Friday 3 August 2012
firewall mikrotik mencegah open proxy
add chain=dstnat protocol=tcp dst-port=80 action=redirect to-ports=3128 in-interface=ether4-LoComIT src-address=192.168.1.0/27 comment="proxy-redirect" disabled=no
add chain=dstnat protocol=tcp dst-port=8080 action=redirect to-ports=3128 in-interface=ether4-LoComIT src-address=192.168.1.0/27 comment="" disabled=no
add chain=dstnat protocol=tcp dst-port=3128 action=redirect to-ports=3128 in-interface=ether4-LoComIT src-address=192.168.1.0/27 comment="" disabled=no
/ ip firewall mangle
add chain=prerouting src-address=!192.168.1.0/27 protocol=tcp dst-port=3128 connection-state=new action=add-src-to-address-list address-list=block address-list-timeout=1d comment="" disabled=no
/ ip firewall filter
add chain=input action=drop src-address-list=block comment="drop ip-block"
/ ip firewall filter
add chain=input in-interface=dnsinterface dst-address=IP PUBLIK protocol=tcp dst-port=3128 action=add-src-to-address-list address-list=block address-list-timeout=1d comment=""
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment