会议论文详细信息
International Conference on Science and Innovated Engineering
Analysis and implementation of the Port Knocking method using Firewall-based Mikrotik RouterOS
工业技术(总论);自然科学(总论)
Mursyidah^1 ; Husaini^1 ; Atthariq^1 ; Arhami, Muhammad^1 ; Hidayat, Hari Toha^1 ; Anita^1 ; Ramadhona^1
Department of Information Computer Technology, Politeknik Negeri Lhokseumawe, Lhokseumawe
24301, Indonesia^1
关键词: Data services;    Filter effectiveness;    LINUX- operating system;    Mac address spoofing;    Network interface cards;    Packet filtering;    Socket programming;    Third party application (Apps);   
Others  :  https://iopscience.iop.org/article/10.1088/1757-899X/536/1/012129/pdf
DOI  :  10.1088/1757-899X/536/1/012129
来源: IOP
PDF
【 摘 要 】

Static firewalls such as packet filtering that restrict access based on addresses on NIC (Network Interface Card) devices in the form of MAC addresses will make dependence on the device, this will make it difficult for administrators. This type of firewall is vulnerable to packet spoofing in the form of MAC address spoofing. Firewall port knocking in some previous research, port Knocking using third-party applications that must be installed and dependence on certain. This port knocking method with port programming based on socket programming aims to provide easy access without dependence on IP addresses and Mac addresses or operating systems as well as better security through a tap format that must go through 4 stages, namely having to use the correct protocol type, port number correct, correct order and send the correct string to obtain access rights. The Port knocking method only allows access to clients who have performed the correct and complete knocking port. Knocking port applications are made using socket-based programming that can run on Windows and Linux operating systems and do not need the installation process so that the authentication process is less than 2 seconds. The compatibility of the port Knocking application makes access easier and faster. The port knocking method firewall has a filter effectiveness of 66.7% and better resistance to DDoS attacks than packet filtering based on data service quality. Port Knocking gets RTT value of 380 ms (Medium Category) and Packet loss of 8.3% (Good Category), while packet filtering gets RTT value of 2858 (Poor Category) and Packet Loss of 56.3% (Poor Category).

【 预 览 】
附件列表
Files Size Format View
Analysis and implementation of the Port Knocking method using Firewall-based Mikrotik RouterOS 701KB PDF download
  文献评价指标  
  下载次数:7次 浏览次数:12次