Ukufaka abashayeli ekhadini levidiyo

Ama-routers ama-Mikrotik athandwa kakhulu futhi afakwe emakhaya noma emahhovisi kubasebenzisi abaningi. Ukuvikeleka okuyisisekelo kokusebenza nemishini enjalo yi-firewall ehlelwe kahle. Ihlanganisa isethi yemingcele nemithetho yokuvikela inethiwekhi kusuka ekuxhumaneni kwamanye amazwe nakwa-hacks.

Lungiselela i-firewall ye-router Mikrotik

I-router ilungisiwe isebenzisa uhlelo olukhethekile lokusebenza olukuvumela ukuba usebenzise isikhombimsebenzisi sewebhu noma uhlelo olukhethekile. Kulezi zinguqulo ezimbili kukhona konke okudingayo ukuhlela i-firewall, ngakho akunandaba ukuthi yini oyithandayo. Sizogxila kunguqulo yesiphequluli. Ngaphambi kokuba uqale, udinga ukungena ngemvume:

  1. Ngasiphi isiphequluli esikahle siya192.168.88.1.

  2. Esikhathini sewindi lokuqala kwesikhombimsebenzisi sewebhu se-router, khetha "I-Webfig".

  3. Uzobona ifomu lokungena ngemvume. Faka emigqeni yokungena ngemvume nephasiwedi, okuyinto ngokuzenzakalelayo enezindinganisoumphathi.

Ungafunda kabanzi mayelana nokucushwa okuphelele kwezinkampani zale nkampani kwezinye iziqephu esihlokweni sethu esingezansi, futhi sizoqhubeka ngokuqondile ekucwangcisweni kwemingcele yokuvikela.

Funda kabanzi: Indlela yokulungisa i-router Mikrotik

Ukususa iphepha lokulawula nokudala okusha

Ngemva kokungena ngemvume, uzobona imenyu enkulu, lapho iphaneli nazo zonke izigaba zivela ngakwesobunxele. Ngaphambi kokungeza ukucushwa kwakho, udinga ukwenza okulandelayo:

  1. Nweba isigaba "IP" bese uya esigabeni "I-Firewall".

  2. Sula yonke imithetho yamanje ngokuchofoza inkinobho efanelekile. Kubalulekile ukwenza lokhu ukuze ugweme ukuphikisana okuqhubekayo lapho udala ukuhlela kwakho.

  3. Uma ufaka imenyu ngokusebenzisa isiphequluli, ungaya ewindini ngokudala izilungiselelo nge-inkinobho "Engeza", ohlelweni kufanele uchofoze ku-plus red.

Manje, ngemva kokungeza umthetho ngamunye, kuzodingeka uchofoze ezinkinobho zokudala ezifanayo ukuze wandisa kabusha iwindi lokuhlela. Ake sihlolisise zonke izilungiselelo zokuphepha eziyisisekelo.

Hlola uxhumano lwedivayisi

I-router exhunywe kwikhompyutha ngezinye izikhathi ihlolwe isistimu yokusebenza ye-Windows yokuxhumana okusebenzayo. Inqubo enjalo ingabuye iqale ngesandla, kodwa lesi sikhalazo sizotholakala kuphela uma kukhona umthetho ku-firewall evumela ukuxhumana ne-OS. Yilungiselelwe kanje:

  1. Chofoza "Engeza" noma obomvu ukubonisa iwindi elisha. Lapha kulayini "Chain"okuhunyushwa ngokuthi "Inethiwekhi" ichaza "Ukufaka" - engenayo. Lokhu kuzosiza ukunquma ukuthi uhlelo lufinyelela ku-router.

  2. Into "I-Protocol" setha inani "icmp". Lolu hlobo lusetshenziselwa ukuthumela imilayezo ehlobene namaphutha nezinye izimo ezingajwayelekile.

  3. Hambisa kusigaba noma kuthebhu "Isenzo"ukubeka kuphi "Yamukela"Okusho ukuthi, ukuhlela okunjalo kuvumela ukufaka idivayisi yeWindows.

  4. Vula ukufaka izinguquko nokuhlela ukuhlela okuphelele.

Noma kunjalo, yonke inqubo yokuthumela imilayezo nokuhlola imishini nge-Windows OS ayipheli lapho. Into yesibili ukudluliswa kwedatha. Ngakho-ke dala ipharamitha entsha lapho ucacisa khona "Chain" - "Phambili", futhi usethe iphrothotho njengoba kwenziwa esiteji sangaphambilini.

Ungakhohlwa ukuhlola "Isenzo"ukuhanjiswa lapho "Yamukela".

Vumela uxhumano olusungulwe

Ngezinye izikhathi amanye amadivaysi axhunyiwe ku-router nge-Wi-Fi noma izintambo. Ngaphezu kwalokho, ikhaya noma iqembu lenkampani lingasetshenziswa. Kulesi simo, kuzodingeka uvumele uxhumano olusungulwe ukugwema izinkinga ngokufinyelela kwe-intanethi.

  1. Chofoza "Engeza". Cacisa uhlobo lwenethiwekhi yenethiwekhi engenayo futhi. Yehla kancane bese uhlola "Yakha" ngokuphambene "State Connection"ukukhombisa uxhumano olusungulwe.

  2. Ungakhohlwa ukuhlola "Isenzo"ukuze into esiyidingayo ikhethwe lapha, njengamalungiselelo omthetho odlule. Emva kwalokho, ungagcina izinguquko futhi uqhubeke phambili.

Kwesinye isimiso, faka "Phambili" eduze "Chain" bese uphawula ibhokisi elifanayo. Kumele futhi uqinisekise isenzo ngokukhetha "Yamukela", bese uqhubeka phambili.

Ukuvumela uxhumano oluxhumekile

Cishe imithetho efanayo izodinga ukudala ukuxhumeka okuxhunyiwe ukuze kungabikho izingxabano lapho uzama ukuqinisekisa. Yonke inqubo eyenziwa ngokoqobo ngezenzo eziningana:

  1. Hlola inani lomthetho "Chain" - "Ukufaka"wehla phansi bese ukhathaza "Okuhlobene" ngokuphambene nombhalo "State Connection". Ungakhohlwa mayelana nesigaba "Isenzo"lapho yonke ipharamitha efanayo ivuliwe.

  2. Esikhathini sesibili sokusetha okusha, shiya uhlobo lokuxhumana olufanayo, kodwa usethe inethiwekhi "Phambili", futhi esigabeni sesenzo udinga into "Yamukela".

Qinisekisa ukulondoloza izinguquko zakho ukuze imithetho ingezwe ohlwini.

Vumela uxhumano kusuka kunethiwekhi yendawo

Abasebenzisi be-LAN bazokwazi ukuxhuma kuphela uma kusethwe imithetho ye-firewall. Ukuze uhlele, kufanele uqale ukwazi ukuthi ikhebula linikeza ukuxhumeka (ezimweni eziningi li-ether1), kanye nekheli le-IP yenethiwekhi yakho. Funda kabanzi mayelana nalokhu kwezinye izinto esikuxhumanisi ngezansi.

Funda kabanzi: Indlela yokuthola ikheli le-IP lekhompyutha yakho

Okulandelayo udinga ukumisa ipharamitha eyodwa kuphela. Lokhu kwenziwa kanje:

  1. Emgqeni wokuqala, faka "Ukufaka", bese uye phansi kwesinye "I-Src." bese uthayipha ikheli le-IP lapho. "In Interface" ucacise "Ether1"uma ikhebula lokufaka elivela kumhlinzeki lixhunywe kuyo.

  2. Hambisa kuthebhu "Isenzo", ukubeka phansi inani lapha "Yamukela".

Ukuxhumanisa okungahambi kahle

Ukudala lesi simiso kuzokusiza ukuvimbela ukuxhumeka okungalungile. Kukhona ukuzimisela okuzenzakalelayo kokuxhumeka okungavumelekile kwezinye izici ezithile, emva kwalokho zizosetha kabusha futhi ngeke zinikezwe ukufinyelela. Udinga ukwakha imingcele emibili. Lokhu kwenziwa kanje:

  1. Njengamanye eminye imithetho yangaphambili, cacisa kuqala "Ukufaka", bese wehla bese uhlola "ayivumelekile" eduze "State Connection".

  2. Iya kuthebhu noma kwesigaba "Isenzo" bese usetha inani "Drop"okusho ukusetha kabusha ukuxhumana kwalolu hlobo.

  3. Ewindini elisha, shintsha kuphela "Chain" kuqhubeke "Phambili", wabeka konke njengasekuqaleni, kufaka phakathi isenzo "Drop".

Ungaphinda ukhubaze nezinye imizamo yokuxhuma emithonjeni yangaphandle. Lokhu kwenziwa ngokubeka umthetho owodwa kuphela. Ngemuva kwalokho "Chain" - "Ukufaka" beka phansi "In Interface" - "Ether1" futhi "Isenzo" - "Drop".

Vumela ithrafikhi kudlule ukusuka ku-LAN kuya ku-Intanethi

Ukusebenza ohlelweni lokusebenza RouterOS ikuvumela ukuthi uhlakulele ukuhlukahluka kokuhamba kwezimoto. Ngeke sihlale kulokhu, ngoba abasebenzisi abajwayelekile ulwazi olunjalo ngeke luzuze. Cabanga ngomthetho owodwa we-firewall ovumela i-traffic kusuka kwinethiwekhi yendawo kuya kwi-intanethi:

  1. Khetha "Chain" - "Phambili". Buza "In Interface" futhi "Isikrini" amanani "Ether1"kulandelwa uphawu lokumemeza "In Interface".

  2. Esigabeni "Isenzo" khetha isenzo "Yamukela".

Ungavimbela nokunye ukuxhumana ngomthetho owodwa kuphela:

  1. Khetha inethiwekhi kuphela "Phambili"ngaphandle kokudalula noma yini enye.

  2. Ngaphakathi "Isenzo" qiniseka ukuthi kufanelekile "Drop".

Njengomphumela wokucushwa, kufanele uthole okuthile okufana nalesi sikhwama se-firewall, njengokwesikrini esingezansi.

Kulokhu, isihloko sethu sifinyelela esiphethweni esinengqondo. Ngingathanda ukuphawula ukuthi awudingi ukusebenzisa yonke imithetho, ngoba akudingeki njalo, kodwa sibonise isilungiselelo esiyisisekelo esizohambisana nabasebenzisi abaningi abajwayelekile. Sithemba ukuthi ulwazi olunikeziwe luwusizo. Uma unemibuzo ngalesi sihloko, bacele emibhalweni.

Okuthunyelwe Popular

https://termotools.com zu.termotools.com © Abashayeli 2024