October 13th, 2008 by Vinum
These are my notes from configuring kernel PPP (pppd), a firewall, and Network Address Translation (NAT/masquerading) on FreeBSD 4.10. My goal was to have a shared Internet connection in which my FreeBSD box acts as the Internet router (gateway) and firewall via a dialup connection for other computers on my LAN. Continue Reading »
August 12th, 2008 by Vinum
What is APF (Advanced Policy Firewall)? APF Firewall
APF is a policy based iptables firewall system designed for ease of use and configuration. It employs a subset of features to satisfy the veteran Linux user and the novice alike. Packaged in tar.gz format and RPM formats, make APF ideal for deployment in many server environments based on Linux. APF is developed and maintained by R-fx Networks: http://www.rfxnetworks.com/apf.php Continue Reading »
February 13th, 2008 by Vinum
add chain=input protocol=tcp dst-port=21 src-address-list=ftp_blacklist action=drop
add chain=output action=accept protocol=tcp content="530 Login incorrect" dst-limit=1/1m,9,dst-address/1m
add chain=output action=add-dst-to-address-list protocol=tcp content="530 Login incorrect" \ address-list=ftp_blacklist address-list-timeout=3h
Yang ini untuk memblock yang coba2 login ke SSH mikrotik kita, IP-nya akan nongkrong 10 hari di address-list
/ip firewall filter
add chain=input protocol=tcp dst-port=22 src-address-list=ssh_blacklist action=drop \ comment="drop ssh brute forcers" disabled=no
add chain=input protocol=tcp dst-port=22 connection-state=new \ src-address-list=ssh_stage3 action=add-src-to-address-list address-list=ssh_blacklist \ address-list-timeout=10d comment="" disabled=no
add chain=input protocol=tcp dst-port=22 connection-state=new \ src-address-list=ssh_stage2 action=add-src-to-address-list address-list=ssh_stage3 \ address-list-timeout=1m comment="" disabled=no
add chain=input protocol=tcp dst-port=22 connection-state=new src-address-list=ssh_stage1 \ action=add-src-to-address-list address-list=ssh_stage2 address-list-timeout=1m comment="" disabled=no
add chain=input protocol=tcp dst-port=22 connection-state=new action=add-src-to-address-list \ address-list=ssh_stage1 address-list-timeout=1m comment="" disabled=no
Sumber : http://wiki.mikrotik.com
November 8th, 2007 by Vinum
OK pertama-tama yang harus disiapkan adalah all that’s make you comfort dude 
then…
let’s go to work…
Continue Reading »
November 2nd, 2007 by Vinum
Source Package Yang Dibutuhkan :
1. daemontools-0.76.tar.gz
2. ucspi-tcp-0.88.tar.gz
3. djbdns-1.05.tar.gz
==============================
Continue Reading »
October 25th, 2007 by Vinum
Download script auto installernya –> http://www.qmailtoaster.com/info/current-download-script.sh
setelah selesai mendownloadnya kita tinggal menjalankan script untuk mendownloadnya dengan perintah :
Continue Reading »
October 22nd, 2007 by Vinum
Ketika kita melakukan query (bisa berupa ping, ssh, dig, host, nslookup, email, dan lain sebagainya) ke sebuah host misalnya ns1.vinum.web.id maka name server akan memeriksa terlebih dahulu apakah ada record host tersebut di cache name server lokal. Jika tidak ada, name serverlokal akan melakukan query kepada root server dan mereferensikan name server untuk TLD .id , name server lokal kembali melakukan query kepada name server .id dengan jenis query yang sama dan mereferensikan vinum.id . Name server lokal kembali melakukan query ke name server vinum.id dan mereferensikan query selanjutnya ke name server lokal yaitu ns1.vinum.web.id . Kemudian name server lokal melakukan query kepada name server lokal yaitu ns1.vinum.web.id dan akhirnya mendapatkan jawaban address yang diminta. Continue Reading »
- Next »
vinum.web.id - Learn is a must…..
Anything I must write here!!!.
There are 37 Posts and 10 Comments so far.
