- Connection Tracking dapat dilihat pada menu IP > Firewall > Connection
- Connection Tracking mempunyai kemampuan untuk melihat informasi koneksi seperti source dan distinition IP dan port yang sedang digunakan, status koneksi, tipe protocol, dll.
- Status koneksi pada connection tracking :
- Established = the packet is par of already known connection.
- New = the packet starts a new connection or belongs to a connection that has not seen packets in both directions yet,
- Related = the packet starts a new connection, but is associated with an existing connection, such as FTP data transfer or ICMP error message.
- Invalid = the packet does not belong to any known connection and, at the same time, does not open a valid new connection.
Implementasi Connection Tracking
- Pada saat membuat firewall, pada baris paling atas umumnya akan dibuat rule sebagai berikut :
- Connection state invalid > Drop
- Connection state established > Accept
- Connection state related > Accept
- Connection state new > Diproses ke rule berikutnya
- System rule ini akan sangat menghemat resource router, karena proses filtering selanjutnya akan dilakukan ketika koneksi dimulai (connection state=new)
Firewall Connection State
- Pada IP > Firewall > Filter Rule buat chain
- Chian Foward
- Connection state invalid > Action Drop
- Connection state established > Action Accept
- Connection state related > Action accept
- Connection state new > action pass-through
No comments:
Post a Comment