Monday, November 27, 2017

Lab. ASA + STATIC NAT

     ,  No comments
Lab. ASA + STATIC NAT

 Assalamu'alaikum Warahmatullahi Wabarakatu
Semangat Pagi Kawan, Kali ini kita akan ngoprek Firewall Cisco atau bisa disebut tembok Api, hehehe..
tepat kita akan ngoprek ASA + STATIC NAT, Mungkin para pembaca sudah apa itu ASA dan Static NAT, Saya Jelaskan sedikit Apa itu ASA ???
Cisco Asas datang dalam dua rasa, fisik dan virtual. Satu virtual yang relatif baru, dan dikenal sebagai ASAv ( "v" untuk virtual, masuk akal). Rentang fisik ASA firewall (5500 series) telah sekitar selama beberapa tahun, dan menggantikan firewall PIX.

Berbagai produk saat ini dimulai dengan 5505, yang akan menjadi SOHO router firewall combo khas Anda, dan kemudian rentang bergerak ke model X, dimulai dengan 5506-X.

X menunjukkan bahwa model ini adalah generasi berikutnya dari ASA, dan datang dengan senjata, yang kita akan melihat dalam posting yang berbeda. Jadi, apa perbedaan antara 5505 dan 5506-X? Itu cukup besar sebenarnya.
 ( Salah 1 jenis ASA cisco )

Kali ini kita akan Jenis ASA 5505 di Cisco Packet Tracert.
Les't go to Ngoprek... ๐Ÿ‘ฆ๐Ÿ˜€

1. Topologi Lab :
 ( Topologi )


Perangkat dan tool yang saya gunakan :
  1. Router Cisco 1800 Series
  2. Switch Catalyst 2960 Series SI PoE-24
  3. 6 kabel Straight + 2 kabel Cross
  4. kabel console + conventor Aten
2. Tahapan Lab :
  • Konfigurasi Router 
    • Setting IP address tiap Interface ( g0/0 & g0/1 )
  • Setting Semua IP Address Perangkat END Device sesuai Topologi
  • Konfigurasi Router ASA
    • Konfigurasi NAT dan Static NAT
      • setting dan nama interface
        • Inside 100 Security level
        • Outside-0 Security level
        • DMZ-50 Security level
  • Membuat Object LAN-Subnet dan DMZ-Subnet dan Enable Nat
  • Membuat Access-list
  • Default Route
  • Access-Group
  • Statik NAT
    • Map IP Public = 203.1.1.10 = 10.10.10.10 
3. Verifikasi Lab :
  • Pastikan PC0 dapat ping WEBSERVER dan cek pakai web browser menggunakan IP 203.1.1.10
  • Pastikan Webserver dapat Ping Server ( outside ) dan cek pakai web browser mengunakan IP 8.8.8.8
  • Pastikan Pc1 ( inside ) dapat ping IP 8.8.8.8 dan ip 8.8.8.9
4. Konfigurasi Lab :
  • Konfigurasi Router
    • Setting IP address
Router#conf t

Enter configuration commands, one per line.  End with CNTL/Z.

Router(config)#int g0/0


Router(config-if)#ip address 203.1.1.2 255.255.255.0

Router(config-if)#no shutdown
*Nov 18 06:15:27.607: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/0, changed state to up
Router(config-if)# exit


Router(config)#int g0/1


Router(config-if)#ip address 8.8.8.1 255.255.255.0

Router(config-if)#no shutdown
*Nov 18 06:15:27.607: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/1, changed state to up


  • Konfigurasi ASA
ciscoasa>en
Password:( Kosong )
ciscoasa#conf t
ciscoasa(config)#no dhcp address 192.168.1.5-192.168.1.36 inside
ciscoasa(config)#no dhcpd enable inside
ciscoasa(config)#int vlan 1
ciscoasa(config-if)#no ip address
WARNING: DHCPD bindings cleared on interface 'inside', address pool removed

 ciscoasa(config-if)#no ip address dhcp
ciscoasa(config-if)#exit
ciscoasa(config)#int vlan 2
ciscoasa(config-if)#no ip address dhcp
ciscoasa(config-if)#end

ciscoasa#sh run
: Saved
:
ASA Version 8.4(2)
!
hostname ciscoasa
names
!
interface Ethernet0/0
 switchport access vlan 2
!
interface Ethernet0/1
!
interface Ethernet0/2
!
interface Ethernet0/3
!
interface Ethernet0/4
!
interface Ethernet0/5
!
interface Ethernet0/6
!
interface Ethernet0/7
!
interface Vlan1
 nameif inside
 security-level 100
 no ip address
!
interface Vlan2
 nameif outside
 security-level 0
 no ip address
!
!
!
!
!
!
!
!
!
!
!
!
telnet timeout 5
ssh timeout 5
!
!
!
!
!
!
ciscoasa#conf t
ciscoasa(config)#int vlan 2
ciscoasa(config-if)#no ip add
ciscoasa(config-if)#no ip address
ciscoasa(config-if)#
ciscoasa(config-if)#exit

 Konfigurasi inside vlan 1 :

 ciscoasa(config)#int vlan 1
ciscoasa(config-if)#ip address 172.16.1.1 255.255.255.0
ciscoasa(config-if)#nameif inside
ciscoasa(config-if)#security-level 100
ciscoasa(config-if)#exit

 ----------------------------------------------------------------------------------------------------------------------------

 Konfigurasi Outside vlan 2 :

 ciscoasa(config)#int vlan 2
ciscoasa(config-if)#ip address 203.1.1.1 255.255.255.0
ciscoasa(config-if)#no shutdown
ciscoasa(config-if)#nameif Outside
ciscoasa(config-if)#security-level 0
ciscoasa(config-if)#exit

 --------------------------------------------------------------------------------------

 Konfigurasi DMZ vlan 3 :

 ciscoasa(config)#int vlan 3
ciscoasa(config-if)#no shutdown
ciscoasa(config-if)#no forward interface vlan 1
ciscoasa(config-if)#ip address 10.10.10.1 255.255.255.0
ciscoasa(config-if)#security-level 50
ciscoasa(config-if)#nameif DMZ
ciscoasa(config-if)#exit

 --------------------------------------------------------------------------------------

 ciscoasa(config)#int e0/1
ciscoasa(config-if)#no shutdown
ciscoasa(config-if)#switchport access vlan 1
ciscoasa(config-if)#exit
ciscoasa(config)#int e0/0
ciscoasa(config-if)#no shutdown
ciscoasa(config-if)#switchport access vlan 2
ciscoasa(config-if)#exit

 --------------------------------------------------------------------------------------------------------------------------

 ciscoasa(config)#object network LAN-Inside
ciscoasa(config-network-object)#subnet 172.16.1.0 255.255.255.0
ciscoasa(config-network-object)#nat (inside,outside) dynamic interface
ciscoasa(config-network-object)#exit

 ciscoasa(config)#access-list intoout extended permit tcp any any
ciscoasa(config)#access-list intoout extended permit icmp any any

 -------------------------------------------------------------------------------------------------------------------------

 Konfigurasi Default Route:
ciscoasa(config)#route outside 0.0.0.0 0.0.0.0 203.1.1.2

 Konfigurasi Access-group :
ciscoasa(config)#access-group intoout in interface outside
Note :
Supaya area Outside dapat terhubung di area DMZ , area inside atau sebaliknya dengan menggunakan Default Route.

 -------------------------------------------------------------------------------------------------------------------------

 ciscoasa(config)#object network DMZ-Subnet
ciscoasa(config-network-object)#subnet 10.10.10.0 255.255.255.0
ciscoasa(config-network-object)#nat (DMZ,outside) dynamic interface
ciscoasa(config-network-object)#exit

 ciscoasa#conf t
ciscoasa(config)#access-list dmz-out extended permit tcp any any
ciscoasa(config)#access-list dmz-out extended permit icmp any any

 -------------------------------------------------------------------------------------------------------------------------

 ciscoasa(config)#object network WEBSERVER
ciscoasa(config-network-object)#host 10.10.10.10
ciscoasa(config-network-object)#nat (dmz,outside) static 203.1.1.10
ciscoasa(config-network-object)#exit
ciscoasa#conf t
ciscoasa(config)#access-list outtodmz ext
ciscoasa(config)#access-list outtodmz extended per
ciscoasa(config)#access-list outtodmz extended permit tcp any host 203.1.1.10 eq www
ciscoasa(config)#
Note :
Pada WebServer kita telah merubah / mentranslate IP 10.10.10.10 menjadi IP 203.1.1.10 dengan menggunakan Static Nat .

 --------------------------------------------------------------------------------------------------------------------------

 Setelah Selesai melakukan Konfigurasi, Sekarang Test apakah berhasil atau tidak
  • Pastikan PC0 dapat ping WEBSERVER dan cek pakai web browser menggunakan IP 203.1.1.10

  • Pastikan Webserver dapat Ping Server ( outside ) dan cek pakai web browser mengunakan IP 8.8.8.8






  • Pastikan Pc1 ( inside ) dapat ping IP 8.8.8.8 dan ip 8.8.8.9



Alhamdulillah Lab. Hari ini telah berhasil,
Semoga bermanfaat untuk para pembaca.

Waassalamu'alaikum warahmatullahi wabarakatu

Salam,,
Hamdan H.








Sunday, November 19, 2017

Lab. Single SSID AIRONET

     ,  No comments
Lab. Single SSID AIRONET

Assalamu'alaikum warahmatullahi Wabarakatu

kita kembali lagi kesesi sharing di website ini, kali ini kita akan ngoprek Aironet ( Access Point Cisco ), mungkin para pembaca sudah sering setting Access Point dengan merk tetangga, kebanyakan versi GUI, Naaahhh Kali ini kita akan Setting Versi CLI ( Teks / Hitam Putih ), Woooow.... ๐Ÿ˜๐Ÿ˜๐Ÿ˜๐Ÿ˜
     Pasti Akan Seru banget Nih, Nanti kita akan Setting Single ( JOMBLO ) SSID di Aironet.
Kita Sering pake SSID ada yang tau fungsi SSID ???...
SSID itu fungsinya Supaya kita dapat konek ke jaringan Internet yang sudah kita tentukan.
Nah tanpa basa basi lagi,, Kita langsung Ke TKP ....

Perangkat dan tool yang saya gunakan :
  1. Router Cisco 1800 Series
  2. Switch Catalyst 2960 Series SI PoE-24
  3. Aironet
  4. 2 kabel Straight
  5. kabel console + conventor Aten 

( Topologi )



( Topologi asli )

2. Tahapan lab :
  • Konfigurasi Router
    • Setting IP Address pada int fa0/1
    • Setting DHCP server
  • Konfigurasi Switch
    • int f0/1 di setting switch mode trunk ( yang terhubung Ke Router )
    • int f0/2 di setting switch mode trunnk ( yang terhubung ke Aironet )
  • Konfigurasi Aironet
    • Setting SSID di " dot11radio 0 SSID **** "
    • daftarkan SSID yang telah dibuat ke Int dott11radio
    • setting ip address dhcp client-id g0 ke int  BVI 1 dan hidupkan interface BVI 0
3. Verfikasi lab

  • pastikan antar SSID muncul, pastikan dapat " IP DHCP CLIENT dari Router", dan pastikan kita dapat ip dhcp server dari konek SSID yang telah kita buat.

4. Konfigurasi LAB. :
  • Kofigurasi Router
    • Setting IP Address pada int fa0/1

Router#conf t

Enter configuration commands, one per line.  End with CNTL/Z.

Router(config)#int f0/1



Router(config-if)#ip address 192.168.10.1 255.255.255.0

Router(config-if)#no shutdown
*Nov 18 06:15:27.607: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/1, changed state to up

Router(config-if)#exit
    • Setting IP DHCP SERVER

Router(config)#ip dhcp pool aironet

Router(dhcp-config)#default-router 192.168.10.1

Router(dhcp-config)#network 192.168.10.0 255.255.255.0

Router(dhcp-config)#exit

Router(config)#ip dhcp excluded-address 192.168.10.1
Router(config)#

  • Konfigurasi Switch
    • int f0/1 di setting switch mode trunk ( yang terhubung Ke Router )

Switch>en

Switch#conf t

Enter configuration commands, one per line.  End with CNTL/Z.

Switch(config-if)#int f0/1


Switch(config-if)#switchport mode trunk

*Mar  1 02:26:06.975: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/1, changed state to down
*Mar  1 02:26:09.995: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/1, changed state to up

Switch(config-if)#
    • int f0/2 di setting switch mode trunnk ( yang terhubung ke Aironet )

Switch(config)#int f0/2

Switch(config-if)#switchport mode trunk

*Mar  1 02:25:33.589: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/2, changed state to down

*Mar  1 02:25:36.609: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/2, changed state to up

Switch(config-if)#
  • Konfigurasi Aironet
    • Setting SSID di " dot11radio 0 SSID **** "

ap>en

Password: ( Cisco )

ap#conf t

Enter configuration commands, one per line.  End with CNTL/Z.

ap(config)#dot11 ssid uji coba

ap(config-ssid)#authentication open

ap(config-ssid)#guest-mode

ap(config-ssid)#mbssid guest-mode
ap(config-ssid)#exit
    • daftarkan SSID yang telah dibuat ke Int dott11radio

ap(config)#int dot11radio 0

ap(config-if)#no shutdown



*Mar  1 05:18:13.758: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to reset

*Mar  1 05:18:14.754: %DOT11-4-NO_SSID_OR_NO_VLAN: No SSID configured. Dot11Radio0 not started.

ap(config-if)#ssid uji coba

%Interface Dot11Radio 0 supports MBSSID but not enabled now
%MBSSID related commands under 'dot11 ssid uji coba' will be effective only if MBSSID is enabled
*Mar  1 05:18:26.790: %DOT11-6-FREQ_SCAN: Interface Dot11Radio0, Scanning frequencies for 19 seconds

ap(config-if)# exit

    • setting " ip address dhcp client-id gigabitEthernet 0 " ke int  BVI 1 dan hidupkan interface BVI 0

ap(config)#int BVI 1

ap(config-if)#no shutdown

ap(config-if)#ip address dhcp client-id gigabitEthernet 0



*Mar  1 05:19:35.281: %DHCP-6-ADDRESS_ASSIGN: Interface BVI1 assigned DHCP address 192.168.10.5, mask 255.255.255.0, hostname ap

ap(config-if)#exit

note :
jika Int BVI 1 mendapatkan IP DHCP CLIENT makan muncul notifikasi " Interface BVI1 assigned DHCP address 192.168.10.5, mask 255.255.255.0, hostname ap "

jika sudah selesai di Konfigurasi, kita juga bisa mengecek kembali, memastikan bahwa si Int BVI 1 dapat ip dhcp client, caranya sebagai berikut :

ap(config)#do sh ip int br
Interface                  IP-Address      OK? Method Status                Protocol
BVI1                       192.168.10.5    YES DHCP   up                    up   
Dot11Radio0                unassigned      YES unset  up                    up   
Dot11Radio1                unassigned      YES unset  administratively down down 
GigabitEthernet0           unassigned      YES TFTP   up                    up   

ap(config)#do show ip route
Default gateway is 192.168.10.1

Host               Gateway           Last Use    Total Uses  Interface
ICMP redirect cache is empty
ap(config)#

Nah kita ujikan ke client yang terhubung ke " SSID uji coba " :
  • Alhamdulillah muncul SSID uji coba

  • Kemudian pastikan IP DHCP SERVER yang didapatkan Client 1 Subnet dengan DHCP Server yang telah dibuat di Router.


  • lalu kita coba ping IP Gateway si Aironet, hasilnya seperti di gambar dibawah ini ๐Ÿ‘‡๐Ÿ‘‡๐Ÿ‘‡




Alhamdulillah kita berhasil dalam Lab ini, 
Semoga bermanfaat
Waassalaikum warahmatulahi wabarakatu

Salam,,
Hamdan H.

Wednesday, November 8, 2017

Lab. VOICE via Wireless

     , ,  1 comment
Lab. voice via wireless

Assalamu'alaikum Warahmatullahi Wabarakatu
Semangat lagi kawan, saat ini kita akan mengoprek IP Phone ( cisco ) lagi, kita bisa kembangkan lagi voice ini bisa melawati media transmisi nirkabel, supaya ga habisin pulsa ( hehehe ๐Ÿ˜‚๐Ÿ˜‚), dan supaya pengguna smartphone saat ini dapat calling satu dengan yang lain tanpa pulsa ๐Ÿ˜๐Ÿ˜๐Ÿ˜. tapi untuk smartphone supaya terhubung ke jaringan voice wajib terpasang Aplikasi SCCP Phone bisa download di playstore ( toko buka ), dan PC atau Laptop juga ada wajib Aplikasi yang harus dipasang aplikasi voice ,, jika mau belajar Basic VoIP Klik disini
kayaknya pada ga sabar ngoprek nih, kita langsung ke TKP... 

kita bisa lihat gambar topologi dibawah ini : ↴

2. Tahapan lab :
  • Setting IP Address router
  • Setting IP DHCP Pool ( voice , data , AP )
  • Setting telephony service pada router
  • Setting Vlan Voice 10, Vlan data 20, Vlan AP 30 di switch
  •   Setting Dial number di Router
  • Menyalakan IP Phone
  • Melakukan panggilan
3. Verfikasi lab

  • pastikan antar IP Phone bisa saling tesTerhubung
  • PC, HP, TABLET, LAPTOP wajib saling terhubung ( telpon-telponan )

4. Konfigurasi Lab :

4.1. Konfigurasi di  ROUTER :

  • Konfigurasi IP Address 

Klik pada router, pilih Tab CLI kemudian ketikan perintah berikut :

Router>en
Router#conf t
Enter configuration commands, one per line. End with CNTL/Z.
Router(config)#int f0/0
Router(config-if)#no sh

Router(config-if)#
%LINK-5-CHANGED: Interface FastEthernet0/0, changed state to up

%LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0, changed state to up

Router(config-if)#int f0/0.10
Router(config-subif)#
%LINK-5-CHANGED: Interface FastEthernet0/0.10, changed state to up

%LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0.10, changed state to up

Router(config-subif)#encapsulation dot1Q 10
Router(config-subif)#ip add 192.168.10.1 255.255.255.248
Router(config-subif)#exit
Router(config)#int f0/0.20
Router(config-subif)#
%LINK-5-CHANGED: Interface FastEthernet0/0.20, changed state to up

%LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0.20, changed state to up

Router(config-subif)#encapsulation dot1Q 20
Router(config-subif)#ip add 192.168.20.1 255.255.255.248
Router(config-subif)#int f0/0.30
Router(config-subif)#
%LINK-5-CHANGED: Interface FastEthernet0/0.30, changed state to up

%LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0.30, changed state to up

Router(config-subif)#encapsulation dot1Q 30
Router(config-subif)#ip add 192.168.30.1 255.255.255.248
Router(config-subif)#exit
Router(config)#
  • Konfigurasi DHCP

 Router(config)#ip dhcp pool data
Router(dhcp-config)#default-router 192.168.20.1
Router(dhcp-config)#network 192.168.20.0 255.255.255.248
Router(dhcp-config)#exit

 Router(config)#ip dhcp pool voice
Router(dhcp-config)#default-router 192.168.10.1
Router(dhcp-config)#network 192.168.10.0 255.255.255.248
Router(dhcp-config)#option 150 ip 192.168.10.1
Router(dhcp-config)#exit

 Router(config)#ip dhcp pool AP
Router(dhcp-config)#default-router 192.168.30.1
Router(dhcp-config)#network 192.168.30.0 255.255.255.248
Router(dhcp-config)#exit

 Router(config)#ip dhcp excluded-address 192.168.10.1
Router(config)#ip dhcp excluded-address 192.168.20.1
Router(config)#ip dhcp excluded-address 192.168.30.1
Router(config)#

  • Konfigurasi SCCP 
Router(config)#telephony-service
Router(config-telephony)#max-dn 10
Router(config-telephony)#max-ephone 10
Router(config-telephony)#auto assign 1 to 10
Router(config-telephony)#ip source-address 192.168.10.1 port 2000
Router(config-telephony)#exit
  • Konfigurasi jumlah ephone yang akan digunakan

 Router(config)#ephone 1
Router(config-ephone)#ephone 2
Router(config-ephone)#ephone 3
Router(config-ephone)#ephone 4
Router(config-ephone)#ephone 5
Router(config-ephone)#ephone 6
Router(config-ephone)#ephone 7
Router(config-ephone)#ephone 8
Router(config-ephone)#ephone 9
Router(config-ephone)#ephone 10
Router(config-ephone)#exit
  • Konfigurasi ephone-dn

 Router(config)#ephone-dn 1
%LINK-3-UPDOWN: Interface ephone_dsp DN 1.1, changed state to up

 Router(config-ephone-dn)#number 111

 Router(config-ephone-dn)#ephone-dn 2

 %IPPHONE-6-REGISTER: ephone-2 IP:192.168.20.3 Socket:2 DeviceType:Phone has registered.
%LINK-3-UPDOWN: Interface ephone_dsp DN 2.1, changed state to up

 Router(config-ephone-dn)#number 112
Router(config-ephone-dn)#ephone-dn 3
%LINK-3-UPDOWN: Interface ephone_dsp DN 3.1, changed state to up

 Router(config-ephone-dn)#number 113
Router(config-ephone-dn)#ephone-dn 4
%IPPHONE-6-REGISTER: ephone-5 IP:192.168.10.2 Socket:2 DeviceType:Phone has registered.
%LINK-3-UPDOWN: Interface ephone_dsp DN 4.1, changed state to up

 Router(config-ephone-dn)#number 114
%IPPHONE-6-REGISTER: ephone-3 IP:192.168.10.3 Socket:2 DeviceType:Phone has registered.

 %IPPHONE-6-REGISTER: ephone-4 IP:192.168.30.4 Socket:2 DeviceType:Phone has registered.

 %LINK-3-UPDOWN: Interface ephone_dsp DN 5.1, changed state to up

 Router(config-ephone-dn)#ephone-dn 5
Router(config-ephone-dn)#number 115
Router(config-ephone-dn)#ephone-dn 6
%LINK-3-UPDOWN: Interface ephone_dsp DN 6.1, changed state to up

 %IPPHONE-6-REGISTER: ephone-1 IP:192.168.20.2 Socket:2 DeviceType:Phone has registered.
ephone-dn 6
Router(config-ephone-dn)#number 116

 Router(config-ephone-dn)#ephone-dn 7
%LINK-3-UPDOWN: Interface ephone_dsp DN 7.1, changed state to up

 Router(config-ephone-dn)#number 117
Router(config-ephone-dn)#ephone-dn 8
%LINK-3-UPDOWN: Interface ephone_dsp DN 8.1, changed state to up

 Router(config-ephone-dn)#number 118
Router(config-ephone-dn)#ephone-dn 9
%LINK-3-UPDOWN: Interface ephone_dsp DN 9.1, changed state to up

 Router(config-ephone-dn)#number 119
Router(config-ephone-dn)#ephone-dn 10
%LINK-3-UPDOWN: Interface ephone_dsp DN 10.1, changed state to up

 Router(config-ephone-dn)#number 120
Router(config-ephone-dn)#exit
Router(config)#

 4.2. Konfigurasi di swicth

Switch>en
Switch#conf t
Enter configuration commands, one per line. End with CNTL/Z.

Switch(config)#int f0/1
Switch(config-if)#switchport mode trunk
Switch(config-if)#
%LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/1, changed state to down

%LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/1, changed state to up

Switch(config-if)#int f0/2
Switch(config-if)#switchport access vlan 30
Switch(config-if)#int ra f0/3-4
%SPANTREE-2-RECV_PVID_ERR: Received BPDU with inconsistent peer vlan id 30 on FastEthernet0/3 VLAN1.

%SPANTREE-2-BLOCK_PVID_LOCAL: Blocking FastEthernet0/3 on VLAN0001. Inconsistent local vlan.

Switch(config-if-range)#switchport access vlan 20
Switch(config-if-range)#switchport voice vlan 10

Setelah selesai step yang kita lakukan, sekarang saya akan mecontohkan cara mengisikan IP TFTP, Kalian bisa lihat gambar dibawah ini : ๐Ÿ‘‡

1. pastikan device nirkabel ( HP, Tablet, Laptop ) sudah terhubung ke jaringan Voice alias sudah konek ke AP sebagai jalur penyiar gelombang radio, dan sudah mendapatkan IP DHCP client.



 2. Setelah mendapatkan IP DHCP, Kemudian kita setting IP TFTP di Aplikasi IP COMMUNICATOR .


klik option di pojok kiri atas -> lalu pilih Preferences , pada kolom TFTP SERVER pilih Use these TFTP Servers , kemudian masukan ip gw vlan 30 di Kolom TFTP Server 1:



Setelah terisi, secara otomatis si Aplikasi IP Communicator dapat no. Dial-UP 


 lakukan perintah diatas ke semua HOST yang terhubung ke AP maupun terhubung IP phone.
Setelah Langkah semua telah dilakukan kita coba tes call dari Smartphone ke PC 1 atau IPPHONE

( Smartphone ke IPPHONE 1 )


( Smartphone ke PC 1 )

jika ada yang bingung bisa kunjungi channel youtube saya :
PART. 1 Lab. VoIP via Wireless
PART.2 Lab. VoIP via Wireless

Alhamdulillah Lab kita telah berhasil,,,
Salam 
Hamdan H.