Kalau maksudnya blokir https, berarti blokir port 443.
Caranya , tambahkan perintah berikut di file: /etc/rc.d/rc.firewall.local ,
bagian {start}
/sbin/iptables -A CUSTOMFORWARD -p tcp -i eth0 -s 192.168.10.0/24 --dport 443
-j DROP
Asumsi:
eth0 ->> GREEN
IP jaringan ->> 192.168.10.0
netmask ->> 255.255.255.0
tetapi harus ingat bahwa ada beberapa aplikasi yang pakai port 443 ini, misal:
web mail. Ini akan terblokir juga. Kecuali kita buat Custom White List pada URL
Filter nya.
Saran tambahan:
Sebaiknya port lain yaitu port 25, juga ditutup untuk GREEN , ijinkan hanya
dari mail server saja, karena port 25 sering diekploitasi oleh virus, spam
program.
Tutorial di
http://zhuro.wordpress.com/2009/06/05/block-smtp-selain-dari-mail-server/
Salam,
Suroto
http://zhuro.wordpress.com
--- On Wed, 10/20/10, Rina tenos <[email protected]> wrote:
From: Rina tenos <[email protected]>
Subject: [ITCENTER] [ASK] Blok https
To: [email protected]
Date: Wednesday, October 20, 2010, 2:31 PM
selamat siang....
saya pake server Ipcop
sudah memblok setiap categories yg ingin di blok tapi kalau menggunakan
https masih saja unblock. Bagaimana cara mengatasinya ya?
Terima kasih
[Non-text portions of this message have been removed]
[Non-text portions of this message have been removed]
------------------------------------
--
www.itcenter.or.id - Komunitas Teknologi Informasi Indonesia
Gabung, Keluar, Mode Kirim : [email protected]
Yahoo! Groups Links
<*> To visit your group on the web, go to:
http://groups.yahoo.com/group/ITCENTER/
<*> Your email settings:
Individual Email | Traditional
<*> To change settings online go to:
http://groups.yahoo.com/group/ITCENTER/join
(Yahoo! ID required)
<*> To change settings via email:
[email protected]
[email protected]
<*> To unsubscribe from this group, send an email to:
[email protected]
<*> Your use of Yahoo! Groups is subject to:
http://docs.yahoo.com/info/terms/
