Forum @ Linux.Or.Id

Forum Pengguna Linux Indonesia

Skip to content

bagaimana mengantisipasi serangan flood / DOS

FreeBSD® is an advanced operating system for x86 compatible (including Pentium® and Athlon™), amd64 compatible (including Opteron™, Athlon™64, and EM64T), UltraSPARC®, IA-64, PC-98 and ARM architectures. It is derived from BSD, the version of UNIX® developed at the University of California, Berkeley.

Moderator: Moderators

Post a reply

bagaimana mengantisipasi serangan flood / DOS

Postby garfield_07 » Mon Jul 07, 2008 7:02 am

bagaimana caranya mengantisipasi serangan flood/DDOS menggunakan freeBSD? katanya IP static menjadi saasaran empuk flood tsb, ngeri juga sih mbayangin pas kalo ada pelanggan di warnet :'(

tulung donk para master, pencerahannya :) trims sebelumnya...
garfield_07
New Member
New Member
 
Posts: 12
Joined: Tue Jun 17, 2008 11:33 am
Top

Re: bagaimana mengantisipasi serangan flood / DOS

Postby el-sycho » Mon Jul 07, 2008 9:26 am

Menghindari serangan DDOS

Edit File /boot/loader.conf
# ee /boot/loader.conf

kern.ipc.maxsockets=16384
autoboot_delay="3"

Edit file /etc/sysctl.conf.
# ee /etc/sysctl.conf

kern.ipc.nmbclusters=16384
net.inet.tcp.sendspace=32768
net.inet.tcp.recvspace=32768
kern.ipc.somaxconn=2048
net.inet.icmp.drop_redirect=1
net.inet.icmp.log_redirect=1
net.inet.ip.redirect=0
kern.maxfiles=112328
kern.maxfilesperproc=31095
net.inet.tcp.blackhole=1
net.inet.udp.blackhole=1

ssst.. ZzzZzz.. :-)
el-sycho
New Member
New Member
 
Posts: 12
Joined: Fri Jan 25, 2008 3:41 pm
Location: /home/rody
Top

Re: bagaimana mengantisipasi serangan flood / DOS

Postby garfield_07 » Mon Jul 07, 2008 9:52 am

waw, Trims mas, nanti tak cobanya ... *THUMBS UP*
garfield_07
New Member
New Member
 
Posts: 12
Joined: Tue Jun 17, 2008 11:33 am
Top

Re: bagaimana mengantisipasi serangan flood / DOS

Postby garfield_07 » Mon Jul 07, 2008 10:00 am

mas, itu fungsinya memblok atau gimana? trus kalo mo liat lognya gimana caranya?
garfield_07
New Member
New Member
 
Posts: 12
Joined: Tue Jun 17, 2008 11:33 am
Top

Re: bagaimana mengantisipasi serangan flood / DOS

Postby iwellbc » Mon Jul 07, 2008 11:12 am

itu pada dasarnya mentweak kernel (untuk opsi sysctl), maksutnya agar kernel dalam menghandle penggunaan resource (hardware dan software-OS) bisa lebih optimize, jadi mengurangi resiko flood atau ddos, untuk lebih asyiknya bisa pake firewall misalnya pf atau ipfw dll
Last edited by iwellbc on Wed Jul 09, 2008 10:15 am, edited 1 time in total.
Image
User avatar
iwellbc
Starting Member
Starting Member
 
Posts: 78
Joined: Wed Apr 23, 2008 3:25 pm
Location: pengennya domisili di malang/jombang walupun kerjanya di jakarta.....
Top

Re: bagaimana mengantisipasi serangan flood / DOS

Postby el-sycho » Mon Jul 07, 2008 6:48 pm

thanks mas iwellbc dah bantu ngejelasin.. :-)
el-sycho
New Member
New Member
 
Posts: 12
Joined: Fri Jan 25, 2008 3:41 pm
Location: /home/rody
Top

Re: bagaimana mengantisipasi serangan flood / DOS

Postby iwellbc » Wed Jul 09, 2008 10:16 am

@el-sycho
sama-sama mas :)
Image
User avatar
iwellbc
Starting Member
Starting Member
 
Posts: 78
Joined: Wed Apr 23, 2008 3:25 pm
Location: pengennya domisili di malang/jombang walupun kerjanya di jakarta.....
Top

Re: bagaimana mengantisipasi serangan flood / DOS

Postby garfield_07 » Wed Jul 09, 2008 6:06 pm

:) seep, thx. mas iwel pencerahannya,

kalo menggunakan firewall paket apa mas yg harus diblok bila ingin ngeblok flood?
garfield_07
New Member
New Member
 
Posts: 12
Joined: Tue Jun 17, 2008 11:33 am
Top

Re: bagaimana mengantisipasi serangan flood / DOS

Postby iwellbc » Fri Jul 11, 2008 11:40 am

pada dasarnya flooding atau ddos ataupun hal-hal seperti adalah teknik penyerangan dengan memberikan pembebanan yang berlebihan pada jaringan, oleh karena itu untuk menanggulangi hal tersebut (dalam hal ini saya menggunakan pf) maka yg dilakukan adalah dengan memberikan pembatasan statenya http://forum.linux.or.id/viewtopic.php?f=44&t=15329
saya juga memasang anti spoof pada pf saya, selain itu juga anti nmap scanner (memberi batasan pada syn-ack nya)
jika tertarik menggunakan pf (packet filter), mungkin kalau sempat bisa mampir di situs mereka http://www.openbsd.org/faq/pf/index.html
Last edited by iwellbc on Mon Jul 14, 2008 11:28 am, edited 1 time in total.
Image
User avatar
iwellbc
Starting Member
Starting Member
 
Posts: 78
Joined: Wed Apr 23, 2008 3:25 pm
Location: pengennya domisili di malang/jombang walupun kerjanya di jakarta.....
Top

Re: bagaimana mengantisipasi serangan flood / DOS

Postby garfield_07 » Sat Jul 12, 2008 11:28 am

*THUMBS UP* Trims bang Iwell,

tapi saya masih blm mudeng pf, yah, pelan2 tak belajar deh ...
garfield_07
New Member
New Member
 
Posts: 12
Joined: Tue Jun 17, 2008 11:33 am
Top
Post a reply

Return to FreeBSD Support

Who is online

Users browsing this forum: No registered users and 1 guest

Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group