Mandriva – Install Sock Proxy


sebenere tujuane bikin sock proxy untuk masa depan aja. rencananya mo bikin LAN yang tersambung ke internet hanya melalui proxy, baik itu web, chat, multimedia ato yang lainnya. yah untuk meminimalkan akses forward dan memblokiri virus yang gak karuan ujungnya.

moga aja jalan yang aku tempuh ini bener adane :p

langsung aja:

urpmi dante
To satisfy dependencies, the following 2 packages are going to be installed (1 MB):
dante-server-1.1.17-1mdk.i586
libdante0-1.1.17-1mdk.i586
Is this OK? (Y/n)

http://cooker.landak.com/cooker/media/contrib/libdante0-1.1.17-1mdk.i586.rpm
http://cooker.landak.com/cooker/media/contrib/dante-1.1.17-1mdk.i586.rpm
installing libdante0-1.1.17-1mdk.i586.rpm dante-1.1.17-1mdk.i586.rpm from /var/cache/urpmi/rpms
Preparing… #############################################
1/2: libdante0 #############################################
2/2: dante-server #############################################
edit file /etc/socks.conf

vim /etc/socks.conf

#buat liat log nya
logoutput: /var/log/sockd/sockd

#definisikan mana LAN mana Internet, sesuaikan dengan kondisi yang ada
internal: eth0 port = 1080
external: eth1

# methods for socks-rules. biarkan semua user LAN konek tanpa autentikasi
method: username none #rfc931

#rule buat client biarkan saja
clientmethod: none

# Allow everyone from my LAN
client pass {
from: 192.168.0.0/24 port 1-65535 to: 0.0.0.0/0
log: connect disconnect
}

# Block everyone else
client block {
from: 0.0.0.0/0 to: 0.0.0.0/0
log: connect error
}

# Block everyone connection to lo
block {
from: 0.0.0.0/0 to: 127.0.0.0/8
log: connect error
}

# Block subnet 172.16.0.0/32
block {
from: 0.0.0.0/0 to: 172.16.0.0/12
log: connect error
}

# Allow replys to bind and incoming udo
pass {
from: 0.0.0.0/0 to: 192.168.0.0/24
command: bindreply udpreply
log: connect error
}

# Allow tcp and upd connections from our lan to everywhere
pass {
from: 192.168.0.0/24 to: 0.0.0.0/0
protocol: tcp udp
log: error
}

# Log all the rest
block {
from: 0.0.0.0/0 to: 0.0.0.0/0
log: connect error
}

itu aja yang perlu di sunting, lainnya biarkan standar

untuk memulai sockd server

sudo service sockd restart
Shutting down sockd: [ OK ]
Starting sockd: [ OK ]
ok cek portnya udah open apa belom

sudo netstat -pln | grep 1080
tcp 0 0 10.10.10.1:1080 0.0.0.0:* LISTEN 14461/sockd
yup, udah oke….

tinggal blok ato filter port 1080 yang mengarah ke eth0

test dengan client mirc

mirc
sukses deh..

🙂

One comment

  1. FREE PROXY AND SOCKS UPDATED EVERY DAYS!!

    REALLY WORKS!!!

    www . mildnews . com

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: