-download dulu mac scanner colasoft disini http://www.colasoft.com/mac_scanner/index.php?act=download_success&v=free
-install dan scan mac address dijaringan anda dengan mengklik tombol start
akan terpampang semua ip dan mac addres komputer dijaringan anda
-buka file rc.firewall.custom dengan winscp difolder /etc/rc.d
-isikan iptables rule mac filter sebagai berikut
iptables-I FORWARD-s 192.168.x.y-m mac - mac-source aa:bb:cc:dd:ee:ff -j -en-mass ACCEPT
iptables-I INPUT-s 192.168.1.x-y mac - mac-source aa:bb:cc:dd:ee:ff -j -en-mass ACCEPT
-isikan data ip addres yg telah terpampang di colasoft
x = ip grup clearos
y = ip client
aa:bb:cc:dd:ff = isikan mac addres sesuai yg ip x & y
-pada baris terakhir isikan iptables untuk ethernet clearos
iptables-I FORWARD-i ethx -j -en-mass DROP
iptables-I INPUT-i ethx -j -en-mass DROP
x = isikan jenis ethernet anda
contoh
iptables-I FORWARD-s 192.168.1.4-m mac - mac-source 00:00:45:ef:ca:F0 -j -en-mass ACCEPT
iptables-I INPUT-s 192.168.1.4-m mac - mac-source 00:00:45:ef:ca:F0 -j -en-mass ACCEPT
iptables-I FORWARD-i eth1-j -en-mass DROP
iptables-I INPUT-i eth1-j -en-mass DROP
-teruskan menambah ip dan mac address anda yg telah discan colasoft mac scanner, beri spasi setelah menambah iptables baru
-aktifkan modul bandwidth, kemudian buat add advanced rule bandwith download dan upload proxy agar iptables bisa aktif digunakan
Nickname : proxy_download
Interface : all
IP Address / IP Address Range : destination
Port : source : 80
Direction : download
Rate kbit/s : 256
Ceiling kbit/s : 256
Greed : medium
Nickname : proxy_upload
Interface : all
IP Address / IP Address Range : source
Port : destination : 80
Direction : upload
Rate kbit/s : 64
Ceiling kbit/s : 64
Greed : medium
terus untuk client yg telah anda beri iptables mac addres
contoh
Nickname : hotspot_download
Interface : all
IP Address / IP Address Range : destination : 192.168.1.100-192.168.1.200
Port :
Direction : download
Rate kbit/s : 256
Ceiling kbit/s : 256
Greed : medium
Nickname : hotspot_upload
Interface : all
IP Address / IP Address Range : source : 192.168.1.100-192.168.1.200
Port :
Direction : download
Rate kbit/s : 64
Ceiling kbit/s : 64
Greed : medium
kayakna lumayan buat mac filtering whitelist & blacklist, yg hack wifi ga bisa masuk
sumber => http://clearos-indonesia.com/
akan terpampang semua ip dan mac addres komputer dijaringan anda
-buka file rc.firewall.custom dengan winscp difolder /etc/rc.d
-isikan iptables rule mac filter sebagai berikut
iptables-I FORWARD-s 192.168.x.y-m mac - mac-source aa:bb:cc:dd:ee:ff -j -en-mass ACCEPT
iptables-I INPUT-s 192.168.1.x-y mac - mac-source aa:bb:cc:dd:ee:ff -j -en-mass ACCEPT
-isikan data ip addres yg telah terpampang di colasoft
x = ip grup clearos
y = ip client
aa:bb:cc:dd:ff = isikan mac addres sesuai yg ip x & y
-pada baris terakhir isikan iptables untuk ethernet clearos
iptables-I FORWARD-i ethx -j -en-mass DROP
iptables-I INPUT-i ethx -j -en-mass DROP
x = isikan jenis ethernet anda
contoh
iptables-I FORWARD-s 192.168.1.4-m mac - mac-source 00:00:45:ef:ca:F0 -j -en-mass ACCEPT
iptables-I INPUT-s 192.168.1.4-m mac - mac-source 00:00:45:ef:ca:F0 -j -en-mass ACCEPT
iptables-I FORWARD-i eth1-j -en-mass DROP
iptables-I INPUT-i eth1-j -en-mass DROP
-teruskan menambah ip dan mac address anda yg telah discan colasoft mac scanner, beri spasi setelah menambah iptables baru
-aktifkan modul bandwidth, kemudian buat add advanced rule bandwith download dan upload proxy agar iptables bisa aktif digunakan
Nickname : proxy_download
Interface : all
IP Address / IP Address Range : destination
Port : source : 80
Direction : download
Rate kbit/s : 256
Ceiling kbit/s : 256
Greed : medium
Nickname : proxy_upload
Interface : all
IP Address / IP Address Range : source
Port : destination : 80
Direction : upload
Rate kbit/s : 64
Ceiling kbit/s : 64
Greed : medium
terus untuk client yg telah anda beri iptables mac addres
contoh
Nickname : hotspot_download
Interface : all
IP Address / IP Address Range : destination : 192.168.1.100-192.168.1.200
Port :
Direction : download
Rate kbit/s : 256
Ceiling kbit/s : 256
Greed : medium
Nickname : hotspot_upload
Interface : all
IP Address / IP Address Range : source : 192.168.1.100-192.168.1.200
Port :
Direction : download
Rate kbit/s : 64
Ceiling kbit/s : 64
Greed : medium
kayakna lumayan buat mac filtering whitelist & blacklist, yg hack wifi ga bisa masuk
