Archive for April 16, 2008

adduser di smoothwall

{ April 16, 2008 @ 11:18 pm } · { About Me, Linux Familly, Router, Tutorial, Warnet }
{ Tags: , , } · { Comments (2) }

disini saya akan memberi contoh adduser di smoothwall dengan username idiots

edit file /etc/passwd

idiots:x:103:103:iDiots:/home/idiots: <— ini jika kamu ingin meng add user biasa

idiots:x:0:0:iDiots:/: <— ini jika kamu ingin meng add super user biasa

edit /etc/group

idiots:x:103:

edit /etc/shadow

idiots::0:0:99999:7:::

chmod 600 /etc/shadow

rubah kembali permision file shadow
chmod 400 /etc/shadow

[root@planet ~]# passwd idiots

lalu masukkan passwd yang anda inginkan…

selamat mencoba…

squid.conf smoothwall final

{ April 16, 2008 @ 11:08 pm } · { About Me, Linux Familly, Networking, Router, Warnet }
{ Tags: , , , } · { Comments (16) } 

# Do not modify '/var/smoothwall/proxy/squid.conf' directly since any changes
# you make will be overwritten whenever you resave proxy settings using the
# web interface!
#
# Instead, modify the file '/var/smoothwall/proxy/advanced/acls/include.acl' and
# then restart the proxy service using the web interface. Changes made to the
# 'include.acl' file will propagate to the 'squid.conf' file at that time.

shutdown_lifetime 5 seconds
icp_port 0

http_port 192.168.0.1:800 transparent

acl QUERY urlpath_regex cgi-bin \?
cache deny QUERY

cache_effective_user squid
cache_effective_group squid
umask 022

pid_filename /var/run/squid.pid

## sebisa mungkin object yg di simpan lebih besar

maximum_object_size 64 MB
maximum_object_size_in_memory 16 KB

error_directory /usr/local/squid/advproxy/errors/English
 ... continue reading this entry.

squid analys di smoothwall

{ April 16, 2008 @ 11:02 pm } · { About Me, Linux Familly, Networking, Router, Tutorial, Warnet }
{ Tags: , , } · { Comments (1) }

download sw_squidlogs.tgz

tar -zxvf /tmp/sw_squidlogs.tgz -C /

cp /home/httpd/html/ui/assets/3.6/img/pagetitles/page-proxylog.dat.png \ /home/httpd/html/ui/assets/3.6/img/pagetitles/page-squid.png

lalu edit /var/smoothwall/main/ui/alertboxes.en.pl

setelah baris 

'proxylog.dat' => '<font class=\'pagetitle\'>Web Proxy Log Viewer</font><br>Check logs for the web proxy service.',

masukkan ini

'squid.cgi' => '<font class=\'pagetitle\'>Web Proxy Log Analysis Report</font><br>Analyse traffic through the web proxy service.',
 ... continue reading this entry.

my Firewall on Smoothwall

{ April 16, 2008 @ 10:32 pm } · { About Me, Linux Familly, Networking, Router, Warnet }
{ Tags: , , } · { Comments (3) }

file ini di simpan di /etc/rc.d/rc.firewall.up

#!/bin/sh

# Disable ICMP Redirect Acceptance
for FILE in /proc/sys/net/ipv4/conf/*/accept_redirects; do
echo 0 > $FILE
done

# Disable Source Routed Packets
for FILE in /proc/sys/net/ipv4/conf/*/accept_source_route; do
echo 0 > $FILE
done

# Log Spoofed Packets, Source Routed Packets, Redirect Packets
for FILE in /proc/sys/net/ipv4/conf/*/log_martians; do
echo 1 > $FILE
done

# Set timeouts. 2.5 hours for TCP.
#/sbin/ipchains -M -S 9000 0 0

/sbin/iptables -F
/sbin/iptables -X

/sbin/iptables -P INPUT DROP
/sbin/iptables -P FORWARD DROP
/sbin/iptables -P OUTPUT ACCEPT

# buat ngedrop hits dari Blaster worm
/sbin/iptables -A INPUT -p TCP -i $RED_DEV –dport 135 -s 0/0 -j DROP

# buat Ngedrop netbios traffic
/sbin/iptables -A INPUT -p UDP -i $RED_DEV –dport 137 -s 0/0 -j DROP
/sbin/iptables -A INPUT -p UDP -i $RED_DEV –dport 138 -s 0/0 -j DROP … continue reading this entry.