March 6, 2009
I need this components to make it happen:
* Atmel AT89C2051 microcontroller (or AT89C1051, AT89C4051)
* AT24C512 serial EEPROM chip (or compatible)
* 12 MHz crystal
* 2 x 33p capacitor
* 10 uF capacitor
* 10 k resistor
* small push-button
The circuit:
View All Images
February 12, 2009
Salam.
Actually promotion nih aku wawarkan dlm kedahonline ja.. tp now aku akan open to public
1000MB Web Space
20GB Bandwidth
Unlimited Subdomain
Unlimited Email Accounts
Support PHP,MYSQL,CGI etc.
CPANEL Control Panel
Wordpress Installed
Server at TM IDC Netmyne Malaysia
Just RM80 setahun
Berminat sila hubungi saya Matnet di ym/email matnet80@yahoo.com
atau terus telefon +60125513251
atau order di :
http://cyberiahosting.net/bill/whmcs/cart.php
January 6, 2009
Situasi :
server ada 2 rangkaian yg dia masuk. so maksud kata dia ada dua adapter iaitu:
eth0 - Rangkaian A
dan
eth1 - Rangkaian B
utk membolehkan server tersebut ONLINE ke network A dan B maka dia kena taruk default route ip router
network berkenaan. Jadi masalahnya default Route nih mana bley ada 2. So itu lah punca masalah di sini.
How to solve ?
setelah hampir sebulan jugak aku dok melilau tanya pakcik google.. dan akhirnya aku dah jumpa penyelesaian nya.
ok mola2.
sblum tuh kita kasi contoh IP utk kedua2 jenis rangkaian
eth0 - 10.10.10.9/24 gw - 10.10.10.1
eth1 - 172.16.16.8/24 gw - 172.16.16.1
sblum nak buat bnda nih make sure linux hangpa sapot akan “policy routing”
kalu tak sapot sila lah bg sapot.. so aku takmo terang mcm mn nak bg sapot. tp kalu hangpa pakai centos 5.* mmg dah sapot.
ok then kita dptkan current info pasal route kita
taip :
# netstat -anr
Kernel IP routing table
Destination Gateway Genmask Flags MSS Window irtt Iface
172.16.16.0 0.0.0.0 255.255.255.0 U 0 0 0 eth1
10.10.10.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0
0.0.0.0 172.16.16.1 0.0.0.0 UG 0 0 0 eth1
so dari maklumat di atas default route kita skang ialah 172.16.16.1 iaitu pada eth1
1. taip :
echo "1 admin" >> /etc/iproute2/rt_tables
2. then taip
ip route add 10.10.10.0/24 dev eth0 src 10.10.10.1 table admin
ip route add default via 10.10.10.1 dev eth0 table admin
so kita dah create routing table admin yang mana kita bley view dengan taip command :
ip rule
dah keluaq lagu nih :
0: from all lookup local
32766: from all lookup main
32767: from all lookup default
3. lepaih tu taip nih plak
ip rule add from 10.10.10.9/32 table admin
ip rule add to 10.10.10.9/32 table admin
kemudian taip ip rule dan result dia :
0: from all lookup local
32764: from all to 10.10.10.9 lookup admin
32765: from 10.10.10.9 lookup admin
32766: from all lookup main
32767: from all lookup default
4. kalu perlu ushar firewall takut dia block apa2.. utk test seeloknya matikan terus iptables dulu.
5. Siap..
Rujukan : http://www.linuxhorizon.ro/iproute2.html
July 8, 2008
sebelum nih aku tak pernah lagi la setup manually benda nih, slalu dok pakai klik2 ja dlm WHM/CPANEL utk create SSL site.
atas tugasan yg diterima so aku dimintak utk up kan apache + openssl + cert yang mana cert yang akan aku buat nih adalah cert sndiri bikin yg tidak diiktiraf oleh mana2 badan bertanggungjawab tak kiralah ianya NGO mahupun Gomen.
ok saya anggap anda telah tersedia dengan apache yang telah dicompile bersama2 openssl.
1. kita buat sijil palsu dulu.. langkah2 dia
buat directory nama sslcert .. tak kisah sebenaqnya boh pi la nama apa yg anda suka.
mkdir sslcert
chmod kat dia dengan
chmod 0700 sslcert
lepaih tu buat subfolder dlm dia mcm nih
mkdir certs private
2. kemudian kita buat database file utk nanti2 leh keep track sijil2 yang kita buat
echo '100001' >serial
touch certindex.txt
3. lepaih tu bukak sebarang editor contoh vim ka nano ka.. buat file nama openssl.cnf dan copy paste benda ni
#
# OpenSSL configuration file.
#
# Establish working directory.
dir = .
[ ca ]
default_ca = CA_default
[ CA_default ]
serial = $dir/serial
database = $dir/certindex.txt
new_certs_dir = $dir/certs
certificate = $dir/cacert.pem
private_key = $dir/private/cakey.pem
default_days = 365
default_md = md5
preserve = no
email_in_dn = no
nameopt = default_ca
certopt = default_ca
policy = policy_match
[ policy_match ]
countryName = match
stateOrProvinceName = match
organizationName = match
organizationalUnitName = optional
commonName = supplied
emailAddress = optional
[ req ]
default_bits = 1024 # Size of keys
default_keyfile = key.pem # name of generated keys
default_md = md5 # message digest algorithm
string_mask = nombstr # permitted characters
distinguished_name = req_distinguished_name
req_extensions = v3_req
[ req_distinguished_name ]
# Variable name Prompt string
#------------------------- ----------------------------------
0.organizationName = Organization Name (company)
organizationalUnitName = Organizational Unit Name (department, division)
emailAddress = Email Address
emailAddress_max = 40
localityName = Locality Name (city, district)
stateOrProvinceName = State or Province Name (full name)
countryName = Country Name (2 letter code)
countryName_min = 2
countryName_max = 2
commonName = Common Name (hostname, IP, or your name)
commonName_max = 64
# Default values for the above, for consistency and less typing.
# Variable name Value
#------------------------ ------------------------------
0.organizationName_default = My Company
localityName_default = My Town
stateOrProvinceName_default = State or Providence
countryName_default = US
[ v3_ca ]
basicConstraints = CA:TRUE
subjectKeyIdentifier = hash
authorityKeyIdentifier = keyid:always,issuer:always
[ v3_req ]
basicConstraints = CA:FALSE
subjectKeyIdentifier = hash
3. lepas tu kita buat root cert dengan arahan dibawah
openssl req -new -x509 -extensions v3_ca -keyout \
private/cakey.pem -out cacert.pem -days 365 -config ./openssl.cnf
nota: fungsi \ selepas keyout tuh sebenaqnya utk pendekkan command yg terlalu panjang..so just copy selebihnya dan enter
selepas ja taip tu nanti dia akan mintak passwd so silalah simpan passwd itu baik2
lepaih tu dia akan tanya pasal nama company, nama server , email dan etc. kalu nak mohong tulih pun harap dpt ingat apa yg anda tulih sebab lepaih nih ada skali lagik proses mcm nih yang akan tanya soklan yang sama so jawapan pun mesti kena sama.. tidak nnanti sijil anda tak sah.
4. Ok lepaih tu kita install cert nih dalam apache plak
5. ok kita buat kunci dan signing punya request pulak
openssl req -new -nodes -out name-req.pem -keyout private/name-key.pem -config ./openssl.cnf
lepaih taip ja command nih dia akan tanya soklan2 pasai nama kompeni dan sebagainya macam yg mola2 td.. so pastikan jawapan sama cam yg mola2 td. Dan dia akan create dua file nih
name-req.pem - fail request
name-key.pem - fail kunci dia dok dlm private
6. lepaih tu kita sign the request dengan command ni
openssl ca -out name-cert.pem -config ./openssl.cnf -infiles name-req.pem
so akan ter create lah fail2 berikut
name-cert.pem - inilah fail sijil tersebut
.pem - ini adalah copy cert nomot
7. kemudia kita copy file2 kunci dan sijil td ke tampat yg sepatutnya
cp name-key.pem /etc/httpd/conf/ssl.key/
cp name-cert.pem /etc/httpd/conf/ssl.crt/
kalu folder ssl.key ngan ssl.crt tuh tak wujud so gunalah command sense anda.
8. lepaih tu langkah yg terakhir cari fail httpd.conf anda dan taruk lah spt coding dibawah dan diubah mengikut citara masing2.
DocumentRoot /var/www/html
ServerName 192.168.1.98
ServerAdmin someone@your.domain
ErrorLog /etc/httpd/logs/ssl_error_log
TransferLog /etc/httpd/logs/ssl_access_log
SSLEngine On
SSLCertificateFile /etc/httpd/conf/ssl.crt/name-cert.pem
SSLCertificateKeyFile /etc/httpd/conf/ssl.key/name-key.pem
SSLOptions +StdEnvVars
SSLOptions +StdEnvVars
SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
CustomLog /etc/httpd/logs/ssl_request_log
"%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
Rujukan : http://www.flatmtn.com/
