http://digilib.its.ac.

id

SUMMARY RANCANG BANGUN INTRUSION PREVENTION SYSTEM PADA JARINGAN BERBASIS SNORT DAN IPTABLES FIREWALL
DESIGN AND IMPLEMENTATION OF INTRUSION PREVENTION SYSTEM ON THE NETWORK WITH SNORT AND IPTABLES FIREWALL Created by Hakim, Achmad Khalif Subject Keyword : : Jaringan Komputer : Snort IDS ; Alert ; IPTables ; IPS

Description :
Sistem Pendeteksian Intrusi (Intrusion Detection System / IDS) memegang peranan penting dalam pengamanan jaringan. Snort merupakan salah satu produk Open Source yang menjadi pilihan ideal sebagai pendeteksi intrusi dalam jaringan. Namun perlu diketahui bahwa fungsi dari Snort bisa dikembangkan menjadi sebuah Sistem Pencegah penyusupan (Intrusion Prevention System / IPS), dengan bantuan Firewall (IPTables) serta sebuah perangkat lunak tambahan yang mampu menangkap alert dari snort yang kemudian mampu meng-update rule dari Firewall (IPTables) secara otomatis, perangkat lunak tambahan tersebut adalah Blockit. Dalam pengerjaan Tugas Akhir ini penulis akan merancang dan membuat sistem yang mampu mendeteksi suatu penyusupan dengan menggabungkan Snort, Firewall (IPTables) serta Blockit. Ketika Snort mendeteksi (detecting) adanya intrusi maka alamat IP asal, port asal dan informasi lainnya tentang penyerang akan ditampung sebagai alert. Kemudian alert akan diterima oleh Blockit sehingga nantinya Blockit menetapkan suatu tindakan mengkonfigurasi ulang rule Firewall untuk menghadang (blocking) alamat IP penyerang. Setelah jangka waktu tertentu maka Blockit akan membuka kembali koneksi (unblocking) IP address tersebut.

Description Alt:
Intrusion Detection System has an important function in the network security. Snort is an open source product that can be an ideal choice for an Intrusion Detection System. But we must understand that Snort function can be improved to an Intrusion Prevention System, with the help of Firewall(IPTables) and another software that can catch Snort alert and then it can also update the rule of Firewall(IPTables) automatically, the software called Blockit. In the making of this final project the writer will design and implementing a system that can detect an intrusion with combining Snort, Firewall(IPTables) and Blockit. When Snort detecting an intrusion, the address, port and information of the intruder will be catch as alert. The alert will be received by Blockit and then Blockit make an action that will update Firewall(IPTables) rule to block the IP address of the intruder. After a period of time, Blockit will unblock the IP address.

Contributor Date Create Type Format Language Identifier Collection Call Number

: Royyana Muslim I, S.Kom., M.Kom <br> Tohari Ahmad, S.Kom : 09/12/2008 : Text : pdf : Indonesian : ITS-Undergraduate-3100008032500 : 3100008032500 : RSIf 004.6 Hak r

Page 1

Source COverage Right

: Undergraduate Theses of Informatics Engineering Department, RSIf 004.6 Hak r, 2008 : ITS Community : Copyright @2008 by ITS Library. This publication is protected by copyright and permission should be obtained from the ITS Library prior to any prohibited reproduction, storage in a retrievel system, or transmission in any form or by any means, electronic, mechanical, photocopying, recording, or likewise. For information regarding permission(s), write to ITS Library

Full file - Member Only

If You want to view FullText...Please Register as MEMBER

Contact Person :
Administrator (timit_perpus@its.ac.id) Taufik Rachmanu (taujack@its.ac.id) Dewi Eka Agustina (dee@its.ac.id) Ansi Aflacha Putri (ansi@its.ac.id) Tondo Indra Nyata (tondoindra@gmail.com) Aprillia Tri Wulansari (rezha_la2@ymail.com)

Thank You,

Nur Hasan ( hassane@its.ac.id ) Supervisor

Page 2