{"id":86,"date":"2011-02-09T15:03:34","date_gmt":"2011-02-09T15:03:34","guid":{"rendered":"http:\/\/gigihfordanama.wordpress.com\/?p=86"},"modified":"2012-08-08T00:15:34","modified_gmt":"2012-08-08T00:15:34","slug":"openvpn-with-freebsd-pf-and-windows-xp-as-client","status":"publish","type":"post","link":"https:\/\/dosen.unila.ac.id\/gigih\/2011\/02\/09\/openvpn-with-freebsd-pf-and-windows-xp-as-client\/","title":{"rendered":"OpenVPN with FreeBSD, PF and Windows XP as Client"},"content":{"rendered":"

Apa itu VPN :<\/p>\n

Menurut IETF, Internet Engineering Task Force, VPN is an emulation of [a] private Wide Area Network(WAN) using shared or public IP facilities, such as the Internet or private IP backbones.VPN merupakan suatu bentuk private internet yang melalui public network (internet), dengan menekankan pada keamanan data dan akses global melalui internet. Hubungan ini dibangun melalui suatu tunnel (terowongan) virtual antara 2 node.<\/p>\n

Access VPN memungkinkan pengguna untuk mengakses resource suatu network kapanpun dan dimanapun mereka berada. Access VPN mencakup jalur analog, ISDN, digital subcriber line (DSL), mobile IP dan berbagai teknologi kabel tersebut dapat dipisahkan menjadi tiga jenis, yaitu:
\n1. Client-Initiated,
\n2. Remote Router-Initiated,
\n3. Network Access Server (NAS)-Initiated.
\nJust That,….. lets implemented our VPN server
\nThis howto is a quick a dirty guide to building OpenVPN on a FreeBSD box (running pf as the firewall), and then connecting a Windows XP client to it.<\/p>\n

1. #cd \/usr\/ports\/security\/openvpn
\n2. #make config
\n3. #make build
\n4. #make install clean<\/p>\n

And Then just modified your rc.conf file\u00a0 on \/etc\/rc.conf<\/p>\n

openvpn_enable=”YES”
\nNow we going to create the config files, which we will place in \/usr\/local\/etc\/openvpn<\/p>\n

#mkdir \/usr\/local\/etc\/openvpn
\n#cd\u00a0 \/usr\/local\/etc\/openvpn<\/p>\n

#vi\u00a0 openvpn.conf<\/p>\n

Add This config to your openvpn.conf
\n***************** – – – – – – – *********************
\n# Specify device
\ndev tun
\n# Server dan client IP Pool
\nserver 10.8.0.0 255.255.255.0
\nifconfig-pool-persist ipp.txt<\/p>\n

# Certificates untuk VPN Authentication
\nca \/usr\/local\/etc\/openvpn\/keys\/ca.crt
\ncert \/usr\/local\/etc\/openvpn\/keys\/server.crt
\nkey \/usr\/local\/etc\/openvpn\/keys\/server.key
\ndh \/usr\/local\/etc\/openvpn\/keys\/dh1024.pem<\/p>\n

# Routes untuk client
\npush “route 192.168.0.0 255.255.255.0″<\/p>\n

# compression VPN link
\ncomp-lzo<\/p>\n

#keepalive 10 60
\nping-timer-rem
\npersist-tun
\npersist-key<\/p>\n

# Run OpenVPN sebagai daemon dan drop privileges ke user\/group nobody user nobody
\ngroup nobody
\ndaemon
\n***************** – – – – – – – *********************<\/p>\n

OK Beres,
\nSekarang tinggal bikin Certificate caranya
\n#cp -r \/usr\/local\/share\/doc\/openvpn\/easy-rsa ~gigih\/
\n#cd ~gigih\/easyrsa<\/p>\n

Modif dikit file vars
\n#vi vars<\/p>\n

1. export KEY_COUNTRY=ID
\n2. export KEY_PROVINCE=”LAMPUNG”
\n3. export KEY_CITY=LAMPUNG
\n4. export KEY_ORG=”VPN-SERV”
\n5. export KEY_EMAIL=” \/\/ <![CDATA[<\/p>\n

var prefix = 'ma' + 'il' + 'to';
\nvar path = 'hr' + 'ef' + '=';
\nvar addy50153 = 'admin_katro' + '@';
\naddy50153 = addy50153 + 'unila' + '.' + 'ac' + '.' + 'id';
\ndocument.write( '‘ );
\ndocument.write( addy50153 );
\ndocument.write( ” );
\n\/\/ ]]>admin_katro@unila.ac.id<\/a>
\nThis email address is being protected from spam bots, you need Javascript enabled to view it
\n”<\/p>\n

untuk create sertificate via easy-rsa, mesti pake set mode bourne shell, just type<\/p>\n

# sh<\/p>\n

And Then we’ll going to generate certificate & Key for server<\/p>\n

# . vars
\nNOTE: when you run .\/clean-all, I will be doing a rm -rf on \/usr\/home\/gigih\/easy-rsa\/keys
\n# .\/clean-all
\n# .\/build-ca
\nGenerating a 1024 bit RSA private key
\n. ………………………………++++++
\n. …………..++++++
\n. writing new private key to ‘ca.key’
\n. —–
\nYou are about to be asked to enter information that will be incorporated
\ninto your certificate request.
\nWhat you are about to enter is what is called a Distinguished Name or a DN.
\nThere are quite a few fields but you can leave some blank
\nFor some fields there will be a default value,
\nIf you enter ‘.’, the field will be left blank.
\n—–
\nCountry Name (2 letter code) [ID]:
\nState or Province Name (full name) [LAMPUNG]:
\nLocality Name (eg, city) [LAMPUNG]:
\nOrganization Name (eg, company) [VPN-SERV]:
\nOrganizational Unit Name (eg, section) []:
\nCommon Name (eg, your name or your server’s hostname) []:
\nEmail Address [ \/\/ <![CDATA[<\/p>\n

var prefix = 'ma' + 'il' + 'to';
\nvar path = 'hr' + 'ef' + '=';
\nvar addy50153 = 'admin_katro' + '@';
\naddy50153 = addy50153 + 'unila' + '.' + 'ac' + '.' + 'id';
\ndocument.write( '‘ );
\ndocument.write( addy50153 );
\ndocument.write( ” );
\n\/\/ ]]>admin_katro@unila.ac.id<\/a>
\nThis email address is being protected from spam bots, you need Javascript enabled to view it
\n]:<\/p>\n

Jika dah beres tinggal generate aja key server dengan mengikuti langkah berikut<\/p>\n

# .\/build-key-server server
\nGenerating a 1024 bit RSA private key
\n. ……….++++++
\n. …………………………………………..++++++
\nwriting new private key to ‘server.key’
\n—–
\nYou are about to be asked to enter information that will be incorporated
\ninto your certificate request.
\nWhat you are about to enter is what is called a Distinguished Name or a DN.
\nThere are quite a few fields but you can leave some blank
\nFor some fields there will be a default value,
\nIf you enter ‘.’, the field will be left blank.
\n—–
\nCountry Name (2 letter code) [ID]:
\nState or Province Name (full name) [LAMPUNG]:
\nLocality Name (eg, city) [LAMPUNG]:
\nOrganization Name (eg, company) [VPN-SERV]:
\nOrganizational Unit Name (eg, section) []:
\nCommon Name (eg, your name or your server’s hostname) []:SERVER\u00a0\u00a0 –>>>> Bagian yang Penting
\nEmail Address [ \/\/ <![CDATA[<\/p>\n

var prefix = 'ma' + 'il' + 'to';
\nvar path = 'hr' + 'ef' + '=';
\nvar addy50153 = 'admin_katro' + '@';
\naddy50153 = addy50153 + 'unila' + '.' + 'ac' + '.' + 'id';
\ndocument.write( '‘ );
\ndocument.write( addy50153 );
\ndocument.write( ” );
\n\/\/ ]]>admin_katro@unila.ac.id<\/a>
\nThis email address is being protected from spam bots, you need Javascript enabled to view it
\n]:<\/p>\n

Please enter the following ‘extra’ attributes
\nto be sent with your certificate request
\nA challenge password []:1234567
\nAn optional company name []:LAMPUNG
\nUsing configuration from \/usr\/home\/gigih\/easy-rsa\/openssl.cnf
\nCheck that the request matches the signature
\nSignature ok
\nThe Subject’s Distinguished Name is as follows
\ncountryName\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 :PRINTABLE:’ID’
\nstateOrProvinceName\u00a0\u00a0 :PRINTABLE:’LAMPUNG’
\nlocalityName\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 :PRINTABLE:’LAMPUNG’
\norganizationName\u00a0\u00a0\u00a0\u00a0\u00a0 :PRINTABLE:’VPN-SERVER’
\ncommonName\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 :PRINTABLE:’SERVER’
\nemailAddress\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 :IA5STRING:’ \/\/ <![CDATA[<\/p>\n

var prefix = 'ma' + 'il' + 'to';
\nvar path = 'hr' + 'ef' + '=';
\nvar addy50153 = 'admin_katro' + '@';
\naddy50153 = addy50153 + 'unila' + '.' + 'ac' + '.' + 'id';
\ndocument.write( '‘ );
\ndocument.write( addy50153 );
\ndocument.write( ” );
\n\/\/ ]]>admin_katro@unila.ac.id<\/a>
\nThis email address is being protected from spam bots, you need Javascript enabled to view it
\n@unila.ac.id’
\nCertificate is to be certified until Jun 26 10:04:29 2011 GMT (3650 days)
\nSign the certificate? [y\/n]:y
\n.
\n1 out of 1 certificate requests certified, commit? [y\/n]y
\nWrite out database with 1 new entries
\nData Base Updated<\/p>\n

Yups beres dah generate key buat server<\/p>\n

Sekarang kita mo buat key untuk client<\/p>\n

# .\/build-key client1
\nGenerating a 1024 bit RSA private key
\n. ………++++++
\n. ………………………………++++++
\nwriting new private key to ‘client1.key’
\n—–
\nYou are about to be asked to enter information that will be incorporated
\ninto your certificate request.
\nWhat you are about to enter is what is called a Distinguished Name or a DN.
\nThere are quite a few fields but you can leave some blank
\nFor some fields there will be a default value,
\nIf you enter ‘.’, the field will be left blank.
\n—–
\nCountry Name (2 letter code) [ID]:
\nState or Province Name (full name) [LAMPUNG]:
\nLocality Name (eg, city) [LAMPUNG]:
\nOrganization Name (eg, company) [VPN-SERV]:
\nOrganizational Unit Name (eg, section) []:
\nCommon Name (eg, your name or your server’s hostname) []:CLIENT1
\nEmail Address [ \/\/ <![CDATA[<\/p>\n

var prefix = 'ma' + 'il' + 'to';
\nvar path = 'hr' + 'ef' + '=';
\nvar addy50153 = 'admin_katro' + '@';
\naddy50153 = addy50153 + 'unila' + '.' + 'ac' + '.' + 'id';
\ndocument.write( '‘ );
\ndocument.write( addy50153 );
\ndocument.write( ” );
\n\/\/ ]]>admin_katro@unila.ac.id<\/a>
\nThis email address is being protected from spam bots, you need Javascript enabled to view it
\n]:<\/p>\n

Please enter the following ‘extra’ attributes
\nto be sent with your certificate request
\nA challenge password []:123456
\nAn optional company name []:LAMPUNG
\nUsing configuration from \/usr\/home\/gigih\/easy-rsa\/openssl.cnf
\nDEBUG[load_index]: unique_subject = “yes”
\nCheck that the request matches the signature
\nSignature ok
\nThe Subject’s Distinguished Name is as follows
\ncountryName\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 :PRINTABLE:’ID’
\nstateOrProvinceName\u00a0\u00a0 :PRINTABLE:LAMPUNG
\nlocalityName\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 :PRINTABLE:’LAMPUNG’
\norganizationName\u00a0\u00a0\u00a0\u00a0\u00a0 :PRINTABLE:’VPN-SERV’
\ncommonName\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 :PRINTABLE:’CLIENT1′
\nemailAddress\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 :IA5STRING:’ \/\/ <![CDATA[<\/p>\n

var prefix = 'ma' + 'il' + 'to';
\nvar path = 'hr' + 'ef' + '=';
\nvar addy50153 = 'admin_katro' + '@';
\naddy50153 = addy50153 + 'unila' + '.' + 'ac' + '.' + 'id';
\ndocument.write( '‘ );
\ndocument.write( addy50153 );
\ndocument.write( ” );
\n\/\/ ]]>admin_katro@unila.ac.id<\/a>
\nThis email address is being protected from spam bots, you need Javascript enabled to view it
\n‘
\nCertificate is to be certified until Jun 26 10:10:43 2017 GMT (3650 days)
\nSign the certificate? [y\/n]:y<\/p>\n

1 out of 1 certificate requests certified, commit? [y\/n]y
\nWrite out database with 1 new entries
\nData Base Updated<\/p>\n

Kalo mo Create key untuk client 2,\u00a0 3 dan seterusnya sama aja dengan langkah create client1
\nyang mesti diingat tinggal ubah Common Name nya<\/p>\n

Common Name (eg, your name or your server’s hostname) []:CLIENT1
\nmenjadi
\nCommon Name (eg, your name or your server’s hostname) []:CLIENT2<\/p>\n

sekarang tinggal generate dh, 1024 bit<\/p>\n

# .\/build-dh
\nGenerating DH parameters, 1024 bit long safe prime, generator 2
\nThis is going to take a long time
\n. …………………………………………………………………………..+……………..+……………..+……<\/p>\n

……………………………………………………………………………………………………………………+..+……….<\/p>\n

…………………………………………………………………+…………………………………………………..+……..<\/p>\n

………………….+………………………………………..+……………………………………+………..+…..<\/p>\n

………+…………………………………….++*++*++*<\/p>\n

# .\/build-dh Generating DH parameters, 1024 bit long safe prime, generator 2 This is going to take a long time …………………………………………………………………………..+……………..+……………..+………………….<\/p>\n

……………………………………………………………………………………………………..+..+……………..<\/p>\n

…………………………………………………………..+…………………………………………………..+…………..<\/p>\n

…………….+………………………………………..+……………………………………+………..+…………..+………..<\/p>\n

…………………………..++*++*++*<\/p>\n

sip dah beres, urusannya dengan key dan sercificate, tinggal kopiin key yang sudah digenerate tadi ke folder openvpn<\/p>\n

#cp -R keys \/usr\/local\/etc\/openvpn\/<\/p>\n

Tapi sebelumnya elu kudu musti modif dikit file syslog.conf<\/p>\n

#vi \/etc\/syslog.conf
\n—————**********———-<\/p>\n

!openvpn
\n.* \/var\/log\/openvpn.log<\/p>\n

—————**********———-<\/p>\n

#touch \/var\/log\/openvpn.log
\n#killall -HUP syslogd<\/p>\n

Jangan lupa mesti meload interface tun agar bisa digunakan si daemon openvpn, just type<\/p>\n

#kldload if_tun<\/p>\n

#kldload if_tap<\/p>\n

NOTE: error kldload: can\u2019t load if_tun, just Ignore …… \ud83d\ude42<\/p>\n

1. if_tap_load=”YES”\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 # Ethernet tunnel software network interface
\n2. if_tun_load=”YES”\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 # Tunnel driver (user process ppp)<\/p>\n

Terakhir tinggal jalankan daemon openVPN<\/p>\n

#\/usr\/local\/etc\/rc.d\/openvpn start<\/p>\n

coba cek file \/var\/log\/messages\u00a0 pastikan daemon openvpn telah berjalan<\/p>\n

Aug\u00a0 9 17:57:32 gateway openvpn[38670]: OpenVPN 2.0.5 i386-portbld-freebsd6.1 [SSL] [LZO] built on Aug\u00a0 9 2007
\nAug\u00a0 9 17:57:32 gateway openvpn[38670]: IMPORTANT: OpenVPN’s default port number is now 1194, based on an official port number assignment by IANA.\u00a0 OpenVPN 2.0-beta16 and earlier used 5000 as the default port.
\nAug\u00a0 9 17:57:32 gateway openvpn[38670]: WARNING: –keepalive option is missing from server config
\nAug\u00a0 9 17:57:32 gateway openvpn[38670]: gw 222.124.196.100
\nAug\u00a0 9 17:57:32 gateway openvpn[38670]: TUN\/TAP device \/dev\/tun0 opened
\nAug\u00a0 9 17:57:32 gateway openvpn[38670]: \/sbin\/ifconfig tun0 10.8.0.1 10.8.0.2 mtu 1500 netmask 255.255.255.255 up
\nAug\u00a0 9 17:57:32 gateway openvpn[38675]: GID set to nobody
\nAug\u00a0 9 17:57:32 gateway openvpn[38675]: UDPv4 link local (bound): [undef]:1194
\nAug\u00a0 9 17:57:32 gateway openvpn[38675]: UDPv4 link remote: [undef]
\nAug\u00a0 9 17:57:32 gateway openvpn[38675]: Initialization Sequence Completed<\/p>\n

# ifconfig
\npflog0: flags=141<UP,RUNNING,PROMISC> mtu 33208
\npfsync0: flags=0<> mtu 2020
\ntun0: flags=8051<UP,POINTOPOINT,RUNNING,MULTICAST> mtu 1500
\ninet6 fe80::20e:cff:fe3e:2ccd%tun0 prefixlen 64 scopeid 0x7
\ninet 10.8.0.1 –> 10.8.0.2 netmask 0xffffffff
\nOpened by PID 38670
\n#<\/p>\n

Yups berarti openvpnnya dah jalan
\nKarena saya pake PF (Packet Filter) sebagai firewallnya, tinggal ubah sedikit konfigurasi pada fle pf.conf<\/p>\n

# \/etc\/pf.conf
\n# Maintained by Gigih.
\n#
\n# Rev 1.0 Feb 04 2006
\n# Please, please, please confirm any changes
\n# on this file to me.
\n#<\/p>\n

eIF = “xl0”
\niIF = “em0”
\ndIF = “rl0″
\nvpn_if=”tun0″<\/p>\n

# VPN Network
\nvpn_network=”10.8.0.0\/24”\u00a0\u00a0 —>> terserah mo netwrok berapa ajah<\/p>\n

# NAT VPN connections
\nnat on $eIF from $vpn_network to any -> ($eIF)\u00a0\u00a0 -> artinya paket dari interface vpn akan di NAT langsung sebagai IP eksternal<\/p>\n

# VPN connections inbound
\npass in on $ext_if proto udp from any to port 1194 keep state
\npass quick on $vpn_if<\/p>\n

Jangan sampe kebalik-balik\u00a0 yah…………………..
\nDone,\u00a0 server VPN anda udah UP<\/p>\n

Gimana mo nyobainnya,,\u00a0 Gampang……………
\nUntuk windows 2000 dan XP dah ada software VPN yang gratis, tinggal donlod disini<\/p>\n

http:\/\/www.openvpn.se<\/p>\n

Langsung aja install di PC client
\nBy default akan terinstall di direktori<\/p>\n

C:Program FilesOpenvpn<\/p>\n

sekarang langsung aja kopi file key yang sudah kita generate di server tadi,
\nfilenya adalah ca.crt, client1.crt, client1.key,\u00a0 gw biasanya pindahin via ftp
\nkopiiin ke direktori\u00a0 C:Program FilesOpenvpnconfig<\/p>\n

Selanjutnya masuk ke C:Program FilesOpenvpnconfig\u00a0 dan bikin config openvpnnya
\nkasihnamafilenya myopenvpn.ovpn
\nisinya kira-kira begini<\/p>\n

———-snip———–
\nclient
\nremote my.openvpn.server 1194
\ndev tun
\ncomp-lzo<\/p>\n

ca ca.crt
\ncert client1.crt
\nkey client1.key<\/p>\n

# Set log file verbosity.
\nverb 3
\n———-snip———–<\/p>\n

Jika sudah\u00a0 logo icon openvpn akan nongol di pojok kanan bawah windows,
\ntinggal klik kanan dan konek……<\/p>\n

JIka logo berwarna ijo\u00a0 berarti anda sudah terhubung dengan server,
\nCOngratulationssss…..<\/p>\n

bisa tes dengan mengetikkan<\/p>\n

ipconfig \/all
\npada command promp<\/p>\n

C:Documents and SettingsAdministrator>ipconfig \/all<\/p>\n

Windows IP Configuration<\/p>\n

Host Name . . . . . . . . . . . . : gigih-banget
\nPrimary Dns Suffix\u00a0 . . . . . . . :
\nNode Type . . . . . . . . . . . . : Unknown
\nIP Routing Enabled. . . . . . . . : No
\nWINS Proxy Enabled. . . . . . . . : No
\nDNS Suffix Search List. . . . . . : unila.ac.id<\/p>\n

Ethernet adapter Local Area Connection:<\/p>\n

Connection-specific DNS Suffix\u00a0 . : unila.ac.id
\nDescription . . . . . . . . . . . : Realtek RTL8169\/8110 Family Gigabit
\nEthernet NIC
\nPhysical Address. . . . . . . . . : 00-18-F3-7E-BF-65
\nDhcp Enabled. . . . . . . . . . . : No
\nIP Address. . . . . . . . . . . . : 192.168.1.204
\nSubnet Mask . . . . . . . . . . . : 255.255.255.0
\nDefault Gateway . . . . . . . . . : 192.168.1.245
\nDNS Servers . . . . . . . . . . . : 192.168.1.3<\/p>\n

Ethernet adapter Local Area Connection 3:<\/p>\n

Connection-specific DNS Suffix\u00a0 . :
\nDescription . . . . . . . . . . . : TAP-Win32 Adapter V8
\nPhysical Address. . . . . . . . . : 00-FF-49-04-3A-D7
\nDhcp Enabled. . . . . . . . . . . : Yes
\nAutoconfiguration Enabled . . . . : Yes
\nIP Address. . . . . . . . . . . . : 10.8.0.6
\nSubnet Mask . . . . . . . . . . . : 255.255.255.252
\nDefault Gateway . . . . . . . . . :
\nDHCP Server . . . . . . . . . . . : 10.8.0.5
\nLease Obtained. . . . . . . . . . : Thursday, August 09, 2007 5:52:32 PM<\/p>\n

Lease Expires . . . . . . . . . . : Friday, August 08, 2008 5:52:32 PM<\/p>\n

C:Documents and SettingsAdministrator><\/p>\n","protected":false},"excerpt":{"rendered":"

Apa itu VPN : Menurut IETF, Internet Engineering Task Force, VPN is an emulation of [a] private Wide Area Network(WAN) using shared or public IP facilities, such as the Internet or private IP backbones.VPN merupakan suatu bentuk private internet yang melalui public network (internet), dengan menekankan pada keamanan data dan akses global melalui internet. Hubungan … Continue reading “OpenVPN with FreeBSD, PF and Windows XP as Client”<\/span><\/a><\/p>\n","protected":false},"author":25,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1348,5],"tags":[],"class_list":["post-86","post","type-post","status-publish","format-standard","hentry","category-kiat-sukses-menjadi-seorang-network-engineer-2","category-old-post-dari-unilanet"],"_links":{"self":[{"href":"https:\/\/dosen.unila.ac.id\/gigih\/wp-json\/wp\/v2\/posts\/86"}],"collection":[{"href":"https:\/\/dosen.unila.ac.id\/gigih\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/dosen.unila.ac.id\/gigih\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/dosen.unila.ac.id\/gigih\/wp-json\/wp\/v2\/users\/25"}],"replies":[{"embeddable":true,"href":"https:\/\/dosen.unila.ac.id\/gigih\/wp-json\/wp\/v2\/comments?post=86"}],"version-history":[{"count":0,"href":"https:\/\/dosen.unila.ac.id\/gigih\/wp-json\/wp\/v2\/posts\/86\/revisions"}],"wp:attachment":[{"href":"https:\/\/dosen.unila.ac.id\/gigih\/wp-json\/wp\/v2\/media?parent=86"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/dosen.unila.ac.id\/gigih\/wp-json\/wp\/v2\/categories?post=86"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/dosen.unila.ac.id\/gigih\/wp-json\/wp\/v2\/tags?post=86"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}