interface is created.
Property Description
enabled (yes | no; default: no) - defines whether PPTP server is enabled or not
mtu (integer; default: 1460) - Maximum Transmit Unit. The optimal value is the MTU of the interface the tunnel is working over decreased by 40 (so, for 1500-byte ethernet link, set the MTU to 1460 to avoid fragmentation of packets)
mru (integer; default: 1460) - Maximum Receive Unit. The optimal value is the MTU of the interface the tunnel is working over decreased by 40 (so, for 1500-byte ethernet link, set the MTU to 1460 to avoid fragmentation of packets)
authentication (multiple choice: pap | chap | mschap1 | mschap2; default: mschap2) - authentication algorithm
default-profile (name; default: default) - default profile to use
Example
To enable PPTP server:

[admin@MikroTik] interface pptp-server server> set enabled=yes
[admin@MikroTik] interface pptp-server server> print
enabled: yes
mtu: 1460
mru: 1460
authentication: mschap2
default-profile: default
[admin@MikroTik] interface pptp-server server>

PPTP Server Users
Submenu level : /interface pptp-server
Description
There are two types of items in PPTP server configuration - static users and dynamic connections. A dynamic connection can be established if the user database or the default-profile has its local-address and remote-address set correctly. When static users are added, the default profile may be left with its default values and only P2P user (in /ppp secret) should be configured. Note that in both cases P2P users must be configured properly.
Property Description
name - interface name
user - the name of the user that is configured statically or added dynamically

Statistics:

mtu - shows (cannot be set here) client's MTU
client-address - shows (cannot be set here) the IP of the connected client
uptime - shows how long the client is connected
encoding (string) - encryption and encoding (if asymmetric, separated with '/') being used in this connection
Example
To add a static entry for ex1 user:

[admin@MikroTik] interface pptp-server> add user=ex1
[admin@MikroTik] interface pptp-server> print
Flags: X - disabled, D - dynamic, R - running
# NAME USER MTU CLIENT-ADDRESS UPTIME ENC...
0 DR ex 1460 10.0.0.202 6m32s none
1 pptp-in1 ex1
[admin@MikroTik] interface pptp-server>

In this example an already connected user ex is shown besides the one we just added.
PPTP Router-to-Router Secure Tunnel Example
The following is an example of connecting two Intranets using an encrypted PPTP tunnel over the Internet.

There are two routers in this example:

* [HomeOffice]
Interface LocalHomeOffice 10.150.2.254/24
Interface ToInternet 192.168.80.1/24

* [RemoteOffice]
Interface ToInternet 192.168.81.1/24
Interface LocalRemoteOffice 10.150.1.254/24

Each router is connected to a different ISP. One router can access another router through the Internet.

On the PPTP server a user must be set up for the client:

[admin@HomeOffice] ppp secret> add name=ex service=pptp password=lkjrht
local-address=10.0.103.1 remote-address=10.0.103.2
[admin@HomeOffice] ppp secret> print detail
Flags: X - disabled
0 name="ex" service=pptp caller-id="" password="lkjrht" profile=default
local-address=10.0.103.1 remote-address=10.0.103.2 routes==""

[admin@HomeOffice] ppp secret>

Then the user should be added in the PPTP server list:

[admin@HomeOffice] interface pptp-server> add user=ex
[admin@HomeOffice] interface pptp-server> print
Flags: X - disabled, D - dynamic, R - running
# NAME USER MTU CLIENT-ADDRESS UPTIME ENC...
0 pptp-in1 ex
[admin@HomeOffice] interface pptp-server>

And finally, the server must be enabled:

[admin@HomeOffice] interface pptp-server server> set enabled=yes
[admin@HomeOffice] interface pptp-server server> print
enabled: yes
mtu: 1460
mru: 1460
authentication: mschap2
default-profile: default
[admin@HomeOffice] interface pptp-server server>

Add a PPTP client to the RemoteOffice router:

[admin@RemoteOffice] interface pptp-client> add connect-to=192.168.80.1 user=ex \
\... password=lkjrht disabled=no
[admin@RemoteOffice] interface pptp-client> print
Flags: X - disabled, R - running
0 R name="pptp-out1" mtu=1460 mru=1460 connect-to=192.168.80.1 user="ex"
password="lkjrht" profile=default add-default-route=no

[admin@RemoteOffice] interface pptp-client>

Thus, a PPTP tunnel is created between the routers. This tunnel is like an Ethernet point-to-point connection between the routers with IP addresses 10.0.103.1 and 10.0.103.2 at each router. It enables 'direct' communication between the routers over third party networks.

To route the local Intranets over the PPTP tunnel – add these routes:

[admin@HomeOffice] > ip route add dst-address 10.150.1.0/24 gateway 10.0.103.2
[admin@RemoteOffice] > ip route add dst-address 10.150.2.0/24 gateway 10.0.103.1

On the PPTP server it can alternatively be done using routes parameter of the user configuration:

[admin@HomeOffice] ppp secret> print detail
Flags: X - disabled
0 name="ex" service=pptp caller-id="" password="lkjrht" profile=default
local-address=10.0.103.1 remote-address=10.0.103.2 routes==""

[admin@HomeOffice] ppp secret> set 0 routes="10.150.1.0/24 10.0.103.2 1"
[admin@HomeOffice] ppp secret> print detail
Flags: X - disabled
0 name="ex" service=pptp caller-id="" password="lkjrht" profile=default
local-address=10.0.103.1 remote-address=10.0.103.2
routes="10.150.1.0/24 10.0.103.2 1"

[admin@HomeOffice] ppp secret>

Test the PPTP tunnel connection:

[admin@RemoteOffice]> /ping 10.0.103.1
10.0.103.1 pong: ttl=255 time=3 ms
10.0.103.1 pong: ttl=255 time=3 ms
10.0.103.1 pong: ttl=255 time=3 ms
ping interrupted
3 packets transmitted, 3 packets received, 0% packet loss
round-trip min/avg/max = 3/3.0/3 ms

Test the connection through the PPTP tunnel to the LocalHomeOffice interface:

[admin@RemoteOffice]> /ping 10.150.2.254
10.150.2.254 pong: ttl=255 time=3 ms
10.150.2.254 pong: ttl=255 time=3 ms
10.150.2.254 pong: ttl=255 time=3 ms
ping interrupted
3 packets transmitted, 3 packets received, 0% packet loss
round-trip min/avg/max = 3/3.0/3 ms

To bridge a LAN over this secure tunnel, please see the example in the 'EoIP' section of the manual. To set the maximum speed for traffic over this tunnel, please consult the 'Queues' section.

Connecting a Remote Client via PPTP Tunnel
The following example shows how to connect a computer to a remote office network over PPTP encrypted tunnel giving that computer an IP address from the same network as the remote office has (without need of bridging over eoip tunnels)

Please, consult the respective manual on how to set up a PPTP client with the software You are using.

The router in this example:

* [RemoteOffice]
Interface ToInternet 192.168.81.1/24
Interface Office 10.150.1.254/24

The client computer can access the router through the Internet.

On the PPTP server a user must be set up for the client:

[admin@RemoteOffice] ppp secret> add name=ex service=pptp password=lkjrht
local-address=10.150.1.254 remote-address=10.150.1.2
[admin@RemoteOffice] ppp secret> print detail
Flags: X - disabled
0 name="ex" service=pptp caller-id="" password="lkjrht" profile=default
local-address=10.150.1.254 remote-address=10.150.1.2 routes==""

[admin@RemoteOffice] ppp secret>

Then the user should be added in the PPTP server list:

[admin@RemoteOffice] interface pptp-server> add name=FromLaptop user=ex
[admin@RemoteOffice] interface pptp-server> print
Flags: X - disabled, D - dynamic, R - running
# NAME USER MTU CLIENT-ADDRESS UPTIME ENC...
0 FromLaptop ex
[admin@RemoteOffice] interface pptp-server>

And the server must be enabled:

[admin@RemoteOffice] interface pptp-server server> set enabled=yes
[admin@RemoteOffice] interface pptp-server server> print
enabled: yes
mtu: 1460
mru: 1460
authentication: mschap2
default-profile: default
[admin@RemoteOffice] interface pptp-server server>

Finally, the proxy APR must be enabled on the 'Office' interface:

[admin@RemoteOffice] interface ethernet> set Office arp=proxy-arp
[admin@RemoteOffice] interface ethernet> print
Flags: X - disabled, R - running
# NAME MTU MAC-ADDRESS ARP
0 R ToInternet 1500 00:30:4F:0B:7B:C1 enabled
1 R Office 1500 00:30:4F:06:62:12 proxy-arp
[admin@RemoteOffice] interface ethernet>

Tutorial Mikrotik VPN: EOIP

Ethernet over IP (EoIP) Tunneling is a MikroTik RouterOS protocol that creates an Ethernet tunnel between two routers on top of an IP connection. The EoIP interface appears as an Ethernet interface. When the bridging function of the router is enabled, all Ethernet level traffic (all Ethernet protocols) will be bridged just as if there where a physical Ethernet interface and cable between the two routers (with bridging enabled). This protocol makes multiple network schemes possible.

Network setups with EoIP interfaces:

Possibility to bridge LANs over the Internet
Possibility to bridge LANs over encrypted tunnels
Possibility to bridge LANs over 802.11b 'ad-hoc' wireless networks

An EoIP interface should be configured on two routers that have the possibility for an IP level connection. The EoIP tunnel may run over an IPIP tunnel, a PPTP 128bit encrypted tunnel, a PPPoE connection, or any connection that transports IP.

Specific Properties:

Each EoIP tunnel interface can connect with one remote router which has a corresponding interface configured with the same 'Tunnel ID'.
The EoIP interface appears as an Ethernet interface under the interface list.
This interface supports all features of and Ethernet interface. IP addresses and other tunnels may be run over the interface.
The EoIP protocol encapsulates Ethernet frames in GRE (IP protocol number 47) packets (just like PPTP) and sends them to the remote side of the EoIP tunnel.
Maximal count of EoIP tunnels is 65536.

This is how to set up EoIP to bridge two (or more) Mikrotik routers for central PPPoE authentication

Using 2 routers called R1 and R2 that have an IP connection between them and R2 has 2 ethernet ports, i.e. you can ping rB from R1 and R1 from R2 where the R1 facing eth port is called eth1 and its other port is called eth2.

1. create a new EoIP tunnel on R1.
2. create a new EoIP tunnel on R2, where the tunnel ID is the same as the one on R1 but the MAC addreses are different.
4. create a new bridge on R1 and R2
3. add a PPPoE server to the Bridge on R1.
4. on R2 and add eth2 and the EoIP tunnel to the bridge.
5. put an IP address onto eth2 (any address seems to work, but it maybe better to use a different subnet for routing purposes).

Now you should be able to establish a PPPoE connection from a PC plugged into the eth2 port on router R2, this PPPoE connection will terminate on router R1.

This is not the most efficient method of using the available bandwidth on a network, but is perhaps easier than having a PPPoE A/C on every Mikrotik router and using RADIUS as you can just have PPP secrets setup on one router.

Mikrotik for Online Game

2007-09-27T13:00:00.000-07:00

CREATE DOT A di MIKROTIK

DOTA merupakan salah satu games Warcraft untuk versi online. pada gamenet games ini merupakan games terlaris selain games-games online lain seperti ragnarok, sealonline, pangya, deco dan masih banyak lagi. selain games ini gratis alias nda pake pocer, juga sangat asyik dimaenkan. disini saya coba menulis tentang bagaimana create DOTA di mesin mikrotik.

Ikuti langkah-langkah berikut :

[admin@mendem] >ip firewall nat add chain=srcnat action=masquerade out-interface=Public

[admin@mendem] >ip address add address=202.xxx.xxx.xxx/32 interface=Public (xxx diisi sesuai IP public kamu)

[admin@mendem] >ip firewall nat add chain=dstnat dst-address=202.xxx.xxx.xxx action=dst-nat to-addresses=192.168.***.*** (*** diisi sesuai dengan IP lokal yang ingin bisa create game)

[admin@mendem] >ip firewall nat add chain=srcnat src-address=192.168.***.*** action=src-nat to-addresses=202.xxx.xxx.xxx

Agar client yg tergabung dalam LAN atau yang satu network bisa bermain bersama tambahkan perintah :

[admin@mendem] >ip firewall nat add chain=dstnat dst-address=202.xxx.xxx.1-202.xxx.xxx.254 action=netmap to-addresses=192.168.***.1-192.168.***.254

[admin@mendem] >ip firewall nat add chain=srcnat src-address=192.168.***.1-192.168.***.254 action=netmap to-addresses=202.xxx.xxx.1-202.xxx.xxx.254

Sampai disini sudah berhasil , namun ternyata ada masalah yang saya hadapi, yaitu mesin mikrotik tidak dapat saya akses atau remote dari luar jaringan dan masalah lain, port SNMP ikut-ikutan ketutup sehingga untuk menampilkan traffic cacti jadi blank …ada yang bisa membantu

Fix Dota Mik

Sebelumnya saya pernah menulis tentang Rules Create Dota di Mikrotik, namun ada kendala saat rules diaktifkan maka routerbox tidak dapat di remote, diping bahkan tidak bisa menampilkan grafik MRTG/Cacti.

Setelah beberapa kali mencoba dan mencari literatur dari mbah google akhirnya ketemu rules yang cocok untuk kepentingan remote dari luar jaringan, bisa di ping dan tentunya saya bisa melihat grafik pemakaian bandwitdh lewat MRTG/Cacti.

Rules nya seperti ini :

ip firewall nat add chain=dstnat dst-address=202. x . x . x protocol=tcp dst-port=6113 action=dst-nat to-addresses=192.168. x . x to-ports=6113

ip firewall nat add chain=dstnat dst-address=202. x . x . x protocol=udp dst-port=6113 action=dst-nat to-addresses=192.168. x . x to-ports=6113

ip firewall nat add chain=srcnat src-address=192.168. x . x protocol=tcp src-port=6113 action=src-nat to-addresses=202. x . x . x to-ports=6113

ip firewall nat add chain=srcnat src-address=192.168. x . x protocol=udp src-port=6113 action=src-nat to-addresses=202. x . x . x to-ports=6113

ip firewall nat add chain=srcnat src-address=192.168. x . x -192.168. x . x action=netmap to-address=202. x . x . x -202. x . x . x to-ports=0-65535

Mungkin sudah banyak yang tahu tentang rules diatas, harapan saya rules diatas bisa dipakai siapa saja yang memerlukannya, karena dari pengalaman yang ada sungguh sulit mencari literatur atau googling tentang rules create dota di mikrotik.

semoga membantu .

Mikrotik Hacking

2007-09-27T12:58:00.000-07:00

MRTG DARI GRAPHING MIKROTIK

MRTG adalah suatu aplikasi yg dibuat untuk melihat besarnya traffic yang terjadi pada saat pemakaian internet. Itu digambarkan dalam bentuk grafik.

Mikrotik memiliki fasilitas tersebut namanya tool graphing, idealnya MRTG mikrotik di batesi agar tidak bisa dilihat sembarang orang. Mungkin bisa di tambahkan rule allow acces IP mana saja yang diijinkan untuk melihatnya.

Kita dapat menemukan dengan mudah MRTG dari graphing mikrotik yang tidak di filter, caranya:

buka www.google.co.id
ketikkan key word = "mikrotik intitle:graphing"
pilih seach the web untuk semua web/IP yang ingin dicari
atau page from Indonesia untuk hanya web/IP indonesia saja

2007-09-27T12:57:00.001-07:00

Mikrotik DHCP Server

Untuk membuat DHCP Server diperlukan langkah-langkah sebagai berikut :

1. Membuat address pool dan menentukan IP Range
2. Mengaktifkan DHCP server.
Sedangkan untuk membuat Internet Gateway Server, inti langkahnya adalah melakukan masquerading yang akan melewatkan paket-paket data ke user.

Berikut ini adalah gambaran dari network dan servernya :

1. Mikrotik di install pada CPU dengan 2 ethernet card, 1 interface utk koneksi ke internet, 1 interface utk konek ke lokal.

2. IP address :
- gateway (mis: ADSL modem) : 192.168.100.100
- DNS : 192.168.100.110
- interface utk internet : 192.168.100.1
- interface utk lokal : 192.168.0.1

Untuk memulainya, kita lihat interface yang ada pada Mikrotik Router

[admin@Mikrotik] > interface print
Flags: X - disabled, D - dynamic, R - running
# NAME TYPE RX-RATE TX-RATE MTU
0 R ether1 ether 0 0 1500
1 R ether2 ether 0 0 1500[admin@Mikrotik] >

kemudian set IP address pada interface Mikrotik. Misalkan ether1 akan kita gunakan untuk koneksi ke Internet dengan IP 192.168.100.1 dan ether2 akan kita gunakan untuk network local kita dengan IP 192.168.0.1

[admin@mikrotik] > ip address add address=192.168.100.1 netmask=255.255.255.0 interface=ether1

[admin@mikrotik] > ip address add address=192.168.0.1 netmask=255.255.255.0 interface=ether2

[admin@mikrotik] >ip address print
Flags: X - disabled, I - invalid, D - dynamic
# ADDRESS NETWORK BROADCAST INTERFACE
0 192.168.100.1/24 192.168.100.0 192.168.100.255 ether1
1 192.168.0.1/24 192.168.0.0 192.168.0.255 ether2
[admin@mikrotik] >

Setelah selesai Barulah kita bisa melakukan setup DHCP server pada Mikrotik.

1. Membuat address pool

/ip pool add name=dhcp-pool ranges=192.168.0.2-192.168.0.100
/ip dhcp-server network add address=192.168.0.0/24 gateway=192.168.0.1
2. Tentukan interface yang dipergunakan dan aktifkan DHCP Server.

/ip dhcp-server add interface=ether2 address-pool=dhcp-pool enable 0

[admin@mikrotik] > ip dhcp-server print
Flags: X - disabled, I - invalid
# NAME INTERFACE RELAY ADDRESS-POOL LEASE-TIME ADD-ARP
0 dhcp1 ether2
sampai tahap ini, DHCP server telah selesai untuk dipergunakan dan sudah bisa di test dari user.

Langkah Selanjutnya adalah membuat internet gateway, Misalnya IP ADSL Modem sebagai gateway untuk koneksi internet adalah 192.168.100.100 dan DNS Servernya 192.168.100.110, maka lakukan setting default gateway dengan perintah berikut :

[admin@mikrotik] > /ip route add gateway=192.168.100.100

3. Melihat Tabel routing pada Mikrotik Routers

[admin@mikrotik] > ip route print

Flags: X - disabled, A - active, D - dynamic,
C - connect, S - static, r - rip, b - bgp, o - ospf
# DST-ADDRESS PREFSRC G GATEWAY DISTANCE INTERFACE
0 ADC 192.168.0.0/24 192.168.0.1 ether2
1 ADC 192.168.100.0/24 192.168.100.1 ether1
2 A S 0.0.0.0/0 r 192.168.100.100 ether1
[admin@mikrotik] >

Lanjutkan dengan Setup DNS

[admin@mikrotik] > ip dns set primary-dns=192.168.100.110 allow-remoterequests=no

[admin@mikrotik] > ip dns print
primary-dns: 192.168.100.110
secondary-dns: 0.0.0.0
allow-remote-requests: no
cache-size: 2048KiB
cache-max-ttl: 1w
cache-used: 16KiB
[admin@mikrotik] >

4. Tes untuk akses domain, misalnya dengan ping nama domain

[admin@mikrotik] > ping yahoo.com

216.109.112.135 64 byte ping: ttl=48 time=250 ms
10 packets transmitted, 10 packets received, 0% packet loss
round-trip min/avg/max = 571/571.0/571 ms

[admin@mikrotik] >

Jika sudah berhasil reply berarti seting DNS sudah benar.

5. Setup Masquerading, ini adalah langkah utama untuk menjadikan Mikrotik sebagai gateway server

[admin@mikrotik] > ip firewall nat add action=masquerade outinterface=ether1chain: srcnat

[admin@mikrotik] >

[admin@mikrotik] ip firewall nat print
Flags: X - disabled, I - invalid, D - dynamic
0 chain=srcnat out-interface=ether1 action=masquerade
[admin@mikrotik] >
Selesai, tinggal test koneksi dari user. seharusnya dengan cara ini user sudah bisa terhubung ke internet.

Cara ini memang cara yang paling mudah untuk membuat user dapat terhubung ke internet, namun tingkat keamanannya masih rendah dan diperlukan pengaturan firewall. Mudah-mudahan saya bisa membahasnya dilain waktu.

2007-09-27T12:54:00.000-07:00

Mikrotik Bandwidth Test

Overview

The Bandwidth Tester can be used to monitor the throughput only to a remote MikroTik router (either wired or wireless) and thereby help to discover network ‘bottlenecks’.

The TCP test uses the standard TCP protocol with acknowledgments and follows the TCP algorithm on how many packets to send according to latency, dropped packets, and other features in the TCP algorithm. Please review the TCP protocol for details on its internal speed settings and how to analyze its behavior. Statistics for throughput are calculated using the entire size of the TCP packet. As acknowledgments are an internal working of TCP, their size and usage of the link are not included in the throughput statistics. Therefore this statistic is not as reliable as the UDP statistic when estimating throughput.

The UDP tester sends 110% or more packets than currently reported as received on the other side of the link. To see the maximum throughput of a link, the packet size should be set for the maximum MTU allowed by the links – usually this is 1500 bytes. There is no acknowledgment required by UDP; this implementation means that the closest approximation of the throughput can be seen.

Installation

The Bandwidth Test feature is included in the 'system' package. No installation is needed for this feature

Hardware Resource Usage

!Caution! Bandwidth Test uses all available bandwidth (by default) and may impact network usability.

There is no other significant resource usage.

Bandwidth Test Description

Bandwidth Test Server Configuration

[admin@MikroTik] tool> bandwidth-server
Configure network bandwidth tester service. Use authentication for disabling
unwanted bandwidth wasting. Note that remote router must be MikroTik router in
order to run the test.

session
print
 get  get value of property
 set
export
[admin@MikroTik] tool> bandwidth-server print
  enabled: yes
    authenticate: no
allocate-udp-ports-from: 2000
    max-sessions: 10
[admin@MikroTik] tool>

Setting description:

enable - enable client connections for bandwidth test
authenticate - communicate only with authenticated (by valid username and password) clients
allocate-udp-ports-from - allocate UDP ports from
max-sessions - maximal number of bandwidth-test clients

The list of current connections can be get in session submenu:

[admin@MikroTik] tool> bandwidth-server session

print  print values of item properties
remove  remove item
[admin@MikroTik] tool> bandwidth-server session print
# FROM     PROTOCOL DIRECTION USER
0 10.0.0.202     tcp      send
[admin@MikroTik] tool>

Bandwidth Test Client Configuration

Bandwidth Test uses TCP or UDP protocol for test. The test tries to use maximum or partial amount of bandwidth to test link speed. Be aware that default test uses all available bandwidth and may impact network usability.

[admin@MikroTik] tool> bandwidth-test
Run TCP or UDP bandwidth test. Tries to use maximum or partial amount of
bandwidth to test link speed. Note that remote router must be MikroTik router
in order to run the test. Be aware that default test uses all available
bandwidth and may impact network usability.


assume-lost-time
direction  Direction of data flow
do
duration
interval
local-tx-speed
   once  print statistics once and quit
password  Password for remote user
protocol  Protocol to use for test
remote-tx-speed
   size  UDP packet size or TCP segment size
   user
[admin@MikroTik] tool> bandwidth-test

Descriptions of arguments:

address - IP address of destination host
assume-lost-time - If Bandwidth Server is not responding for that time, assume that connection is lost
direction - specify the direction of the test (receive, transmit, both, default is transmit)
do - Script source
duration - Duration of the test
interval - Delay between messages (in seconds). Default is 1 second. Can be 20ms...5s
local-tx-speed - Transfer test maximum speed (given in bits per second)
password - Password for remote user
protocol - Type of protocol to use (UDP or TCP, default TCP)
remote-tx-speed - Receive test maximum speed (given in bits per second)
size - Packet size in bytes (50..1500, default 512). Works only with UDP protocol
user - Remote user

Bandwidth Test Example

[admin@MikroTik] tool> bandwidth-test 10.0.0.202 user=admin direction=both protocol=udp \
\... size=1500 duration=14s
status: done testing
   tx-current: 11.49Mbps
tx-10-second-average: 10.05Mbps
tx-total-average: 7.96Mbps
   rx-current: 12.55Mbps
rx-10-second-average: 10.33Mbps
rx-total-average: 8.14Mbps

Load-balancing & Fail-over

2007-09-27T12:51:00.000-07:00

Load-balancing & Fail-over di MikroTik

Kondisi : ISP dimana kita bekerja sebagai Administrator menggunakan lebih dari satu gateway untuk terhubung ke Internet. Semuanya harus dapat melayani layanan upstream & downstream. Karena akan beda kasusnya apabila salah satunya hanya dapat melayani downstream, contohnya jika menggunakan VSAT DVB One-way.
Untuk kasus ini dimisalkan ISP memiliki 2 jalur ke Internet. Satu menggunakan akses DSL (256 Kbps) dan lainnya menggunakan Wireless (512 Kbps). Dengan rasio pemakaian DSL:Wireless = 1:2 .

Yang akan dilakukan :

Menggunakan semua jalur gateway yang tersedia dengan teknik load-balancing.
Menjadikan salah satunya sebagai back-up dengan teknik fail-over.

OK, mari saja kita mulai eksperimennya :

IP address untuk akses ke LAN :
> /ip address add address=192.168.0.1/28 interface=LAN
IP address untuk akses ke jalur DSL :
> /ip address add address=10.32.57.253/29 interface=DSL
IP address untuk akses ke jalur Wireless :
> /ip address add address=10.9.8.2/29 interface=WIRELESS
Tentukan gateway dengan rasionya masing-masing :
> /ip route add gateway=10.32.57.254,10.9.8.1,10.9.8.1
Pada kasus untuk teknik fail-over. Diasumsikan jalur utama melalui Wireless dengan jalur DSL sebagai back-up apabila jalur utama tidak dapat dilalui. Untuk mengecek apakah jalur utama dapat dilalui atau tidak, digunakan command ping.
> /ip firewall mangle add chain=prerouting src-address=192.168.0.0/28 action=mark-routing new-routing-mark=SUBNET1-RM
> /ip route add gateway=10.9.8.1 routing-mark=SUBNET1-RM check-gateway=ping
> /ip route add gateway=10.32.57.254
Good Luck!!

PCQ

Dengan menggunakan queue type pcq di Mikrotik, kita bisa membagi bandwidth yang ada secara merata untuk para pelahap-bandwidth™ saat jaringan pada posisi peak.

Contohnya, kita berlangganan 256 Kbps. Kalau ada yang sedang berinternet ria, maka beliau dapat semua itu jatah bandwidth. Tetapi begitu teman-temannya datang, katakanlah 9 orang lagi, maka masing-masingnya dapat sekitar 256/10 Kbps. Yah.. masih cukup layaklah untuk buka-buka situs non-porn atau sekedar cek e-mail & blog .

OK, langsung saja ke caranya :

Asumsi : Network Address 192.168.169.0/28, interface yang mengarah ke pengguna diberi nama LAN, dan interface yang mengarah ke upstream provider diberi nama INTERNET;
Ketikkan di console atau terminal :
> /ip firewall mangle add chain=forward src-address=192.168.169.0/28 action=mark-connection new-connection-mark=NET1-CM
> /ip firewall mangle add connection-mark=NET1-CM action=mark-packet new-packet-mark=NET1-PM chain=forward
> /queue type add name=downsteam-pcq kind=pcq pcq-classifier=dst-address
> /queue type add name=upstream-pcq kind=pcq pcq-classifier=src-address
> /queue tree add parent=LAN queue=DOWNSTREAM packet-mark=NET1-PM
> /queue tree add parent=INTERNET queue=UPSTREAM packet-mark=NET1-PM
Good Luck!!

Memanipulasi ToS ICMP & DNS di MikroTik

Tujuan :

Memperkecil delay ping dari sisi klien ke arah Internet.
Mempercepat resolving hostname ke ip address.

Asumsi : Klien-klien berada pada subnet 10.10.10.0/28

Memanipulasi Type of Service untuk ICMP Packet :
> ip firewall mangle add chain=prerouting src-address=10.10.10.0/28 protocol=icmp action=mark-connection new-connection-mark=ICMP-CM passthrough=yes
> ip firewall mangle add chain=prerouting connection-mark=ICMP-CM action=mark-packet new-packet-mark=ICMP-PM passthrough=yes
> ip firewall mangle add chain=prerouting packet-mark=ICMP-PM action=change-tos new-tos=min-delay
Memanipulasi Type of Service untuk DNS Resolving :
> ip firewall mangle add chain=prerouting src-address=10.10.10.0/28 protocol=tcp dst-port=53 action=mark-connection new-connection-mark=DNS-CM passthrough=yes
> ip firewall mangle add chain=prerouting src-address=10.10.10.0/28 protocol=udp dst-port=53 action=mark-connection new-connection-mark=DNS-CM passthrough=yes
> ip firewall mangle add chain=prerouting connection-mark=DNS-CM action=mark-packet new-packet-mark=DNS-PM passthrough=yes
> ip firewall mangle add chain=prerouting packet-mark=DNS-PM action=change-tos new-tos=min-delay
Menambahkan Queue Type :
> queue type add name=”PFIFO-64″ kind=pfifo pfifo-limit=64
Mengalokasikan Bandwidth untuk ICMP Packet :
> queue tree add name=ICMP parent=INTERNET packet-mark=ICMP-PM priority=1 limit-at=8000 max-limit=16000 queue=PFIFO-64
Mengalokasikan Bandwidth untuk DNS Resolving :
> queue tree add name=DNS parent=INTERNET packet-mark=DNS-PM priority=1 limit-at=8000 max-limit=16000 queue=PFIFO-64
Good Luck!!

Queue Tree with more than two interfaces

Basic Setup

This page will tak about how to make QUEUE TREE in RouterOS that with Masquerading for more than two interfaces. It’s for sharing internet connection among users on each interfacess. In manual this possibility isn’t writted.

First, let’s set the basic setting first. I’m using a machine with 3 or more network interfaces:

[admin@instaler] > in pr

# NAME TYPE RX-RATE TX-RATE MTU

0 R public ether 0 0 1500

1 R wifi1 wlan 0 0 1500

2 R wifi2 wlan 0 0 1500

3 R wifi3 wlan 0 0 1500

And this is the IP Addresses for each interface:

[admin@instaler] > ip ad pr

Flags: X - disabled, I - invalid, D - dynamic

# ADDRESS NETWORK BROADCAST INTERFACE

0 10.20.1.0/24 10.20.1.0 10.20.1.255 public

1 10.10.2.0/24 10.10.2.0 10.10.2.255 wifi1

2 10.10.3.0/24 10.10.3.0 10.10.3.255 wifi2

3 10.10.4.0/24 10.10.4.0 10.10.4.255 wifi3

On the public you can add NAT or proxy if you want.

Mangle Setup

And now is the most important part in this case.

We need to mark our users. One connectoin for upload and second for download. In this example I add mangle for one user. At the end I add mangle for local transmission because I don’t QoS local trafic emong users. But for user I need to separate upload and download.

[admin@instaler] ip firewall mangle> print

Flags: X - disabled, I - invalid, D - dynamic

disabled=no

0 chain=forward dst-address=10.10.2.36 action=mark-connection

new-connection-mark=users-userU passthrough=yes comment=”” disabled=no

1 chain=forward dst-address=10.10.2.36 action=mark-connection

new-connection-mark=users-userD passthrough=yes comment=”” disabled=no

2 chain=forward connection-mark=users-userU action=mark-packet

new-packet-mark=userU passthrough=yes comment=”” disabled=no

3 chain=forward connection-mark=users-userD action=mark-packet

new-packet-mark=userD passthrough=yes comment=”” disabled=no

98 chain=forward src-address=10.10.0.0/16 dst-address=10.10.0.0/16

action=mark-connection new-connection-mark=users-lokal passthrough=yes

99 chain=forward connection-mark=users-lokal action=mark-packet

new-packet-mark=lokalTrafic passthrough=yes

Queue Tree Setup

And now, the queue tree setting. We need one rule for downlink and one rule for uplink. Be careful when choosing the parent. for downlink traffic, we use parent “global-out”, because we have two or more downloading interfaces. And for uplink, we are using parent “public”, we want QoS uplink traffic. (I’m using pcq-up and download from manual) This example is for 2Mb/1Mb

[admin@instaler] > queue tree pr

Flags: X - disabled, I - invalid

0 name=”Download” parent=global-out packet-mark=”” limit-at=0

queue=pcq-download priority=1 max-limit=2000000 burst-limit=0

burst-threshold=0 burst-time=0s

1 name=”Upload” parent=WGW packet-mark=”” limit-at=0 queue=pcq-upload

priority=1 max-limit=1000000 burst-limit=0 burst-threshold=0

burst-time=0s

Now we add our user:

2 name=”user10D” parent=Download packet-mark=userD limit-at=0

queue=pcq-download priority=5 max-limit=0 burst-limit=0

burst-threshold=0 burst-time=0s

3 name=”user10U” parent=Upload packet-mark=userU limit-at=0

queue=pcq-upload priority=5 max-limit=0 burst-limit=0 burst-threshold=0

burst-time=0s

MAC Address + IP Address Linux

#!/bin/sh

iptables=/sbin/iptables

#definisikan default policy disini
$iptables -F INPUT
$iptables -F OUTPUT
$iptables -P INPUT DROP
$iptables -P OUTPUT DROP #ingat nanti buka policy output yg perlu
$iptables -F FORWARD
$iptables -F -t nat
$iptables -P FORWARD DROP

#definisi default policy dan bikin chain baru bernama maccheck di interface eth1
$iptables -t mangle -F
$iptables -t mangle -F maccheck
$iptables -t mangle -X maccheck
$iptables -t mangle -N maccheck
$iptables -t mangle -I PREROUTING -i eth1 -p all -j maccheck

#self explanatory… ip address + mac
$iptables -t mangle -A maccheck -s 192.168.0.1 -i eth1 -m mac -j RETURN
–mac-source
00:80:11:11:11:11
$iptables -t mangle -A maccheck -s 192.168.0.2 -i eth1 -m mac -j RETURN
–mac-source
00:80:22:22:22:22
$iptables -t mangle -A maccheck -s 192.168.0.3 -i eth1 -m mac -j RETURN
–mac-source
00:80:33:33:33:33

#selain yg terdaftar baik ip maupun mac akan di mark untuk nanti di drop, isi
dengan salah satu
mac yg aktif yg mana saja
#disini contohnya 00:80:11:11:11:11 yg sudah kita definisikan di atas
$iptables -t mangle -A maccheck -s 0/0 -i eth1 -m mac -j MARK –mac-source !
00:80:11:11:11:11
–set-mark 1
$iptables -t mangle -A maccheck -s 0/0 -i eth1 -p all -j MARK –set-mark 1

#drop packet yg di mark
$iptables -A INPUT -i eth1 -m mark –mark 1 -j DROP
$iptables -A OUTPUT -o eth1 -m mark –mark 1 -j DROP
$iptables -A FORWARD -i eth1 -m mark –mark 1 -j DROP

#lanjutkan firewall script anda disini

source = primadonal.com

Hotspot Mikrotik

2007-09-27T12:46:00.000-07:00

Mikrotik version 2.8beta6 used as a wireless Hotspot server/authenticator

rel 10/10/03-rev v

What we are trying to do:

The Mikrotik Router OS system is software designed to run on an "IBM type" Personal Computer. It has many capabilities including operating as a Wireless HotSpot controller, router, firewall, PPPoE controller, among many other capabilities. This router basically can be used to operate a small ISP. In our example, we are setting up a three port system which is designed to have one port going to the internet, a second to provide HotSpot services via an external access point and a third port to serve the user's local LAN. Separation and firewall protection is provided to prevent intrusion from the internet and from the HotSpot port into the user's local LAN. Be sure to verify the firewall protection for yourself. Advantages/Limitations of the Mikrotik Hotspot System as seen by the author can be viewed HERE.

The basic features that I need in this Home Hotspot installation are:

Provide isolation of computers on my home LAN from internet traffic and users on the WIRELESS HotSpot Access Point. This needed to be done without the use of encription on the wireless link so "anyone" could easily log in without first getting permission.
Allow my normal household internet traffic to/from the internet to use the same connection as traffic from my wireless HotSpot
Allow traffic on the Internet to access my mail server and any other servers on my Home LAN.
Provide "Casual" users of the Home HotSpot to "log in" and access their WebMail and normal Internet while limiting their bandwidth usage.
Allow "Trusted" users of the Home Hotspot to "log in" to access whatever ports and services may be allowed for them on an individual basis.
Allow "Me" to access anything I want to over the Wireless Hotspot connection to the local LAN or to the Internet.
Provide the capability to have a direct PPPoE connection to a DSL/Cable modem or alternatively a direct connection to a router LAN port.

I have concluded that the Mikrotik system provides all these features and many more. The basic configuration topology I wanted to develop is the three ethernet port shown below.

LAN access OR ether1 ether2 HotSpot RF Equipment |Remote
Internet <..> Cable/DSL modem <..> MikroTik Router <...>Wireless Access Point<~~> |Wireless
(ports 192.168.168.x) ether3 (Ports 10.5.50.x) |Computers
(in example below) | (in example below)
|
LOCAL
LAN
USERS
(ports 192.168.2.x)
(in example below)
The basic configuration:

The following definitions and configuration conditions apply to the Mikrotik Hotspot/Router OS installation described below.
1) The "public" (Internet) connection for the router (Router IP address = 192.168.168.28) is via an external (to the Mikrotik unit) hardware router with gateway IP address 192.168.168.1. This gateway is accessed via the "ether1" port on the Mikrotik unit.
2) The "Hotspot IP address pool" is used for contact with an external HotSpot client. The "universal client" allows for a user with "any" fixed IP address to make initial contact for user LOGIN. When the user then puts in "any" URL (e.g., http://www.yahoo.com) the DHCP server initially assigns an address from this pool (or uses the IP address already existing on a client) to clients and this connection is used to bring up the initial login screen. In the following example, this "hotspot IP address pool range" is 10.5.50.1 through 10.5.50.199. This service uses the ether2 hardware port on the Mikrotik unit. This IP pool is used by all hotspot clients for access.
3) The simple router configuration provides NO protection for OTHER devices which may be connected on the 192.168.168.X/24 (ether1) LAN from being accessed (perhaps maliciously) from the ether2 (hotspot) port. Suitable routing filters can be installed if this is a problem. See Mikrotik manual.
4) Before starting the entry of the following command sequence: a) connect the ether1 port to a LAN which has internet services available on a gateway address (192.168.168.1 in the example). b) connect a suitable Wireless Access Point (Dlink DWL-900AP+ or the 200mw Senao AP used by author) to the ether2 NIC port. Configure this AP with a suitable SSID, note it's MAC address for future reference, set the unit to Access Point Mode, set the AP unit to be a DHCP Client. c) Perform ALL the following commands from the Mikrotik Command Line Interface unless noted otherwise. I find the Winbox interface to be very useful for checking configurations and making changes after the system is initially setup. However, I had problems when I tried to input the initial setup in via the WinBox Interface. d) AS SOON AS the basic system works (and at intervals during initial setup if you wish), make a backup file of the operational system. "Simple" changes can screw up the programming and in many cases you will not immediately see how to recover. The availability of a backup file will prevent your having to type everything in again by hand. e) Before you begin, make any IP address modifications to a printout of the following sequence and then follow that modified instruction list precisely.
5) The ether3 port will be used for a LOCAL LAN port. Web-Proxy filters will be used to isolate the local LAN on 192.168.2.X/24 from the HotSpot ether2 port on 10.5.50.X/24 and from the internet on ether1. Note: If you are going to use a third ether3 port, be sure and install all three (or more as needed) NIC cards before you begin programming. The computer will not be confused, but the programmer might be if the LAN port numbers move around in the computer chassis as a result of installing a new NIC (LAN card) after programming has begun.
6) The computer for your router can be "most any" Pentium PC if you are just serving the three ethernet ports. The three NIC cards can be most any late model 10/100 card. The supported list is in the Mikrotik manual. 64megs of RAM are needed and at least a 100meg hard drive or a 64meg Flash Drive will work fine. A floppy will be necessary for initially loading the system if you use a hard drive. A CDROM drive is optional and really not required. No floppy or CDROM is necessary if the Mikrotik FLASH DRIVE (with Hotspot and system software)option for US$125 from http://www.fament.com is used as the system is supplied ready loaded with the latest Mikrotik software. Mikrotik provides several initial install modes. I used the "make up 9 floppies and boot them in in sequence to get the system loaded" option when loading a hard drive. See Mikrotik manual for more detailed install instructions.

Generally:
The ether1 interface is connected to 192.168.168.X/24 network (public network). Connection to the internet is provided through the gateway of the local LAN router at 192.168.168.1.

Then on ether2 interface we create a 10.5.50.1/24 network port with universal client, transparent proxy and other features. The SMTP server has to be setup as well as the dns server. We'll use the LAN gateway address 192.168.168.1 since our external "public" router connected to the internet provides DNS service and internet connectivity on this address. (Note: If your router allows it, you can use your ISP's DNS server IP address(es). If not, you may HAVE to use your local router's DNS services as the author did.)

Then on ether3 interface, we create a 192.168.2.1/24 network port for connection to your local (or household) LAN. Web-Proxy filters will then be used to isolate ether2 from ether3 and ether1 from access to either ether2 or ether3 for protection from hacking.

In the programming guide below: a) instructions and comments are in BLACK. b) What the computer prints on the monitor screen are in GREEN. c) What you type into the keyboard in response is in RED.

Step by Step Programming Procedure:

The following procedure assumes that you have already installed the BASIC MIKROTIK ROUTER OPERATING SYSTEM. If you need to do this basic install, proceed FIRST to http://www.gpsinformation.org/hotspot/installmikrotikfloppies.html to do the basic router software installation BEFORE continuing on the procedure on this page. DEMO LICENSE USERS NOTE CAREFULLY!> Demo Licensed Mikrotik software MUST be version 2.8beta5 or later and you must answer NO to the universal client and web-proxy questions in the Hotspot setup or your installation will fail.

At the beginning of this setup process, the 'system reset' command at the Mikrotik command line is used to initialize the Mikrotik router. The key is pressed after each RED command is entered. Proceed exactly as follows. Note: ALL spaces and punctuation marks are ESSENTIAL when inputing commands in RED below. If a command (such as /ip) has a slash in front, be sure to put it in. [Brackets] are NOT the same as (parenthesis). You must be VERY careful when inputing the commands. You can make a simple typographical error and the system may accept it and then your system may not work at all.

A few "getting around" commands for the Command Line Interface are: 1) commands are always followed by pressing ENTER. 2) / forward slash gets you back to the root directory. 3) hold shift then ? key gives you the command list for the command folder you are in. 4) .. takes you back one directory. 5) entering < /ip address> from "any command directory" takes you to the ip address directory. 6) the default system user ID is admin with a blank (just hit enter) password. 7) To save your work at any time, enter /system backup save name= (without the <>) at the command prompt. 8) To go from one directory to another on the tree branch, just enter the name. For instance, if you are at >ip and want to go to the system directory, just enter , then ENTER.

Programming the basic two port Hotspot system

The default user ID for the Mikrotik Router is and the password is blank (just press ENTER). As SOON as you do the system reset and login, you will change your password. When the router initially boots up, you will see:

Mikrotik 2.7.10 (You might have a later version and that is OK. Note that Mikrotik version 2.7.3 thru 2.7.10 and 2.9beta1 thru 2.8beta4 cannot be used to generate a working Hotspot using the free DEMOnstration license key. They work fine with the paid license key. However 2.8beta5 and later produce a working Hotspot with the DEMO license key using the proceedure below.)
(You type in what is in RED and then press ENTER.)
1) Mikrotik Login: admin (BE SURE to use lower case letters. It does matter.)
2) Password: (The default password is so just press ENTER.)
You will see Mikrotik's text logo and then: After you are logged in to the router from the command terminal, you will get the [admin@MikroTik] prompt as below. Then enter what is in RED and press ENTER.
3) [admin@MikroTik] > system reset
4) Dangerous! Reset anyway? (y/N): y
The system reset command will clear out any old configuration data and reboot. After reboot, login again as before and start entering the commands as follows when you have logged in successfully.
5) [admin@MikroTik] > password (This will let you change your password to something besides .
6) old password: (Since your old password was just press ENTER.)
7) new password: mynewpassword (Select YOUR choice of password to enter here and write it down.)
8) retype new password: mynewpassword (Asks second time just to be sure.)
Then:
9) [admin@MikroTik] > interface
10) [admin@MikroTik] interface> print
Flags: X - disabled, D - dynamic, R - running
# NAME TYPE MTU
0 X ether1 ether 1500
1 X ether2 ether 1500
2 X ether3 ether 1500
There are three NICs installed in the system and initially all three are disabled (X).
11) [admin@MikroTik] interface> set 0,1 disabled=no (This enables both of the ethernet ports ether1, ether2, and leaves ether3 off for now.)
12) [admin@MikroTik] interface> /ip
(Note: The address 192.168.168.28 (below) represents the PUBLIC INTERNET side IP address of the Mikrotik Router. Change to your own suitable address as may be required.)
(All commands must be all in one continuous string (no carriage returns) when input and followed at the end by a carriage return. Be careful to look for parts of commands on second and even third lines in the listings below. The /24 after the IP address is equivalent to stating that the mask is 255.255.255.0)

Note: In this option (starting with step #13), we are going to use DHCP for automatic configuration of the ether1 NIC IP address, for the Gateway IP address, and for DNS Server resolution. If you would prefer to use FIXED IP addresses for these, use the alternative procedure HERE. To use DHCP for IP resolution on ether1 NIC port, proceed as directed below. Make sure your ether1 NIC port is connected to a router with DHCP SERVICES and then proceed to step #13

13) [admin@MikroTik] interface> /ip dhcp-client
14) [admin@MikroTik] ip dhcp-client> set enabled=yes interface=ether1
Now to check the dhcp setup we just did:
15) [admin@MikroTik] ip dhcp-client> print
enabled: yes
interface: ether1
host-name: **
client-id: **
add-default-route: yes
use-peer-DNS: yes
To show the dhcp leases that should have been obtained assuming your ether1 port is connected to a router with DHCP Services:
16) [admin@MikroTik] ip dhcp-client> lease print
address: 128.1.1.120/24
expires: sept/25/2003 09:43:00
gateway: 128.1.1.1
primary-dns: 207.69.188.186 (yours will likely be different)
secondary-dns: 192.195.1.2 (if your DHCP server provides a second DNS server. Yours will differ.)
[admin@MikroTik] ip dhcp-client> /ip
17) [admin@MikroTik] ip> hot (This abbreviation moves you to folder "hotspot". The first 2 or 3 letters of commands will usually work.)

(Now we run the Mikrotik Hotspot Setup Wizard.)
18) [admin@MikroTik] ip hotspot> setup
Select interface on which to run HotSpot
19) hotspot interface: ether2 (You enter the which is the port used by the external access point for HotSpot Access.)

Enable universal client configuration? (Note: This feature permits a roaming hotspot client (user) to have ANY IP ADDRESS and GATEWAY ADDRESS set into his computer networking setup and still operate the Hotspot. This feature is NOT AVAILABLE to demo hotspot licenses.)
NOTE! For the FREE DEMO LICENSE, you MUST answer NO to this question.
20) enable universal client: yes (paid license users erase the default and enter yes. Note: If you enable the Universal Client, you WILL NOT be able to use the DWL-900AP+ in REPEATER mode. The IP "mangle" that Universal Client uses to allow a user with "any" IP address to login to the HotSpot confuses simple repeaters such as the DWL-900AP+.

Now we setup the HotSpot address for the Access Point interface on ether2. This is your selected hotspot gateway IP address for your Hotspot Access Point. It must be in the range of your Hotspot Pool selected below.
21) Local address of hotspot network gateway: 10.5.50.1/24 (Just press ENTER if the default is OK, otherwise enter your own gateway IP address for your HOTSPOT system. Don’t change this unless you understand what you are doing.)

22) masquerade hotspot network: yes

Now we set up the pool for HotSpot IP addresses. This is your assigned range for DHCP generated Hotspot IP addresses. 10.5.50.1 is reserved for the hotspot gateway IP address.
23) Address pool of hotspot network will be: 10.5.50.2-10.5.50.254 (If you want to put some fixed IP addresses inside this DHCP pool range, they will operate just fine. (Note: If you are tempted to set the upper bound to some other number such as 200 to allow space for FIXED IP addresses for some devices, this is NOT a good idea This is because if later you use Universal Client mode, then for the fixed IP addresses outside the HotSpot's DHCP range, the UC will double assign a second IP address to the "out of range" MAC addresses and this can cause strange results such as timeout timers not working properly. Note also: Due to a bug in the hotspot setup wizard in current Mikrotik software, you cannot have a range of 10.5.50.50-10.5.50.254 and leave the range 2 through 49 open. If you fail to follow this guidance, you will find that multiple users cannot reliably login to the hotspot. Just use the default and be happy! )

Now setup so the router can access your SMTP server. Select SMTP server IP address of your mail server's SMTP server:) 207.69.188.15 (You have to put in YOUR SMTP server's IP address for outbound email. This can be your ISP's SMTP server or a local server. If you do not have an SMTP server, enter some unused IP address in the IP range used by ether1. (DEMO users will not get this option.)
24) ip address of smtp server: 207.69.188.15

Use local DNS cache?
25) use local dns cache: yes (You get to pick if you want the HotSpot to use the dns cache or go outside to your external DNS server for each DNS request.)

Now we setup the DNS configuration. Enter YOUR router gateway IP or your ISP's recommended DNS server IP address here. It may be that only your router gateway IP will work here if your router provides DNS services. Using your ISP's DNS server will usually be faster if your router permits this or if you plan to use PPPoE on ether1 connected directly to a DSL or Cable modem.
Setup DNS Configuration
26) dns servers: 192.168.168.1 Should be the same as your other DNS server entries.

Now we create the first local hotspot user. It is easy to create additional hotspot users using WinBox at a later time. Using WinBox, you can set up a profile which allows multiple logons without password and other profiles (such as the default) that allow only one login per name. In addition, this same profile can set the Tx and Rx baud rates allowed for each separate user profile. Each user ID can be set up with the same or different password or no password at all.

27) Name of local hotspot user: admin (This is the hotspot administrator's user ID. You can change if you wish. WRITE THIS AND THE PASSWORD DOWN! This is NOT the same as the Mikrotik Router's User ID and PASSWORD.)
28) password for the user: admin (This is administrator's password. Change as you see fit.)
Note: Setting up additional users is easy to do using WinBox. There is no provision for HotSpot users to self-register their own user names and passwords for "free hotspot" use. In fact, there is no real need on a “free hotspot". However, you can, for instance, set up "guest" as a user name with no password and set up a “guests” profile in WinBox USER PROFILES. Then add a note on the html login screen that "GUEST users may login as with no password for low speed internet access" or similar if you wish to offer universal low speed access to transient guests as well as offering "known users" high speed access. This change of speed requires additional entries for guest baud rates in the hotspot user profiles. I suggest having multiple entries in the user table for “guest” including guest, GUEST, Guest, and to try to cover all combinations a user is likely to enter in the login window. See Mikrotik HotSpot manual for more information on how to setup the WinBox software and enter additional users and passwords.

Select another port for (www) service.
port 80 is (normally) used by www service, select some other port for this service.
29) another port for service: 8081
Normally port 80 is used for (www) service. But on the Hotspot ether2 port, port 80 is used by the Hotspot Services and login html page. This means that if you wish to be able to access the winbox, then you will have to use port 8081 to access the router from the WINBOX interface. The Hotspot system demands use of port 80.
Use transparent web proxy for hotspot clients?
A "web proxy" is a cache used to store webpages, images, etc so that repeated accesses to such items do not have to go all the way to the destination sever when users go to the same webpage (such as http://www.yahoo.com) repeatedly over a short time. Such proxy servers typically have a short lifetime to avoid furnishing "stale" data to users.
NOTE! For the FREE DEMO LICENSE, this feature is NOT AVAILABLE and you MUST answer NO to this question.
30) use transparent web proxy: yes (Answer "yes" for paid license users.)

Now, let's see if we are communicating with the external Access Point and user. Note that unless you actually have a computer or access point connected to and powered up and linked to the ether2 port this entire printout (Flags:X .....) will be BLANK. If you wait to plug in your computer or access point until AFTER you execute this command and then execute it again (up arrow brings up prior command(s)), it can be 30+ seconds after you plug in the cable before you get the printout. Make SURE you have a "connected" light on both ends of your ether2 to computer/AP cable. The actual IP addresses may differ.
31) [admin@MikroTik] ip hotspot> universal client print
Flags: X - disabled, I - invalid, H - DHCP, D - dynamic
# MAC-ADDRESS ADDRESS TO-ADDRESS INTERFACE IDLE-TIME
0 D 00:05:5D:5F:4E:34 10.5.50.100 10.5.50.100 ether2 10s

See item 32a) below for proper syntax for version 2.7.x and earlier revisions.
32) [admin@MikroTik] ip hotspot> /ip hotspot profile set default shared-users=1 (versions 2.8.x and higher)

32a) [admin@MikroTik] ip hotspot> /ip hotspot profile set default only-one=yes (versions BELOW 2.8)
This command sets the hotspot to accept SINGLE logins from the default user group. You will need to setup a user profile with the "only-one" parameter "unchecked" in the winbox IP>HOTSPOT>USER>PROFILE settings. We need this on our Hotspot system so multiple simultaneous logins can occur. To install and enter the WINBOX program, proceed as follows: a) connect either to your local LAN router/hub that is feeding the ether1 (public) port or b) connect to the hotspot port, and login to the hotspot as the admin with password. Once connected one of these two ways, you can install and enter WinBox by calling up your browser and entering the PUBLIC IP address of your Mikrotik router as the URL with port 8081 as: http://192.168.168.28:8081. Then click on the WinBox icon on the upper left of the browser window and download to a suitable directory on your computer. Then execute the file winbox.exe load WinBox. (You can use Windows Explorer to send an icon to your desktop if you wish.) Then Click the WinBox icon on your desktop to go to winbox.) To set up the user profiles and user listings, click on IP>Hotspot. You will see users, user profiles, DHCP, Active, etc tabs. Click on profiles and add your user groups with their restrictions. For instance, Give your "guest" groups ONLY web privileges. Now click on USERS and add all the names you need and assign them to whichever group you wish. Then go to the IP>HOTSPOT> and you will see your users listed. Double click on thePROFILE line “guests” and view the popup window. You should see the profile name “guests”, mark-flow should be “hs-auth”, and the ONLY-ONE should be UNchecked (or "shared users" should be set to maybe 50), and login method should be “enabled-address”. All else blank for now. This screen will allow multiple simultaneous logins to the guest group. Here in this window you can also set up timeouts, bandwidth allowances, and other variables. Consult your Mikrotik manual for more details.

==========================================
At this point, the basic hotspot setup is completed and you should be able to enter any normal URL into the browser of a computer connected by wireless to the Wireless Access Point (may need to use a crossover cable if AP is directly connected to the ether2 NIC) and see the login screen. Enter your user ID and password (admin, admin) and you should be connected through to the internet. You should also be able to connect a Windows computer NIC directly to the ether2 port using a crossover cable if you want to try out the system operation without using the wireless link initially. You may want to edit the Login.html, trouble.html and other login-related pages using FrontPage, Dreamweaver or similar to customize these for your particular installation. Don't try and edit using Netscape Composer or it will likely fail to work with Mikrotik. (Mine did.)

Here is my list of "Gotchas" that will hopefully keep you from having some of the problems I did in getting started in further applications
==========================================

ADDING A THIRD NIC PORT TO SERVE YOUR LOCAL LAN.
If you add a THIRD port to the router, you can isolate your Hotspot from your local LAN and prevent Hotspot users from having any access to your local LAN which is using a common DSL or Cable internet line. Add the third ethernet card as ether3 and enter the following programming to activate the ether3 port. With this arrangement and programming, Hotspot users connected on ether2 and any local LAN users connected via ether3 will have full internet access via ether1, but will be isolated from each other.

Note: Demo software users have only 4 total NAT entries allowed and other limitations which will not permit all of the following to be entered. No harm in seeing how far you can get for your own configuration. Remember that the "web-proxy" commands are inoperative in the DEMO licensed software.

The IP address range of the third port will be 192.168.2.1 to 192.168.2.254. The gateway address of the third port will be 192.168.2.1. When the third LAN card is added to the computer, it will show up in the interface print list as ether3 and it will be "X" which means out of service. Note that which port is designated as ether1, ether2, and ether3 (by the computer) may change if the third LAN card is added AFTER the above Hotspot programming.
36) [admin@MikroTik] > /interface
37) [admin@MikroTik] > print
Flags: X - disabled, D - dynamic, R - running
# NAME TYPE MTU
0 R ether1 ether 1500
1 R ether2 ether 1500
2 X ether3 ether 1500
(Note: To enable ether3, in case it is disabled (X), proceed as follows.
38) [admin@MikroTik] interface> enable ether3
39) [admin@MikroTik] interface> print
Flags: X - disabled, D - dynamic, R - running
# NAME TYPE MTU
0 R ether1 ether 1500
1 R ether2 ether 1500
2 R ether3 ether 1500
(Note: The R above shows that all three ports are now "Running". Note that the ether1 card is known as #0 in the list ID.)
40) [admin@MikroTik] interface> /ip
41) [admin@MikroTik] ip> ad
42) [admin@MikroTik] ip address> print
Flags: X - disabled, I - invalid, D - dynamic
# ADDRESS NETWORK BROADCAST INTERFACE
0 192.168.168.28/24 192.168.168.0 192.168.168.255 ether1
1 ;;; hotspot network
10.5.50.1/24 10.5.50.0 10.5.50.255 ether2

43) [admin@MikroTik] ip address> add address=192.168.2.1/24 comment="Home network" interface=ether3
44) [admin@MikroTik] ip address> .. ( The .. means drop back one directory level.)
45) [admin@MikroTik] ip> /ip pool add name=home_dhcp_pool ranges=192.168.2.2-192.168.2.199
(Note: Adds new DHCP pool name to list. Leaves IP addresses 192.168.2.200 through 192.168.2.254 for use by fixed IP address devices.)
46) [admin@MikroTik] ip> /ip dhcp-server add name="home_dhcp_server" interface=ether3 lease-time=24h \ address-pool=home_dhcp_pool netmask=24 gateway=192.168.2.1 \ disabled=no
Note: The above sets up the new DHCP server for ether3 port so users can get IP addresses in the range. Also sets up the gateway as address 192.168.2.1.
47) [admin@MikroTik] ip> firewall src-nat add src-address=192.168.2.0/24 action=masquerade
(Note: Sets up to masquerade all of the IPs on ether3 so they can access the internet via ether1 using the gateway 192.168.2.1.)
At this point, if ether1 is connected to a LAN port with IP=192.168.168.1 (or YOUR router's gateway address) you SHOULD be able to connect to ether3 and make an immediate connection to the internet.
==================================================================
The following (optional) commands are grouped so you can pick and choose which services you may want to block/add.
====
Now for additional Added features, firewall filters, PPPoE, and etc.
48) [admin@MikroTik]ip> /ip firewall dst-nat add dst-address=0.0.0.0/0:53 protocol=udp \ action=nat to-dst-address=192.168.168.1 \ comment="intercept all DNS requests" This commands that all DNS requests will be grabbed and repointed to your local router at 192.168.168.1. This is already done automatically for the Hotspot (ether2) interface. If you want to add this for ether3 but NOT all interfaces (in case you have more than 3 ports) you would add

to the line above.

Note the [BRACKETS] in the command below.
49) [admin@MikroTik] ip> /ip firewall dst-nat set [find comment="intercept all DNS requests”] \ to-dst-address=192.168.168.1 action=nat
The above finds the comment "intercept all DNS requests" and sends all related DNS requests to 192.168.168.1.
Note: As an ALTERNATIVE to the above you could use: \ to-dst-address=10.5.50.1> However, sending the DNS calls DIRECTLY to the DNS server is saves router processing time and is preferred.)
50) [admin@MikroTik] ip> address print (This shows how your network is setup.)
Flags: X - disabled, I - invalid, D - dynamic
# ADDRESS NETWORK BROADCAST INTERFACE
0 ;;; Public Internet Network
192.168.168.28/24 192.168.168.0 192.168.168.255 ether1
1 ;;; hotspot network
10.5.50.1/24 10.5.50.2 10.5.50.255 ether2
2 ;;; Home Network
192.168.2.1/24 192.168.2.0 192.168.2.255 ether3
====
Now we put in blocking filters to prevent ANY access to ether2 and ether3 from the internet ether1.
51) [admin@MikroTik] ip>/ip web-proxy access add src-address=192.168.2.0/24 (This for future use by port ether3. Putting it in now assures it is installed in the correct sequence later when you finish installing ether3.)
52) [admin@MikroTik] ip>/ip web-proxy access add src-address=10.5.50.0/24 (This for use by the HotSpot on ether2)
53) [admin@MikroTik] ip>/ip web-proxy access add action=deny (This denys access from all other ports such as ether1.)
(Note: The three commands above protect your ether2 and ether3 users from access from the internet. This will allow ONLY local clients on your local LAN and on your HotSpot to access the web-proxy. If you are running your Mikrotik box behind a NAT/firewall and already on a local LAN, this is not essential, but it can't hurt. Failure to put in this protection will leave you "wide open" if you are connected directly to the internet via PPPoE or LAN without benefit of other firewall protection.
====
Now we add commands to allow Winbox, our mail server, and other local servers connected to ether2 to operate.
First we open up the four ports so Winbox and its associated FTP client can operate from all ports to the Mikrotik Router.
54) [admin@MikroTik] ip> /ip firewall rule input add dst-address=0.0.0.0/0:3987 protocol=tcp \ comment="accept winbox-tls"
55) [admin@MikroTik] ip> /ip firewall rule input add dst-address=0.0.0.0/0:8081 protocol=tcp \ comment="accept winbox"
56) [admin@MikroTik] ip> /ip firewall rule input add dst-address=0.0.0.0/0:20-21 protocol=tcp \ comment="accept ftp"

At this point, Winbox can connect to the router through any of the three ether(x) ports.  However you might want to limit who can connect either by having a src-address=xxx.xxx.xxx.xxx/32 (/32 single ip) or set WHO can connect to the service under /ip service.
====
At this point, you should be able to connect a Windows computer with NIC (with crossover cable) into the ether3 port and access the internet via
the ether1 connection to the internet as well as have the ether2 port operating as a Hotspot controller.  As of this point, no inbound traffic from the
public port ether1 to ether2 or ether3 is permitted.  Ether 1 must be connected to a LAN router interface to the internet with DHCP service on
gateway address 192.168.168.1.
====
Now we add filters to allow outside users on the internet to access our mail server.  Most ISPs block access to port 25 but you can insert any port you wish for the xxx below.
57) [admin@MikroTik] ip> /ip firewall rule input add dst-address=0.0.0.0/0:25 protocol=tcp \ comment="accept incoming SMTP"
 Now we add a filter to allow access to port 110 so mail server users can collect their mail
58) [admin@MikroTik] ip> /ip firewall rule input add dst-address=0.0.0.0/0:110 protocol=tcp \ comment="allow POP3 mail pickup"
You can add additional filters as needed.  We also need to add filters to direct incoming mail traffic to our mail server which happens to be on IP address 192.168.2.66.
====
THESE FILTERS are a "work in progress"  Check back and I am working on PPPoE and more filters and will add them when they are checked out and working.
=======================================================
OPTIONAL ADDITIONAL FEATURES:
You may wish to have some computers arranged so that they automatically login and so no manual LOGON sequence is required.  There are two ways to do this.  One way is to use the remote client's MAC address as the password and the other is to use "cookies".
 a) To Automatically LOGIN the computer with MAC=00:80:C8:AC:EE:34, enter the following commands:
59) [admin@MikroTik] /ip hotspot set auth-mac=yes auth-mac-password=yes
    [admin@MikroTik]  /ip hotspot user add name=00:80:C8:AC:EE:34 \  password=00:80:C8:AC:EE:34
      [admin@MikroTik]  /ip hotspot user add name=00:80:A4:CC:EF:84 \  password=00:80:A4:CC:EF:84
Following these commands, the particular computers with the two selected MAC addresses will immediately login (automatically) and connect whenever browser access  to a URL is attempted.  You can add any number of automatic logins by this approach.  In addition,  Cookies can be used for automatic login.  See the Mikrotik Manual for details.
------------------------
You may want to allow users to access certain websites WITHOUT having to login to the Hotspot.  For instance, you might wish to allow them to access the Atlanta Free Net website at http://www.atlantafreenet.org before they login.  What you do is to include firewall rules in the hotspot-temp chain to allow access to particular IP addresses PRIOR to the firewall rule which rejects all other traffic from temporary addresses.  This new rule MUST be placed BEFORE the "redirect to hotspot service rule.  To do this you enter the following commands:

60a)  [admin@MikroTik] /ip firewall  dst-nat add dst-address=x.x.x.x:32 dst-port=80 protocol=tcp \ action=accept
60b)  [admin@MikroTik] /ip firewall rule hotspot-temp add dst-address=x.x.x.x/32 dst-port=80 protocol=tcp \ action=return
Again: You must place these rules BEFORE the final REJECT rules.  Note that you MUST use an IP address.  A URL cannot be used.  Note that Mikrotik will soon have a version allowing URLs instead of IP addresses in this mode.

-------------------------
You may wish to add a rule to allow all users to use your mailserver port 25 REGARDLESS of what their mail server settings happen to be. You will need to be careful to setup your mail server to avoid becoming a spam relay! Here is how you set up the Mikrotik to direct any/all port 25 traffic to YOUR mailserver's port 25. The following assumes 192.168.168.66 is your mailserver.
61) [admin@MikroTik] /ip firewall dst-nat add src-address=10.5.50.0/24 dst-port=25 protocol=tcp \ to-dst-address=192.168.168.66 action=nat \ comment="Translate all SMTP TCP port 25 traffic to our mail server"

----------------------
Hotspot users must access the Hotspot by use of a browser with JAVA support. This currently includes IE5/6, Netscape 4/6/7 and Mozilla 1.4 among many others.

======================================================
I want to express my appreciation for the able assistance of Eje Gustafsson of the The Family Entertainment Network  http://www.fament.com  for his able assistance in finishing up this design and in particular for the firewall filter design and other special features.  Mr. Gustafsson is a design consultant on the Mikrotik and Star OS Hotspot Routers and I am impressed with his expertise.  FEN also sells Mikrotik software licenses and "solid state FLASH disk drives" for use with the Mikrotik software.  With this flash drive, a router can be built with no floppy/CDROM/Hard Drive for reliability.

The instructions in this article are copyrighted (c) by Joe Mehaffey 2003.  These directions may be freely copied for individual use PROVIDED the article is not changed/edited or used commercially  without the written approval of the author.

TK2 - Tika Tiwi AFI ( OK!! )

2007-09-26T19:38:00.000-07:00

Track List + Download link (klik aja langsung) T2 (Tika Tiwi AFI) - OK!! T2 (Tika Tiwi AFI) - Lelaki Cadangan T2 (Tika Tiwi AFI) - Bronies T2 (Tika Tiwi AFI) - Perjalanan T2 (Tika Tiwi AFI) - Tua Tua Keladi T2 (Tika Tiwi AFI) - Jangan Ganggu Aku T2 (Tika Tiwi AFI) - Yang Terindah T2 (Tika Tiwi AFI) - Masa Lalu T2 (Tika Tiwi AFI) - Surat Cinta T2 (Tika Tiwi AFI) - Karena Aku Yang Memilih

Pandawa - Prasasti Hati (2007)

2007-09-26T19:30:00.000-07:00

Tracklist + Download link (klik aja langsung)

1. PERCUMA
2. BATIN DAN RAGAKU
3. DIAM
4. BILA TANPA CINTA
5. TIGA TAHUN
6. CANTIK
7. KESETIAAN CINTA
8. KEKASIH HATI
9. HIKAYAT CINTA
10. SAYONARA

SHE - tersenyum lagi

2007-09-26T19:11:00.000-07:00

Traclist + Download link (langsung klik aja):

1. Slow Down Baby
2. Selingkuh Sekali Saja
3. Abrakadabra
4. Temani Aku
5. Mencoba Mencintaimu
6. Mana Tahan
7. Please Tinggalkan Aku
8. Jatuh
9. Aku Tersenyum Lagi
10. Tercipta Untukmu – Feat. Rio Febrian

2007-09-26T12:10:00.001-07:00

Install the Mikrotik OS using a CD

To install the RouterOS using a CD you will need a CD-writer and a blank CD. Burn the CD-image (an .iso file) to a CD. The archive with image can be downloaded here.

Follow the instructions to install RouterOS using CD-Install:

After downloading the CD image from www.mikrotik.com you will have an ISO file on your computer:
Open a CD Writing software, like Ahead NERO as in this example:
In the program, choose Burn Image entry from the Recorder menu (there should be similary named option in all major CD burning programs):
Select the recently extracted ISO file and click Open:
Finally, click Burn button:
Set the first boot device to CDROM in router's BIOS.

After booting from CD you will see a menu where to choose packages to install:

                Welcome to MikroTik Router Software installation
        
Move around menu using 'p' and 'n' or arrow keys, select with 'spacebar'.
Select all with 'a', minimum with 'm'. Press 'i' to install locally or 'r' to
install remote router or 'q' to cancel and reboot.

[X] system               [ ] isdn                  [ ] synchronous
[X] ppp                  [ ] lcd                   [ ] telephony
[X] dhcp                 [ ] ntp                   [ ] ups
[X] advanced-tools       [ ] radiolan              [ ] web-proxy
[ ] arlan                [ ] routerboard           [ ] wireless
[ ] gps                  [X] routing
[ ] hotspot              [X] security

Follow the instructions, select needed packages, and press 'i' to install the software.

You will be asked for 2 questions:
```
Warning: all data on the disk will be erased!

Continue? [y/n]
  
```
Press [Y] to continue or [N] to abort the installation.
```
Do you want to keep old configuration? [y/n]:
```
You should choose whether you want to keep old configuration (press [Y]) or to erase the configuration permanently (press [N]) and continue without saving it. For a fresh installation, press [N].
```
Creating partition...
Formatting disk...
```
The system will install selected packages. After that you will be prompted to press 'Enter'. Before doing that, remove the CD from your CD-Drive:
```
Software installed.
Press ENTER to reboot
```

2007-09-26T12:09:00.001-07:00

Berbagai Tipe Interface Mikrotik (Ethernet dan Wireless)

Ethernet Interfaces
IN/E44 RouterBOARD 44 PCI 4-port Ethernet adapter

Wireless Interfaces
R52 802.11a+b+g 65 mW Wireless miniPCI Card
SR5 Super Range 5 400mW 802.11a 5.8GHz MiniPCI card
SR2 Super Range 2 400mW 802.11b/g 2.4GHz MiniPCI card
AC/UFL U.fl-HIROSE'S Nfemale pigtail cable
AC/SWI 2.4-5.8 GHz Omnidirectional Swivel Antenna with cable and U.fl connector
IA/MP1 RouterBOARD 11 miniPCI Adapter
IA/MP1R RouterBOARD 11 MiniPCI Adapter with bracket for RPTNC
IA/MP4 RouterBOARD 14 Four-Slot miniPCI Adapter
IA/MP4R RouterBOARD 14 Four-Slot miniPCI Adapter with bracket for RPTNC
IA/MP8 RouterBOARD 18 Eight-Slot miniPCI Adapter (Extreme)

2007-09-26T12:00:00.000-07:00

Download Manual Mikrotik

E-book Lengkap

Download manual mikrotik - ebook

Ada e book dari situsnya mikrotik yang berbasis web/html, jumlahnya ratusan halaman, saya menyajikannya dalam bentuk pdf.
berikut juga dilengkapi tutorial mikrotik berbasis video.

Tutorial lengkap manual Mikrotik lengkap dari nol, sudah saya upload ke rapidshare , silahkan di download.

Reference Manual of MikroTik RouterOS :
>>download<<

Video Tutorial of MikroTik RouterOS :
>>download<<

Router Software

2007-09-26T11:54:00.001-07:00

ROUTER SOFTWARE

Major features:

Best wireless performance
Improved Nstreme performance
Powerful QoS control
P2P traffic filtering
High availability with VRRP
Bonding of Interfaces
Improved interface
Smaller and Less resource-hungry
Tons of other new features
Advanced Quality of Service
Stateful firewall, tunnels
STP bridging with filtering
High speed 802.11a/b/g wireless with WEP/WPA
WDS and Virtual AP
HotSpot for Plug-and-Play access
RIP, OSPF, BGP routing
remote WinBox GUI and Web admin
telnet/mac-telnet/ssh/console admin
real-time configuration and monitoring

Link Download Mikrotik + Crack v2.9.27:

>>download<<

2007-09-26T11:18:00.000-07:00

Download + Installation
FaultBill Brontoseno


File yang di butuhkan:

download link:
1.screnn.tar.gz
2.fbc-0.10sp-i686.tgz.tgz
3.lib.tar.bz2
4.source.tar.bz2
5.configure


Server dan Client

1. Postgres client  (di install di Client dan server)
2. Postgres server (khusus hanya di install di server aja)
3. Postgres Lib    (di install di client dan server)

library yang di butuhkan

libgdk-pixbuf
libgtk-1.2
libgdk-1.2
libgmodule-1.2

untuk pengguna keluarga Slackware download postgresql server dan client jadi satu paket
disini kita menggunakan postgres 8.1

Perhatikan
$ adalah user
# adalah root (super User)
Langkah Pertama
Setelah postgres server di install..
masuk ke user postgres
$ su root
# su postgres

**** POINT I
Install Postgresql untuk server atau client

**** POINT II
untuk menggunakan zencafe ambil file /usr/local/share/doc/faultbill/rc.postgresql
copy ke /etc/rc.d/
gunakan superuser(root)
lalu
# chmod 754 rc.postgresql

Bikin database
Createdb faultbill <--- (nama faultbill bebas mau di ganti dengan sesuka hati) Createuser (nama usernya)  setelah db sudah di buat dan user sudah di buat lalu lakukan langkah di bawah ini pemasukkan tabel ke dalam faultbill  $ psql -d faulbill -U nama usernya -P (bila pake password) < /usr/local/share/doc/faultbill/faultbill.sql  sekarang login pake ROOT masuk ke data edit file pg_hba.conf  vi pg_hba.conf  tambahkan di bawah ini # TYPE  DATABASE    USER        CIDR-ADDRESS          METHOD Host    all         all         ip client     Trust   (dan seterusnya)  contoh ip client dari 192.168.1.2 - 192.168.1.20 maka cukup masukkan seperti # TYPE  DATABASE    USER        CIDR-ADDRESS          METHOD   HOST    ALL        ALL   127.0.0.1/32  trust   HOST    ALL        ALL         192.168.1.0/24        trust  lalu edit file postgresql.conf file postgresql.conf bisa terdapat di folder /etc/postgresql atau /var/lib/pgsql/  buang tanda # dari listen_addresses = 'localhost' lalu ganti 'localhost' menjadi '*'  listen_addresses = '*'  <--- '*' untuk all network  save file postgresql.conf restart sql  #/etc/rc.d/rc.postgresql stop #/etc/rc.d/rc.postgresql start  setelah langkah di atas di lakukan maka setingan untuk server database selesai. untuk client POINT II tidak perlu dijalankan karna cuman di gunakan untuk remote host saja  ***** POINT III  Setting ubah di file faultbill.cfg HOST=192.168.0.1    <--- masukkan ip server tempat database berada USERNAME=postgres <--- masukkan user yang kita bikin di dalam database di langkah                          pertama atau bisa juga menggunakan postgres (default user dari postgres) PASSWORD=    DATABASE=faultbill    <--- database masukkan dengan nama database yg di bikin di langkah pertama  PORT= PC=1      <-- sesuaikan dengan pc client yang di inginkan (1...Unlimited)  bila langkah di atas di lakukan berarti langkah kedua selesai sekarang tinggal jalankan program billing dari xwindows.  Password client "a" <-- tanpa tanda kutip huruf kecil  Password Server "gerr" <-- tanpa tanda kutip huruf kecil  **** POINT IV Server Jalankan  $ brontoserver atau bikin run di desktop isi dengan brontoserver > /dev/null 2>&1

Client Jalankan
$ brontoclient
atau bikin run di desktop isi dengan brontoclient > /dev/null 2>&1

bila masih juga ngak jalan
bikin direktory
$ mkdir .brontoseno
untuk server file yang di copy
$ cp /usr/local/share/doc/faultbill/faultbill.cfg .brontoseno
$ cp /usr/local/share/doc/faultbill/uqba.lrf .brontoseno
untuk client
$ cp /usr/local/share/doc/faultbill/faultbill.cfg .brontoseno
$ cp /usr/local/share/doc/faultbill/stt.ndr .brontoseno

**** POINT V
untuk block application yang tidak di inginkan untk di jalankan di user
isi di file stt.ndr
contoh
Terminal
gksu


**** TIPS & TRIKS
untuk yang menggunakan zencafe
download lib.tar.bz2 di esnips.com/web/brontoseno
gunakan user Root copy ke /usr/lib
lalu ketik
# ldconfig


Selamat Mencoba

Contact kaafin@gmail.com
    kauniyah@gmail.com
    PM segmentfault awali.org
    chat dalnet #awali segmentfault

Thank for my friend

Anjar
Bastian
Surya
Novan
Heru <--- karna dia gue buru2 bikinnya hehhe ;) jadi kalo ada kesalahan omelin dia yaa Rommy

2007-09-26T11:03:00.000-07:00

SHARING Printer dengan CUPS (Common UNIX Printing System)

download link CUPS all printer:

>>download<<

Untuk menggunakan printer sharing di GNU/Linux sebenarnya caranya sangat mudah sekali, pada tulisan ini
distro yang digunakan adalah Zencafe 1.0 dan akan dibagi menjadi 2 bagian yaitu :
1. Konfigurasi Server CUPS
2. Konfigurasi Client

Note:
- Konfigurasi pada tulisan ini harusnya bisa digunakan oleh semua distro yang menggunakan CUPS sebagai
sarana konfigurasi printernya

1. Konfigurasi Server CUPS

Supaya printer yang telah terpasang pada komputer server dapat digunakan oleh komputer yang lain, ada beberapa
konfigurasi tambahan yang harus dilakukan pada server CUPS yaitu :

Buka konfigurasi CUPS dengan cara mengetikkan localhost:631 pada address bar, kemudian pilihlah menu “Manage Server” seperti gambar dibawah ini:

Setelah tampilan konfigurasi Server CUPS muncul, berilah centang pada opsi:
- Share published printers connected to this system dan
- Allow users to cancel any job (not just their own)

seperti gambar dibawah ini:

Setelah melakukan konfigurasi seperti diatas, tekanlah tombol Change Settings untuk menyimpan konfigurasi yang telah dilakukan. Jika setelah menekan tombol Change Settings muncul kotak dialog box yang meminta username
dan password masukkan username root dan password root yang terdapat pada sistem anda.

Konfigurasi server CUPS telah selesai dilakukan, sekarang konfigurasilah client yang ingin menggunakan
printer yang terdapat pada server seperti langkah-langkah pada bagian ke dua.

2. Konfigurasi Client

Agar dapat menggunakan printer yang telah dikonfigurasi pada server, pada komputer client service CUPS harus sudah berjalan.

Untuk mengaktifkan service cups caranya sangat mudah sekali yaitu sebagai berikut :
1. Masuk ke terminal kemudian ketikkan su seperti gambar dibawah ini:

operatore[~]$ su
Password:
root[operatore]#

2. Setelah mendapatkan akses root, berikan akses eksekusi pada file /etc/rc.d/rc.cups dengan cara sebagai berikut :

root[operatore]# chmod +x /etc/rc.d/rc.cups

3. Setelah file /etc/rc.d/rc.cups mempunyai akses execute, sekarang jalankan service cupsnya dengan cara sebagai berikut :

root[operatore]# /etc/rc.d/rc.cups start
cups: started scheduler.
root[operatore]#

Setelah service cups berjalan, sekarang coba bukalah OpenOffice kemudian ketik sembarang kata untuk mencoba
mencetak ke printer yang terdapat pada server, kemudian lakukan test untuk printernya dengan cara pilih
File -> Print pada OpenOffice. Jika langkah-langkah yang dilakukan sudah benar, maka pada tampilan Print Dialog
yang terdapat pada OpenOffice akan muncul Nama Printer yang terdapat pada komputer server seperti gambar dibawah
ini:

2007-09-26T11:00:00.000-07:00

Sharing dengan gFTP

gFTP dapat ditemui pada menu > network > gFTP

untuk memudahkan transaksi file antar client, terutama bila
pada network anda terdapat banyak client, mungkin cara dibawa ini
dapat mempermudahnya, tentunya buka gFTP anda
dan pilih menu bookmarks
akan tampak seperti seperti dibawah ini :

lalu pilih edit bookmarks

lalu pada menu file pilih new item maka akan keluar sebagai berikut :

lalu isikan dengan nama client atau nama urutan sesuai selera anda
untuk menandai koneksi pada komputer client tertentu,
contoh diatas menggunakan nama komputer1 karena
digunakan untuk koneksi ke komputer nomor 1, lalu tekan add
kemudian klik kanan sambil ditahan, pilih properties

yang perlu anda isikan adalah sebagai berikut:
hostname: isikan dengan IP yang sesuai dengan komputer yang anda inginkan
protocol: pilih SSH2
remote directory: isikan dengan folder pada client yang ingin anda jumpai pada saat pertama tersambung (nanti nya dapat diganti)
local directory: isikan dengan folder pada server yang ingin anda jumpai pada saat tersambung (dapat diganti, atau isikan dengan folder penyimpanan data khusus client yang terdapat di server)
username: isikan dengan root
password: isikan dengan password root pada client
lalu tekan apply, save
untuk lebih jelasnya, kita lihat contoh berikut :

anda dapat melakukan hal yang sama seperti diatas
untuk menambahkan koneksi ke komputer client yang lain

perhatikan: apabila anda sebelumnya pernah melakukan koneksi ssh dengan client dan misal client baru saja di install ulang, maka anda perlu melakukan kedua langkah di bawah ini. namun, apabila tidak, kedua langkah dibawah ini tidak perlu dilakukan

sekarang buka root terminal:
1. ketik mcedit /home/user_name/.ssh/known_hosts dan hapus semua tulisan di dalamnya, setelah itu tekan ctrl+1+0 > pilih save
2. ketik mcedit /root/.ssh/known_hosts dan lakukan seperti nomor satu.

akhirnya, untuk membuka koneksi ke komputer yang anda tuju tersebut
anda tinggal meng-klik menu bookmarks dan pilih nama komputer yang dituju
akan tampak sebagai berikut:

sekarang anda dapat melakukan transaksi file dengan komputer yang anda tuju
untuk memindahkan filenya, anda tinggal mengklik file yang ada di kolom kanan (kolom client) lalu meng-klik panah ke arah kiri yang berada di tengah2 window, maka file akan berpindah ke kolom sebelah kiri (kolom server), begitu pula sebaliknya.

untuk pindah koneksi ke komputer yang lain, anda tinggal mengklik bookmarks dan memilih komputer yang dituju

perhatikan: sistem koneksi diatas khusus diperuntukkan bagi server, demi kemudahan dalam mengatur file server dan client, jangan melakukan ini pada komputer client karena akibatnya semua user akan bisa mengakses file

CCLFOX

2007-09-26T09:44:00.000-07:00

Billing For Linux

tested under :
Linux Vector SOHO v5
gcc v3.3.4 glib2
——————–
Download di :
http://sourceforge.net/project/showfiles.php?group_id=112779

———————-

## Client Side ###
cclcfox-0.7.0.tar.bz2
libcclc-0.7.0.tar.bz2

## Server Side ##
cclfox-0.7.0.tar.bz2
libccls-0.7.0.tar.bz2

## Server & client Side ###
http://www.sqlite.org/
http://www.sqlite.org/sqlite-3.2.2.tar.gz

http://www.fox-toolkit.org/
http://www.fox-toolkit.org/ftp/fox-1.4.16.tar.gz

### Personal need ###
a Cup 0f coffe

$tar zxvf sqlite-3.2.2.tar.gz
.. proses ekstrak ….
$cd sqlite-3.2.2/
$./configure
$make
#make install

$cd ..

$tar zxvf fox-1.4.16.tar.gz
.. proses ekstrak ….
$cd ..fox-1.4.16
$./configure –prefix=/usr –exec-prefix=/usr
$make
#make install

## SERVER SIDE ###
$tar xjvf libccls-0.7.0.tar.bz2
.. proses ekstrak ….
$cd libccls-0.7.0
$./configure
$make
#make install

$cd ..

$tar xjvf cclfox-0.7.0.tar.bz2
.. proses ekstrak ….
$cd cclfox-0.7.0
$./configure
$make
#make install

#### end server side ####

## CLIENT SIDE ####

$tar xjvf libcclc-0.7.0.tar.bz2
.. proses ekstrak ….
$cd libcclc-0.7.0
$./configure
$make
#make install

$cd ..

$tar xjvf cclcfox-0.7.0.tar.bz2
.. proses ekstrak ….
$./configure
$make
#make install

### end client side ####

setelah semua instalasi selesai
pastikan di /etc/ld.so.conf
terdapat tulisan diantaranya adalah :
/usr/lib
/usr/local/lib

untuk memastikan librari dari ccl berada didaftar cari direktori lib
ketik command

#/sbin/ldconfig

OK sekarang tinggal jalanin program billing nya

###Server ###
$/usr/local/bin/cclfox -nossl

###
$/usr/local/bin/cclcfox -host -name -nossl

%%% eof %%%%

G-net
netcafe
Jl KH Wahid Hasyim Keputran IV no 9
Pekalongan
cp :
Arifin
Ryo Sakazaki
gnet.co.id@gmail.com
http:// underconstrucktion // :))
————–
note :
dalam pemberian perintah ( command ) dipakai penandaan yang menunjukan level user nya
# <– level user root $ <– level user biasa ——————————

billing di linux coba http://sourceforge.net/project/showfiles.php?group_id=112779
untuk yg pakai zenwalk atau vektor linux tinggal tambahin cclcfox & foxtoolkit untuk client dan cclfox % sqlite untuk server tgznya ada di http://zencafe.vip.net.id/pub/i486/zencafe-1.0

distro yg lumayan bisa di coba buat client bisa pclinuxos, ubuntu, vektorlinux, atau zenwalk
kalau pakai zencafe billingnya udah ada tinggal waktu install piulih jadi server billing atau client

buat yang mau instal biling linux (CCLFOX - billingnya pake bahasa inggris) (petunjuk instalasi bisa dibaca di artikelnya mas glinux) - http://linux.or.id/node/193 - siap siap aja ga tidur. untuk ngompile librari fox (librari ini bertanggung jawab untuk mengatur tampilan GUI, mungkin kayak GTK ya… imho) perlu waktu lama (banget) (kemarin lusa mpe ga tidur, tenang ngompilenya ga nyampe 48 jam kok, fuih..). hehe.. jadi pastikan waktu mau instal pada jam jam sepi ato subuh sekalian saja.

mo nambahin aja dari artikel mas glinux:

pastikan jangan lupa jalanin /sbin/ldconfig sebagai root

$ /sbin/ldconfig
/sbin/ldconfig: Can’t link /usr/local/include/fox-1.4/libccls.so.0 to libccls.so.0.7.0
—> ini akibat kalo jalanin ldconfig dalam mode user biasa

kalo sebagai root harusnya tidak muncul display / pesan apapun.

$ cclfox
cclfox: error while loading shared libraries: libccls.so.0: cannot open shared object file: No such file or directory

—> ini pesen muncul kalo kamu belum jalanin /sbin/ldconfig (pastiin di file /etc/ld.so.conf ada baris
1. /usr/local/lib dan
2. /usr/local/include/fox-1.4

contoh:
$ less /etc/ld.so.conf
include ld.so.conf.d/*.conf
/usr/X11R6/lib
/usr/lib/mysql
/usr/local/lib <— penting /opt/redstone/mainlib /usr/local/include/fox-1.4/ kalo keluar seperti diatas itu karena cclfox dijalanin dalam mode default = memakain fasilitas ssl. untuk nonaktifin ikutin saran mas glinux dengan nambahin opsi -nossl

$ cclfox -nossl

daftar file yang diperlukan untuk instalasi billing cclfox:

billing-warnet]$ ls
- libccls-0.7.0.tar.bz2
- cclcfox-0.7.0.tar.bz2
- cclfox-0.7.0.tar.bz2
- sqlite-3.2.1.so.gz –> tidak dipake, percuma jangan didownload
- fox-1.4.16.tar.gz
- sqlite-3.2.2.tar.gz –> ini yg penting, soalnya isi header
- libcclc-0.7.0.tar.bz2
- sqlite3-3.2.1.bin.gz –> tdak dipake, jangan didownlod

CARA SINGKAT INSTALASI ZENCAFE 1.2

2007-09-19T11:16:00.000-07:00

CARA SINGKAT INSTALASI ZENCAFE 1.2

urutan cara install ZENCAFE 1.2 secara singkat dapat anda baca dalam versi pdf yang ditulis langsung oleh A. HARDIENA si pembuat distro, silahkan!!

download link sibawah ini:

>>download<<

download ZENCAFE 1.0 silahkan

2007-09-19T09:42:00.000-07:00

DOWNLOAD ZENCAFE 1.0

Md5: 86a66f87c4c217768b26fd2111101124

International Mirror

Pinto (Sjafri)
[download] [download]

Megaupload
[download]

Indonesian Mirror

Slackware Indonesia (Ozzie)
[download] [md5]

ZENCAFE distro paling cocok buat warnet LINUX

2007-09-19T05:11:00.001-07:00

Zencafe Distro untuk Warnet
Zencafe GNU/Linux atau singkatnya Zencafe merupakan salah satu keluarga distro Zenwalk (sebelumnya MiniSlack). Zencafe dikembangkan di Indonesia merupakan penjelmaan dari  distro LiGOS yaitu kernel yang dikembangkan programmer relawan dari seluruh dunia dibawah koordinasi Linus Torvalds. Kendati kernel merupakan jantung dari sebuah sistem operasi, ia belum dapat berfungsi secara terpisah. Sumbangan aplikasi dasar termasuk packages dari GNU Projects, memungkinkan terbentuk sebuah sistem operasi dengan fitur penuh dan diberi nama GNU/Linux.’,Linux adalah kernel yang dikembangkan programmer relawan dari seluruh dunia dibawah koordinasi Linus Torvalds. Kendati kernel merupakan jantung dari sebuah sistem operasi, ia belum dapat berfungsi secara terpisah. Sumbangan aplikasi dasar termasuk packages dari GNU Projects, memungkinkan terbentuk sebuah sistem operasi dengan fitur penuh dan diberi nama GNU/Linux.’,
Linux for Indonesia Goes Open Source. Zencafe yang dikhususkan untuk kebutuhan warnet telah menjadi pionir distro Internet Cafe yang berkiprah Internasional.


Gambar 1.1 Zencafe Desktop
Seperti Zenwalk, Zencafe adalah turunan distro Slackware yang diidisain se ringan mungkin agar dapat jalan di komputer generasi lampau.
Spesifikasi hardware paling minimal disebutkan yang penah dicoba pengembangnya adalah AMD K6-2 300 dengan memori 64MB. Mulai nyaman digunakan pada komputer kelas Pentium3 dengan memori 128.

Gambar 1.2 Zencafe Billing
Versi 1.0 dari Zencafe dirilis 9 April 2007 mengemas kernel yang dikembangkan programmer relawan dari seluruh dunia dibawah koordinasi Linus Torvalds. Kendati kernel merupakan jantung dari sebuah sistem operasi, ia belum dapat berfungsi secara terpisah. Sumbangan aplikasi dasar termasuk packages dari GNU Projects, memungkinkan terbentuk sebuah sistem operasi dengan fitur penuh dan diberi nama GNU/Linux.’, (’Linux adalah kernel yang dikembangkan programmer relawan dari seluruh dunia dibawah koordinasi Linus Torvalds. Kendati kernel merupakan jantung dari sebuah sistem operasi, ia belum dapat berfungsi secara terpisah. Sumbangan aplikasi dasar termasuk packages dari GNU Projects, memungkinkan terbentuk sebuah sistem operasi dengan fitur penuh dan diberi nama GNU/Linux.’, Linux kernel 2.6.20, gyachenhanced (yahoo messenger with cam), CCL billing warnet, program Autorecovery (deepfreeze) dan banyak lagi aplikasi lainnya.

Gambar 1.3 Tampilan-3: Zencafe Office
Zencafe pada prinsipnya siap dan mendukung Linux Terminal Server Project (LTSP) adalah paket add-on untuk Linux yang memungkinkan banyak terminal atau PC yang serentak memanfaatkan sebuah komputer server yang sama. Aplikasi di server dijalankan via terminal thin client yang menangani urusan input dan output. Kelompok thin clients tersebut juga dikenal sebagai X Terminals yang umumnya dapat dibangun menggunakan komputer usang jaman baheula tanpa hard disk.
Teknologi LTSP sangat popular diterapkan, - termasuk di Indonesia, - untuk komputerisasi di sekolahan dengan biaya rendah. Distrubusi Linux yang mengadopsi LTSP termasuk K12LTSP (Red Hat/Fedora), Skolelinux, AbulEdu, Edubuntu dan Deworks. Proyek LTSP didirikan dan diketuai oleh Jim McQuillan.’, (’Linux Terminal Server Project (LTSP) adalah paket add-on untuk Linux yang memungkinkan banyak terminal atau PC yang serentak memanfaatkan sebuah komputer server yang sama. Aplikasi di server dijalankan via terminal thin client yang menangani urusan input dan output. Kelompok thin clients tersebut juga dikenal sebagai X Terminals yang umumnya dapat dibangun menggunakan komputer usang jaman baheula tanpa hard disk.
Teknologi LTSP sangat popular diterapkan, - termasuk di Indonesia, - untuk komputerisasi di sekolahan dengan biaya rendah. Distrubusi Linux yang mengadopsi LTSP termasuk K12LTSP (Red Hat/Fedora), Skolelinux, AbulEdu, Edubuntu dan Deworks. Proyek LTSP didirikan dan diketuai oleh Jim McQuillan. LTSP. Di versi 1.0 belum disertakan by default dan direncanakan pada versi berikutnya seirama dengan induknya Zenwalk

Tutorial bisa dilihat langsung di >> http://manual.zenwalk.org/