How to Protect your Router OS from DNS Attacks

To protect your MikroTik from DNS server cache snooping remote information disclosure, you can disable allow remote requests option.

ip dns set allow-remote-requests=no

Finish.

Advertisements

About Debian

Why doesn’t it has the latest package?

Apache2 is already the newest version 2.24.25 at Debian.

Apache2 is already the newest version 2.24.34 at Official sites.

It happen because there’s no repository update.

Try upgrade your distribution.

sudo apt-get update &&
sudo apt-get upgrade &&
sudo apt-get dist-upgrade

Update repository from Debian 9 (stretch) to Debian 10 (buster).

sudo sed -i 's/stretch/buster/g' /etc/apt/sources.list &&
sudo apt-get update &&
sudo apt-get upgrade &&
sudo apt-get dist-upgrade

It’s experimental.
Finish.

Konfigurasi Multiple Network Interfaces pada CentOS 7

Misal, aku ingin konfigurasi interface ens192 dan ens224. Langkah yang perlu dilakukan antara lain:

Konfigurasi Static IP

Konfigurasi interface ens192 pada /etc/sysconfig/network-scripts/ifcfg-ens192.

TYPE=Ethernet
PROXY_METHOD=none
BROWSER_ONLY=no
BOOTPROTO=static
DEFROUTE=yes
IPV4_FAILURE_FATAL=no
IPV6INIT=no
IPV6_AUTOCONF=no
IPV6_DEFROUTE=no
IPV6_FAILURE_FATAL=no
IPV6_ADDR_GEN_MODE=stable-privacy
NAME=ens192
UUID=9dea0541-e754-4952-8eef-84348478b7d4
DEVICE=ens192
ONBOOT=yes
IPADDR=192.168.2.104
PREFIX=24
GATEWAY=192.168.2.1
DNS1=8.8.8.8
IPV6_PRIVACY=no
ZONE=public

Konfigurasi interface ens224 pada /etc/sysconfig/network-scripts/ifcfg-ens224.

TYPE=Ethernet
PROXY_METHOD=none
BROWSER_ONLY=no
BOOTPROTO=static
DEFROUTE=yes
IPV4_FAILURE_FATAL=no
IPV6INIT=no
IPV6_AUTOCONF=no
IPV6_DEFROUTE=no
IPV6_FAILURE_FATAL=no
IPV6_ADDR_GEN_MODE=stable-privacy
NAME=ens224
UUID=9bea0541-e754-4952-8eef-84348478b7d5
DEVICE=ens224
ONBOOT=yes
IPADDR=10.13.37.166
PREFIX=24
DNS1=31.3.3.7
IPV6_PRIVACY=no
ZONE=internal

Konfigurasi Static Route

10.0.0.0/8 dev ens224 src 10.13.37.166 table rt2
default via 10.13.37.1 dev ens224 table rt2

Konfigurasi Static Rule

Pasang package NetworkManager untuk mengatur Route dan Rule agar menjadi persistent.

sudo yum install NetworkManager-config-routing-rules &&
sudo systemctl enable NetworkManager-dispatcher.service &&
sudo systemctl start NetworkManager-dispatcher.service
from 10.13.37.166/8 table rt2
to 10.13.37.166/8 table rt2

Konfigurasi Routing Table

Tambahkan line rt 1 pada berkas /etc/iproute2/rt_tables.

Restart Network

Bisa dilakukan dengan perintah reboot.

Verifikasi

Untuk memeriksa konfigurasi bisa dilakukan dengan ping ke gateway masing-masing.

ping 10.13.37.1
ping 192.168.2.1

Selesai.