Follow us on...
Follow us on G+ Follow us on Twitter Follow us on Facebook Watch us on YouTube
Register
Results 1 to 11 of 11
  1. #1
    Status
    Offline
    Cloudly's Avatar
    Newbie
    Join Date
    Aug 2008
    Posts
    39
    Reviews
    Read 0 Reviews
    Downloads
    2
    Uploads
    0
    Feedback Score
    0

    help. web-proxy di bobol hacker

    guys help me please, beberapa hari yang lalu web-proxy gw ternyata bisa di bypass alias dibobol. bukti nya benar setelah di ketahui di beberapa user yg IP nya memang tidak dapat mengakses http /80 ternyata bisa browsing, dan setelah di investigasi ternyata benar di pc tsb telah di install software2 free proxy sehingga rule yg tertera di blocking list web proxy access gw bisa di lewati semua...Click here to enlargeClick here to enlarge


    om2, abang2, akang2, mas2.. mohon pencerahan nya:
    1.bagaimana cara filtering port2 software2 free proxy tsb
    2.bagaimana memperkuat web-proxy mikrotik kita biar tidak mudah di scan oleh
    beberapa proxy port finder

    thanks, after before all mikroters .Click here to enlargeClick here to enlargeClick here to enlarge

  2. #2
    Status
    Offline
    mattnux's Avatar
    Forum Guru
    Join Date
    Jun 2008
    Location
    jakarta
    Posts
    1,255
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    1 (100%)
    gampang aja gan..

    misalnya untuk memblok akses ke facebook, ini contoh aja ya...

    ip web-proxy access add src-address=192.168.3.22/32 dst-port=80,443 url="*.facebook" action=deny

    aplikasi2 freeproxy menggunakan tunnel ke port2 selain 80, biasanya menggunakan port 443, kalo juragan ga yakin sikat aja dengan pake mode invert port 80 biar ke blok semua hehehe, untuk domain(url) juga pintar2nya kombinasi misalnya *.com *.org dll

  3. #3
    Status
    Offline
    m3tr0mini's Avatar
    Member Super Senior
    Join Date
    Sep 2007
    Posts
    660
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    @ atas gw...
    bro, kalo seluruh trafik diarahkan ke proxy bisa nda?
    misal kayak gini
    Code:
    $IPT -t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT --to-ports 3128
    $IPT -t nat -A PREROUTING -p tcp --destination-port 443 -j REDIRECT --to-ports 3128
    $IPT -t nat -A PREROUTING -p tcp --destination-port 3128 -j REDIRECT --to-ports 3128
    $IPT -t nat -A PREROUTING -p tcp --destination-port 8080 -j REDIRECT --to-ports 3128

    mohon pencerahan....

  4. #4
    Status
    Offline
    mattnux's Avatar
    Forum Guru
    Join Date
    Jun 2008
    Location
    jakarta
    Posts
    1,255
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    1 (100%)
    udah ane jawab kan hehehe

  5. #5
    Status
    Offline
    m3tr0mini's Avatar
    Member Super Senior
    Join Date
    Sep 2007
    Posts
    660
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    wah, dah gw cobain pake metode maksa via proxy 3128,...
    ternyata malah nda bisa login ke facebook

  6. #6
    Status
    Offline
    mattnux's Avatar
    Forum Guru
    Join Date
    Jun 2008
    Location
    jakarta
    Posts
    1,255
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    1 (100%)
    yang dibolehin di exclude dong dari rule2 ituClick here to enlargeClick here to enlarge

  7. The Following User Says Thank You to mattnux For This Useful Post:


  8. #7
    Status
    Offline
    Cloudly's Avatar
    Newbie
    Join Date
    Aug 2008
    Posts
    39
    Reviews
    Read 0 Reviews
    Downloads
    2
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by mattnux Click here to enlarge
    gampang aja gan..

    misalnya untuk memblok akses ke facebook, ini contoh aja ya...

    ip web-proxy access add src-address=192.168.3.22/32 dst-port=80,443 url="*.facebook" action=deny

    aplikasi2 freeproxy menggunakan tunnel ke port2 selain 80, biasanya menggunakan port 443, kalo juragan ga yakin sikat aja dengan pake mode invert port 80 biar ke blok semua hehehe, untuk domain(url) juga pintar2nya kombinasi misalnya *.com *.org dll

    bro thx atas pencerahannya,
    cuma konfigurasi ini udah coba di jalanin tapi masih allow alias lewat kenapa yach... apakah bisa di identifikasi melalui network monitoring? jika rule kita sedang di tembus oleh user yg menggunakan aplikasi2 proxy gratisan? mohon solusi yg terbaik bro semua

    thx

  9. #8
    Status
    Offline
    mattnux's Avatar
    Forum Guru
    Join Date
    Jun 2008
    Location
    jakarta
    Posts
    1,255
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    1 (100%)
    paste kesini konfigurasi ip web-proxy mu bro yg lengkap ya

  10. #9
    Status
    Offline
    r52n's Avatar
    Newbie
    Join Date
    Sep 2009
    Posts
    23
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    untuk user-user yang nakal, dibuatkan firewall dengan prinsip "allow white-list all block" aja....
    khan ip addressnya bisa dimonitor, mac address nya juga.

    untuk user-user yang baik, tetap pakai rule yang biasa saja.

  11. #10
    Status
    Offline
    DuaCe's Avatar
    Calon Member
    Join Date
    Aug 2009
    Posts
    87
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by Cloudly Click here to enlarge
    guys help me please, beberapa hari yang lalu web-proxy gw ternyata bisa di bypass alias dibobol. bukti nya benar setelah di ketahui di beberapa user yg IP nya memang tidak dapat mengakses http /80 ternyata bisa browsing, dan setelah di investigasi ternyata benar di pc tsb telah di install software2 free proxy sehingga rule yg tertera di blocking list web proxy access gw bisa di lewati semua...Click here to enlargeClick here to enlarge
    Kenapa si user nya dikasih untuk bisa nginstall2? Kalau di tempat saya, user gak bisa install2

  12. #11
    Status
    Offline
    r52n's Avatar
    Newbie
    Join Date
    Sep 2009
    Posts
    23
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    oya, sama satu lagi, judulnya enggak pas kali yah....
    web-proxy nya enggak kenapa-kenapa kok.....
    yang ngebobol juga bukan kelas hacker lah.....
    modal googling bentar juga gak terlalu sulit untuk cari free-proxy di luar sana.

 

 

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. (info) Tools Bobol Pass Mikrotik
    By linux3000 in forum General Networking
    Replies: 27
    Last Post: 06-06-2012, 10:38
  2. HotSpot Mikrotik bisa di bobol
    By ahmad210993 in forum Firewall
    Replies: 57
    Last Post: 02-06-2011, 02:11
  3. Filter AP Mikrotik Di Jebol Hacker
    By Mr. WonderFULL in forum Wireless Networking
    Replies: 44
    Last Post: 11-07-2010, 17:23
  4. Hostpot mikrotik bisa di bobol..
    By iwanaza in forum General Networking
    Replies: 4
    Last Post: 29-10-2009, 03:27

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •