Skip to main content

Script Blok koneksi VPN PPTP L2TP Authentication failed

PPTP
/ip firewall filter add action=drop chain=input comment="DROP KONEKSI PPTP USER AUTH FAILED" disabled=yes protocol=gre src-address-list=pptp_blacklist_bad_username_or_password 
/ip firewall filter add action=add-dst-to-address-list address-list=pptp_blacklist_bad_username_or_password address-list-timeout=1d chain=output content="bad username or password" disabled=yes dst-address-list=pptp_blacklist_bad_username_or_password3 protocol=gre 
/ip firewall filter add action=add-dst-to-address-list address-list=pptp_blacklist_bad_username_or_passwordd_3 address-list-timeout=1m chain=output content="bad username or password" disabled=yes dst-address-list=pptp_blacklist_bad_username_or_password2 protocol=gre 
/ip firewall filter add action=add-dst-to-address-list address-list=pptp_blacklist_bad_username_or_password_2 address-list-timeout=1m chain=output content="bad username or password" disabled=yes dst-address-list=pptp_blacklist_bad_username_or_password1 protocol=gre 
/ip firewall filter add action=add-dst-to-address-list address-list=pptp_blacklist_bad_username_or_password_1 address-list-timeout=1m chain=output content="bad username or password" disabled=yes protocol=gre 

PPTP
/ip firewall filter add action=drop chain=input comment="DROP KONEKSI PPTP USER AUTH FAILED" disabled=yes protocol=gre src-address-list=pptp_blacklist_user_authentication_failed 
/ip firewall filter add action=add-dst-to-address-list address-list=pptp_blacklist_user_authentication_failed address-list-timeout=1d chain=output content="authentication failed" disabled=yes dst-address-list=pptp_blacklist_user_authentication_failed_3 protocol=gre 
/ip firewall filter add action=add-dst-to-address-list address-list=pptp_blacklist_user_authentication_failed_3 address-list-timeout=1m chain=output content="authentication failed" disabled=yes dst-address-list=pptp_blacklist_user_authentication_failed_2 protocol=gre 
/ip firewall filter add action=add-dst-to-address-list address-list=pptp_blacklist_user_authentication_failed_2 address-list-timeout=1m chain=output content="authentication failed" disabled=yes dst-address-list=pptp_blacklist_user_authentication_failed_1 protocol=gre 
/ip firewall filter add action=add-dst-to-address-list address-list=pptp_blacklist_user_authentication_failed_1 address-list-timeout=1m chain=output content="authentication failed" disabled=yes protocol=gre 

L2TP
/ip firewall filter add action=drop chain=input comment="DROP KONEKSI L2TP USER AUTH FAILED" disabled=yes dst-port=1701 protocol=udp src-address-list=l2tp_blacklist_user_authentication_failed 
/ip firewall filter add action=add-dst-to-address-list address-list=l2tp_blacklist_user_authentication_failed address-list-timeout=1d chain=output content="authentication failed" disabled=yes dst-port=1701 protocol=udp src-address-list=l2tp_blacklist_user_authentication_failed_3 
/ip firewall filter add action=add-dst-to-address-list address-list=l2tp_blacklist_user_authentication_failed_3 address-list-timeout=1m chain=output content="authentication failed" disabled=yes dst-port=1701 protocol=udp src-address-list=l2tp_blacklist_user_authentication_failed_2 
/ip firewall filter add action=add-dst-to-address-list address-list=l2tp_blacklist_user_authentication_failed_2 address-list-timeout=1m chain=output content="authentication failed" disabled=yes dst-port=1701 protocol=udp src-address-list=l2tp_blacklist_user_authentication_failed_1 
/ip firewall filter add action=add-dst-to-address-list address-list=l2tp_blacklist_user_authentication_failed_1 address-list-timeout=1m chain=output content="authentication failed" disabled=yes dst-port=1701 protocol=udp

Comments

Popular posts from this blog

Masalah Deassigned assigned hotspot mikrotik

Tiba-tiba dapat masalah user hotspot terputus dari jaringan dan otomatis internet terputus.  kemudian dilakukan pengcekan log dan didapatkan log mencurigakan dhcp1 deassigned .. dhcp1 assigned ... dhcp1 deassigned .. dhcp1 assigned ... dhcp1 deassigned .. dhcp1 assigned ... dan jumlahnya sangat banyak. Identifikasi dhcp1 adalah proses dhcp server meminjamkan (assigned) dan menarik kembali (deassigned) ip address ke perangkat di jaringan. setingnya di /ip dhcp server dengan mengacukan pada /ip pool dhcp_pool0 . TAPI hotspot mikrotik juga mengacu ke pool yang sama di /ip hotspot address-pool . Solusi: disable-kan dhcp server di hotspot. caranya masuk ke  /ip hotspot address-pool seting ke none. Sumber: https://forum.mikrotik.com/viewtopic.php?t=49054 Salam, Arie B. 

Merubah Akun Default SUPERUSER ( telcomadmin dan Support ) Pada Modem Huawei HG8245A Indihome

Tujuan merubah akun default modem huawei hg8245a ini adalah untuk melindungi modem dari tangan-tangan jahil yang mau merubah setingan modem. Klo modem ini digunakan di cafee, tentu yang terjadi adalah ketidaknyamanan menggunakan internet di cafe/warkop tersebut. Ok langsung saja, jadi perlu diketahui bahwasannya modem ini bisa diakses melalui IP 192.168.100.1 dan memiliki akun default yaitu: username: telecomadmin | password: admintelecom atau username: Support | password: theworldinyourhand Nah, coba saja salah satu akun diatas, insyaAllah bisa masuk dan mendapat akses SUPERUSER. Para teknisi telkom menggunakan akun ini untuk menseting modem-modem pelanggan tanpa perlu menanyakan password modem. Kedua akun diatas derajatnya lebih tinggi dibanding akun default yang tertulis di belakang modem, yang biasanya:  username: Admin | password: admin Baik, saya akan mejelaskan cara-cara merubah kedua akun default SUPERUSER tersebut. 1. Masuk ke modem HG8245A melalui web. bi...

Setingan WA201DK-NE Huawei fit to FAT

Sumber: facebook https://www.facebook.com/gilankyuda PANDUAN WA201DK-NE   Set IP Komputer 192.168.1.xx karena ip default bawaan AP 192.168.1.1 , gunakan IP selain IP 1.1   Download Putty,jalankan putty ssh ke 192.168.1.1 login user: admin password: hwap@com       CLI Command   ●      Setting MODE IP DHCP   AP Ketik command:   configure ip ap ip-mode dhcp exit reset board     ●      Setting MODE IP STATIC AP show Ketik command:   Configure ip ap ip-mode static ip ap address 192.168.4.3 255.255.255.0 192.168.4.1 exit reset board   -         192.168.4.3 adalah IP AP -         255.255.255.0 adalah subnet mask -         192.168.4.1 adalah gateway   Reboot AP biarkan sampe selesai rebootnya, untuk mengc...