Follow us on...
Follow us on G+ Follow us on Twitter Follow us on Facebook Watch us on YouTube
Register
Page 1 of 2 12 LastLast
Results 1 to 15 of 19

Thread: Drop site

  1. #1
    Status
    Offline
    gezr's Avatar
    Calon Member
    Join Date
    Jun 2011
    Location
    Box OutDoor
    Posts
    86
    Reviews
    Read 0 Reviews
    Downloads
    1
    Uploads
    0
    Feedback Score
    0

    Cara Lain Drop site

    Sebelum pake proxy External
    code:
    ;;; SAS Drop FB
    chain=forward action=drop src-address=192.168.100.4 content=facebook.com

    hasilnya ip 192.168.100.4 gak bisa buka FB
    Setelah pake proxy external
    code:
    ;;; SAS Drop FB
    chain=forward action=drop src-address=192.168.100.4 content=facebook.com

    Hasilnya ip diatas aman2x aja maen FB!!!
    Kenapa ya......apa ada cara yg laen
    Click here to enlargeClick here to enlargeClick here to enlarge
    Last edited by gezr; 28-07-2011 at 16:11.

  2. #2
    Status
    Offline
    Anto.PJ's Avatar
    Forum Guru
    Join Date
    May 2011
    Location
    macz
    Posts
    1,696
    Reviews
    Read 0 Reviews
    Downloads
    7
    Uploads
    0
    Feedback Score
    0
    masalahnya destinasinya ga melulu facebook.com, kadang static.facebook.com.. trus facebook.com itu alamat.. bukan content, sepengetahuan saya yang termasuk content itu misalnya berdasarkan nama dan extensi file yang di unduh.. misalnya index.html, index.php, anu.mp3, itu.flv dlll.. CMIW
    saran saya dst address=ip server facebook aj.. karena chainnya forward

    atau tambahkan aja deny akses ke facebook.com di squid.c0nf proxy external..

  3. The Following 2 Users Say Thank You to Anto.PJ For This Useful Post:


  4. #3
    Status
    Offline
    yohanexz's Avatar
    Member Super Senior
    Join Date
    Sep 2010
    Location
    Rawamangun, Jakarta
    Posts
    613
    Reviews
    Read 0 Reviews
    Downloads
    1
    Uploads
    1
    Feedback Score
    0

    Smile

    Click here to enlarge Originally Posted by gezr Click here to enlarge
    Sebelum pake proxy External
    code:
    ;;; SAS Drop FB
    chain=forward action=drop src-address=192.168.100.4 content=facebook.com

    hasilnya ip 192.168.100.4 gak bisa buka FB
    Setelah pake proxy external
    code:
    ;;; SAS Drop FB
    chain=forward action=drop src-address=192.168.100.4 content=facebook.com

    Hasilnya ip diatas aman2x aja maen FB!!!
    Kenapa ya......apa ada cara yg laen
    Click here to enlargeClick here to enlargeClick here to enlarge

    Pake ACL aja di conf nya di proxy externalnya dibuat pasti bisa dah kalo mau drop facebook ya tulis di txt nya facebook aja pas ti ke blok


    acl bad url_regex -i badsite.txt
    http_access deny bad

    isi aja badsite.txt ketik facebook didalamya
    udah pasti yang berisi kata facebook pasti ke blok. selamat nyoba yaa SUKSES DAHClick here to enlargeClick here to enlargeClick here to enlarge

  5. #4
    Status
    Offline
    Anto.PJ's Avatar
    Forum Guru
    Join Date
    May 2011
    Location
    macz
    Posts
    1,696
    Reviews
    Read 0 Reviews
    Downloads
    7
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by yohanexz Click here to enlarge
    Pake ACL aja di conf nya di proxy externalnya dibuat pasti bisa dah kalo mau drop facebook ya tulis di txt nya facebook aja pas ti ke blok


    acl bad url_regex -i badsite.txt
    http_access deny bad

    isi aja badsite.txt ketik facebook didalamya
    udah pasti yang berisi kata facebook pasti ke blok. selamat nyoba yaa SUKSES DAHClick here to enlargeClick here to enlargeClick here to enlarge
    kalo ane baca pertanyaannya.. maunya si TS cuma blok IP klien tertentu agar ga bisa akses ke facebook saja.. sedang IP klien yang lain boleh..
    caranya gimana om..

  6. #5
    Status
    Offline
    yohanexz's Avatar
    Member Super Senior
    Join Date
    Sep 2010
    Location
    Rawamangun, Jakarta
    Posts
    613
    Reviews
    Read 0 Reviews
    Downloads
    1
    Uploads
    1
    Feedback Score
    0
    Click here to enlarge Originally Posted by Anto.PJ Click here to enlarge
    kalo ane baca pertanyaannya.. maunya si TS cuma blok IP klien tertentu agar ga bisa akses ke facebook saja.. sedang IP klien yang lain boleh..
    caranya gimana om..
    pake layer7protocol aja. bikin

    /ip firewall layer7-protocol
    add comment="" name=facebook regexp=www.facebook.com
    terus

    /ip firewall filter
    add action=drop chain=forward comment="" disabled=no layer7-protocol=facebook src-address=192.168.100.4

    coba aja yaa

  7. #6
    Status
    Offline
    gezr's Avatar
    Calon Member
    Join Date
    Jun 2011
    Location
    Box OutDoor
    Posts
    86
    Reviews
    Read 0 Reviews
    Downloads
    1
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by Anto.PJ Click here to enlarge
    kalo ane baca pertanyaannya.. maunya si TS cuma blok IP klien tertentu agar ga bisa akses ke facebook saja.. sedang IP klien yang lain boleh..
    caranya gimana om..
    yups betul bro anto maunya emang gitu.
    Soal facebook.com itu bukan content klo di pikir2 sih emang iya,tp herannya dulu pas belum pake external proxy rule filter di atas kok bs efektif (begitu juga situs2 laennya,tinggal masukin di content name sitenya)

    ---------- Post added at 22:07 ---------- Previous post was at 22:04 ----------

    Click here to enlarge Originally Posted by yohanexz Click here to enlarge
    pake layer7protocol aja. bikin

    /ip firewall layer7-protocol
    add comment="" name=facebook regexp=www.facebook.com
    terus

    /ip firewall filter
    add action=drop chain=forward comment="" disabled=no layer7-protocol=facebook src-address=192.168.100.4

    coba aja yaa
    Trim' s bro sarannya...
    Tp sayang masih tembuss

  8. #7
    Status
    Offline
    Anto.PJ's Avatar
    Forum Guru
    Join Date
    May 2011
    Location
    macz
    Posts
    1,696
    Reviews
    Read 0 Reviews
    Downloads
    7
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by gezr Click here to enlarge
    yups betul bro anto maunya emang gitu.
    Soal facebook.com itu bukan content klo di pikir2 sih emang iya,tp herannya dulu pas belum pake external proxy rule filter di atas kok bs efektif (begitu juga situs2 laennya,tinggal masukin di content name sitenya)[COLOR="Silver"]
    mmm.. pantas.. jadi ane selama ini yang salah persepsi.. wkwkwk

    gini, setelah memakai proxy external.. terjadi proses translasi alamat (NAT) dari facebook.com port 80 ke ip proxy dengan port mis:3128

    mm.. coba ganti chainnya jadi input..

  9. #8
    Status
    Offline
    yosanpro's Avatar
    Co-Admin
    Join Date
    Nov 2007
    Location
    Bantul, Bantul, Yogyakarta
    Posts
    2,548
    Reviews
    Read 0 Reviews
    Downloads
    11
    Uploads
    4
    Feedback Score
    1 (100%)
    Click here to enlarge Originally Posted by Anto.PJ Click here to enlarge
    mmm.. pantas.. jadi ane selama ini yang salah persepsi.. wkwkwk

    gini, setelah memakai proxy external.. terjadi proses translasi alamat (NAT) dari facebook.com port 80 ke ip proxy dengan port mis:3128

    mm.. coba ganti chainnya jadi input..
    Kalo redirect ke external proxy pake dstnat langsung sih mustinya bisa tetep pake chain forward, tapi kalo di redirect ke proxy internal dengan parent emang chainnya musti diganti input tuh...
    A person's junk is another person's treasure.

  10. #9
    Status
    Offline
    aankoe's Avatar
    Member
    Join Date
    Jul 2007
    Posts
    246
    Reviews
    Read 0 Reviews
    Downloads
    16
    Uploads
    0
    Feedback Score
    0

    squidguard

    udah coba make squidguard?

    kayaknya lebih efektif tuh buat blok site2 tertentu Click here to enlarge

  11. #10
    Status
    Offline
    yohanexz's Avatar
    Member Super Senior
    Join Date
    Sep 2010
    Location
    Rawamangun, Jakarta
    Posts
    613
    Reviews
    Read 0 Reviews
    Downloads
    1
    Uploads
    1
    Feedback Score
    0
    Click here to enlarge Originally Posted by gezr Click here to enlarge
    yups betul bro anto maunya emang gitu.
    Soal facebook.com itu bukan content klo di pikir2 sih emang iya,tp herannya dulu pas belum pake external proxy rule filter di atas kok bs efektif (begitu juga situs2 laennya,tinggal masukin di content name sitenya)

    ---------- Post added at 22:07 ---------- Previous post was at 22:04 ----------



    Trim' s bro sarannya...
    Tp sayang masih tembuss
    di tempatku tak test ga jalan lho brooo, muter ajaaa gitu. oke dah coba lagi denagn input seberti suhu-suhu anjurkan diatas

  12. #11
    Status
    Offline
    ahmad210993's Avatar
    Member Senior
    Join Date
    Jun 2009
    Location
    Semarang - www.dyasrtrw.net
    Posts
    440
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by yohanexz Click here to enlarge
    pake layer7protocol aja. bikin

    /ip firewall layer7-protocol
    add comment="" name=facebook regexp=www.facebook.com
    terus

    /ip firewall filter
    add action=drop chain=forward comment="" disabled=no layer7-protocol=facebook src-address=192.168.100.4

    coba aja yaa
    setuju pakai layer7 protocol,
    tapi kalo ditempat saya caranya begini:
    Regexp Layer7 facebook
    /ip firewall layer7-protocol
    add comment="" name=facebook regexp=facebook.com|fbcdn.net
    tangkap ip facebook.
    /ip firewall filter
    add action=add-dst-to-address-list address-list=facebook address-list-timeout=10m chain=forward comment="facebook ip catcher" disabled=no dst-address=!8.8.4.4-8.8.8.8 dst-address-list=!bypass layer7-protocol=facebook
    dimana bypass adalah ip lokal dan dns.

    drop koneksi dari ipklient ke ip facebook yg ketangkep.
    /ip firewall filter
    add action=drop chain=forward comment="" disabled=no src-address=ipklien dst-address-list=facebook.
    hasilnya? mantabhh... Click here to enlarge

    CMIIW

  13. #12
    Status
    Offline
    gezr's Avatar
    Calon Member
    Join Date
    Jun 2011
    Location
    Box OutDoor
    Posts
    86
    Reviews
    Read 0 Reviews
    Downloads
    1
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by aankoe Click here to enlarge
    udah coba make squidguard?

    kayaknya lebih efektif tuh buat blok site2 tertentu Click here to enlarge
    tolong di baca dari atas donk bro,ini yg mo di blokir cm ip tertentu bukan ke semua klien.
    Dan lagi ane kurang sepakat kalo urusan blokir memblokir situs diserahkan ma proxy ntah itu lewat squidguard ato yg laen2 ato lwt squid.conf,coz ada kalanya proxy down ato box squidnya bermasalah hardwernya sedangkan isp harus tetap jalan otomatis disable Nat proxy adalah solusi sementara yg paling logis. Nah brarti site2 tertentu yg mulanya kita block sementara jadi loss donk,bisa2 para ortu klient mencak2 padahal dulu ngebolehin anak2nya pasang inet ma kita karena kita janji kalo isp kita bersih gak kyak pnya sp***y yg katanya di blokir tp kenyataanya dg trik dns aja uda bla.,bla..bla..

  14. #13
    Status
    Offline
    c0nf's Avatar
    Contributor
    Join Date
    Jul 2007
    Location
    Bandung, Indonesia
    Posts
    1,816
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    berhubung nama gw disebut2 sama si anto, jadi kebawa ke sini deh...

    Ini cuma sambil lewat saja ya. Mikrotik itu router. Bukannya tidak mungkin memblok suatu situs di mikrotik, tapi cara kerjanya ribet. Pertama harus dibikin script yang tugasnya mengambil semua ip facebook yang ada di dns cache mikrotik, setelah itu dimasukkan ke address list khusus (misalkan nama address list nya facebook). Baru nanti di blok via firewall.
    Script nya ada di wiki.mikrotik.com (silahken bongkar2).

    Ngetik2, kalau setingannya routing nat nya betul, kita bisa blok di proxy, karena nanti proxy akan membaca ip client, bukan ip mikrotik. Jauh lbh praktis.

    Dan kalau ngobrolin bahwa squid box akan mengalami masalah hardware, itu masalah yang ditimbulkan dari anda sendiri dengan memilih hardware yang pas2an. kalau mau bikin squid box, pilih hardware yg optimal, jangan yang minimal. Psu pilih yang bagus, jangan yg abal2.

    Layer7 ??? Silahkan dibaca2 lagi teori mengenai layer2 di internet.

    Itu aja dari saya sih, maklum...cuman lewat Click here to enlarge

  15. The Following 2 Users Say Thank You to c0nf For This Useful Post:


  16. #14
    Status
    Offline
    fofo2000000's Avatar
    Baru Gabung
    Join Date
    Apr 2008
    Posts
    7
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by gezr Click here to enlarge
    Sebelum pake proxy External
    code:
    ;;; SAS Drop FB
    chain=forward action=drop src-address=192.168.100.4 content=facebook.com

    hasilnya ip 192.168.100.4 gak bisa buka FB
    Setelah pake proxy external
    code:
    ;;; SAS Drop FB
    chain=forward action=drop src-address=192.168.100.4 content=facebook.com

    Hasilnya ip diatas aman2x aja maen FB!!!
    Kenapa ya......apa ada cara yg laen
    Click here to enlargeClick here to enlargeClick here to enlarge
    thankxxxxxx man

  17. #15
    Status
    Offline
    aankoe's Avatar
    Member
    Join Date
    Jul 2007
    Posts
    246
    Reviews
    Read 0 Reviews
    Downloads
    16
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by gezr Click here to enlarge
    tolong di baca dari atas donk bro,ini yg mo di blokir cm ip tertentu bukan ke semua klien.
    Dan lagi ane kurang sepakat kalo urusan blokir memblokir situs diserahkan ma proxy ntah itu lewat squidguard ato yg laen2 ato lwt squid.conf,coz ada kalanya proxy down ato box squidnya bermasalah hardwernya sedangkan isp harus tetap jalan otomatis disable Nat proxy adalah solusi sementara yg paling logis. Nah brarti site2 tertentu yg mulanya kita block sementara jadi loss donk,bisa2 para ortu klient mencak2 padahal dulu ngebolehin anak2nya pasang inet ma kita karena kita janji kalo isp kita bersih gak kyak pnya sp***y yg katanya di blokir tp kenyataanya dg trik dns aja uda bla.,bla..bla..
    khan ada yang namanya system bypass ip om Click here to enlarge jadi cuman ip2 tertentu saja yang diperbolehkan lewat dari squidguard tersebut.

    mohon maav kalau saya salah cara menjelaskannya.

    mungkin lebih jelasnya baca2 manual squidguardnya deh langsung Click here to enlarge

 

 
Page 1 of 2 12 LastLast

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Bagaimana mereserved bandwidth (QoS) pada PPTP site to site
    By lee140685 in forum General Networking
    Replies: 1
    Last Post: 03-07-2011, 16:14
  2. Replies: 0
    Last Post: 17-01-2011, 11:22
  3. Blok Site, Jam Tertentu
    By sansipp in forum Beginner Basics
    Replies: 6
    Last Post: 03-03-2010, 18:27
  4. site survey software
    By kamtono in forum General Networking
    Replies: 1
    Last Post: 01-06-2009, 21:05

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •