Follow us on...
Follow us on G+ Follow us on Twitter Follow us on Facebook Watch us on YouTube
Register
Results 1 to 2 of 2
  1. #1
    Status
    Offline
    klingondroid's Avatar
    Baru Gabung
    Join Date
    Jun 2013
    Posts
    3
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0

    SSH Client dari ip luar

    Dear forum,

    Boleh minta tolong ga, saya ga bisa ssh dari luar office pake ip public laen. Yang ada saya masuk sshblacklist, saya coba non aktifkan bruteforce tetep ga bisa, masih di block di DROP ALL.

    ini rule saya:

    46 ;;; drop all traffic brute force attack sources
    chain=input action=drop src-address-list=sshblacklist

    47 ;;; add new failed sshdarkgreylist to sshblacklist
    chain=input action=add-src-to-address-list connection-state=new protocol=tcp src-address-list=sshdarkgreylist address-list=sshblacklist address-list-timeout=1h
    dst-port=22

    48 ;;; add new failed sshgreylist to sshdarkgreylist
    chain=input action=add-src-to-address-list connection-state=new protocol=tcp src-address-list=sshgreylist address-list=sshdarkgreylist address-list-timeout=1m
    dst-port=22
    49 ;;; add new failed sshlightgreylist to sshgreylist
    chain=input action=add-src-to-address-list connection-state=new protocol=tcp src-address-list=sshlightgreylist address-list=sshgreylist address-list-timeout=1m
    dst-port=22

    50 ;;; new connections to sshlightgreylist
    chain=input action=add-src-to-address-list connection-state=new protocol=tcp address-list=sshlightgreylist address-list-timeout=1m dst-port=22

    51 ;;; Drop everything else
    chain=input action=drop

    bagaimana gan?

  2. #2
    Status
    Offline
    triadisantoso's Avatar
    Member
    Join Date
    May 2010
    Location
    Lampung, Indonesia
    Posts
    199
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    hati2 menggunakan rule chain=input action=drop
    kalo ente ngk meng accept ,port yg mengarah ke input semua di drop
    ip-services rubah aja port sshnya 22 jadi 222 , itu kalo ngk mau pusing .. Click here to enlarge dan accept port 222
    di firewall itu ente ngk mengijinkan port 22 masuk ke router ya pasti kena drop all Click here to enlarge
    Last edited by triadisantoso; 25-07-2013 at 22:42.

 

 

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Remote Proxy dari luar
    By aionly777 in forum Beginner Basics
    Replies: 11
    Last Post: 14-07-2015, 15:30
  2. VPN dari luar biar dapet IP LAN
    By andy in forum General Networking
    Replies: 17
    Last Post: 29-09-2014, 07:09
  3. [sharing] Step by step - Remote Mikrotik dari Luar dial dari Modem
    By zdienos in forum Beginner / Installation
    Replies: 50
    Last Post: 25-04-2014, 16:10
  4. Mengakses Browser AP dari Luar
    By karaeng in forum Wireless Networking
    Replies: 10
    Last Post: 10-08-2010, 23:38
  5. remote mikrotik dari luar
    By superbejo in forum General Networking
    Replies: 9
    Last Post: 16-09-2009, 16:06

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •