Psad: Instalasi: Difference between revisions

From OnnoCenterWiki
Jump to navigationJump to search
Newer edit →
Onnowpurbo (talk | contribs)
69,477 edits
Onnowpurbo (talk | contribs)
69,477 edits
New page: ==Install== apt-get update apt-get install psad ==Edit File Konfigurasi== vi /etc/psad/psad.conf Edit EMAIL_ADDRESSES HOSTNAME ENABLE_AUTO_IDS - set ke Y jika anda ingin PSAD m...
 
Onnowpurbo (talk | contribs)
69,477 edits
No edit summary
Line 16: Line 16:
  ENABLE_AUTO_IDS_EMAILS - set ke Y jika anda ingin menerima email notifikasi.
  ENABLE_AUTO_IDS_EMAILS - set ke Y jika anda ingin menerima email notifikasi.


3. Add iptables LOG rules for both IPv4 and IPv6.


    For an explanation of this step click here.
==Tambahkan LOG rules ke iptables==
    Add the following iptables policies :


  iptables -A INPUT -j LOG
  iptables -A INPUT -j LOG
Line 26: Line 24:
  ip6tables -A FORWARD -j LOG
  ip6tables -A FORWARD -j LOG


4. Reload and update PSAD.
==Reload & update PSAD==
 
    To restart, update the signature file and reload PSAD to complete the install open a Terminal Window and enter :


  psad -R
  psad -R
Line 34: Line 30:
  psad -H
  psad -H


    To check the status of PSAD, open a Terminal Window and enter :
Cek status


  psad --Status
  psad --Status

Revision as of 10:12, 2 June 2015

Install

apt-get update
apt-get install psad


Edit File Konfigurasi

vi /etc/psad/psad.conf

Edit 

EMAIL_ADDRESSES
HOSTNAME
ENABLE_AUTO_IDS - set ke Y jika anda ingin PSAD men-set firewall automatis.
ENABLE_AUTO_IDS_EMAILS - set ke Y jika anda ingin menerima email notifikasi.


Tambahkan LOG rules ke iptables

iptables -A INPUT -j LOG
iptables -A FORWARD -j LOG
ip6tables -A INPUT -j LOG
ip6tables -A FORWARD -j LOG

Reload & update PSAD

psad -R
psad --sig-update
psad -H

Cek status 

psad --Status



Referensi

Retrieved from "https://lms.onnocenter.or.id/wiki/index.php?title=Psad:_Instalasi&oldid=43280"