IMPLEMENTASI DIFFERENTIATED SERVICES PADA JARINGAN VPN-MPLS UNTUK APLIKASI VIDEO CONFERENCE

IMPLEMENTASI DIFFERENTIATED SERVICES PADA JARINGAN VPN-MPLS UNTUK APLIKASI VIDEO CONFERENCE

TUGAS AKHIR Diajukan Untuk Memenuhi Persyaratan Guna Meraih Gelar Sarjana Strata 1 Teknik Informatika Universitas Muhammadiyah Malang

Disusun Oleh : NANDITO MONLIEV PASSA 09560222

JURUSAN TEKNIK INFORMATIKA FAKULTAS TEKNIK UNIVERSITAS MUHAMMADIYAH MALANG 2013

LEMBAR PENGESAHAN

IMPLEMENTASI DIFFERENTIATED SERVICES PADA JARINGAN VPN-MPLS UNTUK APLIKASI VIDEO CONFERENCE TUGAS AKHIR Diajukan Untuk Memenuhi Persyaratan Guna Meraih Gelar Sarjana Strata 1 Teknik Informatika Universitas Muhammadiyah Malang Disusun Oleh : NANDITO MONLIEV PASSA 09560222 Tugas Akhir ini telah diuji dan dinyatakan lulus oleh tim penguji pada tanggal 26 Oktober 2013 Mengetahui/Menyetujui

KATA PENGANTAR Allhamdulillah, segala puji bagi Allah SWT yang telah memberi petunjuk dan serta melancarkan jalan sehingga penulis dapat menyelesaikan tugas akhir yang berjudul: “IMPLEMENTASI DIFFERENTIATED SERVICES PADA JARINGAN VPN-MPLS UNTUK APLIKASI VIDEO CONFERENCE” Di dalam tulisan ini disajikan pokok-pokok bahasan yang meliputi perancangan sistem, penandaan paket pada Diffserv, penyampaian paket pada MPLS, enkripsi paket menjadi paket ESP, transmisi paket data pada topologi sistem, serta pengujian sistem yang telah dibuat. Penulis menyadari bahwa penelitian ini masih dari kesempurnaan. Oleh karena itu penulis mengaharapkan saran dan kritik yang membangun agar tulisan ini dapat bermanfaat bagi pengembangan ilmu pengetahuan kedepannya. Sistem ini juga masih membutuhkan pengembangan lebih lanjut sehingga dapat lebih bermanfaat. Akhir kata penulis mengucapkan terima kasih kepada semua pihak yang telah membantu hingga tugas akhir ini terselesaikan.

Malang, 27 Nopember 2013

Penulis

DAFTAR ISI ABSTRAK ..................................................................................................................... i ABSTRACT .................................................................................................................. ii LEMBAR PERSEMBAHAN ...................................................................................... iii KATA PENGANTAR.................................................................................................. iv DAFTAR ISI ................................................................................................................. v DAFTAR GAMBAR .................................................................................................. vii DAFTAR TABEL ........................................................................................................ ix BAB I ............................................................................................................................ 1 1.1

Latar Belakang ................................................................................................ 1

1.2

Rumusan Masalah........................................................................................... 2

1.3

Tujuan ............................................................................................................. 2

1.4

Batasan Masalah ............................................................................................. 2

1.5

Metodologi...................................................................................................... 3

BAB II ........................................................................................................................... 5 2.1

Video Conference ........................................................................................... 5

2.1.1

Teknologi Video Conference ................................................................... 5

2.1.2

Red5 ........................................................................................................ 6

2.1.3

Open Meetings ........................................................................................ 6

2.2

VPN ................................................................................................................ 7

2.2.1

Jenis Implementasi VPN ......................................................................... 8

2.2.2

Fungsi Utama Teknologi VPN ................................................................ 9

2.2.3

Enkripsi Data VPN ................................................................................ 10

2.2.4

Tunneling VPN ..................................................................................... 14

2.2.5

Protokol Tunneling ................................................................................ 15

2.3

MPLS ............................................................................................................ 18

2.3.1

MPLS Header ........................................................................................ 20

2.3.2

Arsitektur MPLS ................................................................................... 21

2.3.3

Istilah-Istilah dalam MPLS ................................................................... 22

2.3.4

Operasi pada MPLS .............................................................................. 23

2.4

Differentiated Services (Diffserv) ................................................................ 24

2.4.1

Arsitektur Differentiated Service .......................................................... 25

2.4.2

Diffserv Field......................................................................................... 26

2.4.3

Traffic Conditioning .............................................................................. 27

2.4.4

Per-Hop Behaviors (PHB) .................................................................... 28

2.5

Software Simulasi Jaringan .......................................................................... 30

2.5.1

Graphical Network Simulator (GNS3) ................................................. 31

2.5.2

Wireshark .............................................................................................. 33

BAB III ........................................................................................................................ 34 3.1

Spesifikasi dan Perancangan Sistem ............................................................. 34

3.1.1

Analisa Kebutuhan Sistem .................................................................... 34

3.1.2

Kebutuhan Hardware............................................................................. 36

3.1.3

Kebutuhan Software .............................................................................. 37

3.2

Implementasi Sistem..................................................................................... 38

3.2.1

Instalasi GNS3....................................................................................... 38

3.2.2

Konfigurasi Topologi Jaringan .............................................................. 39

3.2.3

Implementasi IPsec Tunnel Mode pada router PE ................................ 55

3.2.4

Implementasi Differentiated Services ................................................... 60

3.2.5

Instalasi Server Web Conference .......................................................... 65

BAB IV ....................................................................................................................... 71 4.1

Pengujian Fungsionalitas .............................................................................. 71

4.2

Pengujian Topologi MPLS Backbone .......................................................... 76

3.2.1

Skenario Pengujian MPLS pertama ...................................................... 76

3.2.2

Skenario Pengujian MPLS kedua .......................................................... 77

4.3

Pengujian Tunnel Jalur Backup .................................................................... 78

4.4

Pengujian protokol VPN ............................................................................... 80

3.3.1

Skenario pengujian VPN pertama ......................................................... 80

3.3.2

Skenario pengujian VPN kedua ............................................................ 81

4.5

Pengujian Implementasi Diffserv ................................................................. 83

4.4.1

Skenario pengujian diffserv pertama ..................................................... 83

4.4.2

Skenario kedua ...................................................................................... 86

4.4.3

Skenario ketiga ...................................................................................... 87

BAB V ......................................................................................................................... 89 5.1

Kesimpulan ................................................................................................... 89

5.2

Saran ............................................................................................................. 90

DAFTAR PUSTAKA ................................................................................................. 91

DAFTAR GAMBAR Gambar 2. 1 Skema Tunneling Pada Vpn ..................................................................... 7 Gambar 2. 2 Remote Access Vpn, Site-To-Site Vpn .................................................... 9 Gambar 2. 3 Contoh Konsep Dasar Mpls ................................................................... 20 Gambar 2. 4 Mpls Header ........................................................................................... 21 Gambar 2. 5 Control Plane Dan Data Plane Pada Router ........................................... 22 Gambar 2. 6 Ilustrasi Diffserv Routing ....................................................................... 25 Gambar 2. 7 Arsitektur Diffserv ................................................................................. 26 Gambar 2. 8 Struktur Header IP dan DS Field ............................................................ 27 Gambar 2. 9 Komponen Traffic Conditioner .............................................................. 28 Gambar 2. 10 Assured Forwarding (Af) Behaviour Grup........................................... 29

Gambar 3. 1 Ilustrasi Jaringan Yang Akan Dibangun ................................................ 35 Gambar 3. 2 Tampilan Awal Gns3.............................................................................. 39 Gambar 3. 3 Topologi Jaringan Vpn-Mpls Pada Gns3 ............................................... 40 Gambar 3. 4 Hasil Show Mpls Ldp Neighbor ............................................................. 47 Gambar 3. 5 Hasil Show Ip Bgp Summary ................................................................. 48 Gambar 3. 6 Hasil Ping Dari Router Ce1a Ke Ce2b ................................................... 50 Gambar 3. 7 Hasil Ping Dari Router Ce2b Ke Ce1a ................................................... 50 Gambar 3. 8 Hasil Show Ip Route Ce1a ..................................................................... 54 Gambar 3. 9 Hasil Show Ip Route Ce2b ..................................................................... 54 Gambar 3. 10 Hasil Show Ip Route Vrf Client Pada Pe1 ........................................... 55 Gambar 3. 11 Hasil Show Ip Route Vrf Client Pada Pe2 ........................................... 55 Gambar 3. 12 Hasil Show Crypto Isakmp Policy Pe1a ............................................... 57 Gambar 3. 13 Hasil Show Crypto Isakmp Policy Pe2b .............................................. 57 Gambar 3. 14 Hasil Show Access-List Pe2b............................................................... 58 Gambar 3. 15 Hasil Show Access-List Pe2b............................................................... 58 Gambar 3. 16 Hasil Show Crypto Ipsec Transform-Set Pe1b..................................... 58 Gambar 3. 17 Hasil Show Crypto Ipsec Transform-Set Pe2b..................................... 59 Gambar 3. 18 Hasil Show Crypto Map Pe1a .............................................................. 59 Gambar 3. 19 Hasil Show Crypto Map Pe2b .............................................................. 60 Gambar 3. 20 Pengelompokan Kelas Dscp-Phb ......................................................... 61

Gambar 3. 21 Class-Map Yang Aktif Pada Router Ce................................................ 64 Gambar 3. 22 Header Video Conference Dengan Kode Dscp .................................... 64 Gambar 3. 23 Header Paket Ftp Dengan Dscp 0x16 – Af23 ...................................... 64 Gambar 3. 24 Proses Konfigurasi Java_Home Di Sisi Os .......................................... 66 Gambar 3. 25 Proses Konfigurasi Ant_Home Di Sisi Os ........................................... 66 Gambar 3. 26 Pengecekan Ffmpeg Version ................................................................ 67 Gambar 3. 27 Konfigurasi Database Pada Mysql ....................................................... 68 Gambar 3. 28 Proses Download File Instalasi Openmeetings .................................... 68 Gambar 3. 29 Proses Compile File Instalasi Openmeetings ....................................... 69 Gambar 3. 30 Proses Compile File Instalasi Openmeetings ....................................... 70 Gambar 3. 31 Tampilan Menu Login Openmeeting ................................................... 70 Gambar 3. 32 Tampilan Dashboard Openmeeting ...................................................... 70

Gambar 4. 1 Show Mpls Interface .............................................................................. 76 Gambar 4. 2 Hasil Capture Paket ................................................................................ 77 Gambar 4. 3 Hasil Pengujian Topologi Mpls .............................................................. 77 Gambar 4. 4 Hasil Pengukuran Troughput Menggunakan Iperf ................................. 78 Gambar 4. 5 Traffic video conference ketika jalur utama dimatikan ………………..79 Gambar 4. 6 Traceroute paket melewati jalur utama dan jalur backup ….…………..79 Gambar 4. 7 Capture paket video sebelum enkripsi ………………………………...80 Gambar 4. 8 Capture paket video sesudah enkripsi …………..……………………..81 Gambar 4. 9 Hasil Pengukuran Bandwidth Menggunakan Iperf................................. 82 Gambar 4. 10 Hasil Pengujian Iperf Sebelum Implementasi Diffserv ........................ 83 Gambar 4. 11 Hasil Pengujian Iperf Sesudah Implementasi Diffserv ........................ 83 Gambar 4. 12 Variasi Jitter Sebelum Dan Sesudah Implementasi Diffserv ............... 84 Gambar 4. 13 Variasi Packet Loss Sebelum Dan Sesudah Diffserv ........................... 85 Gambar 4. 14 Pengukuran Alokasi Sumberdaya Jaringan .......................................... 86 Gambar 4. 15 Pengukuran Alokasi Sumberdaya Jaringan .......................................... 87

DAFTAR TABEL Tabel 3. 1 Pembagian Router ...................................................................................... 40 Tabel 3. 2 Konfigurasi Ip Pada Router Customer Edge .............................................. 41 Tabel 3. 3 Konfigurasi Ip Pada Router Provider Edge ................................................ 41 Tabel 3. 4 Konfigurasi Ip Pada Router Provider Jalur Utama .................................... 41 Tabel 3. 5 Konfigurasi Ip Pada Router Provider Jalur Backup ................................... 41 Tabel 3. 6 Konfigurasi Ip Pada Perangkat Client ........................................................ 41 Tabel 3. 7 Pengelompokan Kelas Qos ........................................................................ 62

Tabel 3. 1 Pembagian Router ...................................................................................... 40 Tabel 3. 2 Konfigurasi Ip Pada Router Customer Edge .............................................. 41 Tabel 3. 3 Konfigurasi Ip Pada Router Provider Edge ................................................ 41 Tabel 3. 4 Konfigurasi Ip Pada Router Provider Jalur Utama .................................... 41 Tabel 3. 5 Konfigurasi Ip Pada Router Provider Jalur Backup ................................... 41 Tabel 3. 6 Konfigurasi Ip Pada Perangkat Client ........................................................ 41 Tabel 3. 7 Pengelompokan Kelas Qos ........................................................................ 62

Tabel 4. 1 Pengujian Fungsionalitas Sistem Jaringan ................................................. 72 Tabel 4. 2 Pengujian Fungsionalitas Admin Video ..................................................... 73 Tabel 4. 3 Pengujian Fungsionalitas Client Video ...................................................... 74 Tabel 4. 4 Pengujian Fungsionalitas Konferensi Video .............................................. 75 Tabel 4. 5 Cisco Recommended Performance Threshold ........................................... 85 Tabel 4. 6 Pengujian Troughput Masing-Masing Protokol ......................................... 87

DAFTAR PUSTAKA

Abdusyakur, I. (2011). Peningkatan Kualitas Audio-Video Streaming pada Layanan Kelas Virtual di Pedesaan dengan Differentiated Services. Institut Teknologi Bandung. Anonymous. (2013). Cisco IOS Enterprise VPN Configfuration Guide. Site-to-Site and Extranet VPN Bussiness Scenario (chapter3). Chadda, A. (2004). Quality of Services Testing Methodology. B.E., University of Mumbay, India. Cisco. (2005, Agustus). The Scalable End-to-End QoS Model. Retrieved September 03, 2013, from Cisco System Inc.: http://www.cisco.com/en/US/technologies/tk543/tk766/technologies_white_pa per09186a00800a3e2f_ps6610_Products_White_Paper.html Dewannanta, D. (2013, Februari 18). Backbone MPLS. Retrieved Juni 1, 2013, from jarkom INDONESIA: http://jarkomindonesia.wordpress.com/2013/02/18/backbone-mpls/ Dewannanta, D. (2013, Februari 17). Jaringan MPLS Traffic Engineering. Retrieved Juni 1, 2013, from jarkom INDONESIA: http://jarkomindonesia.wordpress.com/2013/02/17/mpls-traffic-engineeringserial/ Djohan, Y. (2012, April 13). IPSec Tunneling via MPLS L3VPN. Retrieved September 12, 2013, from http://yudidjohan.wordpress.com/2012/04/13/ipsectunneling-via-mpls-l3vpn/ Glass, C. (2013). MPLS and BGP Lab Guide, Part 3. Retrieved September 11, 2013, from AlwaysTheNetwork: http://blog.alwaysthenetwork.com/tutorials/mplsand-bgp-lab-guide-part-3/ Gustaf Ardana, S. H. (2012). Kinerja Traffic Conditioner Diffserv Berbasis Token dan Time Sliding Windows. Institur Teknologi Bandung. Hidayat, R. (2013). Kuliah Jaringan Komputer - Konsep IPSec. Retrieved Oktober 1, 2013, from Opensource Telkom Speedy: http://opensource.telkomspeedy.com/wiki/index.php/Konsep_IPSec Cisco System. (2006). Cisco System Learning . Implementing Secure Converged Wide Area Network (Volume1). Cisco System. (2011, Maret 22). Overview of DiffServ for Quality of Service. Retrieved September 10, 2013, from Cisco. Cisco System. (2013, September 03). Cisco IOS Enterprise VPN Conviguration Guide. Network Design Consideration.

Jdugan, m. (2013). Iperf - modern alternative for measuring maximum TCP and UDP bandwidth performance. Retrieved Oktober 02, 2013, from sourceforge: http://sourceforge.net/projects/iperf/ Lakshman, U. (2005). MPLS Configuration on Cisco IOS Software. Cisco System Inc. Molenaar, R. (2013, April 10). Encrypted GRE Tunnel with IPSEC. Retrieved September 28, 2013, from Network Lesson: http://networklessons.com/security/encrypted-gre-tunnel-with-ipsec/ Permadi, R. A. (2009). Implementasi Differentiated Services pada Jaringan MPLS untuk Rural Next Generation Network. Institut Teknologi Bandung. S, G. (2009). Analisa Perbandingan QoS - Pengaruh Implementasi Enkripsi 3DES dan AES pada MPLS-VPN untuk Layanan IP-Based Video Telephony. Fakultas Teknik Elektro Universitas Indonesia. Saputro, J. (2010). Proktikum CCNA di Komputer Sendiri menggunakan GNS3. Jakarta: TransMedia. Setiawan, D. (n.d.). Alternatif HW VPN WAN. Retrieved September 1, 2013, from http://deris.unsri.ac.id System, C. (2013). Implementing Diffserv for End-to-End Quality of Service Overview. Retrieved September 15, 2013, from Cisco IOS QoS Solution Configuration Guide. System, C. (2013). IPSec VPN QoS Design. Retrieved September 16, 2013, from Enterprise QoS Solution Reference Network Design Guide. Wastuwibowo, K. (2003). Jaringan MPLS Whitepaper. Versi 1.2. Weng, N. (2013). Network Traffic Monitoring and Performance Measurement. Wiggwire. (2009, Juli 21). QOS Priority Levels. Retrieved Agustus 28, 2013, from Routing-bits: http://routing-bits.com/2009/07/21/qos-priority-levels/

IMPLEMENTASI DIFFERENTIATED SERVICES PADA JARINGAN VPN-MPLS UNTUK APLIKASI VIDEO CONFERENCE

Recommend Documents