[ask] How to Block Unwanted Port

[ask] How to Block Unwanted Port - Printable Version

+- Indonesian Back|Track Team (https://www.indonesianbacktrack.or.id/forum)
+-- Forum: Defensive Zone (https://www.indonesianbacktrack.or.id/forum/forum-173.html)
+--- Forum: Hardening (https://www.indonesianbacktrack.or.id/forum/forum-189.html)
+--- Thread: [ask] How to Block Unwanted Port (/thread-4786.html)

[ask] How to Block Unwanted Port - hyp37 - 07-12-2013

Assalamualaikum...
bagaimana ya cara menutup (closing) port yang tidak berguna..

seperti ini contoh port di localhost saya, dgn perintah "nmap -sS 127.0.0.1" :

Quote:Discovered open port 80/tcp on 127.0.0.1
Discovered open port 143/tcp on 127.0.0.1
Discovered open port 111/tcp on 127.0.0.1
Discovered open port 1/tcp on 127.0.0.1
Discovered open port 32773/tcp on 127.0.0.1
Discovered open port 32774/tcp on 127.0.0.1
Discovered open port 2000/tcp on 127.0.0.1
Discovered open port 1524/tcp on 127.0.0.1
Discovered open port 32772/tcp on 127.0.0.1
Discovered open port 32771/tcp on 127.0.0.1
Discovered open port 12345/tcp on 127.0.0.1
Discovered open port 1080/tcp on 127.0.0.1
Discovered open port 119/tcp on 127.0.0.1
Discovered open port 6667/tcp on 127.0.0.1
Discovered open port 79/tcp on 127.0.0.1
Discovered open port 31337/tcp on 127.0.0.1

Nah, saya bro mau menutup port "79" misalkan.. bagaimana ?
Dan juga kalau ada yg punya list port yg berpotensi bisa terexploitasi.. Smile

RE: [ask] How to Block Unwanted Port - hyp37 - 07-21-2013

up

ada yg bisa bantu, masih belum ada tanggapan kawan-kawan?

RE: [ask] How to Block Unwanted Port - alkaaf - 07-21-2013

pake ni aja

Code:
iptables -A INPUT -p tcp -i (interface) --destination-port (port number) -j DROP

contoh : blok koneksi port 79 masuk dari eth0

iptables -A INPUT -p tcp -i eth0 --destination-port 79 -j DROP

contoh : blok koneksi port 79

iptables -A INPUT -p tcp --destination-port 79 -j DROP

contoh : blok koneksi port 79 dari ip 192.168.1.10

iptables -A INPUT -p tcp -s 192.168.1.10 --destination-port 22 -j DROP

contoh : blok port 79 dari network 192.168.1.0/24

iptables -A INPUT -p tcp -s 192.168.1.0/24 --destination-port 22 -j DROP

sebagai peringatan aja. port diatas 30000 biasanya dipakai untuk koneksi keluar (output). kalo bro mencoba menutup semua port tersebut. bro ngga akan bisa berkoneksi

Code:
Discovered open port 32773/tcp on 127.0.0.1

Discovered open port 32774/tcp on 127.0.0.1

Discovered open port 32772/tcp on 127.0.0.1

Discovered open port 32771/tcp on 127.0.0.1

Discovered open port 31337/tcp on 127.0.0.1

port tersebut aman soalnya cuman koneksi keluar aja, bukan koneksi masuk Big Grin

RE: [ask] How to Block Unwanted Port - zee eichel - 07-23-2013

nice bro alkaaf ... rate melayang and get the nice knowledge ..

RE: [ask] How to Block Unwanted Port - hyp37 - 07-23-2013

(07-21-2013, 02:42 PM)alkaaf Wrote: pake ni aja

Code:
iptables -A INPUT -p tcp --destination-port 79 -j DROP [/quote] sudah saya coba ini mas, masih terbuka port yg ingin saya close itu.. apakah ada kesalahan command ya? barangkali mau jelasin -A, -p, -j.. itu mas? :) [quote='alkaaf' pid='45453' dateline='1374388969'] sebagai peringatan aja. port diatas 30000 biasanya dipakai untuk koneksi keluar (output). kalo bro mencoba menutup semua port tersebut. bro ngga akan bisa berkoneksi [code] Discovered open port 32773/tcp on 127.0.0.1 Discovered open port 32774/tcp on 127.0.0.1 Discovered open port 32772/tcp on 127.0.0.1 Discovered open port 32771/tcp on 127.0.0.1 Discovered open port 31337/tcp on 127.0.0.1
port tersebut aman soalnya cuman koneksi keluar aja, bukan koneksi masuk

Thanks.. warning port nya ^_^