Scribd Logo
Upload

Welcome to Scribd!

  • firewall chặn internet trên router

    Uploaded by

    Thiên Luân
    34 views7 pages

    Original Title

    firewall_chặn_internet_trên_router

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    34 views7 pages

    firewall chặn internet trên router

    Uploaded by

    Thiên Luân

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 7

    A/ TẠO CÁC OBJECTS

    I. IP OBJECTS

    - NHÂN VIÊN: IP RANGE 192.169.X.10 - 192.168.X.255 (THEO RULE DHCP)

    - LOANLOGICS: 10.0.0.0/16

    - WEB NHẬP SỐ BPO - EMAIL BPO: 113.160.225.224

    - WEB CLEARPATH: 107.180.1.222

    II. KEYWORD OBJECTS

    - SLACK:
    slack
    slack.com

    - GGDRIVER - TRANSLATE - GMAIL:


    google
    google.com

    - GODADDY:
    godaddy
    godaddy.com

    - CLEARPATH:
    clearpath
    clearpathdevelopment

    - SKYPE:
    skype
    skype.com
    login.live.com
    skypeassets.com
    microsoft.com
    live.com

    - UPDATE WINDOWS:
    update.microsoft.com
    windowsupdate.com
    download.microsoft.com
    wustat.windows.com
    ntservicepack.microsoft.com
    stats.microsoft.com
    microsoft.com

    III. DNS OBJECT

    - YOUTUBE:
    youtube.com
    www.youtube.com

    - SKYPE:
    api.skype.com
    apps.skype.com
    community.skype.com
    download.skype.com
    login.skype.com
    pipe.skype.com
    secure.skype.com
    www.skype.com
    www.skypeassets.com
    clientlogin.cdn.skype.com
    mobile.pipe.aria.microsoft.com
    login.live.com

    - GODADDY:
    certs.goddady.com
    crl.goddady.com
    certificates.goddady.com
    ocsp.godaddy.com
    godaddy.com

    - CLEARPATH:
    clearpathdevelopment.net
    clearpathdevelopment.com
    B/ THIẾT LẬP FIREWALL

    I. IP FILTER

    - GROUP BLOCK
    block_all: block all traffice
    block_youtube: block youtube

    - GROUP MANUAL_BLOCK: block theo yêu cầu tùy site

    - GROUP ALLOW
    loanlogics_bpo: allow smartkey, loanlogics, web nhập số, web clearpath, webmail
    dns: allow dịch vụ DNS
    skype: allow cho skype
    Block_all: Action là Block if No Futher Math, Next Group là Group Allow, Source IP là dãy IP nhân viên

    Block_youtube: Action là Block, Source IP là dãy IP nhân viên, Destionation IP là DNS Objects youtube
    loanlogics_bpo: Action là Accept, Source IP là dãy IP nhân viên, Destination IP là IP Object Loanlogics,
    bpo, clearpath và DNS Object godaddy, clearpath

    dns: Action là Accept, Source IP là dãy IP nhân viên, Serivce protocol là DNS - port 53
    skype: Action là Accept, Source IP là dãy IP nhân viên, Destination DNS Object là skype

    II. URL/WEB CATEGORY FILTER

    Tạo rule Allow với Soure IP là dãy IP nhân viên, keyword Appect là slack, ggdrive, godaddy, clearpath,
    skype và updatewindows

    You might also like