Learning All About Router: hacking

Monday, April 13, 2009

This capture ip Brute Force otentikasi service SSH on Port 22, using Broadband ADSL, with PortForwarding on Modem ADSLnya to Router Mikrotik. port 22 we move to 222

Firewall pada mikrotik diproses berurutan dari Atas ke Bawah, biasanya bagi yang baru memakai Mikrotik, dengan settingan Firewall Filternya kopi pastean, sering tidak urut. Membuat proses filter ini tidak berhasil.

add chain=input protocol=tcp dst-port=22 src-address-list=ssh_blacklist \
  action=drop comment="Drop SSH brute forcers" disabled=no
add chain=input protocol=tcp dst-port=22 connection-state=new \
  src-address-list=ssh_stage3 action=add-src-to-address-list \
  address-list=ssh_blacklist address-list-timeout=1w3d comment="" \
  disabled=no
add chain=input protocol=tcp dst-port=22 connection-state=new \
  src-address-list=ssh_stage2 action=add-src-to-address-list \
  address-list=ssh_stage3 address-list-timeout=1m comment="" disabled=no
add chain=input protocol=tcp dst-port=22 connection-state=new \
  src-address-list=ssh_stage1 action=add-src-to-address-list \
  address-list=ssh_stage2 address-list-timeout=1m comment="" disabled=no
add chain=input protocol=tcp dst-port=22 connection-state=new \
  action=add-src-to-address-list address-list=ssh_stage1 \
  address-list-timeout=1m comment="" disabled=no

Learning All About Router

SSH BruteForce Attack

RSS Subscription

About Me

Archives

Categories

My Blog List

Facebook Badge

Facebook Badge

Tracking

The Father Of Indonesian Internet

Download File

Blog Archive

Sponsors