Scribd Logo
Upload

Welcome to Scribd!

  • Automatisasi Blokir Ip Address Berdasarkan Hostname

    Uploaded by

    Jhon Thomas
    39 views2 pages

    Original Title

    Automatisasi blokir ip address berdasarkan hostname

    Copyright

    © © All Rights Reserved

    Available Formats

    DOCX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    39 views2 pages

    Automatisasi Blokir Ip Address Berdasarkan Hostname

    Uploaded by

    Jhon Thomas

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 2

    Automatisasi blokir ip address berdasarkan hostname

    Drop (blokir) ip address dari dhcp lease yang tidak diinginkan berdasarkan hostname, disini
    saya berikan contoh semua yg memakai hp android:

    script 1 : melakukan pencarian di filter, jika ip yg dimaksud ada maka akan di hapus terlebih
    dahulu agar tidak terjadi dupilkasi

    :local ipfilter value=[/ip firewall filter find]; :foreach looping in=$ipfilter do={:local komen
    value=[/ip firewall filter get $looping value-name=comment]; :if ($komen=”android”)
    do={/ip firewall filter remove $looping}};

    script akan saya namakan : hapus-filter-android

    Script 2 : menambahkan ip address pada firewall filter lalu di lakukan drop (blokir) agar
    android tidak dapat mengakses internet.

    :local bnyklease value=[/ip dhcp-server lease find]; :foreach looping in=$bnyklease


    do={:local namahost value=[:pick [/ip dhcp-server lease get $looping value-name=host-
    name] 0 7]; :local ipadd1 value=[/ip dhcp-server lease get $looping value-name=active-
    address]; :if ($namahost=”android”) do={/ip firewall filter add chain=forward action=drop
    dst-address=$ipadd1 disabled=no comment=$namahost}};

    script akan saya namakan : drop-android

    jika script diatas sudah dibuat maka kita tinggal membuat schedule atau jadwal untuk
    mengeksekusi script.

    untuk menambahkan 2 script diatas di 1 scheduler maka scriptnya seperti berikut :

    /system script run hapus-filter-android

    /system script run drop-android

    sumber : https://www.facebook.com/notes/wong-lawas/automatisasi-blokir-ip-address-
    berdasarkan-hostname-dengan-script-scheduler-di-m/684255344977928
    ///kkkkk

    ########## INICIO DEL SCRIPT


    :local DHCPSERVER "dhcp1";
    # # www.tech-nico.com
    :foreach i in=[/ip dhcp-server lease find dynamic=yes active-server=$DHCPSERVER] do={
    :local DhcpDynMAC [/ip dhcp-server lease get $i mac-address];
    :local DhcpDynCLIENTID [/ip dhcp-server lease get $i active-client-id];
    :local DhcpDynHOST [/ip dhcp-server lease get $i host-name];
    :local phoneNAME [:pick $DhcpDynHOST 0 4];
    :if ( ($phoneNAME="BLUS") || ($phoneNAME="iPad") || ($phoneNAME="andr") ||
    ($phoneNAME="Andr") || ($phoneNAME="Wind") || ($phoneNAME="iPho") ||
    ($phoneNAME="BLAC") ) do={
    /ip dhcp-server lease add block-access=yes mac-address="$DhcpDynMAC" use-src-mac=yes
    comment="$DhcpDynHOST" server="$DHCPSERVER" client-id="$DhcpDynCLIENTID";
    }
    }
    /ip dhcp-server lease remove [find host-name~"BLUS*"]
    /ip dhcp-server lease remove [find host-name~"android*"]
    /ip dhcp-server lease remove [find host-name~"Android*"]
    /ip dhcp-server lease remove [find host-name~"Windows*"]
    /ip dhcp-server lease remove [find host-name~"iPad*"]
    /ip dhcp-server lease remove [find host-name~"iPhone*"]
    /ip dhcp-server lease remove [find host-name~"BLACKBERRY*"]
    ############## FIN DEL SCRIPT

    You might also like