LOMBA KETERAMPILAN SISWA

Similar documents
LOMBA KETERAMPILAN SISWA

Island A Test project Linux Environments

LOMBA KETRAMPILAN SISWA SEKOLAH MENENGAH KEJURUAN TINGKAT PROVINSI BALI. Kelompok Teknologi Informasi. Standar WSC LEMBAR SOAL. Nama Peserta :...

Day 1 IT Network Systems Administration Trade 39 WSC 2011 London

World Skills Competition. Trade 39: IT PC and Network Support. Day 2 Competition

Install and Manage Windows Nano Server 2016 Step by Step

Deploying Cisco UCS Central

Comodo Dome Data Protection Software Version 3.8

HySecure Quick Start Guide. HySecure 5.0

3. In the upper left hand corner, click the Barracuda logo ( ) then click Settings 4. Select the check box for SPoE as default.

VMware Identity Manager Connector Installation and Configuration (Legacy Mode)


Chapter 2: System and Network Architecture. Chapter 4: Configuration of the Server and Client Machines. Chapter 5: Starting a Functional Test

WA2592 Applied Data Science and Big Data Analytics. Classroom Setup Guide. Web Age Solutions Inc. Copyright Web Age Solutions Inc.

Linux Administration

Endian Proxy / Firewall

VII. Corente Services SSL Client

Windows Server 2003 { Domain Controller Installation and Configuration}

Deploying VMware Identity Manager in the DMZ. JULY 2018 VMware Identity Manager 3.2

FileCruiser VM Quick Configuration Guide For Trial Version V1.0

Installing and Configuring VMware Identity Manager Connector (Windows) OCT 2018 VMware Identity Manager VMware Identity Manager 3.

vcenter Server Appliance Configuration Modified on 17 APR 2018 VMware vsphere 6.7 VMware ESXi 6.7 vcenter Server 6.7


UNIVERSITY OF MUMBAI OCTOBER 2014 LINUX ADMINISTRATION

Deploying VMware Identity Manager in the DMZ. SEPT 2018 VMware Identity Manager 3.3

World Skills Competition. Trade 39: IT PC and Network Support. Day 4 Competition. Competitor Name: Country Code:

File services. Domains, DNS DHCP. Server Scripts. Intranet and Extranets. Web services. HNC COMPUTING - Network Concepts

WorldSkills Competition to 22 July 2003 in St. Gallen, Switzerland. Day 3. IT PC and Network Support. To be filled out by the candidate

Competitor fills in. Expert fills in. Time: 5:00h 39 - IT Network Systems Administration Chief-Experts: Danny Meier, Florian Meier, Tobias Meier

Platform Administration

Wireless Network Video Recorder

Installing Cisco MSE in a VMware Virtual Machine

Cisco Unified Operating System Administration Web Interface

akkadian Global Directory 3.0 System Administration Guide

Cisco Unified Operating System Administration Web Interface for Cisco Emergency Responder

Installation Guide. McAfee Web Gateway. for Riverbed Services Platform

SOA Software API Gateway Appliance 6.3 Administration Guide

ELASTIX HIGH AVAILABILITY (HA) MODULE

Test Project Day 4 TP39_39JP_EN_v1.4

ISO Installation Guide. Version 1.2 December 2015

VMWARE HORIZON CLOUD WITH VMWARE IDENTITY MANAGER QUICK START GUIDE WHITE PAPER MARCH 2018

Installing the Cisco Virtual Network Management Center

Link Gateway Initial Configuration Manual

Networks Lab Pod Diagram

Remote Access System for STAM-2 Monitoring Station STAM-VIEW

Sophos Migration Assistant. migration guide

Kerio Control. Step-by-Step Configuration. Kerio Technologies

VMware Identity Manager Cloud Deployment. Modified on 01 OCT 2017 VMware Identity Manager

VMware Identity Manager Cloud Deployment. DEC 2017 VMware AirWatch 9.2 VMware Identity Manager

CUSTOMER CONTROL PANEL... 2 DASHBOARD... 3 HOSTING &

On following pages I explain the steps to be performed, for having this Web Filtering product installed.

CA Agile Central Administrator Guide. CA Agile Central On-Premises

E-Detective. User Installation Guide

Table of Contents 1 V3 & V4 Appliance Quick Start V4 Appliance Reference...3

Installing Cisco CMX in a VMware Virtual Machine

Controller Installation

Administrasi Jaringan (Network Administration) Ferry Astika Saputra Isbat Udzin Nadhori Iwan Syarif M. Udin Harun al Rasyid

Overview of the Cisco NCS Command-Line Interface

IPBRICK Installation Manual

Guideline for the installation of C-MOR Video Surveillance Virtual Machine on VMware ESX Server

1/7. Day 3 IT Network Systems Administration Trade 39 WSC 2011 London

Windows. Not just for houses

Step-by-Step Configuration

Installation Manual InfraManage.NET Installation Instructions for Ubuntu

Transport Gateway Installation / Registration / Configuration

Table of Contents. Course Introduction. Table of Contents Getting Started About This Course About CompTIA Certifications. Module 1 / Server Setup

Setting Up Identity Management

SENAITE Community VM Version: 1.1 Date: 2018/01/11

Appliance Installation Guide

Create a pfsense router for your private lab network template

Maintaining Cisco Unity Connection Server

Installation Guide McAfee Firewall Enterprise (Sidewinder ) on Riverbed Services Platform

IPCop Installation and Management. By: Kritsada Pinato (Bugfly)

2 Initial Setup with Web Wizard

McAfee epo Deep Command

Cisco Prime Service Catalog Virtual Appliance Quick Start Guide 2

Load Balancing Censornet USS Gateway. Deployment Guide v Copyright Loadbalancer.org

RAP Installation README

Windows. Not just for houses

Cisco Prime Collaboration Deployment

Planning and Preparation. VMware Validated Design 4.0 VMware Validated Design for Remote Office Branch Office 4.0

Infoblox Installation Guide vnios for Xen. Page 1

ABOUT ZEPCAM SOFTWARE INSTALLATION MANAGEMENT AND BACKUPS. Description What is it Installation requirement Server requirement

Fundamentals of Computer Networking AE6382

LPI202 - LPIC-2 Exam Prep (Course 2) (LPI202) HL966S

Integrating Ubuntu based workstations in IPBrick s domain

CounterACT 7.0. Quick Installation Guide for a Single Virtual CounterACT Appliance

Wave 5.0. Wave OpenVPN Server Guide for Wave 5.0

Computer Center, CS, NCTU. Outline. FreeBSD version 11.1-RELEASE. Installing FreeBSD. From CD-ROM From USB

Sidewinder. Release Notes 8.3.2P11. Revision A

Acano solution. Virtualized Deployment R1.2 Installation Guide. Acano. December G

Convio Data Sync Connector 3 Installation Guide

HUL SOVANNAROTH PANG DA TIP SAROTH

Contents at a Glance COPYRIGHTED MATERIAL. Introduction...1 Part I: Becoming Familiar with Enterprise Linux...7

Microsoft Exactexams Questions & Answers

Acano solution. Virtualized Deployment R1.7 Installation Guide. March G

INUVIKA TECHNICAL GUIDE

NETWORK CONFIGURATION AND SERVICES. route add default gw /etc/init.d/apache restart

Introduction to Firewalls using IPTables

WA2393 Data Science for Solution Architects. Classroom Setup Guide. Web Age Solutions Inc. Copyright Web Age Solutions Inc. 1

Transcription:

LOMBA KETERAMPILAN SISWA SEKOLAH MENENGAH KEJURUAN TINGKAT PROVINSI BALI TAHUN 2017 MODUL 1 SYSTEM INTEGRATION ISLAND IT NETWORK SYSTEMS ADMINISTRATION LKS2017_ITNSA_MODUL1 KEMENTERIAN PENDIDIKAN DAN KEBUDAYAAN DIREKTORAT JENDERAL PENDIDIKAN MENENGAH DIREKTORAT PEMBINAAN SEKOLAH MENENGAH KEJURUAN LKS2017_ITNSA_MODUL1 Page 1

NETWORK SPECIFICATION SPECIFICATIONS WINSRV Server name: Operating System Domain Name: Administrator name: Administrator password: IP address: Domain NetBIOS Name: LNXSRV IP Hostname name Admin Password LNXRO External IP (eth0) Internal IP (eth1) Hostname name Admin Password WINSRV MS Windows 2012 R2 inaskills.net Administrator 10.202.178.2/29 (bridge) INASKILLS 10.202.178.3/29 (bridge) LNXSRV root 172.20.200.65/27 (LAN segmen) 10.202.178.1/29 (bridge) LNXRO root WINCLT Computer name: WINCLT Operating System MS Windows 8.1 name: Password: Domain name: inaskills.net IP address: DHCP WINSRV DOMAIN USER LIST Group Members Password IT itxx (01 50) Marketing mktxx (01 50) Visitors vtrxx (01-30) Employees IT, Marketing LNXSRV (autentication) Password user11 to user20 LNXSRV (user directory) Password 01 to user20 LKS2017_ITNSA_MODUL1 Page 2

NETWORK SPECIFICATION LNXSRV (user mail) budi ani LNXSRV (SSH) remote Password Password LNXSRV (Cacti) master Password LKS2017_ITNSA_MODUL1 Page 3

NETWORK SPECIFICATION NETWORK DIAGRAM MODUL 1 INTEGRATION ISLAND Windows 8.1 Hostmachine (PC 2) Virtual Linux Router LNXRO eth1: 10.202.178.1/29 Virtual Windows Client WINCLT eth0: DHCP Client Windows 8.1 Hostmachine (PC 1) Virtual Windows Server Windows Server 2012 WINSRV Virtual Linux Server LNXSRV eth0: 172.20.200.65/27 System Functions: - Routing - Reverse Proxy - Firewall - DHCP Server System Functions: - Join Domain - DHCP Client Windows Client pre install eth0: System Functions: - Active Directory - DNS - GPO Windows Server pre install eth0: System Functions: - RAID - CA - HTTP & HTTPs - FTP & FTPs - Mail, Web Mail - SSH - System Monitoring (Cacti) 10.202.178.2/29 10.202.178.3/29 LKS2017_ITNSA_MODUL1 Page 4

ISLAND 1 SYSTEM INTEGRATION ISLAND CONTENTS This Test Project proposal consists of the following document/file: LKS2016_ITNSA_MODUL1.pdf INTRODUCTION The competition has a fixed start and finish time. You must decide how to best divide your time. Please carefully read the following instructions! When the competition time ends, please leave your station in a running state. Please do not touch the VMware configuration as well as the configuration of the VM itself except the CD-ROM / HDD drives PHYSICAL MACHINE (HOST) FOLDER PATHS Virtual Machine : C:\Virtual Machine ISO Images : C:\Apps WORK TASK CABLING Create Straighthrought cable with standard T568B LKS2017_ITNSA_MODUL1 Page 5

WORK TASK INSTALLATION (WINSRV, LNXSRV, LNXRO) Note: Please use the default configuration if you are not given the details. WORK TASK SERVER WINSRV Configure the server with the hostname, domain and IP specified in the appendix. o Modify the default Firewall rules to allow ICMP (ping) traffic o Install Active Directory Domain Services for inaskills.net. Create a new Organization Unit named InaSkills2017. All new users and groups must be created in this OU. Create the user and security global group with members as indicated in the table in Appendix. Use as the password for all user accounts. o DNS Create a forward zone called inaskills.net Create a reverse zone for the IP range. Create 4 subdomain: - router.inaskills.net LNXRO - mail.inaskills.net LNXSRV - internal.inaskills.net LNXSRV - modul.inaskills.net LNXSRV - info.inaskills.net LNXSRV o GPO Password Policies Ensure the company user password must meet the following criteria: - Domain passwords will be at least 6 characters. - Strong passwords need not be enforced. - Passwords will not be stored with reversible encryption. - Passwords will be changed exactly every 90 days. - Accounts will be locked out for 30 minutes after three invalid logon attempts. The password of the users in IT group must meet the following criteria: - Domain passwords will be at least 10 characters. - Strong passwords will be enforced. - Passwords will not be stored with reversible encryption. - Passwords will be changed exactly every 30 days. - Accounts will be locked out for 15 minutes after two invalid logon attempts. o GPO Security Policies At logon on WINCLT, users should see this message before logging in: Message Title: Welcome to InaSkills2017 with Message Text Only authorized personnel allowed to access. and prohibit this message on all servers. All users, except the IT group, are not allowed to access the display settings on the Control Panel. disable "First Sign-in Animation" for all Windows 8.1 clients disable the use of cmd and run for the Visitor group hide all local drives for the Visitor group o Windows server pre install without network configuration LKS2017_ITNSA_MODUL1 Page 6

WORK TASK SERVER LNXSRV Note: Please use the default configuration if you are not given the details. Configure the server with the hostname, domain and IP specified in the appendix o Configure the disk and partitions Add 3 disks with 5 GB of each disk. Use the three virtual disks to create a software RAID 5. Mount it as /data o Install the services: 1. CA (openssl) Configure as CA CA attributes should be set as follows - Country code is set to ID - Organization is set to LKS2017 Create a root CA certificate Store the certificate in directory /cert 2. Web Server (apache2 including php5) Create info.php in the http://info.inaskills.net/info.php to check the php version installed. Use the following code for info.php <?php phpinfo();?> Create website http://internal.inaskills.net and http://modul.inaskills.net - Use the following code for index.html in the http://internal.inaskills.net <html> <h1>welcome in the internal inaskills</h1> </html> - Use the following code for index.html in the http://modul.inaskills.net <html> <h1>welcome in the Modul inaskills</h1> </html> Make sure http://internal.inaskills.net is protected by authentication - Allow users from user11 to user20 Enable HTTPs for both sites - Use a certificate signed by CA - Make sure no certificate warning is shown. Create virtual webpages for user01 to user20 - Ex. http://internal.inaskills.net/~user09 3. FTP (proftpd) Enable FTPS - Use a certificate signed by CA LKS2017_ITNSA_MODUL1 Page 7

Each user (user01 to user20) will have a home directory. must have access to update their own virtual webpage via FTP Make sure the user are jailed in their respective website document root directories. Make sure file transfer to the server is possible. 4. Mail and Webmail (Squirrelmail) Create users budi and ani Make sure they have access via POP3, IMAP and SMTP Before you finish your project make sure you send an email message from budi to ani and another message from ani to budi Do not delete these email messages. 5. SSH Server Install SSH Server Root account is not allowed to login. Create user remote with password. That has the same permission as root account. Change SSH port default to 2017 6. Monitoring Server (Cacti) Install Cacti Create an admin-user master with password Create a graph showing the statistics of the CPU, Memory and interfaces traffic of the LNXSRV and LNXRO WORK TASK SERVER LNXRO Configure the server with the hostname, domain and IP specified in the appendix o Install the services: 1. Routing - Enable routing 2. Firewall (iptables) - Block the ICMP packet from external network to the LNXRO - Ensure the external network can access any service on LNXSRV 3. DHCP Range : 172.20.200.71 172.20.200.80 Netmask : /27 Gateway : 172.20.200.65 DNS : 10.202.178.2 4. Proxy (nginx) Configure a reverse proxy for http://router.inaskills.net website, which is hosted by LNXSRV WORK TASK INSTALLATION WINCLT LKS2017_ITNSA_MODUL1 Page 8

Note: o Windows client pre install without network configuration o Please use the default configuration if you are not given the details. WORK TASK WINCLT Note: Please use the default configuration if you are not given the details. o Join the client to the domain inaskills.net LKS2017_ITNSA_MODUL1 Page 9

LKS2017_ITNSA_MODUL1 Page 10

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback