KULIAH X FIREWALL KOM Keamanan Jaringan 2012/2013 KOM Keamanan Jaringan 2012/2013
Firewall Firewall adalah komponen yang berada di antara dua jaringan. Firewall menyeleksi paket-paket yang boleh masuk ke dalam suatu jaringan. A firewall is a hardware, software, or a combination of both that monitors and filters traffic packets that attempt to either enter or leave the protected private network
Firewall Sebuah paket dapat diseleksi berdasarkan: Source IP Destination IP Source Port Destination Port Protokol (TCP/UDP/ICMP) TCP Flag (Syn / ACK)
Introduction6 Filtering Rules - Examples Policy Firewall Setting No outside Web access. Drop all outgoing packets to any IP address, port 80 External connections to public Web server only. Drop all incoming TCP SYN packets to any IP except , port 80 Prevent IPTV from eating up the available bandwidth. Drop all incoming UDP packets - except DNS and router broadcasts. Prevent your network from being used for a Smurf DoS attack. Drop all ICMP packets going to a “broadcast” address (eg ). Prevent your network from being tracerouted Drop all outgoing ICMP
Introduction7 Access control lists action source address dest address protocol source port dest port flag bit allow /16 outside of /16 TCP > any allow outside of /16 TCP80 > 1023ACK allow /16 outside of /16 UDP > allow outside of /16 UDP53 > denyall
Demilitarized zone (DMZ)
Demilitarized Zone Sekumpulan server/komputer yang tetap dapat diakses dari luar meskipun terdapat firewall di dalam jaringan
Introduction10 Demilitarized Zone (DMZ) Web server FTP server DNS server application gateway Internet Demilitarized zone Internal network firewall
DMZ Networks Demilitarized zone (DMZ)
Tugas: Setting IP Table di Linux Matikan dan Nyalakan port 80 dan 21 Blokir akses dari IP tertentu Screenshot buktinya
Terima Kasih