Pilot
Awal postingan ini ditulis karena ingin memberdayakan laptop Dell Latitude E4300 yang sudah pecah dan tidak bisa terlihat lagi outputnya. Laptop sudah tidak digunakan lagi karena alhamdulillah sudah ada gantinya yaitu HP ProLiant MicroServer N54L yang dapat keringanan untuk mencicil oleh bossnya Pandawa Computers. Well, jadi ingat, ternyata Dell Latitude E4300 juga hasil nyicil sama Pandawa Computers. Di-install-lah laptopnya yang tentunya menggunakan CentOS 7 dimana untuk mengakali tampilannya saya menggunakan monitor yang menggunakan VGA dan kemudian tekan pada keyboard FN+F8 untuk extended monitor.
Install CentOS 7 Dengan Text Mode
Untuk memulai proses instalasi dengan text mode, pada saat menu install kita tekan tab dan kemudian pada perintah yang ada tekan spasi dan ketik text dan enter untuk memulai proses install.
Prosesnya sih sama dengan install metode graphic dan sepertinya saya mulai menyukai install dengan text mode ini karena lebih simple menurut saya. Tanpa harus ada mouse, kalau ada graphic kan gatelnya harus ada mouse yakan, hehehe.
Menjaga Laptop Agar Tidak Tidur (sleep) Saat Layar (lid) Laptop Ditutup
Nah, karena layar laptop sudah tidak bisa digunakan lagi, sebetulnya sih enaknya dicabut saja tapi belum ada waktu nih untuk ngoprek, ya sudah pilihannya adalah saat ini menjaga agar laptop bisa ON terus tapi layar laptop bisa ditutup. Soalnya kalau layarnya ditegakkan bisa-bisa jadi perhatian Zach dan nanti malah dioprek sama dia, xixixi.
WARNING
Ketik perintah:
vim /etc/systemd/logind.confDan kemudian cari HandleLidSwitch=suspend dan diganti dengan HandleLidSwitch=ignore. Sebetulnya ada 4 tipe yaitu:
- suspend; dimana ini adalah default dari OS agar laptop tidur saat layar laptop ditutup.
- lock; dimana OS akan dilock saat layar laptop ditutup
- ignore; untuk memilih tidak ada tindakan apapun ketika layar laptop ditutup
- poweroff; jika memilih agar laptop shutdown ketika layar ditutup
Setelah mengganti dengan HandleLidSwitch=ignore file disimpan dan kemudian jalankan perintah berikut:
systemctl restart systemd-logind.serviceDan silakan test reboot kalau gak percaya, hehehe. Awalnya saya juga begitu, agak sangsi, saya coba dengan test ping, dan menunggu beberapa menit ternyata akhirnya reply juga hasil ping, hehehe.
Mungkin bisa ditambah dengan perintah berikut untuk rencana cadangan xixixi
systemctl mask sleep.target suspend.target hibernate.target hybrid-sleep.targetAkses Windows Share
Install cifs-utils
Install dependenciesnya terlebih dahulu dengan perintah:
yum install cifs-utilsTapi kalau di wiki.centos.org sekalian sama sambanya yang diinstall, yaitu dengan perintah:
yum install samba-client samba-common cifs-utilsMenambahkan di fstab
Karena saya lebih suka agar buka sharingnya otomatis, maka kita akan menambahkan mount share di file /etc/fstab dengan perintah:
\\10.0.7.3\dartokloning /mnt/dartokloning cifs user,uid=500,rw,suid,username=darto,password=kloning 0 0Kalau sudah, buat terlebih dahulu foldernya sesuai seperti yang kita cantumkan dengan perintah:
mkdir /mnt/dartokloningDan kemudian kita test untuk mount dengan perintah:
mount /mnt/dartokloningatau kalau banyak yang harus dimount, bisa juga dengan perintah:
mount -aNah, kadang kita lupa nama share yang kita buat di Windows itu tadi apa ya? kita bisa melihatnya dengan perintah:
smbclient -L 10.0.7.3Plex Media Server
Menambahkan Repository
Kita akan install Plex Media Server melalui plex repository dan artinya kita harus daftarkan terlebih dahulu repo tersebut dengan perintah:
vim /etc/yum.repos.d/plex.repoDan kemudian masukkan kode berikut dibawah ini:
[PlexRepo]
name=PlexRepo
baseurl=https://downloads.plex.tv/repo/rpm/$basearch/
enabled=1
gpgkey=https://downloads.plex.tv/plex-keys/PlexSign.key
gpgcheck=1Install Plex Media Server
Setelah itu baru kita install Plex Media Servernya dengan perintah:
yum update
yum install plexmediaserverKemudian kita akan buat agar Plex Media Server akan berjalan otomatis saat booting.
systemctl start plexmediaserver
systemctl enable plexmediaserverMendaftarkan atau Membuka Port Plex Media Server di Firewall
Dan Plex Media Server sudah berjalan tetapi saat ini masih belum bisa dibuka dimana-mana kecuali oleh local, karena itu kita akan buka port-port yang digunakan oleh Plex Media Server dengan cara:
firewall-cmd --zone=public --add-port=32400/tcp --permanent
firewall-cmd --zone=public --add-port=1900/udp --permanent
firewall-cmd --zone=public --add-port=3005/tcp --permanent
firewall-cmd --zone=public --add-port=5353/udp --permanent
firewall-cmd --zone=public --add-port=8324/tcp --permanent
firewall-cmd --zone=public --add-port=32410/udp --permanent
firewall-cmd --zone=public --add-port=32412-32414/udp --permanent
firewall-cmd --zone=public --add-port=32469/tcp --permanent
firewall-cmd --reloadSetelah portnya kita daftarkan ke firewall, kita bisa akses Plex Media Server dengan membuka url http://10.0.7.4:32400/web/ dibrowser.
mmmmm sebetulnya ada cara lain untuk membuka port banyak sekaligus, mmmmm mungkin lebih simple, hehehe, yaitu dengan mendaftarkan semua port diatas pada file xml yang akan difungsikan sebagai service, caranya adalah:
vim /etc/firewalld/services/plexmediaserver.xmlKemudian masukkan kode dibawah ini:
<?xml version="1.0" encoding="utf-8"?>
<service>
<short>plexmediaserver</short>
<description>Port-port yang digunakan oleh plexmediaserver.</description>
<port protocol="tcp" port="32400"></port>
<port protocol="udp" port="1900"></port>
<port protocol="tcp" port="3005"></port>
<port protocol="udp" port="5353"></port>
<port protocol="tcp" port="8324"></port>
<port protocol="udp" port="32410"></port>
<port protocol="udp" port="32412"></port>
<port protocol="udp" port="32413"></port>
<port protocol="udp" port="32414"></port>
<port protocol="tcp" port="32469"></port>
</service>Untuk mendaftarkan file port service plexmediaserver.xml di firewall adalah dengan perintah:
firewall-cmd --zone=public --add-service=plexmediaserver --permanent
firewall-cmd --reloadUpdated onThu, Jan 2, 2020 5:53 PM : Menambahkan Uninstall atau Hapus Plex Media Server
Uninstall atau Hapus Plex Media Server
rpm -e plexmediaserver
rm -fr /var/lib/plexmediaserver/
userdel plex
rm -f /etc/firewalld/services/plexmediaserver.xml
firewall-cmd --reloadUpdated at: Sunday, November 24, 2019 6:11 AM
IP Static
Well, jadi gak berurutan yah stepnya, tapi gak apalah, kan ini note saya, xixixi dan bisa dilihat juga dari daftar isinya. Keingetan sama nmtui yaitu NetworkManager Text User Interface dimana cara lain setting IP tanpa harus edit network script. Dan nmtui ini di CentOS 7 sudah default yah.
Karena biasanya kalau mau setting IP static, sebelumnya harus cek terlebih dahulu interface yang digunakan biar tidak salah konfigurasi dengan perintah:
ip a
1: lo: mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: enp0s25: mtu 1500 qdisc pfifo_fast state UP group default qlen 1000
link/ether 00:26:b9:b1:74:31 brd ff:ff:ff:ff:ff:ff
inet 10.0.7.4/8 brd 10.255.255.255 scope global noprefixroute enp0s25
valid_lft forever preferred_lft forever
inet6 fe80::ee58:e9d2:7336:1282/64 scope link noprefixroute
valid_lft forever preferred_lft forever
3: wlp12s0: mtu 1500 qdisc mq state DOWN group default qlen 1000
link/ether e6:ff:38:1f:6e:84 brd ff:ff:ff:ff:ff:ff Dari output diatas terlihat ada 2 interface, kalau lo itu loop, tidak kita setting. Apa sih loop? mmmmm saat ini lagi masih belum mau tau cari tahu apa itu loopback. Dan akhirnya penasaran juga HAHAHAHA, gugling dikit maksud dari lo adalah The loopback device is a special, virtual network interface that your computer uses to communicate with itself. It is used mainly for diagnostics and troubleshooting, and to connect to servers running on the local machine.
OK lanjut ke setting network, seperti kita lihat ada 2 yaitu di no 2: enp0s25 dan no 3:wlp12s0, dimana enp0s25 adalah NIC dan wlp12s0 adalah wireless. Kan, dari sini aja kita kudu repot ini itu tuk setting jaringan, xixixi. Beda kalau langsung pakai nmtui. Setelah itu kita rubah IP atau kita tanamkan IP di interface yang kita mau, yaitu di enp0s25 dengan cara:
HWADDR=00:26:b9:b1:74:31
TYPE=Ethernet
# Static IP Address #
BOOTPROTO=none
# Server IP #
IPADDR=10.0.7.4
# Netmask #
NETMASK=255.255.255.0
# Default Gateway IP #
GATEWAY=10.0.7.1
# DNS Servers #
DNS1=8.8.8.8
DNS2=8.8.4.4
DEFROUTE=yes
IPV4_FAILURE_FATAL=no
# Disable ipv6 #
IPV6INIT=no
# Device Name #
NAME=enp0s3
DEVICE=enp0s3
# Optional – This is system specific and can be created using ‘uuidgen enp0s3’ command #
UUID=02d4a47b-3dbe-4e0b-ae4b-841a8c58e807
# Activate on Boot #
ONBOOT=yes
# Default Domain Search #
DOMAIN=kloningspoon.comKalau sudah diedit dan disave kemudian ketik perintah:
systemctl restart networkNah, gimana kalau mau setting yang wireless? ah sudah lah, pakai nmtui aja yah, hehehe.
Information
nmtui ini bukan bawaan default CentOS 7 Minimal Install. Tapi kok disaya setelah fresh install ya selalu ada yah, tapi bagi yang ingin install dan gak usah cari lagi kemana-mana, incase emang nanti dibutuhkan, well, untuk nmtuiini diinstall menggunakan cara: yum install NetworkManager-tuiCentOS 7 Firewall Command
Jadinya sekalian aja deh cheat sheet nya ditulis juga command-command untuk mengatur firewalld.
File Konfigurasi
File konfigurasi firewalld berada di /etc/firewalld/zones/public.xml
Buka Port
Perintah untuk buka port adalah:
firewall-cmd --zone=public --add-port=81/tcp --permanentYang perlu diperhatikan adalah protokolnya tcp atau udp.
Buka Port Untuk Specific IP
Untuk buka port yang bisa diakses oleh IP tertentu atau maksudnya hanya spesifik IP yang bisa akses pada port tertentu, perintahnya adalah:
firewall-cmd --permanent --zone=public --add-rich-rule='rule family="ipv4" source address="10.0.7.5" port protocol="tcp" port="22" acceptContoh diatas maksudnya adalah ingin membatasi ssh login dimana port defaultnya adalah 22 dan hanya ingin bisa diakses oleh IP 10.0.7.5 saja.
Hapus Port
Untuk menghapus port perintahnya adalah:
firewall-cmd --zone=public --remove-port=81/tcp --permanentJangan lupa dengan protokolnya yah, tcp atau udp, karena kalau kita kasih perintahnya tcp tapi ternyata sebelumnya protokol yang kita pakai adalah udp ya gak akan kehapus portnya dari firewalld.
Save Konfigurasi
Jangan lupa kalau sudah melakukan perintah menambahkan atau menghapus port pada firewalld untuk melakukan reload yaitu dengan perintah:
firewall-cmd --reloadCek List Port Yang Sudah Dibuka Firewalld
Perintahnya adalah:
firewall-cmd --list-portsInformation
s juga bisa, yaitu dengan firewall-cmd --list-port.Atau cara ceknya menggunakan perintah lain yaitu:
netstat -pltnu
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 127.0.0.1:25 0.0.0.0:* LISTEN 1423/master
tcp 0 0 127.0.0.1:44911 0.0.0.0:* LISTEN 4729/Plex Plug-in [
tcp 0 0 127.0.0.1:32401 0.0.0.0:* LISTEN 4123/Plex Media Ser
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 1043/sshd
tcp 0 0 127.0.0.1:32600 0.0.0.0:* LISTEN 4189/Plex Tuner Ser
tcp6 0 0 ::1:25 :::* LISTEN 1423/master
tcp6 0 0 :::32400 :::* LISTEN 4123/Plex Media Ser
tcp6 0 0 :::22 :::* LISTEN 1043/sshd
udp 0 0 0.0.0.0:1901 0.0.0.0:* 4123/Plex Media Ser
udp 0 0 10.0.7.4:35983 0.0.0.0:* 4123/Plex Media Ser
udp 0 0 10.0.7.4:33937 0.0.0.0:* 4123/Plex Media Ser
udp 0 0 127.0.0.1:44316 0.0.0.0:* 4123/Plex Media Ser
udp 0 0 127.0.0.1:323 0.0.0.0:* 686/chronyd
udp 0 0 10.0.7.4:33312 0.0.0.0:* 4123/Plex Media Ser
udp 0 0 127.0.0.1:40504 0.0.0.0:* 4123/Plex Media Ser
udp 0 0 0.0.0.0:32410 0.0.0.0:* 4123/Plex Media Ser
udp 0 0 0.0.0.0:32412 0.0.0.0:* 4123/Plex Media Ser
udp 0 0 0.0.0.0:32413 0.0.0.0:* 4123/Plex Media Ser
udp 0 0 0.0.0.0:32414 0.0.0.0:* 4123/Plex Media Ser
udp6 0 0 ::1:323 :::* 686/chronydYUM
Ini ditulis biar biasa aja, semoga aja setelah menulis bisa jadi biasa, hehehe.
Pencarian
Kadang kalau kita ikuti panduan yang kita baca, ya misalkan seperti netstat diatas, kalau fresh installation nya ya tidak ada tools netstat itu. Kalau kita coba jalankan perintah diatas netstat -ltnu maka hasilnya adalah:
-bash: netstat: command not foundItu karena kita belum meng-install tools tersebut, dan kalau kita coba install dengan yum install netstat maka hasilnya adalah:
yum install netstat
Loaded plugins: fastestmirror
Loading mirror speeds from cached hostfile
epel/x86_64/metalink | 9.2 kB 00:00:00
* base: mirror.axarva.id
* epel: epel.dionipe.id
* extras: mirror.axarva.id
* updates: mirror.axarva.id
PlexRepo | 1.4 kB 00:00:00
base | 3.6 kB 00:00:00
extras | 2.9 kB 00:00:00
updates | 2.9 kB 00:00:00
No package netstat available.
Error: Nothing to doArtinya gak ada, hehehe. Nah kalau gitu kita bisa coba dengan cari tools netstat itu ada dimana sih, yaitu dengan perintah:
yum search netstat
Loaded plugins: fastestmirror
Loading mirror speeds from cached hostfile
* base: mirror.axarva.id
* epel: epel.dionipe.id
* extras: mirror.axarva.id
* updates: mirror.axarva.id
===================================================== Matched: netstat =====================================================
bwm-ng.x86_64 : Bandwidth Monitor NG
dstat.noarch : Versatile resource statistics tool
net-snmp.x86_64 : A collection of SNMP protocol tools and libraries
net-tools.x86_64 : Basic networking tools
python2-psutil.x86_64 : A process and system utilities module for Python
python34-psutil.x86_64 : A process and system utilities module for Python
python36-psutil.x86_64 : A process and system utilities module for Python
unhide.x86_64 : Tool to find hidden processes and TCP/UDP ports from rootkitsProvides (Penyedia)
Kalau kita coba dengan pencarian diatas, kita masih sedikit binggung bagi yang masih binggung, hehehe, netstat mana yang sebetulnya yang kita inginkan. Nah, untuk mengetahuinya kita bisa coba dengan perintah:
yum provides */netstatNah, kenapa pakai */netstat? kenapa gak langsung aja jadi yum provides netstat? Karena kalau kita lihat dari hasil yum search netstat, diketahui bahwa netstat ini ternyata tools yang bukan berdiri sendiri, maksudnya tools group bersamaan dengan tools yang lain, taunya darimana? karena waktu kita coba cari dengan perintah yum search netstattidak ada package yang langsung mengarah ke netstat, tidak seperti kalau halnya kita mencari ntfs-3g. Misal kita cari yum search ntfs-3g maka hasilnya adalah:
yum search ntfs-3g
Loaded plugins: fastestmirror
Loading mirror speeds from cached hostfile
* base: mirror.axarva.id
* epel: kartolo.sby.datautama.net.id
* extras: mirror.axarva.id
* updates: mirror.axarva.id
=================================================== N/S matched: ntfs-3g ===================================================
ntfs-3g-devel.x86_64 : Development files and libraries for ntfs-3g
ntfs-3g.x86_64 : Linux NTFS userspace driver
Name and summary matches only, use "search all" for everything.Disitu kita tahu ada packages yang memang berkenaan dengan ntfs-3g dan kalau kita yum install ntfs-3g ya langsung diproses tidak seperti waktu kita coba yum install netstat.
Nah, untuk mencari dimana packages netstat itu berada, kita pakai perintah yum provides */netstat, yang hasilnya adalah:
yum provides */netstat
Loaded plugins: fastestmirror
Loading mirror speeds from cached hostfile
* base: mirror.axarva.id
* epel: epel.dionipe.id
* extras: mirror.axarva.id
* updates: mirror.axarva.id
check-mk-1.4.0p31-2.el7.x86_64 : A new general purpose Nagios-plugin for retrieving data
Repo : epel
Matched from:
Filename : /usr/share/check_mk/checks/netstat
check-mk-agent-1.4.0p31-2.el7.x86_64 : The check-mk's Agent
Repo : epel
Matched from:
Filename : /usr/share/check-mk-agent/available-plugins/netstat
check-mk-docs-1.4.0p31-2.el7.noarch : The check-mk's documentation
Repo : epel
Matched from:
Filename : /usr/share/doc/check_mk/checks/netstat
munin-node-2.0.51-1.el7.noarch : Network-wide resource monitoring tool (node)
Repo : epel
Matched from:
Filename : /usr/share/munin/plugins/netstat
net-tools-2.0-0.25.20131004git.el7.x86_64 : Basic networking tools
Repo : base
Matched from:
Filename : /bin/netstat
recap-2.1.0-3.el7.noarch : Generates reports of various system information
Repo : epel
Matched from:
Filename : /usr/lib/recap/core/netstatNah, kalau lihat hasilnya, kira-kira sudah tau kan packages yang mana yang berisi netstat yang kita inginkan?
mmmmmm it’s supposed to be you will answer net-tools, xixixi.
Dan artinya, untuk menginstall netstat ini kita harus dengan menggunakan perintah:
yum install net-toolsUpdated on Thu, Jan 2, 2020 5:53 PM: Menambahkan Install LAMP Stack dan Blokir Iklan Dengan BIND DNS Server
Install LAMP Stack
Persiapan
rpm --import /etc/pki/rpm-gpg/RPM-GPG-KEY*
yum install epel-releaseInstall MariaDB / MySQL
yum install mariadb-server mariadb
systemctl start mariadb.service
systemctl enable mariadb.serviceKemudian buat password root untuk MySQL dengan menjalankan perintah:
mysql_secure_installation- Enter current password for root (enter for none): => tekan ENTER
- Set root password? [Y/n] => tekan ENTER
- New password: => ketik password yang diinginkan untuk
root - Re-enter new password: => ulangi ketik passwordnya
- Remove anonymous users? [Y/n] => tekan ENTER
- Disallow root login remotely? [Y/n] => tekan ENTER
- Remove test database and access to it? [Y/n] => tekan ENTER
- Reload privilege tables now? [Y/n] => tekan ENTER
Install Apache
yum install httpd
systemctl start httpd.service
systemctl enable httpd.service
firewall-cmd --permanent --zone=public --add-service=http
firewall-cmd --permanent --zone=public --add-service=https
firewall-cmd --reloadInstall PHP
Pilih salah satu versi PHP yang ingin di install, tidak bisa di install semua versi.
Remi CentOS Repository
rpm -Uvh http://rpms.remirepo.net/enterprise/remi-release-7.rpm
yum install yum-utils
yum updateInstall PHP 5.4
yum install php php-mysqlnd php-pdo
systemctl restart httpd.serviceInstall PHP 7.0
yum-config-manager --enable remi-php70
yum install php php-opcache php-mysqlnd php-pdo
systemctl restart httpd.serviceInstall PHP 7.1
yum-config-manager --enable remi-php71
yum install php php-opcache php-mysqlnd php-pdo
systemctl restart httpd.serviceInstall PHP 7.2
yum-config-manager --enable remi-php72
yum install php php-opcache php-mysqlnd php-pdo
systemctl restart httpd.serviceInstall PHP 7.3
yum-config-manager --enable remi-php73
yum install php php-opcache php-mysqlnd php-pdo
systemctl restart httpd.serviceInstall PHP Module Untuk Kebutuhan CMS
yum install php-gd php-ldap php-odbc php-pear php-xml php-xmlrpc php-mbstring php-soap curl curl-devel
systemctl restart httpd.serviceInstall phpMyAdmin
yum install phpMyAdminKemudian kita hapus block dan kemudian menambahkan Require all granted
vim /etc/httpd/conf.d/phpMyAdmin.conf
#Apache 2.4
#
#Require ip 127.0.0.1
#Require ip ::1
#
Require all granted
# Apache 2.2
Order Deny,Allow
Deny from All
Allow from 127.0.0.1
Allow from ::1
Dan restart Apache
systemctl restart httpd.serviceBlokir Iklan Dengan BIND DNS Server
Setting Hostname
hostnamectl set-hostname delle4300Seting IP Static Menggunakan nmcli
nmcli con show
nmcli con mod enp0s25 ipv4.method manual ipv4.address 10.0.7.4/24 ipv4.gateway 10.0.7.1 ipv4.dns 10.0.7.1
systemctl restart networkInstall BIND
yum install bind bind-utilsMenambahkan BIND DNS Server di Firewall
firewall-cmd --permanent --zone=public --add-service=dns
firewall-cmd --reloadSetting BIND DNS Server
Edit /etc/named.conf
cp /etc/named.conf /etc/named.conf.ori
vim /etc/named.confdan rubah seperti berikut:
options {
check-names master ignore;
listen-on port 53 { any; };
listen-on-v6 port 53 { ::1; };
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
recursing-file "/var/named/data/named.recursing";
secroots-file "/var/named/data/named.secroots";
allow-query { any; };
allow-query-cache { any; };
/*
- If you are building an AUTHORITATIVE DNS server, do NOT enable recursion.
- If you are building a RECURSIVE (caching) DNS server, you need to enable
recursion.
- If your recursive DNS server has a public IP address, you MUST enable access
control to limit queries to your legitimate users. Failing to do so will
cause your server to become part of large scale DNS amplification
attacks. Implementing BCP38 within your network would greatly
reduce such attack surface
*/
recursion yes;
forward only;
forwarders { 10.0.7.1; };
dnssec-enable yes;
dnssec-validation no;
/* Path to ISC DLV key */
bindkeys-file "/etc/named.root.key";
managed-keys-directory "/var/named/dynamic";
pid-file "/run/named/named.pid";
session-keyfile "/run/named/session.key";
};
logging {
channel default_debug {
file "data/named.run";
severity dynamic;
};
};
zone "darto.com" {
type master;
file "darto.com.zone";
allow-update { none; };
};
zone "7.0.10.in-addr.arpa" {
type master;
file "darto.com.revzone";
allow-update { none; };
};
zone "." IN {
type hint;
file "named.ca";
};
include "/etc/named.rfc1912.zones";
include "/etc/named.root.key";Buat Forward Zone darto.com.zone
vim /var/named/darto.com.zonedan copy paste berikut ini:
$TTL 86400
@ IN SOA delle4300.darto.com. delle4300.darto.com. (
2019122706 ;Serial
1d ;Refresh
2h ;Retry
4w ;Expire
1h ) ;Minimum TTL
IN NS delle4300.darto.com.
delle4300 IN A 10.0.7.4Buat Reverse Lookup Zone darto.com.revzone
vim /var/named/darto.com.zone.revzonedan copy paste berikut ini:
$TTL 86400
@ IN SOA delle4300.darto.com. delle4300.darto.com. (
2020010201; Serial
1d ; Refresh
2h ; Retry
4w ; Expire
1h ); min cache
IN NS delle4300.darto.com.
4 IN PTR delle4300.darto.com.Mengaktifkan DNS
Setelah membuat /var/named/darto.com.zone dan /var/named/darto.com.revzone kemudian saatnya mengaktifkan DNS.
systemctl enable named
systemctl start namedSetting Network dengan DNS
nmcli con mod enp0s25 ipv4.method manual ipv4.address 10.0.7.4/24 ipv4.dns 10.0.7.4 ipv4.gateway 10.0.7.1 ipv4.dns-search darto.com
systemctl restart networkTest DNS
Test menggunakan nslookup:
nslookup google.com
Server: 10.0.7.4
Address: 10.0.7.4#53
Non-authoritative answer:
Name: google.com
Address: 74.125.24.113
Name: google.com
Address: 74.125.24.100
Name: google.com
Address: 74.125.24.139
Name: google.com
Address: 74.125.24.101
Name: google.com
Address: 74.125.24.138
Name: google.com
Address: 74.125.24.102
Name: google.com
Address: 2404:6800:4003:c02::8a
nslookup delle4300.darto.com
Server: 10.0.7.4
Address: 10.0.7.4#53
Name: delle4300.darto.com
Address: 10.0.7.4Test menggunakan dig:
dig google.com
; <<>> DiG 9.11.4-P2-RedHat-9.11.4-9.P2.el7 <<>> google.com
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 44100
;; flags: qr rd ra; QUERY: 1, ANSWER: 6, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;google.com. IN A
;; ANSWER SECTION:
google.com. 1 IN A 74.125.24.113
google.com. 1 IN A 74.125.24.139
google.com. 1 IN A 74.125.24.102
google.com. 1 IN A 74.125.24.101
google.com. 1 IN A 74.125.24.100
google.com. 1 IN A 74.125.24.138
;; Query time: 0 msec
;; SERVER: 10.0.7.4#53(10.0.7.4)
;; WHEN: Thu Jan 02 15:47:54 WIB 2020
;; MSG SIZE rcvd: 135
dig delle4300.darto.com
; <<>> DiG 9.11.4-P2-RedHat-9.11.4-9.P2.el7 <<>> delle4300.darto.com
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 4879
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;delle4300.darto.com. IN A
;; ANSWER SECTION:
delle4300.darto.com. 86400 IN A 10.0.7.4
;; AUTHORITY SECTION:
darto.com. 86400 IN NS delle4300.darto.com.
;; Query time: 0 msec
;; SERVER: 10.0.7.4#53(10.0.7.4)
;; WHEN: Thu Jan 02 15:48:08 WIB 2020
;; MSG SIZE rcvd: 78Setting Adblock
wget -q -O adblock.hosts https://raw.githubusercontent.com/StevenBlack/hosts/master/alternates/fakenews-gambling-porn/hosts
cat adblock.hosts | grep '^0.0.0.0' | egrep -v '127.0.0.1|255.255.255.255|::1' | cut -d " " -f 2 >> adblock.temp
cat adblock.temp | egrep -v '^$|#' | sort | uniq > adblock.hosts
cat adblock.hosts | sed -r 's/(.*)/zone "\1" {type master; file "null.zone.file";};/' > adblock.zone
cp adblock.zone /var/named/
rm -rf adblock.hosts adblock.tempMembuat Null Zone
vim /var/named/null.zone.filedan copy paste berikut:
$TTL 86400 ; one day
@ IN SOA delle4300.darto.com. root.darto.com. (
2019122706 ;Serial
3600 ;Refresh
1800 ;Retry
604800 ;Expire
86400 ) ;Minimum TTL
NS delle4300.darto.com.
A 10.0.7.4
@ IN A 10.0.7.4
* IN A 10.0.7.4Dan tambahkan file diatas di ujung konfigurasi /etc/named.conf dengan perintah:
include "/var/named/adblock.zone";Kemudian restart DNS
systemctl restart namedDan ketika direstart akan agak sedikit lama karena harus memuat 58.622 records yang diambil dari StevenBlack, mungkin bisa bertambah recordsnya seiring dengan waktu.
Kemudian tinggal kita buat tampilan ketika mengunjungi salah satu domain atau website yang sudah diblokir.
vim /var/www/html/index.htmldan kemudian copy paste kode berikut:
<!DOCTYPE html><html><body><style>html,body{width:100%;height:100%;margin:0;padding:0;display:flex;align-items:center;justify-content:center}#denied{width:50vmin;height:50vmin;max-width:500px;max-height:500px}</style><svg version="1.0" id="denied" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px" y="0px" width="30%" viewBox="0 0 342.2 425.2" enable-background="new 0 0 342.2 425.2" xml:space="preserve"> <g> <rect x="0" y="0" fill="#FFFFFF" width="342.2" height="425.2"/> <radialGradient id="SVGID_1_" cx="1823.545" cy="57.8953" r="65.0696" gradientTransform="matrix(2.2656 0 0 0.2345 -3960.3254 366.8454)" gradientUnits="userSpaceOnUse"> <stop offset="0" style="stop-color:#808080"/> <stop offset="0.2486" style="stop-color:#A7A7A7"/> <stop offset="0.5902" style="stop-color:#D6D6D6"/> <stop offset="0.8517" style="stop-color:#F4F4F4"/> <stop offset="1" style="stop-color:#FFFFFF"/> </radialGradient> <path fill="url(#SVGID_1_)" d="M318.5,380.4c0,8.4-66,15.3-147.4,15.3c-81.4,0-147.4-6.8-147.4-15.3c0-8.4,66-15.3,147.4-15.3 C252.5,365.2,318.5,372,318.5,380.4z"/> </g> <g> <linearGradient id="SVGID_2_" gradientUnits="userSpaceOnUse" x1="43.3823" y1="212.5981" x2="298.8139" y2="212.5981"> <stop offset="0" style="stop-color:#808285"/> <stop offset="7.764819e-003" style="stop-color:#828486"/> <stop offset="0.201" style="stop-color:#ABADB0"/> <stop offset="0.3682" style="stop-color:#CBCDCF"/> <stop offset="0.5012" style="stop-color:#DFE0E1"/> <stop offset="0.5834" style="stop-color:#E6E7E8"/> <stop offset="0.985" style="stop-color:#A7A9AC"/> </linearGradient> <path fill="url(#SVGID_2_)" d="M294.9,81.6c-6.4-9.5-48.3-31.4-123.8-31.7C95.7,50.2,53.8,72.1,47.4,81.6 c-6.5,9.6-3.2,199.5-3.2,199.5c0,14.7,45,67,127,94.2c82-27.2,126.6-79.5,126.6-94.2C297.8,281.1,301.4,91.2,294.9,81.6z"/> <linearGradient id="SVGID_3_" gradientUnits="userSpaceOnUse" x1="46.8556" y1="212.5986" x2="295.3401" y2="212.5986"> <stop offset="0" style="stop-color:#808285"/> <stop offset="4.573045e-003" style="stop-color:#828486"/> <stop offset="0.1184" style="stop-color:#ABADB0"/> <stop offset="0.2168" style="stop-color:#CBCDCF"/> <stop offset="0.2952" style="stop-color:#DFE0E1"/> <stop offset="0.3436" style="stop-color:#E6E7E8"/> <stop offset="0.985" style="stop-color:#A7A9AC"/> </linearGradient> <path fill="url(#SVGID_3_)" d="M291.6,85.2c-6.2-9.3-46.9-30.5-120.4-30.8C97.7,54.6,57,75.9,50.8,85.2 c-6.3,9.3-3.2,194.1-3.2,194.1c0,14.3,43.8,65.2,123.6,91.6c79.7-26.4,123.2-77.3,123.2-91.6C294.4,279.2,297.9,94.5,291.6,85.2z" /> <linearGradient id="SVGID_4_" gradientUnits="userSpaceOnUse" x1="74.6461" y1="212.5986" x2="267.5513" y2="212.5986"> <stop offset="0" style="stop-color:#808285"/> <stop offset="1.331037e-002" style="stop-color:#828486"/> <stop offset="0.3445" style="stop-color:#ABADB0"/> <stop offset="0.6311" style="stop-color:#CBCDCF"/> <stop offset="0.8591" style="stop-color:#DFE0E1"/> <stop offset="1" style="stop-color:#E6E7E8"/> </linearGradient> <path fill="url(#SVGID_4_)" d="M264.6,113.7c-4.8-7.2-36.4-23.7-93.5-23.9c-57,0.2-88.6,16.7-93.5,23.9 c-4.9,7.2-2.5,150.7-2.5,150.7c0,11.1,34,50.6,95.9,71.1c61.9-20.5,95.6-60,95.6-71.1C266.8,264.3,269.5,120.9,264.6,113.7z"/> <radialGradient id="SVGID_5_" cx="171.8369" cy="208.1751" r="119.9509" gradientUnits="userSpaceOnUse"> <stop offset="0" style="stop-color:#ED1C24"/> <stop offset="0.5792" style="stop-color:#9C1421"/> <stop offset="1" style="stop-color:#76030E"/> </radialGradient> <path fill="url(#SVGID_5_)" d="M262.4,116c-4.7-7-35.6-23.1-91.2-23.3C115.5,92.9,84.7,109,79.9,116c-4.8,7.1-2.4,147.1-2.4,147.1 c0,10.8,33.2,49.4,93.6,69.4c60.4-20,93.4-58.6,93.4-69.4C264.5,263.1,267.2,123.1,262.4,116z"/> <defs> <filter id="Adobe_OpacityMaskFilter" filterUnits="userSpaceOnUse" x="82.2" y="99.3" width="177.3" height="130"> <feFlood style="flood-color:white;flood-opacity:1" result="back"/> <feBlend in="SourceGraphic" in2="back" mode="normal"/> </filter> </defs> <mask maskUnits="userSpaceOnUse" x="82.2" y="99.3" width="177.3" height="130" id="SVGID_6_"> <g filter="url(#Adobe_OpacityMaskFilter)"> <defs> <filter id="Adobe_OpacityMaskFilter_1_" filterUnits="userSpaceOnUse" x="82.2" y="99.3" width="177.3" height="130"> <feFlood style="flood-color:white;flood-opacity:1" result="back"/> <feBlend in="SourceGraphic" in2="back" mode="normal"/> </filter> </defs> <mask maskUnits="userSpaceOnUse" x="82.2" y="99.3" width="177.3" height="130" id="SVGID_6_"> <g filter="url(#Adobe_OpacityMaskFilter_1_)"> </g> </mask> <linearGradient id="SVGID_7_" gradientUnits="userSpaceOnUse" x1="129.4478" y1="65.2993" x2="193.6039" y2="239.9317"> <stop offset="0" style="stop-color:#FFFFFF"/> <stop offset="0.1186" style="stop-color:#D2D2D2"/> <stop offset="0.3652" style="stop-color:#797979"/> <stop offset="0.5663" style="stop-color:#383838"/> <stop offset="0.7116" style="stop-color:#0F0F0F"/> <stop offset="0.7866" style="stop-color:#000000"/> </linearGradient> <path mask="url(#SVGID_6_)" fill="url(#SVGID_7_)" d="M133.8,195c38.6-22.6,81.1-44,125.7-51.9c-0.4-11.9-1.1-20.2-2.1-21.7 c-4.5-6.6-33.6-21.8-86.2-22c-52.6,0.2-81.7,15.4-86.2,22c-3.1,4.6-3,68.4-2.6,107.9C98.5,216.5,115.9,205.4,133.8,195z"/> </g> </mask> <linearGradient id="SVGID_8_" gradientUnits="userSpaceOnUse" x1="129.4478" y1="65.2993" x2="193.6039" y2="239.9317"> <stop offset="0" style="stop-color:#FFFFFF"/> <stop offset="0.1186" style="stop-color:#FDD7C7"/> <stop offset="0.3652" style="stop-color:#F69274"/> <stop offset="0.5663" style="stop-color:#F15F43"/> <stop offset="0.7116" style="stop-color:#EE352A"/> <stop offset="0.7866" style="stop-color:#ED1C24"/> </linearGradient> <path fill="url(#SVGID_8_)" d="M133.8,195c38.6-22.6,81.1-44,125.7-51.9c-0.4-11.9-1.1-20.2-2.1-21.7c-4.5-6.6-33.6-21.8-86.2-22 c-52.6,0.2-81.7,15.4-86.2,22c-3.1,4.6-3,68.4-2.6,107.9C98.5,216.5,115.9,205.4,133.8,195z"/> </g> <g> <path fill="#FFFFFF" d="M171.1,128.3c0.2,0,0.4,0.2,0.5,0.4l50.2,90.7c0.2,0.4,0.2,0.8,0,1.2c-0.1,0.2-0.3,0.4-0.5,0.4H120.9 c-0.2,0-0.4-0.2-0.5-0.4c-0.2-0.4-0.2-0.8,0-1.2l50.2-90.7C170.7,128.5,170.9,128.3,171.1,128.3 M171.1,120c-3.2,0-6.2,1.8-7.8,4.7 l-50.2,90.7c-1.6,2.9-1.6,6.4,0,9.3c1.6,2.9,4.6,4.6,7.8,4.6h100.4c3.2,0,6.2-1.8,7.8-4.6c1.6-2.9,1.6-6.4,0-9.3l-50.2-90.7 C177.3,121.8,174.3,120,171.1,120L171.1,120z"/> <g> <path fill="#FFFFFF" d="M182.3,204.9c0,5.7-4.6,6.7-10.3,6.7h-9.4c-5.7,0-10.3-4-10.3-9.7v-10.7c0-5.7,4.6-9.8,10.3-9.8h9.4 c5.7,0,10.3,4.2,10.3,9.8V204.9z"/> <path fill="#FFFFFF" d="M158.5,191.3c0,1.7-1.4,0.6-3.1,0.6l0,0c-1.7,0-3.1,1.1-3.1-0.6v-20.4c0-1.7,1.4-3.1,3.1-3.1l0,0 c1.7,0,3.1,1.4,3.1,3.1V191.3z"/> <path fill="#FFFFFF" d="M166.4,186.4c0,1.7-1.4,3.1-3.1,3.1l0,0c-1.7,0-3.1-1.4-3.1-3.1v-20.4c0-1.7,1.4-3.1,3.1-3.1l0,0 c1.7,0,3.1,1.4,3.1,3.1V186.4z"/> <path fill="#FFFFFF" d="M174.4,181.5c0,1.7-1.4,3.1-3.1,3.1l0,0c-1.7,0-3.1-1.4-3.1-3.1V161c0-1.7,1.4-3.1,3.1-3.1l0,0 c1.7,0,3.1,1.4,3.1,3.1V181.5z"/> <path fill="#FFFFFF" d="M189.9,195c0,1.7-1.4,3.1-3.1,3.1l0,0c-1.7,0-3.1-1.4-3.1-3.1v-9.8c0-1.7,1.4-3.1,3.1-3.1l0,0 c1.7,0,3.1,1.4,3.1,3.1V195z"/> <path fill="#FFFFFF" d="M182.3,190.5c0,1.7-1.4,3.1-3.1,3.1l0,0c-1.7,0-3.1-1.4-3.1-3.1v-26.1c0-1.7,1.4-3.1,3.1-3.1l0,0 c1.7,0,3.1,1.4,3.1,3.1V190.5z"/> <path fill="#FFFFFF" d="M182.3,192.2c0,0,0.1,1,0.8,1c0.6,0,0.6-0.9,0.6-1.2s1.6,2.6,1.6,2.6s-3,4.3-3.3,4.2 C181.7,198.7,180,192.4,182.3,192.2z"/> <path fill="#FFFFFF" d="M178.8,197.7c0,0-3.5,13.7-0.3,13c2.1-0.4,5.8-3.5,8.3-6.8c3.3-4.4,3.1-9,3.1-9L178.8,197.7z"/> <path fill="#FFFFFF" d="M160.2,185.5v-4.6c0,0.5-0.4,0.9-0.9,0.9c-0.5,0-0.9-0.4-0.9-0.9v4.6H160.2z"/> <path fill="#FFFFFF" d="M168.2,185.1v-4.6c0,0.5-0.4,0.9-0.9,0.9c-0.5,0-0.9-0.4-0.9-0.9v4.6H168.2z"/> <path fill="#FFFFFF" d="M176.1,185.5v-4.6c0,0.5-0.4,0.9-0.9,0.9c-0.5,0-0.9-0.4-0.9-0.9v4.6H176.1z"/> </g> </g> <g> <g> <path fill="#FFFFFF" d="M140.7,247.4l2.1,10.7c0.2,0.8,0.3,1.4,0.4,1.7c0.1,0.3,0.2,0.6,0.3,0.8c0.1,0.2,0.3,0.3,0.5,0.4v2.9h-6.5 V261c0.4-0.1,0.6-0.4,0.6-0.9c0-0.2,0-0.4,0-0.5h-2.5c0,0,0,0.2-0.1,0.5c0.1,0.5,0.3,0.8,0.7,0.9v2.9h-5.7V261 c0.2-0.2,0.4-0.4,0.5-0.7c0.1-0.3,0.2-0.7,0.3-1.2l2.2-11.7H140.7z M137.6,256.4l-0.9-4.9l0,0l-0.8,4.9H137.6z"/> <path fill="#FFFFFF" d="M151.9,253.4l0-1.5c0-0.5-0.1-0.8-0.2-1s-0.4-0.3-0.7-0.3c-0.6,0-0.9,0.4-0.9,1.3v7.5c0,0.5,0.1,0.8,0.2,1 c0.2,0.2,0.4,0.3,0.7,0.3c0.4,0,0.6-0.1,0.7-0.3c0.1-0.2,0.2-0.5,0.2-0.9V257h5v5.5c-0.6,0.5-1.2,0.8-1.9,1.1 c-0.7,0.3-1.4,0.4-2,0.5c-0.7,0.1-1.3,0.2-1.9,0.2c-1.4,0-2.6-0.2-3.5-0.6c-0.9-0.4-1.6-0.9-2-1.7c-0.4-0.8-0.6-1.7-0.6-2.9v-7.2 c0-3.2,2-4.8,6-4.8c0.8,0,1.5,0.1,2.3,0.3c0.8,0.2,1.5,0.4,2.1,0.7c0.6,0.3,1.2,0.6,1.7,0.9v4.6H151.9z"/> <path fill="#FFFFFF" d="M165.4,253.4l0-1.5c0-0.5-0.1-0.8-0.2-1c-0.2-0.2-0.4-0.3-0.7-0.3c-0.6,0-0.9,0.4-0.9,1.3v7.5 c0,0.5,0.1,0.8,0.2,1c0.2,0.2,0.4,0.3,0.7,0.3c0.4,0,0.6-0.1,0.7-0.3c0.1-0.2,0.2-0.5,0.2-0.9V257h5v5.5c-0.6,0.5-1.2,0.8-1.9,1.1 c-0.7,0.3-1.4,0.4-2,0.5c-0.7,0.1-1.3,0.2-1.9,0.2c-1.4,0-2.6-0.2-3.5-0.6c-0.9-0.4-1.6-0.9-2-1.7c-0.4-0.8-0.6-1.7-0.6-2.9v-7.2 c0-3.2,2-4.8,6-4.8c0.8,0,1.5,0.1,2.3,0.3c0.8,0.2,1.5,0.4,2.1,0.7c0.6,0.3,1.2,0.6,1.7,0.9v4.6H165.4z"/> <path fill="#FFFFFF" d="M171.9,247.4h12.4v5.6h-4.7v-0.5c0-0.4,0-0.8-0.1-1c-0.1-0.2-0.3-0.4-0.5-0.4c-0.3-0.1-0.7-0.1-1.2-0.1v3 h3.2v3.2h-3.2v3.3c0.4,0,0.8,0,1-0.1c0.2,0,0.4-0.1,0.5-0.2c0.1-0.1,0.2-0.3,0.3-0.5c0.1-0.2,0.1-0.5,0.1-0.9v-0.8h4.7v6h-12.4 V261c0.2-0.1,0.4-0.3,0.5-0.6c0.1-0.2,0.1-0.5,0.1-0.9v-0.2v-7.7c0-0.3,0-0.6-0.1-0.8c-0.1-0.2-0.2-0.4-0.4-0.5V247.4z"/> <path fill="#FFFFFF" d="M185.5,258.1h5.1v0.7c0,0.1,0,0.2,0,0.3c0,0.5,0.1,0.9,0.2,1.2c0.1,0.3,0.4,0.4,0.8,0.4 c0.3,0,0.5-0.1,0.7-0.4c0.2-0.2,0.3-0.6,0.3-1c0-0.1,0-0.2,0-0.3c0-0.1,0-0.2,0-0.3c-0.1-0.5-0.3-0.8-0.7-1 c-0.3-0.2-0.9-0.4-1.8-0.6c-0.9-0.2-1.6-0.5-2.3-0.7c-0.7-0.3-1.3-0.7-1.7-1.1c-0.4-0.5-0.6-0.9-0.7-1.4c-0.1-0.5-0.2-1.2-0.2-2 c0-3.3,1.9-4.9,5.8-4.9c2.3,0,4.4,0.6,6.3,1.7v3.9h-4.8v-0.6c0-0.9-0.3-1.4-0.9-1.5c-0.7,0-1.1,0.3-1.1,1c0,0.4,0.1,0.7,0.2,0.9 c0.2,0.2,0.5,0.4,1.2,0.6c0.1,0,0.5,0.1,1.1,0.3c0.6,0.2,1.1,0.3,1.5,0.5c0.4,0.1,0.7,0.3,1,0.4c0.5,0.3,0.9,0.5,1.3,0.9 c0.3,0.3,0.6,0.8,0.8,1.3c0.2,0.6,0.3,1.3,0.3,2.2c0,1.6-0.5,2.9-1.3,3.7c-0.5,0.6-1.3,1-2.2,1.3c-0.9,0.3-1.9,0.4-3.1,0.4 c-2.5-0.1-4.4-0.6-5.9-1.7V258.1z"/> <path fill="#FFFFFF" d="M199.5,258.1h5.1v0.7c0,0.1,0,0.2,0,0.3c0,0.5,0.1,0.9,0.2,1.2c0.1,0.3,0.4,0.4,0.8,0.4 c0.3,0,0.5-0.1,0.7-0.4c0.2-0.2,0.3-0.6,0.3-1c0-0.1,0-0.2,0-0.3c0-0.1,0-0.2,0-0.3c-0.1-0.5-0.3-0.8-0.7-1 c-0.3-0.2-0.9-0.4-1.8-0.6c-0.9-0.2-1.6-0.5-2.3-0.7c-0.7-0.3-1.3-0.7-1.7-1.1c-0.4-0.5-0.6-0.9-0.7-1.4c-0.1-0.5-0.2-1.2-0.2-2 c0-3.3,1.9-4.9,5.8-4.9c2.3,0,4.4,0.6,6.3,1.7v3.9h-4.8v-0.6c0-0.9-0.3-1.4-0.9-1.5c-0.7,0-1.1,0.3-1.1,1c0,0.4,0.1,0.7,0.2,0.9 c0.2,0.2,0.5,0.4,1.2,0.6c0.1,0,0.5,0.1,1.1,0.3c0.6,0.2,1.1,0.3,1.5,0.5c0.4,0.1,0.7,0.3,1,0.4c0.5,0.3,0.9,0.5,1.3,0.9 c0.3,0.3,0.6,0.8,0.8,1.3c0.2,0.6,0.3,1.3,0.3,2.2c0,1.6-0.5,2.9-1.3,3.7c-0.5,0.6-1.3,1-2.2,1.3c-0.9,0.3-1.9,0.4-3.1,0.4 c-2.5-0.1-4.4-0.6-5.9-1.7V258.1z"/> </g> <g> <path fill="#FFFFFF" d="M130.5,269.3h8.2c1.2,0,2.2,0.2,3,0.5c0.8,0.4,1.4,0.9,1.8,1.6c0.4,0.7,0.6,1.6,0.6,2.7v7.8 c0,0.8-0.2,1.6-0.5,2.3c-0.3,0.7-0.9,1.3-1.7,1.8c-0.8,0.5-1.9,0.7-3.2,0.7h-8.2v-3.1c0.3-0.1,0.5-0.3,0.6-0.6 c0.1-0.2,0.1-0.6,0.1-1v-8.2c0-0.4,0-0.8-0.1-1c-0.1-0.2-0.3-0.4-0.6-0.5V269.3z M136.7,273.1v9.9h0.7c0.4,0,0.8-0.1,1-0.3 c0.2-0.2,0.3-0.6,0.3-1.3v-6.7c0-0.7-0.1-1.1-0.4-1.3c-0.2-0.2-0.6-0.3-1.1-0.3h0.1H136.7z"/> <path fill="#FFFFFF" d="M145.6,269.3h13.1v5.9h-5v-0.6c0-0.5,0-0.8-0.1-1c-0.1-0.2-0.3-0.4-0.6-0.5c-0.3-0.1-0.7-0.1-1.3-0.1v3.1 h3.4v3.4h-3.4v3.5c0.5,0,0.8,0,1-0.1c0.2,0,0.4-0.1,0.5-0.2c0.1-0.1,0.2-0.3,0.3-0.5c0.1-0.2,0.1-0.6,0.1-1v-0.8h5v6.3h-13.1v-3.1 c0.2-0.1,0.4-0.3,0.5-0.6c0.1-0.2,0.1-0.5,0.1-0.9V282v-8.2c0-0.4,0-0.6-0.1-0.8c-0.1-0.2-0.2-0.4-0.5-0.5V269.3z"/> <path fill="#FFFFFF" d="M160,269.3h5.9l3,7.9h0v-3.5c0-0.6-0.2-1-0.6-1.3v-3.1h5.6v3.1c-0.2,0.1-0.4,0.3-0.5,0.5 c-0.1,0.2-0.1,0.5-0.1,0.8v13.1h-5.3l-3.2-7.8h-0.1v3c0,0.5,0,0.9,0.1,1.1c0.1,0.2,0.2,0.4,0.5,0.6v3.1H160v-3.1 c0.2-0.1,0.4-0.3,0.5-0.4c0.1-0.1,0.1-0.4,0.1-0.9v-8.1v-0.5c0-0.3,0-0.6-0.1-0.8c-0.1-0.2-0.2-0.4-0.5-0.5V269.3z"/> <path fill="#FFFFFF" d="M175.7,269.3h6.6v3.1c-0.2,0.1-0.3,0.3-0.4,0.4c-0.1,0.1-0.1,0.3-0.1,0.4c0,0.2,0,0.5,0,0.9v7.8 c0,0.6,0,1,0.1,1.1c0.1,0.2,0.2,0.4,0.5,0.7v3.1h-6.6l0-3.1c0.2-0.2,0.4-0.3,0.5-0.5c0.1-0.2,0.1-0.5,0.1-0.8v-0.6v-7.6v-0.4 c0-0.6-0.2-1.1-0.6-1.3V269.3z"/> <path fill="#FFFFFF" d="M183.8,269.3h13.1v5.9h-5v-0.6c0-0.5,0-0.8-0.1-1c-0.1-0.2-0.3-0.4-0.6-0.5c-0.3-0.1-0.7-0.1-1.3-0.1v3.1 h3.4v3.4H190v3.5c0.5,0,0.8,0,1-0.1c0.2,0,0.4-0.1,0.5-0.2c0.1-0.1,0.2-0.3,0.3-0.5c0.1-0.2,0.1-0.6,0.1-1v-0.8h5v6.3h-13.1v-3.1 c0.2-0.1,0.4-0.3,0.5-0.6c0.1-0.2,0.1-0.5,0.1-0.9V282v-8.2c0-0.4,0-0.6-0.1-0.8c-0.1-0.2-0.2-0.4-0.5-0.5V269.3z"/> <path fill="#FFFFFF" d="M198.1,269.3h8.2c1.2,0,2.2,0.2,3,0.5c0.8,0.4,1.4,0.9,1.8,1.6c0.4,0.7,0.6,1.6,0.6,2.7v7.8 c0,0.8-0.2,1.6-0.5,2.3c-0.3,0.7-0.9,1.3-1.7,1.8c-0.8,0.5-1.9,0.7-3.2,0.7h-8.2v-3.1c0.3-0.1,0.5-0.3,0.6-0.6 c0.1-0.2,0.1-0.6,0.1-1v-8.2c0-0.4,0-0.8-0.1-1c-0.1-0.2-0.3-0.4-0.6-0.5V269.3z M204.2,273.1v9.9h0.7c0.4,0,0.8-0.1,1-0.3 c0.2-0.2,0.3-0.6,0.3-1.3v-6.7c0-0.7-0.1-1.1-0.4-1.3c-0.2-0.2-0.6-0.3-1.1-0.3h0.1H204.2z"/> </g> </g> </svg></body></html>
