LAPORAN
VPN CISCO PACKET TRACER
Laporan ini disusun untuk memenuhi salah satu tugas Mata Kuliah
Jaringan Komputer
Oleh
Nama
: Muhamad Solihin Ansurulloh
NPM
: 147006018
Kelas
: 2014 A
FAKULTAS TEKNIK
TEKNIK INFORMATIKA
UNIVERSITAS NEGERI SILIWANGI
TASIKMALAYA
1 |
P a g e
BAB I
A.
CISCO PACKET TRACER
1.
Pengertian Cisco Packet Tracer
Packet Tracer adalah simulator alat-alat jaringan Cisco yang sering
digunakan sebagai media pembelajaran dan pelatihan, dan juga dalam
bidang penelitian simulasi jaringan komputer. Program ini dibuat oleh
Cisco Systems dan disediakan gratis untuk fakultas, siswa dan alumni
yang telah berpartisipasi di Cisco Networking Academy. Tujuan utama
Packet Tracer adalah untuk menyediakan alat bagi siswa dan pengajar
agar dapat memahami prinsip jaringan komputer dan juga membangun
skill di bidang alat-alat jaringan Cisco.
2.
Fitur Packet Tracer
Packet Tracer terbaru yaitu versi 6.0.1. Dalam versi ini dapat
mensimulasikan Application Layer protocols, Routing dasar RIP, OSPF,
dan EIGRP, sampai tingkat yang dibutuhkan pada kurikulum CCNA
yang berlaku, sehingga bila dilihat sekilas software ini bertujuan untuk
kelas CCNA.
Taget Packet Tracer yaitu menyediakan simulasi jaringan yang
real, namun terdapat beberapa batasan berupa penghilangan beberapa
perintah yang digunakan pada alat aslinya yaitu pengurangan command
pada Cisco IOS. Dan juga Packet Tracer tidak bisa digunakan untuk
memodelkan jaringan produktif/aktif. Dengan keluarnya versi 6,
beberapa fitur ditambahkan, termasuk fitur BGP. BGP memang bukan
termasuk kurikulum CCNA, akan tetapi termasuk kurikulum CCNP.
3.
Digunakan di Pendidikan
2 |
P a g e
Dikarenakan batasan pada beberapa fiturnya, software ini digunakan
hanya sebagai alat bantu belajar, bukan seabagai pengganti Cisco routers
dan switches.
B.
VPN (Virtual Private Network)
1.
Pengertian VPN
VPN atau Virtual Private Network adalah suatu koneksi antara satu
jaringan dengan jaringan lainnya secara privat melalui jaringan publik
(Internet). VPN disebut Virtual network karena menggunakan jaringan
publik (Internet) sebagai media perantaranya alias bukan koneksi
langsung. Dan disebut Private network karena jaringannya bersifat privat,
dimana hanya orang tertentu saja yang bisa mengaksesnya. Data yang
dikirimkan pun terenkripsi sehingga aman dan tetap rahasia meskipun
dikirim melalui jaringan publik.
2.
Cara Kerja VPN
Cara kerja VPN ibarat seperti membuat jaringan di dalam jaringan
atau biasa disebut tunneling (membuat terowongan). Tunneling adalah
suatu cara untuk membuat jalur koneksi secara privat dengan
menggunakan infrastruktur jaringan lain. Pada dasarnya VPN juga
membutuhkan sebuah server sebagai penghubung dan pengatur antar
client.
3.
Kelebihan VPN
VPN memungkinkan karyawan/pengguna untuk terkoneksi dengan
jaringan internal kantornya dari manapun diseluruh dunia, yang penting
terhubung dengan internet.
a.
Efektif dan Efisien
3 |
P a g e
kantor pusat. Sedangkan penggunaan leased line sebagai WAN akan
membutuhkan waktu yang lama untuk membangun jalur koneksi
khusus dari kantor cabang yang baru dengan perusahaan induknya.
Dengan demikian penggunaan VPN secara tidak langsung akan
meningkatkan efektivitas dan efisiensi kerja.
b.
Hemat Biaya
Penggunaan VPN dapat mengurangi biaya operasional, karena
VPN menggunakan infrastruktur jaringan publik yang sudah ada,
sehingga tidak perlu membangun infrastruktur jaringan yang baru.
c.
Meningkatkan Skalabilitas
4 |
P a g e
BAB II
A.
HASIL DAN PEMBAHASAN
1.
Jalankan program Cisco Packet Tracer
2.
Setelah dijalankan buat Cloud-PT dengan cara klik icon WAN Emulation
lalu pilih Generic Cloud-PT.
Gambar2.1 (Buat cloud)
3.
Buat 2 buah router dengan cara klik routers lalu pilih router 1841.
5 |
P a g e
4.
Buat 2 buah switch 2950T-24.
Gambar2.3 (Buat swicth)
5.
Klik Router0 pada bagian physical matikan terlebih dahulu router dengan
cara klik tombol on/off atau 1/0 pada physical device view.
Gambar2.4 (Router0 Physical device view)
6 |
P a g e
Kecepatan tinggi kartu antarmuka WAN serial dan asynchronous (HWICs)
menyediakan koneksi yang sangat fleksibel untuk Cisco 1800, 2800, dan
3800 series pelayanan terpadu router. HWICs ini membantu pelanggan
mengaktifkan aplikasi seperti akses WAN, warisan transportasi protokol,
server konsol, dan dial akses server. Anda dapat mencampur dan
mencocokkan HWICs untuk menyesuaikan solusi biaya-efektif untuk
masalah jaringan umum seperti remote manajemen jaringan, akses
dial-modem eksternal, low-density WAN agregasi, warisan transportasi
protokol, dan dukungan tinggi-port-density
Gambar2.5 (Tambahkan HWIC-2T)
7 |
P a g e
Gambar2.6 (Jalankan kembali router)
8 |
P a g e
Gambar2.7 (Tambahkan HWIC-2T)
9.
Setelah menambahkan HWIC-2T pada physical device jalankan kembali
routernya.
Gambar2.8 (Router1 Physical device view)
10.
Hubungkan router0 dengan cloud menggunakan Serial DCE. Pada router
terhubung ke Serial0/1/0.
9 |
P a g e
11.
Pada cloud hubungkan ke serial0.
Gambar2.10 (Cloud serial0)
12.
Masih menggunakan serial DCE hubungkan serial1 dari cloud.
Gambar2.11 (Cloud serial1)
10 |
P a g e
Gambar2.12 (Router1 serial0/1/0)
14.
Hubungkan dari switch FastEthernet0/1 switch2.
Gambar2.13 (FastEthernet0/1 switch2)
11 |
P a g e
Gambar2.14 (Hubungkan dari switch2 ke router0)
16.
Sama seperti sebelumnya pada switch FastEthernet0/1 dengan copper
straight-through hubungkan ke router1.
Gambar2.15 (Switch3)
12 |
P a g e
Gambar2.16 (Router1)
18.
Pada router0 di menu config masuk ke sub menu FastEthernet0/0.
Masukan IP address, subnet mask dan port status ceklis.
Gambar2.17 (Router0 config fastethernet)
13 |
P a g e
Gambar2.18 (Router0 config Serial0/1/0)
14 |
P a g e
Gambar2.19 (Router1 config fastethernet)
21.
Lalu pada Serial0/1/0 centang port status, isikan IP Address dan
subnetmask.
15 |
P a g e
22.
Configurasi CLI router0.
Router0
System Bootstrap, Version 12.3(8r)T8, RELEASE SOFTWARE (fc1)
Cisco 1841 (revision 5.0) with 114688K/16384K bytes of memory.
Self decompressing the image :
########################################################## ################ [OK]
Restricted Rights Legend
Use, duplication, or disclosure by the Government is subject to restrictions as set forth in subparagraph (c) of the Commercial Computer Software - Restricted Rights clause at FAR sec. 52.227-19 and subparagraph (c) (1) (ii) of the Rights in Technical Data and Computer Software clause at DFARS sec. 252.227-7013.
cisco Systems, Inc. 170 West Tasman Drive
San Jose, California 95134-1706
Cisco IOS Software, 1841 Software (C1841-ADVIPSERVICESK9-M), Version 12.4(15)T1, RELEASE SOFTWARE (fc2)
Technical Support: http://www.cisco.com/techsupport Copyright (c) 1986-2007 by Cisco Systems, Inc. Compiled Wed 18-Jul-07 04:52 by pt_team
Image text-base: 0x60080608, data-base: 0x6270CD50
This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.
A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html
16 |
P a g e
sending email to export@cisco.com.
Cisco 1841 (revision 5.0) with 114688K/16384K bytes of memory.
Processor board ID FTX0947Z18E
M860 processor: part number 0, mask 49 2 FastEthernet/IEEE 802.3 interface(s) 191K bytes of NVRAM.
63488K bytes of ATA CompactFlash (Read/Write)
Cisco IOS Software, 1841 Software (C1841-ADVIPSERVICESK9-M), Version 12.4(15)T1, RELEASE SOFTWARE (fc2)
Technical Support: http://www.cisco.com/techsupport Copyright (c) 1986-2007 by Cisco Systems, Inc. Compiled Wed 18-Jul-07 04:52 by pt_team
--- System Configuration Dialog ---
Continue with configuration dialog? [yes/no]: System Bootstrap, Version 12.3(8r)T8, RELEASE SOFTWARE (fc1) Cisco 1841 (revision 5.0) with 114688K/16384K bytes of memory.
Self decompressing the image :
########################################################## ################ [OK]
Restricted Rights Legend
Use, duplication, or disclosure by the Government is subject to restrictions as set forth in subparagraph (c) of the Commercial Computer Software - Restricted Rights clause at FAR sec. 52.227-19 and subparagraph (c) (1) (ii) of the Rights in Technical Data and Computer Software clause at DFARS sec. 252.227-7013.
cisco Systems, Inc. 170 West Tasman Drive
San Jose, California 95134-1706
Cisco IOS Software, 1841 Software (C1841-ADVIPSERVICESK9-M), Version 12.4(15)T1, RELEASE SOFTWARE (fc2)
Technical Support: http://www.cisco.com/techsupport Copyright (c) 1986-2007 by Cisco Systems, Inc. Compiled Wed 18-Jul-07 04:52 by pt_team
Image text-base: 0x60080608, data-base: 0x6270CD50
This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
17 |
P a g e
imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.
A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html
If you require further assistance please contact us by sending email to
export@cisco.com.
Cisco 1841 (revision 5.0) with 114688K/16384K bytes of memory.
Processor board ID FTX0947Z18E
M860 processor: part number 0, mask 49 2 FastEthernet/IEEE 802.3 interface(s)
2 Low-speed serial(sync/async) network interface(s) 191K bytes of NVRAM.
63488K bytes of ATA CompactFlash (Read/Write)
Cisco IOS Software, 1841 Software (C1841-ADVIPSERVICESK9-M), Version 12.4(15)T1, RELEASE SOFTWARE (fc2)
Technical Support: http://www.cisco.com/techsupport Copyright (c) 1986-2007 by Cisco Systems, Inc. Compiled Wed 18-Jul-07 04:52 by pt_team
--- System Configuration Dialog ---
Continue with configuration dialog? [yes/no]: n
Press RETURN to get started!
Router>enable
Router#configure terminal
Enter configuration commands, one per line. End with CNTL/Z.
Router(config)#interface FastEthernet0/0
Router(config-if)#ip address 192.168.10.1 255.255.255.0 Router(config-if)#no shutdown
Router(config-if)#
18 |
P a g e
%LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0, changed state to up
Router(config-if)#exit
Router(config)#interface Serial0/1/0
Router(config-if)#ip address 10.0.0.1 255.0.0.0 Router(config-if)#no shutdown
Router(config-if)#
%LINK-5-CHANGED: Interface Serial0/1/0, changed state to up
Router(config-if)#ena ^
% Invalid input detected at '^' marker.
Router(config-if)#en % Ambiguous command: "en" Router(config)#router rip
Router(config-router)#net 192.168.10.0 Router(config-router)#net 10.0.0.0 Router(config-router)#ex
Router(config)#crypto isakmp policy 10 Router(config-isakmp)#auth
Router(config-isakmp)#authentication pre-share Router(config-isakmp)#hash sha
Router(config-isakmp)#encryp
Router(config-isakmp)#encryption aes 256 Router(config-isakmp)#group 2
Router(config-isakmp)#lif
Router(config-isakmp)#lifetime 86400 Router(config-isakmp)#ex
Router(config)#crypto isakmp key toor addres 10.0.0.2 Router(config)#crypto ipsec transform-set TSET esp-aes esp-sha-hmac
Router(config)#access-list 101 permit ip 192.168.10.0 0.0.0.255 192.168.20.0 0.0.0.255
Router(config)#crypto map CMAP 10 ipsec-isakmp
% NOTE: This new crypto map will remain disabled until a peer
and a valid access list have been configured. Router(config-crypto-map)#set peer 10.0.0.2
Router(config-crypto-map)#match addres 101
Router(config-crypto-map)#set transform-set TSET Router(config-crypto-map)#ex
Router(config)#int
Router(config)#interface fa0/1 Router(config-if)#crypto map CMAP
*Jan 3 07:16:26.785: %CRYPTO-6-ISAKMP_ON_OFF: ISAKMP is ON
Router(config-if)#do wr Building configuration... [OK]
Router(config-if)#ex
Router(config)#ip dhcp pool IP10
19 |
P a g e
Enter configuration commands, one per line. End with CNTL/Z.
Router(config)#inte
Router(config)#interface s0/1/0 Router(config-if)#enca
Router(config-if)#encapsulation fram
Router(config-if)#encapsulation frame-relay Router(config-if)#
%LINEPROTO-5-UPDOWN: Line protocol on Interface Serial0/1/0, changed state to up
Router(config-if)#ex Router(config)#
23.
Konfigurasi CLI Router1.
Router1
This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.
A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html
If you require further assistance please contact us by sending email to
export@cisco.com.
Cisco 1841 (revision 5.0) with 114688K/16384K bytes of memory.
Processor board ID FTX0947Z18E
M860 processor: part number 0, mask 49 2 FastEthernet/IEEE 802.3 interface(s) 191K bytes of NVRAM.
20 |
P a g e
Cisco IOS Software, 1841 Software (C1841-ADVIPSERVICESK9-M), Version 12.4(15)T1, RELEASE SOFTWARE (fc2)
Technical Support: http://www.cisco.com/techsupport Copyright (c) 1986-2007 by Cisco Systems, Inc. Compiled Wed 18-Jul-07 04:52 by pt_team
--- System Configuration Dialog ---
Continue with configuration dialog? [yes/no]: System Bootstrap, Version 12.3(8r)T8, RELEASE SOFTWARE (fc1) Cisco 1841 (revision 5.0) with 114688K/16384K bytes of memory.
Self decompressing the image :
######################################################### ################# [OK]
Restricted Rights Legend
Use, duplication, or disclosure by the Government is subject to restrictions as set forth in subparagraph (c) of the Commercial Computer Software - Restricted Rights clause at FAR sec. 52.227-19 and subparagraph (c) (1) (ii) of the Rights in Technical Data and Computer Software clause at DFARS sec. 252.227-7013.
cisco Systems, Inc. 170 West Tasman Drive
San Jose, California 95134-1706
Cisco IOS Software, 1841 Software (C1841-ADVIPSERVICESK9-M), Version 12.4(15)T1, RELEASE SOFTWARE (fc2)
Technical Support: http://www.cisco.com/techsupport Copyright (c) 1986-2007 by Cisco Systems, Inc. Compiled Wed 18-Jul-07 04:52 by pt_team
Image text-base: 0x60080608, data-base: 0x6270CD50
This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
21 |
P a g e
A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html
If you require further assistance please contact us by sending email to
export@cisco.com.
Cisco 1841 (revision 5.0) with 114688K/16384K bytes of memory.
Processor board ID FTX0947Z18E
M860 processor: part number 0, mask 49 2 FastEthernet/IEEE 802.3 interface(s)
2 Low-speed serial(sync/async) network interface(s) 191K bytes of NVRAM.
63488K bytes of ATA CompactFlash (Read/Write)
Cisco IOS Software, 1841 Software (C1841-ADVIPSERVICESK9-M), Version 12.4(15)T1, RELEASE SOFTWARE (fc2)
Technical Support: http://www.cisco.com/techsupport Copyright (c) 1986-2007 by Cisco Systems, Inc. Compiled Wed 18-Jul-07 04:52 by pt_team
--- System Configuration Dialog ---
Continue with configuration dialog? [yes/no]: n
Press RETURN to get started!
Router>enable
Router#configure terminal
Enter configuration commands, one per line. End with CNTL/Z.
Router(config)#interface FastEthernet0/0
Router(config-if)#ip address 192.168.20.1 255.255.255.0 Router(config-if)#no shutdown
Router(config-if)#
%LINK-5-CHANGED: Interface FastEthernet0/0, changed state to up
%LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0, changed state to up
22 |
P a g e
Router(config)#interface Serial0/1/0
Router(config-if)#ip address 10.0.0.2 255.0.0.0 Router(config-if)#no shutdown
Router(config-if)#
%LINK-5-CHANGED: Interface Serial0/1/0, changed state to up
Router con0 is now available
Press RETURN to get started.
Router>en Router#co Router#con Router#conf t
Enter configuration commands, one per line. End with CNTL/Z.
23 |
P a g e
Router(config-isakmp)#encry
Router(config-isakmp)#encryption aes 256 Router(config-isakmp)#group 2
Router(config-isakmp)#lif
Router(config-isakmp)#lifetime 86400 Router(config-isakmp)#ex
Router(config)#crypto isakmp key toor addres 10.0.0.1 Router(config)#crypto ipsec transform-set TSET esp-aes esp-sha-hmac
Router(config)#access-list 101 permit ip 192.168.20.0 0.0.0.255 192.168.10.0 0.0.0.255
Router(config)#cry
Router(config)#crypto map CMAP 10 ipsec-isakmp
% NOTE: This new crypto map will remain disabled until a peer
and a valid access list have been configured. Router(config-crypto-map)#set peer 10.0.0.1
Router(config-crypto-map)#match addres 101
Router(config-crypto-map)#set transform-set TSET Router(config-crypto-map)#ex
Router(config)#inte
Router(config)#interface fa0/1 Router(config-if)#cry
Router(config-if)#crypto map CMAP
*Jan 3 07:16:26.785: %CRYPTO-6-ISAKMP_ON_OFF: ISAKMP is ON
Router(config-if)#do wr Building configuration... [OK]
Router(config-if)#ex
Router(config)#ip dhcp pool IP10
Router(dhcp-config)#net 192.168.20.1 255.255.255.0 Router(dhcp-config)#defa
Router(config-if)#encapsulation frame-relay Router(config-if)#
%LINEPROTO-5-UPDOWN: Line protocol on Interface Serial0/1/0, changed state to up
Router(config-if)#ex Router(config)#
24 |
P a g e
Gambar2.21 (Router1 config static)
25.
Pada router1 sama di menu config satatic isi network, mask dan next hop
lalu klik add.
25 |
P a g e
26.
Pada cloud di menu config, serial0 di port status ceklis, isi DLCI dan
name lalu klik add.
Gambar2.23 (Cloud serial0)
26 |
P a g e
Gambar2.24 (Cloud serial1)
27 |
P a g e
Gambar2.25 (Cloud frame relay)
29.
Buat client dan server di bagian kiri dan kanan lalu hubungka ke switch
dengan menggunakan kabel staright.
Gambar2.26 (Menghubungkan)
30.
Pada PC 1 akan dilakukan setting IP secara DHCP. Klik pc lalu pilih
desktop klik ip configuration.
28 |
P a g e
31.
Pada IP configuration klik DHCP. Tunggu sampai DHCP request
successful. Setelah selesai tutup pc0.
Gambar2.28 (IP Configuration)
32.
Untuk semua perangkat yang terhubung agar lebih mudah masukan IP
secara DHCP bahkan untuk server. Karena sebelumnya pada router telah
diisikan DHCP.
29 |
P a g e
Gambar2.29 (command prompt ping)
30 |
P a g e
34.
Pada server0 digunakan untuk HTTP server. Pengeditan html dilakukan
pada config http.
Gambar2.31 (HTTP)
35.
Pada server1 digunakan untuk DNS server. Konfigurasi dilakukan pada
config DNS klik on DNS Service, name isikan sesuai nama, type A
record dan address pada 192.168.10.0.
31 |
P a g e
Gambar2.32 (DNS)
32 |
P a g e
Gambar2.33 (ping DNS)