TINGKAT NASIONAL XXI 2013 JAKARTA BIDANG LOMBA IT / NETWORKING SUPPORT KEMENTERIAN PENDIDIKAN DAN KEBUDAYAAN DIREKTORAT JENDERAL PENDIDIKAN MENENGAH DIREKRORAT PEMBINAAN SEKOLAH MENENGAH KEJURUAN JALAN JENDERAL SUDIRMAN GEDUNG E LT.12-13 SENAYAN - JAKARTA LEMBAR SOAL LOMBA KOMPETENSI SISWA SEKOLAH MENENGAH KEJURUAN TINGKAT NASIONAL XXI 2013 JAKARTA BIDANG LOMBA IT / NETWORKING SUPPORT KEMENTERIAN PENDIDIKAN DAN KEBUDAYAAN DIREKTORAT JENDERAL PENDIDIKAN MENENGAH DIREKRORAT PEMBINAAN SEKOLAH MENENGAH KEJURUAN JALAN JENDERAL SUDIRMAN GEDUNG E LT.12-13 SENAYAN - JAKARTA LEMBAR SOAL LOMBA KOMPETENSI SISWA SEKOLAH MENENGAH KEJURUAN TINGKAT NASIONAL XXI 2013 JAKARTA BIDANG LOMBA IT / NETWORKING SUPPORT KEMENTERIAN PENDIDIKAN DAN KEBUDAYAAN DIREKTORAT JENDERAL PENDIDIKAN MENENGAH DIREKRORAT PEMBINAAN SEKOLAH MENENGAH KEJURUAN JALAN JENDERAL SUDIRMAN GEDUNG E LT.12-13 SENAYAN - JAKARTA LEMBAR SOAL KEMENTRIAN PENDIDIKAN DAN KEBUDAYAAN DIREKTORAT JENDERAL PENDIDIKAN MENENGAH DIREKTORAT PEMBINAAN SEKOLAH MENENGAH KEJURUAN JAKARTA - 2013 LKS XXI Jakarta 2013 2/7 DAY 1 DESCRIPTION OF PROJECT AND TASKS There is a SOHO called ITService. The management of IT Service allow their client connect to Internet via Router. There is a chance for administrator network to configure the Router via Internet using secure connection. You have to build the system, so the network has configuration to support their requirements. SECTION 1 OPERATING SYSTEM INSTALLATION Part 1 PC Router Operating SystemInstallation 1. Install Linux Debian 6.0 operating system in PC Router. Dont install graphical user interface (GUI) such as KDE, GNOME, etc. 2. Create 2 formatted partitions : C: 50 GB - D: 10 GB - Leave the rest still unpartition 3. Set Host name, Root password, and IP address of network card. Note: Host name, Root password, and IP address of network card will be given during competition. Part 2 Laptop Client Operating SystemInstallation 1. Install Windows Operating System in Laptop client. Ensure that all components needed are correctly installed. 2. Allow ICMP Packet Incoming and Outgoing 3. Set Laptop client as follows: - Company name : IT Service - Computer name : Laptop-xx (xx is the competitors number, example: Laptop-01) - Set user name and password Note: User name and password will be given during competition. KEMENTRIAN PENDIDIKAN DAN KEBUDAYAAN DIREKTORAT JENDERAL PENDIDIKAN MENENGAH DIREKTORAT PEMBINAAN SEKOLAH MENENGAH KEJURUAN JAKARTA - 2013 LKS XXI Jakarta 2013 3/7 SECTION 2 CABLING AND ACCESS POINT Part 3 Cabling Make three straighthrough cable with length according to distance from PC Router and switch and PC Router to AP and make one Crossthrough Cable, then give label ST-xx and "XC-xx" near to each connector (xx is competitors number) standard T568B. Part 4 Wireless Access Point Configuration Configure the Wireless Access Point as follows: - Set WPA-PSK authentication. - Set SSID. - Set MAC address filtering to allow only Laptop client. Note: The IP address, WPA-PSK authentication, and SSID will be given during competition. SECTION 3 PC ROUTER CONFIGURATION Part 5 PC Router Configuration 1. Configure PC Router to allow Client connet Internet. 2. Write the modification or configuration you have done in the paper given by Judge. Part 6 Network Installation Setup networks according to the figure 1 below: Figure 1. Network topology KEMENTRIAN PENDIDIKAN DAN KEBUDAYAAN DIREKTORAT JENDERAL PENDIDIKAN MENENGAH DIREKTORAT PEMBINAAN SEKOLAH MENENGAH KEJURUAN JAKARTA - 2013 LKS XXI Jakarta 2013 4/7 Part 7 DHCP Server Configuration 1. Configure DHCP Server with valid available IP address which needed to connect to Laptop Client. 2. Write the modification or configuration you have done in the paper given by Judge. Part 8 Telnet Server Configuration 1. Configure Telnet Server runs using inetd. 2. Create Admin account as a duplicate Root account. 3. Disable Root login over network. Part 9 Time Synchronization 1. Set NTP server services. Use local clock as time server source. 2. Synchronize Laptop client time with the NTP Server time in PC Server. Part 10 SSH and FTP server 1. Set SSH server and use Client to remote 2. Copy file from server to client with SSH 3. FTP : Can be accessed for anonymous 4. Set first directory that guest can upload to and download file from it 5. Set second directory that guest can only download file from it KEMENTRIAN PENDIDIKAN DAN KEBUDAYAAN DIREKTORAT JENDERAL PENDIDIKAN MENENGAH DIREKTORAT PEMBINAAN SEKOLAH MENENGAH KEJURUAN JAKARTA - 2013 LKS XXI Jakarta 2013 5/7 DAY 2 DESCRIPTION OF PROJECT AND TASKS After years later, ITService want to create medium network. They want to have their own Web, Mail, FTP, and Proxy Server. The company ordered you to install the operating system and to build the network to connect those machines and setup several services. Youve already received the specifications for the project. SECTION 1 OPERATING SYSTEM INSTALLATION Part 11 PC Server Operating System Installation 1. Setup PC Server with the operating system same as operating system for PC Router. 2. Set Host name, Root password, and IP address of network card. Note: Host name, Root password, and IP address of network card will be given during competition. 3. Create 2 formatted partitions : C: 40 GB - D: 20 GB - Leave the rest still unpartition Part 12 Network Installation Setup networks according to the figure 2 below: Figure 2. Network topology KEMENTRIAN PENDIDIKAN DAN KEBUDAYAAN DIREKTORAT JENDERAL PENDIDIKAN MENENGAH DIREKTORAT PEMBINAAN SEKOLAH MENENGAH KEJURUAN JAKARTA - 2013 LKS XXI Jakarta 2013 6/7 SECTION 2 PC ROUTER CONFIGURATION Part 13 Firewall Configuration 1. Configure Packet Filtering Firewall to allow DHCP, DNS, HTTP, HTTPS, SSH, SMTP, FTP, IMAP, POP, and Squid ports deny all other services 2. Configure Circuit Level Firewall as follow: a. Allow Internet area connect to Server. b. Allow Local Network area connect to Internet and Server. c. Deny Internet area connection to Local Network. d. Deny Server Farm area connection to Local Network area. 3. Write the modification or configuration you have done in the paper given by Judge. SECTION 3 PC SERVER CONFIGURATION Part 14 DNS Server Configuration 1. Configure DNS Server with two domain: a. Itservice-xx.co.id b. Lks-xx.co.id 2. Each domain contain: www, mail, ftp, proxy services Example: - www.itservice-xx.co.id - mail.itservice-xx.co.id - ftp.itservice-xx.co.id - proxy.itservice-xx.co.id - www.lks-xx.co.id - mail.lks-xx.co.id - ftp.lks-xx.co.id - proxy.lks-xx.co.id Note: xx is the competitors number 3. Write the modification or configuration you have done in the paper given by Judge. Part 15 HTTP Server Configuration 1. Configure HTTP Server as follow : (install packet one by one) - Support html - Support php - Support apache and user directory ( .co.id/~direktory user) 2. Create two website: - www.itservice-xx.co.id Index.html: Welcome to IT Service Website (index.html has to be a valid html file) - www.lks-xx.co.id Index.html: Welcome to LKS Website (index.html has to be a valid html file) KEMENTRIAN PENDIDIKAN DAN KEBUDAYAAN DIREKTORAT JENDERAL PENDIDIKAN MENENGAH DIREKTORAT PEMBINAAN SEKOLAH MENENGAH KEJURUAN JAKARTA - 2013 LKS XXI Jakarta 2013 7/7 3. Write the modification or configuration you have done in the paper given by Judge. Part 16 Mail Server Configuration 1. Configure Mail Server as follows: - SMTP no relay - Create user client - Create e-mail address - IMAP/POP - Can send email to Internet mail 2. Set quota 20 Mb for each user. 3. Write the modification or configuration you have done in the paper given by Judge. Note: User name and password for user client, e-mail address, and Internet mail will be given during competition Part 17 Web Mail Server Configuration 1. Configure Web Mail Server as follows: - Webmail Apps - Domain is https://mail.itservice-xx.co.id/ (xx is the competitors number) 2. Write the modification or configuration you have done in the paper given by Judge. Part 18 Proxy Server Configuration 1. Configure Proxy Server to allow only whitelist accessed of website from Laptop client using ACL (access control list). Note: List of websites will be given during competition 2. Configure Proxy Server to access Internet using username and password (non- transparent mode). Note: Username and password will be given during competition 3. Configure Proxy Server to limit bandwidth for download. 4. Add web-based tool to monitor user proxy activity. 5. Write the modification or configuration you have done in the paper given by Judge. Part 19 Monitoring System 1. Set network traffic 2. Monitor for CPU, Memory, Swap Memory Part 20 Network File Sharing 1. Set NFS Server to PC Server (/home/user) 2. Set NFS Client to PC Router (/mnt) 3. Automatic mount NFS system