CATATAN

LOGIN WUG (h2h extranet)

IP : 10.44.69.52
user : sdd
pass : sdd35
ping dari wug -> ip nat
ping dari gateway (edge) -> ip real
VIA WEB
user : brs
pass : 8r5
NMS Server via Web
http://192.168.45.217
User : admin
Pass : bni@)!*
=============================================================================
Cek internet BSD via peplink
https://10.50.240.17 dari pc 172.17.15.21
user : monitoring
pass : bnibackbone
=============================================================================
INFOBLOX
https://10.13.2.235
user : sdd
pass : sdd35
=============================================================================
Cek link DC Sudirman - PJP
KBSLN-CRSW-0501-VSS
Ten1/2/6 iforte (10.130.78.6)
Ten2/2/6 balitower (10.130.78.2)
sh ip bgp sum
=============================================================================
DWDM (sh ip eigrp neighbors)
DC SUDIRMAN – DC SLIPI
Core Nexus 1 - Core Slipi 1
CORE-NX05-01 (10.12.5.41) Eth 1/14 - SLPLN-CRsW-0301 (10.12.5.42) Eth4/47 via Telkom

Core Nexus 2 - Core Slipi 2

CORE-NX05-02 (10.12.5.45) Eth 1/14 - SLPLN-CRsW-0302 (10.12.5.46) Eth4/46 via Telkom
CORE-NX05-02 (10.7.1.230) Eth 1/22 - SLPLN-CRsW-0302 ( (10.12.5.42) Eth4/47 - CORE-NX05-01
(10.12.5.41) Eth 1/14 via Telkom

Core Slipi 2 – Core Nexus 2

SLPLN-CRsW-0302 (10.12.5.46) Eth4/46 - CORE-NX05-02 (10.12.5.45) Eth 1/14 via Telkom

KBSDCI – JTLDCI (DC SUDIRMAN to DRC) (Indosat)

10.12.4.242 - Te1/4 To JTLDCI-DSsW-0001 Via Pasirandu
10.12.204.13 - Te1/3 To JTLDCI-DSsW-0001 Via Bandung

JTLDCI to KBSDCI (DRC to DC SUDIRMAN) (Indosat)

10.12.4.241 - Te1/4 To KBSDCI-DSsW-0501 Via Pasirandu
10.12.204.14 - Te1/3 To KBSDCI-DSsW-0501 Via Bandung

JTLDCI (10.64.1.32) to DCI SLIPI

JTLDCI-DSsW-0001 10.7.1.226 - Te1/5 to SLPDCI-DSsW-0301-VSS 10.7.1.225 (Te1/1/31)
JTLDCI-DSsW-0001 10.7.1.246 - Te1/6 to SLPDCI-DSsW-0301-VSS 10.7.1.245 (Te2/1/31)

DCI SLIPI to JTLDCI

SLPDCI-DSsW-0301-VSS 10.7.1.225 (Te1/1/31) to JTLDCI-DSsW-0001 10.7.1.226 (Te1/5)
SLPDCI-DSsW-0301-VSS 10.7.1.245 (Te2/1/31) to JTLDCI-DSsW-0001 10.7.1.246 (Te1/5)
Te1/1/31

Te2/1/31

show ip eigrp neighbors

KBSDCI-DSsW-0501-VSS - 10.12.5.117 (Te1/1/8) to SLPDCI-DSsW-0301-VSS – 10.12.5.118

===========================================================================
Pertamina opbs, ebs
outlet ip : telnet 172.17.0.20
#ping 172.17.0.20 source loopback 1
#ping 172.17.0.30 source loopback 1
port 8163

Router pertamina 10.170.136.242 admin alay

DC 192.168.12.190(REAL)<>10.44.65.80(NAT)
Pertamina 172.17.0.23(REAL)<>10.44.65.80(NAT)
172.17.0.21<>192.168.12.220
BSD:
BSD-RO-WAN-1 lewat KBSWN-EGrT-0501#ssh -l admin 10.130.11.6 (bnialay)
BSD-RO-WAN-2 lewat KBSWN-EGrT-0502#ssh -l admin 10.130.68.2 (bnialay)
BSD Distribution (BSD-SW-DIS): ssh –l admin 10.50.240.30

KBSWN-EGrT-0501 – BSD via Icon+/Primacom

KBSWN-EGrT-0502 – BSD via Metro-E

BSD-RO-WAN-1 – DC via Primacom

BSD-RO-WAN-2 – DC via Telkom

=============================================================================
Cek ip kosong DC/DRC server farm
1. cek list ip kosong
2. jika server farm DC masuk ke perangkat KBSSF-AGTSW-0501-INSIDE-A (10.44.69.29)
3. cek vlan dari ip tersebut (sh ip arp vrf all | in ip address)
4. cek member vrf dari vlan tersebut sh run int vlan vlan-id
5. ping ip kosong tersebut dengan ping ip address vrf vrf-member
6. pastikan ip tersebut unreachable bukan rto
7. jika sudah tandai ip tersebut di file list ip
8. save dan upload file tersebut di briefcase email
=============================================================================
Cek link Internet Biznet
internet-rou-1 : 10.44.69.63
internet-rou-2 : 10.44.69.64
masuk perangkat internet-rou-1 (international) & internet-rou-2 (lokal) u: monitoring p: alay
internet-rou-1# ping 202.169.59.129 re 1000 -> cek link international
internet-rou-2# ping 202.169.59.169 re 1000 -> cek link lokal
sh ip bgp sum

Cek link Internet LA

internet-rou-1 : 10.44.69.63
internet-rou-2 : 10.44.69.64
masuk perangkat internet-rou-1 (lokal) & internet-rou-2 (international) u: monitoring p: alay
internet-rou-1# ping 202.152.45.77 -> cek link (lokal)
internet-rou-2# ping 202.152.24.37 -> cek link (international)
sh ip bgp sum
=============================================================================
CEK VPN
perangkat vpn-remittance (routed-based) & perangkat vpn-h2h-pb (policy based)
vpn-remittance : admin-kingkong
vpn-h2h-pb : admin-kingkong

cek vpn gojek

perangkat: vpn-remittance
sh run int tun 7
ping 107.167.183.155 re 100

cek vpn merchantrade

perangkat: vpn-remittance
sh run int tun 5
ping 203.115.242.8 re 100

cek vpn brl-hongkong

perangkat: vpn-remittance
sh run int tun 3
ping 180.240.136.146

cek vpn tml

perangkat: vpn-remittance
sh run int tun 1
ping 203.10.58.40
=============================================================================
BB-SKB05-01 : management-A -> telnet 10.12.4.46
=============================================================================
Proxy:
proxy slipi 172.23.202.55 port 80
proxy kb 192.168.45.194 port 8080
=============================================================================
cek internet DC slipi
ssh ke 10.13.0.135 (SLPIN-ASNrT)
int g0/0/0 = iforte lokal 100mb
int g0/0/1 = iforte internasional 20mb
int g0/0/4 = indosat internasional 20mb
int g0/0/5 = indosat lokal 100mb
=============================================================================
ROUTER ATM
telnet dari management 10.170.62.222 so 10.44.69.254
=============================================================================
KBSSF-AGTSW-0501-MANAGEMENT-A# telnet 10.44.69.22
KBSSF-AGTSVsW-0501-cmp login: root
Password: default
KBSSF-AGTSVsW-0501-cmp# attach
KBSSF-AGTSVsW-0501>en
Password: nopaynowork

KBSSF-AGTSVsW-0501#session switch 1 slot 1 processor 1

Password: cisco
KBSSF-AGTSVFW-0501-PR> en
Password: nopaynowork
KBSSF-AGTSVFW-0501-PR#
KBSSF-AGTSVFW-0501-PR# show context
Context Name Class Interfaces Mode URL
*admin-context default Vlan10 Routed disk0:/admin-context.cfg
CoreBankingFront default Vlan3101,Vlan3151 Transparent disk0:/CoreBankingFront.cfg
CoreBankingApp default Vlan3102,Vlan3152 Transparent disk0:/CoreBankingApp.cfg
CoreBankingDB default Vlan3103,Vlan3153 Transparent disk0:/CoreBankingDB
MiddlewareFront default Vlan3104,Vlan3154 Transparent disk0:/MiddlewareFront
MiddlewareApp default Vlan3105,Vlan3155 Transparent disk0:/MiddlewareApp
MiddlewareDB default Vlan3106,Vlan3156 Transparent disk0:/MiddlewareDB
Tandem default Vlan3107,Vlan3157 Transparent disk0:/Tandem
Cardlink default Vlan3108,Vlan3158 Transparent disk0:/Cardlink
SurroundingFront default Vlan3109,Vlan3159 Transparent disk0:/SurroundingFront
SurroundingApp default Vlan3110,Vlan3160 Transparent disk0:/SurroundingApp
SurroundingDB default Vlan3111,Vlan3161 Transparent disk0:/SurroundingDB
EChannelFront default Vlan3112,Vlan3162 Transparent disk0:/EChannelFront
EChannelApp default Vlan3113,Vlan3163 Transparent disk0:/EChannelApp
EChannelDB default Vlan3114,Vlan3164 Transparent disk0:/EChannelDB

Total active Security Contexts: 15

KBSSF-AGTSVFW-0501-PR# changeto context

=============================================================================
KBSSF-AGTSVsW-0501#session switch 1 slot 2 processor 1
KBSSF-AGTSVFW-0502-PR# sh context
Context Name Class Interfaces Mode URL
*admin default Vlan10 Routed disk0:/admin.cfg
EnterpriseFront default Vlan3115,Vlan3165 Transparent disk0:/EnterpriseFront
EnterpriseApp default Vlan3116,Vlan3166 Transparent disk0:/EnterpriseApp
EnterpriseDB default Vlan3117,Vlan3167 Transparent disk0:/EnterpriseDB
EnterpriseServices default Vlan3118,Vlan3168 Transparent disk0:/EnterpriseServices
Voice default Vlan3119,Vlan3169 Transparent disk0:/voice
ContactCenter default Vlan3120,Vlan3170 Transparent disk0:/ContactCenter
SyariahWeb default Vlan3121,Vlan3171 Transparent disk0:/SyariahWeb
SyariahApp default Vlan3122,Vlan3172 Transparent disk0:/SyariahApp
SyariahDB default Vlan3123,Vlan3173 Transparent disk0:/SyariahDB
StaggingWeb default Vlan3124,Vlan3174 Transparent disk0:/StaggingWeb
StaggingApp default Vlan3125,Vlan3175 Transparent disk0:/StaggingApp
StaggingDB default Vlan3126,Vlan3176 Transparent disk0:/StaggingDB
Development default Vlan3127,Vlan3177 Transparent disk0:/Development
General default Vlan3128,Vlan3178 Transparent disk0:/General
=============================================================================
BGP WAN DC Sudirman
KBSWN-EGrT-0502#

10.9.64.17 - To Loopback2 KBWN-DSsW-0501

10.9.64.18 - To Loopback2 KBWN-DSsW-0502
10.12.4.137 - ATM TANGARA STANDBY
10.130.5.5 - CONNECT TO VSAT PSN
10.130.7.45 - MPLS ICON+ (ACTIVE)
10.130.8.11 - CONNECT TO SDM-SLIPI via BIZNET (ACTIVE)
10.130.8.12 - CONNECT TO Event REI expo
10.130.8.13 - CONNECT TO Event APEC
10.130.8.14 - CONNECT TO Event REI expo
10.130.9.1 - Connect to XL ATM
10.130.11.6 - BSD-PRIMACOM
10.130.12.1 - Connect to INFOKOM
10.130.14.5 - CONNECT TO VSAT SATKOMINDO
10.130.14.9 - CONNECT TO ATM IFORTE
10.130.15.1 - Backhaul Outlet ICON
10.130.25.2 - CBN
10.130.32.5 - CSM_ATM_BACKUP
10.130.42.17 - NEW SCM ATM
10.130.51.9 - ATM TANGARA BACKUP
10.130.128.9 - CSM_BACKUP_BRANCH_SECONDARY_LINK
10.130.131.1 - VSAT IP Tangara Mitrakom (STANDBY)
10.130.134.1 - NEW CONNECTION TO VSAT CABANG VIA SC MEDIA (ACTIVE)
10.130.139.1 - CONNECTION TO PRIMACOM-CBN PRIMARY
10.130.145.1 - MPLS IM2 (STANDBY)
10.130.148.1 - MPLS TELKOM (ACTIVE)
10.130.162.1 - MPLS LA (STANDBY)
10.130.178.1 - ATM LINTASARTA (STANDBY)
10.165.228.242 - BCC SMG VIA TELKOM METRO
10.170.142.246 - CONNECT TO BALI FIBER JAVA_JAZZ_KEMAYORAN_2019
10.170.165.246 - EVENT KEMKUMHAM BNI KB
10.172.192.245 - SKK JAKARTA KOTA VIA INDOSAT (Standby)

KBSWN-EGrT-0502#
10.9.64.17 - To Loopback2 KBWN-DSsW-0501
10.9.64.18 - To Loopback2 KBWN-DSsW-0502
10.12.4.133 - ATM TANGARA ACTIVE
10.130.0.9 - CSM_BACKUP_BRANCH_PRIMARY_LINK
10.130.2.5 - VSAT-IP Lintasarta (ACTIVE)
10.130.3.1 - VSAT IP Tangara Mitrakom (ACTIVE)
10.130.5.1 - CONNECT TO VSAT PSN (Active)
10.130.6.1 - BNI LN TELKOM-SINGTEL (ACTIVE)
10.130.8.11 - CONNECT TO SDM-SLIPI via BIZNET (STANDBY)
10.130.8.12 - CONNECT TO Event APEC AYANA Biznet
10.130.8.13 - CONNECT TO SDM-SLIPI via Biznet (STANDBY)
10.130.8.14 - CONNECT TO Event REI expo
10.130.11.13 - CONNECTION TO PRIMACOM-BIZ BACKUP
10.130.14.13 - CONNECT TO VSAT UNISAT
10.130.14.17 - CONNECT TO VSAT WINCOR
10.130.17.1 - MPLS IM2 (ACTIVE)
10.130.32.1 - CSM_ATM_PRIMARY
10.130.34.1 - MPLS LA (ACTIVE)
10.130.41.1 - NEW ATM LINTASARTA (ACTIVE)
10.130.42.13 - NEW SCM ATM
10.130.63.1 - Connect to ICON ATM OFF_BRANCH
10.130.68.2 - BSD-TELKOM
10.130.137.1 - Connect to XL ATM OFF_BRANCH
10.130.186.1 - INDOSAT BNI POC
10.170.62.242 - Connection to KCU Jakarta Pusat
10.170.106.242 - KCP Wisma 46
10.170.142.242 - Indosat Eol (Active)
10.172.192.245 - SKK JAKARTA KOTA VIA INDOSAT (Active)

BGP WAN DC Slipi

SLPWN-EGrT-0101#

10.7.0.30 - SLPWN-DSsW-0301-VSS
10.7.1.78 – P2P PSN VSAT
10.7.1.82 – P2P Primacom VSAT
10.7.1.86 – P2P Telkom MPLS
10.7.1.94 – P2P Lintas MPLS Backup
10.7.1.102 – P2P Tangara VSAT
10.7.1.118 – P2P SCMedia ATM
10.7.1.186 – P2P Lintas ATM
10.7.5.81 – P2P Tangara ATM
10.7.5.122 – P2P SCMedia VSAT Backup
10.7.5.138 – P2P Lintas VSAT Backup
10.7.5.158 – TO ROUTER TELKOM KCLN

SLPWN-EGrT-0102#

10.7.0.30 – SLPWN-DSsW-0301-VSS
10.7.1.90 – P2P Telkom MPLS Backup
10.7.1.98 – P2P Lintas MPLS
10.7.1.106 – P2P Tangara Backup
10.7.1.122 – P2P SCMedia ATM
10.7.1.166 – P2P Primacom VSAT Backup
10.7.1.190 – P2P Lintas ATM Backup
10.7.5.86 – P2P Tangara ATM Backup
10.7.5.126 – P2P SCMedia VSAT
10.7.5.142 – P2P Lintas VSAT

IP Address KCLN
Router Singapore : 10.150.1.254
Router Hongkong : 10.150.20.254
Router Seoul : 10.180.101.1
Router Tokyo : 10.180.40.254
Router London : 10.180.60.254
Router New York : 10.180.80.254
SKNBI via LA (real):
192.168.32.48
192.168.96.48
192.168.96.245
192.168.96.249
192.168.32.250
192.168.32.49
192.168.32.8
sknbi.xnet.bi.go.id

RTGS
192.168.32.41
192.168.32.42
192.168.32.43
192.168.96.41
192.168.96.42
192.168.96.43

bniforum.bni.co.id
eoffice.bni.co.id
hcms.bni.co.id
corebanking.bni.co.id
=============================================================================
Cek link BCP-Jatiluhur
JTLLN-CRsW-0001 – Eth3/3
Ping 172.29.254.254 (BCP)
MTI LINK AJA
object network THIRD_REAL_MTI_LINKAJA_01
host 172.16.200.70
object network THIRD_NAT_MTI_LINKAJA_01
host 10.44.81.170
object network THIRD_REAL_MTI_LINKAJA_02
host 172.16.200.71
object network THIRD_NAT_MTI_LINKAJA_02
host 10.44.81.171
object network THIRD_REAL_MTI_JALIN_DEV
host 172.16.200.22
object network THIRD_NAT_MTI_JALIN_DEV
host 10.44.60.249
object network THIRD_REAL_MTI_JALIN_TEST
host 172.16.200.21
object network THIRD_NAT_MTI_JALIN_TEST
host 10.44.60.250
object network THIRD_REAL_MTI_JALIN_PROD
host 172.16.201.40
object network THIRD_NAT_MTI_JALIN_PROD
host 10.44.60.251
IP Outlet Cabang
telnet dari management dengan source vlan 333
10.165.1.224 (SMG-ROU-01)
10.170.5.224 (DKN-ROU-01)
10.161.0.224
10.172.5.224 (JKM-ROU-01)
10.172.1.224 (ROU-JKT-01)
10.161.0.224 (WIL01-ROU-01)
10.162.0.224 (WIL02-ROU-01)
10.163.0.224 (WIL03-ROU-01)
10.164.0.224 (WIL04-ROU-01)
10.165.0.224 (WIL05-ROU-01)
10.166.0.224 (WIL06-ROU-01)
10.167.0.224 (WIL07-ROU-01)
10.168.0.224 (WIL08-ROU-01)
10.169.0.224 (WIL09-ROU-01)
10.170.0.224 (WIL10-ROU-01)
10.171.0.224 (WIL11-ROU-01)
10.172.0.224 (WIL12-ROU-01)
10.175.0.224 (WIL15-ROU-01)
10.176.0.224 (WIL16-ROU-01)
10.177.0.224 (WIL17-ROU-01)
10.178.0.224 (WIL18-ROU-01)
Command Prompt Advanced
ping -a 192.168.1.1
ping -n 10 -l 1500 192.168.10.10
arp -a 192.168.10.10
getmac
pathping www.google.com

cek H2H UNM

KBSEX-EGrT-0501#telnet 10.44.71.6 /source-interface lo1
object network THIRD_REAL_UNM
host 10.44.71.6
object network THIRD_NAT_UNM
host 10.44.60.147

object network THIRD_REAL_UNM_APP

host 192.168.13.18
object network THIRD_NAT_UNM_APP
host 10.44.60.155

object network THIRD_REAL_UNM_DB

host 192.168.13.19
object network THIRD_NAT_UNM_DB
host 10.44.60.156

BCC SEMARANG
Segment BCC Semarang
10.135.228.0/24
10.165.228.0/25
10.165.228.192/27
10.165.228.224/32
10.205.228.0/24
10.225.228.0/24
10.245.228.0/24

Cek H2H Router Third Party

Toserba Bandung :
telnet/ping dari Extranet Edge 1.2.53.9

BCC Semarang :
KBSWN-EGrT-0501 neighbor 10.165.228.242 (BCC Semarang Via Metro Telkom)
SLPWN-EGrT-0102 tes P2P ping 10.7.5.170

BNV Kota (10.212.101.254)

KBSSF-AGTsW-0501-MANAGEMENT-A# telnet 10.172.101.224 vrf management

BNV Slipi (172.25.254.254)

KBSSF-AGTsW-0501-MANAGEMENT-A# telnet 172.25.254.254 vrf management

BNV Surabaya
KBSSF-AGTsW-0501-MANAGEMENT-A# telnet 10.60.4.242 so vlan 333

KOTA
KBSSF-AGTsW-0501-MANAGEMENT-A# telnet 10.172.192.224 source vlan 333 (KOTA SKKJKT)
KBSSF-AGTsW-0501-MANAGEMENT-A# telnet 24.12.103.254 source vlan 333 (LNC-CNR-ROU-01)
ARTAJASA
10.7.5.218 P2P dengan AJ via TELKOM
SLPEX-EGrT-0301 (10.7.5.180)
Cek ASA FWL
sh run object network in-line | i INGENICO (cek object)
object network THIRD_REAL_INGENICO_PROD host 172.16.2.3
object network THIRD_NAT_INGENICO_PROD host 10.44.61.199

sh conn | i 172.16.2.3
TCP outside 10.44.61.199(172.16.2.3):53822 inside 192.168.3.95:4096, idle 0:00:00, bytes 0, flags UB
TCP outside 10.44.61.199(172.16.2.3):53821 inside 192.168.3.95:4096, idle 0:00:00, bytes 0, flags UB

sh object-group id SERVICE_IP_TPAM_IRS
object-group service SERVICE_IP_TPAM_IRS
service-object tcp destination eq 3389
service-object tcp-udp destination eq 33434
service-object tcp-udp destination eq 139
service-object tcp-udp destination eq 445

masuk JTLEX-EGrT-0001(10.44.228.17)
JTLEX-EGrT-0001#service-module gigabitEthernet 4/0 session (tacacs)
buat masuk module untuk port telkom dan LA

Server CSM
10.12.9.59
administrator
cisco@123

172.17.1.100 : administrator, password

172.17.1.3 : administrator, bnibackbone
10.50.144.1 :
192.168.12.178 : administrator, bni123/
192.168.12.213 : administrator, bni123/

VPN RAS
10.29.1.2 : sdd, bni5ecure, 2secure
=============================================================================
FWL Serverfarm SLIPI dua"nya Active-Active ya berdasarkan group, kalau execute masukinnya di
active firewallnya (verifikasi aktifnya dimana show failover di context bersangkutan)

FWL Group1 (10.13.0.17)

context FRONTEND-WEB
context FRONTEND-APPS
context FRONTEND-DB
context MIDDLEWARE-WEB
context MIDDLEWARE-APPS
context CoreBankingFront
context CoreBankingApp
context CoreBankingDB
context MiddlewareFront
context MiddlewareApp
context MiddlewareDB
context Tandem
context Cardlink
context SurroundingFront
context SurroundingApp
context SurroundingDB
context EChannelFront
context EChannelApp
context EChannelDB
context REPLIKASI

FWL Group2 (10.13.0.18)

context MIDDLEWARE-DB
context BACKEND-APPS
context BACKEND-DB
context VOICE
context GENERAL
context EnterpriseFront
context EnterpriseApp
context EnterpriseDB
context EnterpriseServices
context ContactCenter
context SyariahWeb
context SyariahApp
context SyariahDB
context StaggingWeb
context StaggingApp
context StaggingDB
context Development
context BNI-CLOUD
INTERNET SLIPI
103.108.254.0/24 Lewat Indosat
103.108.255.0/24 Lewat FS
H2H JALIN

Report Grafik Internet PRTG

Klik Menu Devices  pilih link yang ingin ditampilkan ( Cont: Internet Fiberstar & Balitower )
Lalu klik menu Historic Data  Set Waktu  klik Start

Berikut adalah tampilan grafik dari Gi1/0/24 - Internet : Balitower / Balifiber

Berikut adalah tampilan grafik dari Gi1/0/13 - Internet : Fiberstar

Utilisasi HUAWEI

Utilisasi Firewall lantai 25 / Internet Iforte & Fiberstar

Buka remote desktop 192.168.65.115

U : Administrator
P: bni1234/

Lalu buka di browser Mozilla :

https://172.17.253.99:8443/login.html?lang=en
U : admin
P : Bn1b@ckb0n3

ATAU

Bisa juga melalui PC B1, buka URL berikut di browser

https://172.17.253.100:8443/login.html?lang=en
U : admin
P : Bn1b@ckb0n3

Pilih menu Dashboard  lalu ke bagian Traffic History 

Pilih Avg. rate of Inbound Traffic & Avg. rate of Outbound Traffic.

DONE