KEAMANAN JARINGAN | 3.2.2 Praktik Pengenalan Perangkat Firewal (Mikrotik) - FASE F (SMK TJKT)

Introduction

This tutorial provides a step-by-step guide for understanding and implementing firewall devices using Mikrotik routers, specifically tailored for students in network security courses. It aims to enhance your knowledge of network security and practical skills in configuring firewalls.

Step 1: Understanding Firewalls

• Definition: A firewall is a network security device that monitors and controls incoming and outgoing network traffic based on predetermined security rules.
• Purpose: It acts as a barrier between trusted internal networks and untrusted external networks (like the internet).

Key Points

• Firewalls can be hardware-based or software-based.
• They help protect systems from unauthorized access, attacks, and data breaches.

Step 2: Introduction to Mikrotik Router

• Mikrotik Router: A popular choice for network management and security due to its versatility and user-friendly interface.
• Accessing Mikrotik: Use Winbox or WebFig to access the router's configuration interface.

Practical Advice

• Ensure that your Mikrotik router is connected to the network and powered on.
• Familiarize yourself with the interface, which includes sections like "IP," "Firewall," and "Interfaces."

Step 3: Configuring Basic Firewall Rules

• Step 3.1: Open the Mikrotik interface.
• Step 3.2: Navigate to the "IP" section and select "Firewall."
• Step 3.3: Click on the "Filter Rules" tab.

Creating a New Rule

1. Click on the "+" button to add a new rule.
2. Set the "Chain" to input for incoming traffic.
3. Choose the appropriate "Protocol" (e.g., TCP, UDP).
4. Specify the "Src. Address" (source IP) or leave it as 0.0.0.0/0 for all addresses.
5. Set the "Action" to accept or drop based on your security needs.
6. Click "OK" to save the rule.

Common Pitfalls

• Avoid creating overly permissive rules that can expose your network.
• Always test firewall rules after configuration to ensure they function as intended.

Step 4: Monitoring Firewall Activity

• Step 4.1: Return to the "Firewall" menu.
• Step 4.2: Select the "Connections" tab to view active connections and monitor traffic.

Practical Tips

• Regularly check logs for suspicious activity.
• Use the "Log" option in the firewall rule settings to capture specific events for further analysis.

Step 5: Advanced Firewall Configurations

• NAT Rules: Set up Network Address Translation (NAT) to manage traffic efficiently.
• Layered Security: Combine firewall rules with other security measures, such as VPNs.

Example of NAT Rule

/ip firewall nat add chain=srcnat action=masquerade out-interface=<WAN_Interface>

Conclusion

In this tutorial, you learned how to understand the role of firewalls, access Mikrotik routers, configure basic firewall rules, monitor traffic, and explore advanced configurations. As you continue to develop your skills, consider experimenting with different firewall rules and configurations to enhance your network security practices.