LAPORAN

VPN CISCO PACKET TRACER

Laporan ini disusun untuk memenuhi salah satu tugas Mata Kuliah

Jaringan Komputer

Oleh

Nama

: Muhamad Solihin Ansurulloh

NPM

: 147006018

Kelas

: 2014 A

FAKULTAS TEKNIK

TEKNIK INFORMATIKA

UNIVERSITAS NEGERI SILIWANGI

TASIKMALAYA

1 |

P a g e

BAB I

A.

CISCO PACKET TRACER

1.

Pengertian Cisco Packet Tracer

Packet Tracer adalah simulator alat-alat jaringan Cisco yang sering

digunakan sebagai media pembelajaran dan pelatihan, dan juga dalam

bidang penelitian simulasi jaringan komputer. Program ini dibuat oleh

Cisco Systems dan disediakan gratis untuk fakultas, siswa dan alumni

yang telah berpartisipasi di Cisco Networking Academy. Tujuan utama

Packet Tracer adalah untuk menyediakan alat bagi siswa dan pengajar

agar dapat memahami prinsip jaringan komputer dan juga membangun

skill di bidang alat-alat jaringan Cisco.

2.

Fitur Packet Tracer

Packet Tracer terbaru yaitu versi 6.0.1. Dalam versi ini dapat

mensimulasikan Application Layer protocols, Routing dasar RIP, OSPF,

dan EIGRP, sampai tingkat yang dibutuhkan pada kurikulum CCNA

yang berlaku, sehingga bila dilihat sekilas software ini bertujuan untuk

kelas CCNA.

Taget Packet Tracer yaitu menyediakan simulasi jaringan yang

real, namun terdapat beberapa batasan berupa penghilangan beberapa

perintah yang digunakan pada alat aslinya yaitu pengurangan command

pada Cisco IOS. Dan juga Packet Tracer tidak bisa digunakan untuk

memodelkan jaringan produktif/aktif. Dengan keluarnya versi 6,

beberapa fitur ditambahkan, termasuk fitur BGP. BGP memang bukan

termasuk kurikulum CCNA, akan tetapi termasuk kurikulum CCNP.

3.

Digunakan di Pendidikan

2 |

P a g e

Dikarenakan batasan pada beberapa fiturnya, software ini digunakan

hanya sebagai alat bantu belajar, bukan seabagai pengganti Cisco routers

dan switches.

B.

VPN (Virtual Private Network)

1.

Pengertian VPN

VPN atau Virtual Private Network adalah suatu koneksi antara satu

jaringan dengan jaringan lainnya secara privat melalui jaringan publik

(Internet). VPN disebut Virtual network karena menggunakan jaringan

publik (Internet) sebagai media perantaranya alias bukan koneksi

langsung. Dan disebut Private network karena jaringannya bersifat privat,

dimana hanya orang tertentu saja yang bisa mengaksesnya. Data yang

dikirimkan pun terenkripsi sehingga aman dan tetap rahasia meskipun

dikirim melalui jaringan publik.

2.

Cara Kerja VPN

Cara kerja VPN ibarat seperti membuat jaringan di dalam jaringan

atau biasa disebut tunneling (membuat terowongan). Tunneling adalah

suatu cara untuk membuat jalur koneksi secara privat dengan

menggunakan infrastruktur jaringan lain. Pada dasarnya VPN juga

membutuhkan sebuah server sebagai penghubung dan pengatur antar

client.

3.

Kelebihan VPN

VPN memungkinkan karyawan/pengguna untuk terkoneksi dengan

jaringan internal kantornya dari manapun diseluruh dunia, yang penting

terhubung dengan internet.

a.

Efektif dan Efisien

3 |

P a g e

kantor pusat. Sedangkan penggunaan leased line sebagai WAN akan

membutuhkan waktu yang lama untuk membangun jalur koneksi

khusus dari kantor cabang yang baru dengan perusahaan induknya.

Dengan demikian penggunaan VPN secara tidak langsung akan

meningkatkan efektivitas dan efisiensi kerja.

b.

Hemat Biaya

Penggunaan VPN dapat mengurangi biaya operasional, karena

VPN menggunakan infrastruktur jaringan publik yang sudah ada,

sehingga tidak perlu membangun infrastruktur jaringan yang baru.

c.

Meningkatkan Skalabilitas

4 |

P a g e

BAB II

A.

HASIL DAN PEMBAHASAN

1.

Jalankan program Cisco Packet Tracer

2.

Setelah dijalankan buat Cloud-PT dengan cara klik icon WAN Emulation

lalu pilih Generic Cloud-PT.

Gambar2.1 (Buat cloud)

3.

Buat 2 buah router dengan cara klik routers lalu pilih router 1841.

5 |

P a g e

4.

Buat 2 buah switch 2950T-24.

Gambar2.3 (Buat swicth)

5.

Klik Router0 pada bagian physical matikan terlebih dahulu router dengan

cara klik tombol on/off atau 1/0 pada physical device view.

Gambar2.4 (Router0 Physical device view)

6 |

P a g e

Kecepatan tinggi kartu antarmuka WAN serial dan asynchronous (HWICs)

menyediakan koneksi yang sangat fleksibel untuk Cisco 1800, 2800, dan

3800 series pelayanan terpadu router. HWICs ini membantu pelanggan

mengaktifkan aplikasi seperti akses WAN, warisan transportasi protokol,

server konsol, dan dial akses server. Anda dapat mencampur dan

mencocokkan HWICs untuk menyesuaikan solusi biaya-efektif untuk

masalah jaringan umum seperti remote manajemen jaringan, akses

dial-modem eksternal, low-density WAN agregasi, warisan transportasi

protokol, dan dukungan tinggi-port-density

Gambar2.5 (Tambahkan HWIC-2T)

7 |

P a g e

Gambar2.6 (Jalankan kembali router)

8 |

P a g e

Gambar2.7 (Tambahkan HWIC-2T)

9.

Setelah menambahkan HWIC-2T pada physical device jalankan kembali

routernya.

Gambar2.8 (Router1 Physical device view)

10.

Hubungkan router0 dengan cloud menggunakan Serial DCE. Pada router

terhubung ke Serial0/1/0.

9 |

P a g e

11.

Pada cloud hubungkan ke serial0.

Gambar2.10 (Cloud serial0)

12.

Masih menggunakan serial DCE hubungkan serial1 dari cloud.

Gambar2.11 (Cloud serial1)

10 |

P a g e

Gambar2.12 (Router1 serial0/1/0)

14.

Hubungkan dari switch FastEthernet0/1 switch2.

Gambar2.13 (FastEthernet0/1 switch2)

11 |

P a g e

Gambar2.14 (Hubungkan dari switch2 ke router0)

16.

Sama seperti sebelumnya pada switch FastEthernet0/1 dengan copper

straight-through hubungkan ke router1.

Gambar2.15 (Switch3)

12 |

P a g e

Gambar2.16 (Router1)

18.

Pada router0 di menu config masuk ke sub menu FastEthernet0/0.

Masukan IP address, subnet mask dan port status ceklis.

Gambar2.17 (Router0 config fastethernet)

13 |

P a g e

Gambar2.18 (Router0 config Serial0/1/0)

14 |

P a g e

Gambar2.19 (Router1 config fastethernet)

21.

Lalu pada Serial0/1/0 centang port status, isikan IP Address dan

subnetmask.

15 |

P a g e

22.

Configurasi CLI router0.

Router0

System Bootstrap, Version 12.3(8r)T8, RELEASE SOFTWARE (fc1)

Cisco 1841 (revision 5.0) with 114688K/16384K bytes of memory.

Self decompressing the image :

########################################################## ################ [OK]

Restricted Rights Legend

Use, duplication, or disclosure by the Government is subject to restrictions as set forth in subparagraph (c) of the Commercial Computer Software - Restricted Rights clause at FAR sec. 52.227-19 and subparagraph (c) (1) (ii) of the Rights in Technical Data and Computer Software clause at DFARS sec. 252.227-7013.

cisco Systems, Inc. 170 West Tasman Drive

San Jose, California 95134-1706

Cisco IOS Software, 1841 Software (C1841-ADVIPSERVICESK9-M), Version 12.4(15)T1, RELEASE SOFTWARE (fc2)

Technical Support: http://www.cisco.com/techsupport Copyright (c) 1986-2007 by Cisco Systems, Inc. Compiled Wed 18-Jul-07 04:52 by pt_team

Image text-base: 0x60080608, data-base: 0x6270CD50

This product contains cryptographic features and is subject to United

States and local country laws governing import, export, transfer and

use. Delivery of Cisco cryptographic products does not imply

third-party authority to import, export, distribute or use encryption.

Importers, exporters, distributors and users are responsible for

compliance with U.S. and local country laws. By using this product you

agree to comply with applicable laws and regulations. If you are unable

to comply with U.S. and local laws, return this product immediately.

A summary of U.S. laws governing Cisco cryptographic products may be found at:

http://www.cisco.com/wwl/export/crypto/tool/stqrg.html

16 |

P a g e

sending email to export@cisco.com.

Cisco 1841 (revision 5.0) with 114688K/16384K bytes of memory.

Processor board ID FTX0947Z18E

M860 processor: part number 0, mask 49 2 FastEthernet/IEEE 802.3 interface(s) 191K bytes of NVRAM.

63488K bytes of ATA CompactFlash (Read/Write)

Cisco IOS Software, 1841 Software (C1841-ADVIPSERVICESK9-M), Version 12.4(15)T1, RELEASE SOFTWARE (fc2)

Technical Support: http://www.cisco.com/techsupport Copyright (c) 1986-2007 by Cisco Systems, Inc. Compiled Wed 18-Jul-07 04:52 by pt_team

--- System Configuration Dialog ---

Continue with configuration dialog? [yes/no]: System Bootstrap, Version 12.3(8r)T8, RELEASE SOFTWARE (fc1) Cisco 1841 (revision 5.0) with 114688K/16384K bytes of memory.

Self decompressing the image :

########################################################## ################ [OK]

Restricted Rights Legend

Use, duplication, or disclosure by the Government is subject to restrictions as set forth in subparagraph (c) of the Commercial Computer Software - Restricted Rights clause at FAR sec. 52.227-19 and subparagraph (c) (1) (ii) of the Rights in Technical Data and Computer Software clause at DFARS sec. 252.227-7013.

cisco Systems, Inc. 170 West Tasman Drive

San Jose, California 95134-1706

Cisco IOS Software, 1841 Software (C1841-ADVIPSERVICESK9-M), Version 12.4(15)T1, RELEASE SOFTWARE (fc2)

Technical Support: http://www.cisco.com/techsupport Copyright (c) 1986-2007 by Cisco Systems, Inc. Compiled Wed 18-Jul-07 04:52 by pt_team

Image text-base: 0x60080608, data-base: 0x6270CD50

This product contains cryptographic features and is subject to United

States and local country laws governing import, export, transfer and

17 |

P a g e

imply

third-party authority to import, export, distribute or use encryption.

Importers, exporters, distributors and users are responsible for

compliance with U.S. and local country laws. By using this product you

agree to comply with applicable laws and regulations. If you are unable

to comply with U.S. and local laws, return this product immediately.

A summary of U.S. laws governing Cisco cryptographic products may be found at:

http://www.cisco.com/wwl/export/crypto/tool/stqrg.html

If you require further assistance please contact us by sending email to

export@cisco.com.

Cisco 1841 (revision 5.0) with 114688K/16384K bytes of memory.

Processor board ID FTX0947Z18E

M860 processor: part number 0, mask 49 2 FastEthernet/IEEE 802.3 interface(s)

2 Low-speed serial(sync/async) network interface(s) 191K bytes of NVRAM.

63488K bytes of ATA CompactFlash (Read/Write)

Cisco IOS Software, 1841 Software (C1841-ADVIPSERVICESK9-M), Version 12.4(15)T1, RELEASE SOFTWARE (fc2)

Technical Support: http://www.cisco.com/techsupport Copyright (c) 1986-2007 by Cisco Systems, Inc. Compiled Wed 18-Jul-07 04:52 by pt_team

--- System Configuration Dialog ---

Continue with configuration dialog? [yes/no]: n

Press RETURN to get started!

Router>enable

Router#configure terminal

Enter configuration commands, one per line. End with CNTL/Z.

Router(config)#interface FastEthernet0/0

Router(config-if)#ip address 192.168.10.1 255.255.255.0 Router(config-if)#no shutdown

Router(config-if)#

18 |

P a g e

%LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0, changed state to up

Router(config-if)#exit

Router(config)#interface Serial0/1/0

Router(config-if)#ip address 10.0.0.1 255.0.0.0 Router(config-if)#no shutdown

Router(config-if)#

%LINK-5-CHANGED: Interface Serial0/1/0, changed state to up

Router(config-if)#ena ^

% Invalid input detected at '^' marker.

Router(config-if)#en % Ambiguous command: "en" Router(config)#router rip

Router(config-router)#net 192.168.10.0 Router(config-router)#net 10.0.0.0 Router(config-router)#ex

Router(config)#crypto isakmp policy 10 Router(config-isakmp)#auth

Router(config-isakmp)#authentication pre-share Router(config-isakmp)#hash sha

Router(config-isakmp)#encryp

Router(config-isakmp)#encryption aes 256 Router(config-isakmp)#group 2

Router(config-isakmp)#lif

Router(config-isakmp)#lifetime 86400 Router(config-isakmp)#ex

Router(config)#crypto isakmp key toor addres 10.0.0.2 Router(config)#crypto ipsec transform-set TSET esp-aes esp-sha-hmac

Router(config)#access-list 101 permit ip 192.168.10.0 0.0.0.255 192.168.20.0 0.0.0.255

Router(config)#crypto map CMAP 10 ipsec-isakmp

% NOTE: This new crypto map will remain disabled until a peer

and a valid access list have been configured. Router(config-crypto-map)#set peer 10.0.0.2

Router(config-crypto-map)#match addres 101

Router(config-crypto-map)#set transform-set TSET Router(config-crypto-map)#ex

Router(config)#int

Router(config)#interface fa0/1 Router(config-if)#crypto map CMAP

*Jan 3 07:16:26.785: %CRYPTO-6-ISAKMP_ON_OFF: ISAKMP is ON

Router(config-if)#do wr Building configuration... [OK]

Router(config-if)#ex

Router(config)#ip dhcp pool IP10

19 |

P a g e

Enter configuration commands, one per line. End with CNTL/Z.

Router(config)#inte

Router(config)#interface s0/1/0 Router(config-if)#enca

Router(config-if)#encapsulation fram

Router(config-if)#encapsulation frame-relay Router(config-if)#

%LINEPROTO-5-UPDOWN: Line protocol on Interface Serial0/1/0, changed state to up

Router(config-if)#ex Router(config)#

23.

Konfigurasi CLI Router1.

Router1

This product contains cryptographic features and is subject to United

States and local country laws governing import, export, transfer and

use. Delivery of Cisco cryptographic products does not imply

third-party authority to import, export, distribute or use encryption.

Importers, exporters, distributors and users are responsible for

compliance with U.S. and local country laws. By using this product you

agree to comply with applicable laws and regulations. If you are unable

to comply with U.S. and local laws, return this product immediately.

A summary of U.S. laws governing Cisco cryptographic products may be found at:

http://www.cisco.com/wwl/export/crypto/tool/stqrg.html

If you require further assistance please contact us by sending email to

export@cisco.com.

Cisco 1841 (revision 5.0) with 114688K/16384K bytes of memory.

Processor board ID FTX0947Z18E

M860 processor: part number 0, mask 49 2 FastEthernet/IEEE 802.3 interface(s) 191K bytes of NVRAM.

20 |

P a g e

Cisco IOS Software, 1841 Software (C1841-ADVIPSERVICESK9-M), Version 12.4(15)T1, RELEASE SOFTWARE (fc2)

Technical Support: http://www.cisco.com/techsupport Copyright (c) 1986-2007 by Cisco Systems, Inc. Compiled Wed 18-Jul-07 04:52 by pt_team

--- System Configuration Dialog ---

Continue with configuration dialog? [yes/no]: System Bootstrap, Version 12.3(8r)T8, RELEASE SOFTWARE (fc1) Cisco 1841 (revision 5.0) with 114688K/16384K bytes of memory.

Self decompressing the image :

######################################################### ################# [OK]

Restricted Rights Legend

Use, duplication, or disclosure by the Government is subject to restrictions as set forth in subparagraph (c) of the Commercial Computer Software - Restricted Rights clause at FAR sec. 52.227-19 and subparagraph (c) (1) (ii) of the Rights in Technical Data and Computer Software clause at DFARS sec. 252.227-7013.

cisco Systems, Inc. 170 West Tasman Drive

San Jose, California 95134-1706

Cisco IOS Software, 1841 Software (C1841-ADVIPSERVICESK9-M), Version 12.4(15)T1, RELEASE SOFTWARE (fc2)

Technical Support: http://www.cisco.com/techsupport Copyright (c) 1986-2007 by Cisco Systems, Inc. Compiled Wed 18-Jul-07 04:52 by pt_team

Image text-base: 0x60080608, data-base: 0x6270CD50

This product contains cryptographic features and is subject to United

States and local country laws governing import, export, transfer and

use. Delivery of Cisco cryptographic products does not imply

third-party authority to import, export, distribute or use encryption.

Importers, exporters, distributors and users are responsible for

compliance with U.S. and local country laws. By using this product you

agree to comply with applicable laws and regulations. If you are unable

21 |

P a g e

A summary of U.S. laws governing Cisco cryptographic products may be found at:

http://www.cisco.com/wwl/export/crypto/tool/stqrg.html

If you require further assistance please contact us by sending email to

export@cisco.com.

Cisco 1841 (revision 5.0) with 114688K/16384K bytes of memory.

Processor board ID FTX0947Z18E

M860 processor: part number 0, mask 49 2 FastEthernet/IEEE 802.3 interface(s)

2 Low-speed serial(sync/async) network interface(s) 191K bytes of NVRAM.

63488K bytes of ATA CompactFlash (Read/Write)

Cisco IOS Software, 1841 Software (C1841-ADVIPSERVICESK9-M), Version 12.4(15)T1, RELEASE SOFTWARE (fc2)

Technical Support: http://www.cisco.com/techsupport Copyright (c) 1986-2007 by Cisco Systems, Inc. Compiled Wed 18-Jul-07 04:52 by pt_team

--- System Configuration Dialog ---

Continue with configuration dialog? [yes/no]: n

Press RETURN to get started!

Router>enable

Router#configure terminal

Enter configuration commands, one per line. End with CNTL/Z.

Router(config)#interface FastEthernet0/0

Router(config-if)#ip address 192.168.20.1 255.255.255.0 Router(config-if)#no shutdown

Router(config-if)#

%LINK-5-CHANGED: Interface FastEthernet0/0, changed state to up

%LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0, changed state to up

22 |

P a g e

Router(config)#interface Serial0/1/0

Router(config-if)#ip address 10.0.0.2 255.0.0.0 Router(config-if)#no shutdown

Router(config-if)#

%LINK-5-CHANGED: Interface Serial0/1/0, changed state to up

Router con0 is now available

Press RETURN to get started.

Router>en Router#co Router#con Router#conf t

Enter configuration commands, one per line. End with CNTL/Z.

23 |

P a g e

Router(config-isakmp)#encry

Router(config-isakmp)#encryption aes 256 Router(config-isakmp)#group 2

Router(config-isakmp)#lif

Router(config-isakmp)#lifetime 86400 Router(config-isakmp)#ex

Router(config)#crypto isakmp key toor addres 10.0.0.1 Router(config)#crypto ipsec transform-set TSET esp-aes esp-sha-hmac

Router(config)#access-list 101 permit ip 192.168.20.0 0.0.0.255 192.168.10.0 0.0.0.255

Router(config)#cry

Router(config)#crypto map CMAP 10 ipsec-isakmp

% NOTE: This new crypto map will remain disabled until a peer

and a valid access list have been configured. Router(config-crypto-map)#set peer 10.0.0.1

Router(config-crypto-map)#match addres 101

Router(config-crypto-map)#set transform-set TSET Router(config-crypto-map)#ex

Router(config)#inte

Router(config)#interface fa0/1 Router(config-if)#cry

Router(config-if)#crypto map CMAP

*Jan 3 07:16:26.785: %CRYPTO-6-ISAKMP_ON_OFF: ISAKMP is ON

Router(config-if)#do wr Building configuration... [OK]

Router(config-if)#ex

Router(config)#ip dhcp pool IP10

Router(dhcp-config)#net 192.168.20.1 255.255.255.0 Router(dhcp-config)#defa

Router(config-if)#encapsulation frame-relay Router(config-if)#

%LINEPROTO-5-UPDOWN: Line protocol on Interface Serial0/1/0, changed state to up

Router(config-if)#ex Router(config)#

24 |

P a g e

Gambar2.21 (Router1 config static)

25.

Pada router1 sama di menu config satatic isi network, mask dan next hop

lalu klik add.

25 |

P a g e

26.

Pada cloud di menu config, serial0 di port status ceklis, isi DLCI dan

name lalu klik add.

Gambar2.23 (Cloud serial0)

26 |

P a g e

Gambar2.24 (Cloud serial1)

27 |

P a g e

Gambar2.25 (Cloud frame relay)

29.

Buat client dan server di bagian kiri dan kanan lalu hubungka ke switch

dengan menggunakan kabel staright.

Gambar2.26 (Menghubungkan)

30.

Pada PC 1 akan dilakukan setting IP secara DHCP. Klik pc lalu pilih

desktop klik ip configuration.

28 |

P a g e

31.

Pada IP configuration klik DHCP. Tunggu sampai DHCP request

successful. Setelah selesai tutup pc0.

Gambar2.28 (IP Configuration)

32.

Untuk semua perangkat yang terhubung agar lebih mudah masukan IP

secara DHCP bahkan untuk server. Karena sebelumnya pada router telah

diisikan DHCP.

29 |

P a g e

Gambar2.29 (command prompt ping)

30 |

P a g e

34.

Pada server0 digunakan untuk HTTP server. Pengeditan html dilakukan

pada config http.

Gambar2.31 (HTTP)

35.

Pada server1 digunakan untuk DNS server. Konfigurasi dilakukan pada

config DNS klik on DNS Service, name isikan sesuai nama, type A

record dan address pada 192.168.10.0.

31 |

P a g e

Gambar2.32 (DNS)

32 |

P a g e

Gambar2.33 (ping DNS)

37.

Untuk verifikasi DNS di web browser panggila DNS di link.

33 |

P a g e

BAB III

A.

Simpulan

1.

VPN atau Virtual Private Network adalah suatu koneksi antara satu

jaringan dengan jaringan lainnya secara privat melalui jaringan publik

(Internet). VPN disebut Virtual network karena menggunakan jaringan

publik (Internet) sebagai media perantaranya alias bukan koneksi

langsung. Dan disebut Private network karena jaringannya bersifat

privat, dimana hanya orang tertentu saja yang bisa mengaksesnya.

Data yang dikirimkan pun terenkripsi sehingga aman dan tetap rahasia

meskipun dikirim melalui jaringan publik.

2.

Dengan percobaan ini dapat dilihat bahwa dengan VPN kedua