Yang Terlupakan

Salah satu implentasi dns over https cloudflare dns dengan DNSCrypt-Proxy 2.x Masuk cd directory /opt atau yang lain sesuai selera Download pre-built binary disini disini pake Linux x86_64 untuk debian Extract file prebuilt binary tar -xf dnscrypt-proxy-linux_x86_64-2.0.16.tar.gz: Rename mv linux-x86_64 dnscrypt-proxy Masuk ke directory dnscrypt-proxy cd dnscrypt-proxy copy file example-dnscrypt-proxy.toml ke dnscrypt-proxy.toml cp example-dnscrypt-proxy.toml dnscrypt-proxy.toml Edit toml file nano dnscrypt-proxy.toml ini file configuration Cari baris listen_addresses , karen msh standar edit port 53 ke port yg lain disni 5300 cari baris server_names dan pilih provider nya misal cloudflare server_names = ['cloudflare'] install dnscrypt-proxy service ./dnscrypt-proxy -service install start service ./dnscrypt-proxy -service start Warning jangan jalan dnscrypt-proxy selain root user langsung test query root@debian:/# dig @127.0.0.1 -p 5300 google.com ; <...

Untuk meningkat security , privacy dan kecepatan DNS server forwarder kita, karena jalur query berjalah diatas https, terutama mail server biar tidak salah waktu request RBL untuk linux package dan debian download disini Install root@debian:/dpkg --install cloudflared-stable-linux-amd64.deb Check version  root@debian:/# cloudflared --version cloudflared version 2018.7.3 (built 2018-07-18-2050 UTC) running test default listen port 53 root@debian:/# cloudflared proxy-dns INFO[0000] Applied configuration from /usr/local/etc/cloudflared/config.yml INFO[0000] Adding DNS upstream                           url="https://1.1.1.1/dns-query" INFO[0000] Starting metrics server                       addr="127.0.0.1:44403" INFO[0000] Adding DNS...

Dynamic DNS with ddclient on debian for dnsomatic Installations root@debian:~#apt-get install ddclient ddclient configuration edit /etc/ddclient.conf # /etc/ddclient.conf protocol=dyndns2 use=web, web=myip.dnsomatic.com ssl=yes server=updates.dnsomatic.com login=UserName password='Passwd' YourNetwork restart root@debian:~#/etc/init.d/ddclient restart Test configuration root@debian:~#ddclient -query use=if, if=eth0 address is 10.10.10.10 use=if, if=lo address is 127.0.0.1 use=web, web=dnspark address is 1.2.3.4 use=web, web=dyndns address is 1.2.3.4 use=web, web=loopia address is 1.2.3.4 use=web, web=myip.dnsomatic.com address is 1.2.3.4 Full test configuration root@debian:~#ddclient -debug -verbose -noquiet if succces SUCCESS:  updating backup: good: IP address set to 1.2.3.4 if already update SUCCESS:  YourNetwork: skipped: IP address was already set to 1.2.3.4 Run ddclient with a daemon edit /etc/default/ddclient run_daemon="true...

Haproxy for MariaDB loadbalance / Haproxy untuk loadbalance MariaDB for install and configurations haproxy here ip haproxy      10.10.0.20 mariadb-1       10.10.0.23 mariadb-2       10.10.0.25 add two user for check status and user haproxy on mariadb host 1 and 2 on mariadb1 root@mariadb1# mysql -u root -p -e "INSERT INTO mysql.user (Host,User) values ('10.10.0.20','ha_check'); FLUSH PRIVILEGES;" root@mariadb1# mysql -u root -p -e "GRANT ALL PRIVILEGES ON *.* TO 'haproxy_user'@'10.10.0.20' IDENTIFIED BY 'user_password' WITH GRANT OPTION; FLUSH PRIVILEGES" on mariadb2 root@mariadb2# mysql -u root -p -e "INSERT INTO mysql.user (Host,User) values ('10.10.0.20','ha_check'); FLUSH PRIVILEGES;" root@mariadb2# mysql -u root -p -e "GRANT ALL PRIVILEGES ON *.* TO 'haproxy_user'@'10.10.0.20' IDENTIFIED BY 'user_password' WITH GRANT OPTION; FLUSH PRIVILEGES" edi...

Haproxy for SMTP loadbalance / Haproxy untuk loadbalance mail server ip haproxy   10.10.0.10 ip mail 1      10.10.0.122 ip mail 2      10.10.0.123 on debian 8 #apt-get install  haproxy #haproxy -v newer package haproxy #echo "deb http://httpredir.debian.org/debian jessie-backports main" | \       sudo tee /etc/apt/sources.list.d/backports.list #apt-get update #apt-get install -t jessie-backports haproxy #haproxy -v Enable loging edit /etc/rsyslog.conf # provides UDP syslog reception $ModLoad imudp $UDPServerAddress 127.0.0.1 $UDPServerRun 514 add if ($programname == 'haproxy') then -/var/log/haproxy.log restart rsyslog #systemctl restart rsyslog.servic Configuring the load balancer  edit /etc/haproxy/haproxy.cfg tambahkan ##enable port 25 ## frontend ft_smtp       bind *:25       mode tcp    ...