Follow us on...
Follow us on G+ Follow us on Twitter Follow us on Facebook Watch us on YouTube
Register
Page 5 of 13 FirstFirst ... 34567 ... LastLast
Results 61 to 75 of 189
  1. #61
    Status
    Offline
    dorisbanget's Avatar
    Calon Member
    Join Date
    Oct 2011
    Posts
    75
    Reviews
    Read 0 Reviews
    Downloads
    1
    Uploads
    0
    Feedback Score
    0
    [QUOTE=kweteng;245648]nambahin biar lebih responsif dan mencegah terjadinya sync attack virus upload port 80 yang bikin proxy KO!!, biasanya dari installer dialer situs2 porn / file crack bervirus,

    HaPPY Cache.
    Code:
    *mangle
    :PREROUTING ACCEPT [0:0]
    :INPUT ACCEPT [0:0]
    :FORWARD ACCEPT [0:0]
    :OUTPUT ACCEPT [0:0]
    :POSTROUTING ACCEPT [0:0]
    :DIVERT - [0:0]
    -A PREROUTING -p tcp -m tcp --dport 80 ! --tcp-flags FIN,SYN,RST,ACK SYN -m socket -j DIVERT 
    -A PREROUTING -p tcp -m tcp --sport 80 ! --tcp-flags FIN,SYN,RST,ACK SYN -m socket -j DIVERT 
    -A PREROUTING -p tcp -m tcp --dport 80 -j TPROXY --on-port 3129 --on-ip 0.0.0.0 --tproxy-mark 0x1/0xffffffff 
    -A DIVERT -j MARK --set-xmark 0x1/0xffffffff 
    -A DIVERT -j ACCEPT 
    COMMIT
    
    *filter
    :INPUT ACCEPT [0:0]
    :FORWARD ACCEPT [0:0]
    :OUTPUT ACCEPT [0:0]
    COMMIT
    # Completed on Thu Mar 1 12:57:37 2012
    masukin itu dimannya ya mas maaf masih belom paham baru beljar Ip table

  2. #62
    Status
    Offline
    ndasjowo's Avatar
    Member
    Join Date
    Mar 2010
    Location
    Boyolali - Solo - Sragen
    Posts
    267
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    iptabless --help
    Click here to enlarge

  3. #63
    Status
    Offline
    gas_ye's Avatar
    Member
    Join Date
    Nov 2010
    Location
    Bogor
    Posts
    108
    Reviews
    Read 0 Reviews
    Downloads
    5
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by ndasjowo Click here to enlarge
    Code:
    #iptables-restore < /(path-file)/iptables-TPROXY
    Code:
    ip rule add fwmark 1 lookup 100
    ip route add local 0.0.0.0/0 dev lo table 100
    Udah berhasil om, tapi setelah restart harus load yg ini lagi baru jalan..Click here to enlarge
    mohon pencerahannnya om

  4. #64
    Status
    Offline
    pak-kole's Avatar
    Newbie
    Join Date
    Apr 2012
    Location
    Karawang
    Posts
    66
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    ijin nyoba ya gan,,,, Click here to enlarge

  5. #65
    Status
    Offline
    ndasjowo's Avatar
    Member
    Join Date
    Mar 2010
    Location
    Boyolali - Solo - Sragen
    Posts
    267
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by GAS Click here to enlarge
    Udah berhasil om, tapi setelah restart harus load yg ini lagi baru jalan..Click here to enlarge
    mohon pencerahannnya om
    Masukin dl rc.local

  6. #66
    Status
    Offline
    c.prompt's Avatar
    Baru Gabung
    Join Date
    Aug 2008
    Posts
    7
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Makasih Ilmunya Gan, :-)

    Tapi setelah ane terapin, ada beberapa situs yang nggak mau kebuka ya ?, terus youtube juga nggak mau play, cuman muter-muter aja. Kalo pake NAT(Redirect) normal semua

    Ane pake lusca r14809, Ubuntu 12.04.1

    Terima kasih sebelumnya :-)
    Last edited by c.prompt; 09-12-2012 at 18:13. Reason: redirect

  7. #67
    Status
    Offline
    wijil46's Avatar
    Member
    Join Date
    Oct 2011
    Location
    Yogyakarta, Indonesia
    Posts
    159
    Reviews
    Read 0 Reviews
    Downloads
    12
    Uploads
    1
    Feedback Score
    0
    punya ane sampe sekarang belum berhasil
    udah ganti squid 2 kali, sampe TS nya ngeremote tetep g jalan
    mau ane coba instal ulang ubuntunya sekalian ah

  8. #68
    Status
    Offline
    ether's Avatar
    Newbie
    Join Date
    Aug 2012
    Location
    Di atas genteng
    Posts
    66
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by wijil46 Click here to enlarge
    punya ane sampe sekarang belum berhasil
    udah ganti squid 2 kali, sampe TS nya ngeremote tetep g jalan
    mau ane coba instal ulang ubuntunya sekalian ah
    Sama om, sy juga 2x coba sampai skrg gagal melulu.

  9. #69
    Status
    Offline
    c.prompt's Avatar
    Baru Gabung
    Join Date
    Aug 2008
    Posts
    7
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by ether Click here to enlarge
    Sama om, sy juga 2x coba sampai skrg gagal melulu.
    Click here to enlarge Originally Posted by wijil46 Click here to enlarge
    punya ane sampe sekarang belum berhasil
    udah ganti squid 2 kali, sampe TS nya ngeremote tetep g jalan
    mau ane coba instal ulang ubuntunya sekalian ah
    Pertama ane jg gagal gan, tapi setelah ane tambah routing di halaman pertama, akhirnya berhasil

    Code:
    ip rule add fwmark 1 lookup 100
    ip route add local 0.0.0.0/0 dev lo table 100

  10. #70
    Status
    Offline
    alvis adelio's Avatar
    Member
    Join Date
    May 2010
    Posts
    100
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Code:
    root@ubuntu:~# cat /boot/config-`uname -r` | grep -E '(NF_CONNTRACK=|TPROXY|XT_MATCH_SOCKET|XT_TARGET_T PROXY)'
    CONFIG_NF_CONNTRACK=m
    CONFIG_NETFILTER_TPROXY=m
    CONFIG_NETFILTER_XT_TARGET_TPROXY=m
    CONFIG_NETFILTER_XT_MATCH_SOCKET=m
    Code:
    root@ubuntu:~# iptables -t mangle -L
    Chain PREROUTING (policy ACCEPT)
    target     prot opt source               destination
    DIVERT     tcp  --  anywhere             anywhere             socket
    TPROXY     tcp  --  anywhere             anywhere             tcp dpt:http TPROXY redirect 0.0.0.0:3129 mark 0x1/0xffffffff
    
    Chain INPUT (policy ACCEPT)
    target     prot opt source               destination
    Chain FORWARD (policy ACCEPT)
    target     prot opt source               destination
    Chain OUTPUT (policy ACCEPT)
    target     prot opt source               destination
    Chain POSTROUTING (policy ACCEPT)
    target     prot opt source               destination
    Chain DIVERT (1 references)
    target     prot opt source               destination
    MARK       all  --  anywhere             anywhere             MARK set 0x1
    ACCEPT     all  --  anywhere             anywhere
    Code:
    root@ubuntu:~# dmesg | grep PROXY
    [   18.569056] NF_TPROXY: Transparent proxy support initialized, version 4.1.0
    [   18.569063] NF_TPROXY: Copyright (c) 2006-2007 BalaBit IT Ltd.
    Last edited by alvis adelio; 10-12-2012 at 20:09.

  11. #71
    Status
    Offline
    alvis adelio's Avatar
    Member
    Join Date
    May 2010
    Posts
    100
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Code:
     # Generated by nDasJoWo
    *nat
    :PREROUTING ACCEPT [541:35450]
    :POSTROUTING ACCEPT [796:56114]
    :OUTPUT ACCEPT [795:56050]
    COMMIT
    # Completed 
    # Generated by nDasJoWo
    *mangle
    :PREROUTING ACCEPT [51:11203]
    :INPUT ACCEPT [5711:2016323]
    :FORWARD ACCEPT [3:1580]
    :OUTPUT ACCEPT [8347:3818817]
    :POSTROUTING ACCEPT [8350:3820397]
    :DIVERT - [0:0]
    -A PREROUTING -p tcp -m socket -j DIVERT 
    -A PREROUTING -p tcp -m tcp --dport 80 -j TPROXY --on-port 3129 --on-ip 0.0.0.0 --tproxy-mark 0x1/0xffffffff 
    -A DIVERT -j MARK --set-xmark 0x1/0xffffffff 
    -A DIVERT -j ACCEPT 
    COMMIT
    # Completed
    ip rule add fwmark 1 lookup 100
    ip route add local 0.0.0.0/0 dev lo table 100
    sysctl net.ipv4.ip_nonlocal_bind=1
    sysctl net.ipv4.ip_forward=1
    Code:
     http_port 0.0.0.0:3129 transparent tproxy
    http_port localhost:3128
    Code:
    /ip route
    add comment="" disabled=no distance=1 dst-address=0.0.0.0/0 gateway=\
        192.168.10.1 routing-mark=VIA_TPROXY scope=30 target-scope=10
    Code:
    /ip firewall mangle
    add action=mark-routing chain=prerouting comment=TPROXY disabled=no \
        dst-address-list=no-proxy dst-port=80 in-interface=ether5-local \
        new-routing-mark=VIA_TPROXY passthrough=yes protocol=tcp \
        src-address-list=ip-client
    add action=mark-connection chain=prerouting comment="" connection-mark=\
        VIA_TPROXY disabled=no in-interface=ether3-Proxy new-connection-mark=\
        VIA_TPROXY passthrough=yes
    add action=mark-routing chain=prerouting comment="" connection-mark=\
        VIA_TPROXY disabled=no in-interface=pppoe-out1 new-routing-mark=\
        VIA_TPROXY passthrough=yes
    add action=mark-packet chain=postrouting comment="" connection-mark=\
        VIA_TPROXY disabled=no dscp=12 new-packet-mark=CACHE_HIT passthrough=no

    Mohon koreksi masbro, dimana yg masih kurang sehingga tproxy belum running, terima kasih
    Last edited by alvis adelio; 10-12-2012 at 20:08.

  12. #72
    Status
    Offline
    wijil46's Avatar
    Member
    Join Date
    Oct 2011
    Location
    Yogyakarta, Indonesia
    Posts
    159
    Reviews
    Read 0 Reviews
    Downloads
    12
    Uploads
    1
    Feedback Score
    0
    Click here to enlarge Originally Posted by c.prompt Click here to enlarge
    Pertama ane jg gagal gan, tapi setelah ane tambah routing di halaman pertama, akhirnya berhasil

    Code:
    ip rule add fwmark 1 lookup 100
    ip route add local 0.0.0.0/0 dev lo table 100
    sudah mas bro
    sampe si TS nya ngeremote punya ane tetep aj g bisa

  13. #73
    Status
    Offline
    c.prompt's Avatar
    Baru Gabung
    Join Date
    Aug 2008
    Posts
    7
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0

    Save

    Sepertinya memang ada yang kurang bro :

    setelah :

    Code:
    iptables-restore iptables-TPROXY
    itu baru restore script iptables, harus di save and apply
    Code:
    iptables-save > /etc/iptables.up.rules
    iptables-apply /etc/iptables.up.rules
    o iya, ane pake ubuntu, kalo yang lain nggak tau Click here to enlarge

  14. #74
    Status
    Offline
    alvis adelio's Avatar
    Member
    Join Date
    May 2010
    Posts
    100
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Belum berhasil jua dah berkali kali coba, menunggu wangsit saja lah Click here to enlarge

  15. #75
    Status
    Offline
    MbahGambi's Avatar
    Baru Gabung
    Join Date
    Oct 2012
    Posts
    12
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    ikutan galau ya gan ..........................

 

 
Page 5 of 13 FirstFirst ... 34567 ... LastLast

Thread Information

Users Browsing this Thread

There are currently 5 users browsing this thread. (0 members and 5 guests)

Similar Threads

  1. [WTS] Interface Card Intel Chipset Single/Dual port
    By warnet in forum Others Hardware
    Replies: 67
    Last Post: 05-07-2014, 14:27
  2. Mengembalikan Interface Ethernet yang terdisable semua..
    By adhielesmana in forum Beginner Basics
    Replies: 43
    Last Post: 06-01-2011, 13:50
  3. [JUAL] SFP LX (single mode) 1310nm 1.25g up to 20KM
    By rosesana in forum Lapak serba-serbi
    Replies: 0
    Last Post: 31-08-2010, 05:54
  4. Sale radio microwave PDH ethernet,sdh optical/ethernet
    By tommyblack in forum Others Hardware
    Replies: 0
    Last Post: 18-04-2010, 10:40

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •