Professional Documents
Culture Documents
Firewall
Firewall
FIREWALL
Setting rc.firewall
� # cd /etc/rc.d
� # wget http://source.citra.net.id/Linux/firewall/script/rc.firewall
� tambahkan pada rc.firewall
PERMIT="22/tcp 3128/tcp 3130 113 202.65.112.0/21:10000/tcp"
INTERNAL_INTERFACES="eth1"
� # chmod +x rc.firewall
Setting Portsentry
� # cd /download
� # wget http://source.citra.net.id/Linux/firewall/portsentry-1.2.tar.gz
� # tar zxvf portsentry-1.2.tar.gz
� # masuk directory portsentry_beta
� # make linux
� # make install
� # vi /usr/local/psionic/portsentry/ portsentry.conf
Hilangkan # pada
# Newer versions of Linux support the reject flag now. This
# is cleaner than the above option.
=>#KILL_ROUTE="/sbin/route add -host $TARGET$ reject"<=