Wan : Interface ke arah internet.
Lan : Interface ke arah local.
Ip Local : 192.168.0.0/16
Media : Mikrotik - Ip Firewall Filter
ip firewall filter
add chain=forward in-interface=Wan out-interface=Lan dst-address=192.168.0.0/16 action=accept comment="Allow semua akses internet to client" disabled=no
add chain=input in-interface=Wan protocol=tcp dst-port=8291 action=accept comment="Allow Remote winbox dari Publik" disabled=no
add chain=input in-interface=Wan protocol=udp src-port=123 action=accept comment="Allow NTP Traffic" disabled=no
add chain=input in-interface=Wan protocol=udp src-port=53 action=accept comment="Allow DNS Traffic" disabled=no
add chain=input in-interface=Wan protocol=icmp action=accept comment="Allow Ping Traceroute Traffic" disabled=no
add chain=input in-interface=Wan connection-state=new action=add-src-to-address-list address-list=spam address-list-timeout=30m comment="Log Ip Yang Di Tolak" disabled=no
add chain=input in-interface=Wan action=drop comment="Drop Semua Akses yang tidak di ijinkan" disabled=no
Ingin menguji keamanan firewall mikrotik anda ?
apakah dari luar ada celah ?
coba scan disini :
www.grc.com
pilih service -> ShieldsUP! -> Proceed -> All Ports.
suumber:http://www.forummikrotik.com
Tidak ada komentar:
Posting Komentar