of 19
8/18/2019 Shorewall Bridge
1/19
SHOREWALL BRIDGE
By Goodle Crew
8/18/2019 Shorewall Bridge
2/19
ShorewallShorewall merupakan firewall yang
berbasis iptables yang dapat digunakan
pada suatu sistem dedicated,gateway/router/server multifungsi atau
pada standalone linux
8/18/2019 Shorewall Bridge
3/19
Shorewall Bridge
8/18/2019 Shorewall Bridge
4/19
InstalasiRemove
!"# apt$get remove portmap
!"# apt$get remove nfs$common !"# apt$get remove pidentd
8/18/2019 Shorewall Bridge
5/19
8/18/2019 Shorewall Bridge
6/19
Instalasi %nstsall editor
!"# apt$get install vim
!"# apt$get install mc
8/18/2019 Shorewall Bridge
7/19
Instalasi %nstall Bridge
!"# apt$get install bridge$utils
8/18/2019 Shorewall Bridge
8/19
Instalasi &dit %nterfaces
!"# vim /etc/network/interfaces
auto br'iface br' inet static
address (ip address)
netmask (ip netmask)
broadcast (ip broadcast)
gateway
bridge$ports all
8/18/2019 Shorewall Bridge
9/19
InstalasiRestart networking
!"# /etc/init*d/networking restart
8/18/2019 Shorewall Bridge
10/19
Instalasi %nstall ebtables
!"# apt$get install ebtables %nstall iptables
!"# apt$get install iptables
8/18/2019 Shorewall Bridge
11/19
Instalasi %nstall Shorewall
!"# apt$get install shorewall
8/18/2019 Shorewall Bridge
12/19
Konfigurasi+asuk ke direktori shorewall
!"# cd /etc/shorewall+elihat isi direktori
!/etc/shorewall# ls
8/18/2019 Shorewall Bridge
13/19
Konfigurasi+engubah konfigurasi shorewall
!/etc/shorewall# vim shorewall*conf
GantiBR%G%-G.-o
menadi
BR%G%-G.0es
8/18/2019 Shorewall Bridge
14/19
Konfigurasi +enambahkan file 1hosts2 di /etc/shorewall
yang berisi!
net br0:eth1loc br0:eth0
+enambahkan file 1interfaces2 di
/etc/shorewall yang berisi!
- br0 192.168.1.0 routestopped,blacklist
8/18/2019 Shorewall Bridge
15/19
Konfigurasi+enambahkan file 1policy2 di
/etc/shorewall yang berisi!
loc net ACCEPnet all !"#P
all all "E$EC
Menambahkan fle “routestopped”
di /etc/shorewall yang berisi:br0 192.168.1.0%2&
8/18/2019 Shorewall Bridge
16/19
Konfigurasi
+enambahkan file 1rules2 di
/etc/shorewall yang berisi!
ACCEP '() net all
ACCEP net '() tcp 22,2*,&&+,21
ACCEP '() loc all
ACCEP loc '() tcp 22,2*,6
8/18/2019 Shorewall Bridge
17/19
Konfigurasi
+enambahkan file 13ones2 di
/etc/shorewall yang berisi!
net et internet
loc ocal $arlok
8/18/2019 Shorewall Bridge
18/19
Konfigurasi
Rubah konfigurasi pada
/etc/default/shorewall
startup/0
menadi
startup/1
8/18/2019 Shorewall Bridge
19/19
Mengaktifkan irewall
4akukan perintah
/etc/init*d/shorewall start
4ist firewall dengan perintah
iptables 5n4 6 less