Web Server Security and Database Server Security

Posted by Newbiepost On March - Monday - 2011

Various high-profile hacking attacks have proven that web security remains the most critical issue to any business that conducts its operations online. Web servers are one of the most targeted public faces of an organization, because of the sensitive data they usually host. Securing a web server is as important as securing the website or web application itself and the network around it. If you have a secure web application and an insecure web server, or vice versa, it still puts your business at a huge risk. Your company’s security is as strong as its weakest point.

saecurity-web

Update Nice.rsc Mikrotik v.4.13

Posted by Newbiepost On March - Monday - 2011

For network administrators who use mikrotik V. 4:13 may have difficulty in nice.rsc automatic update, because I am too. after mikrotik I upgraded from version 3 to version 4, nice.rsc can not automatically update this probably is because there are a few commands are missing or added to the new version of Mikrotik. After I was looking at forums that are on the internet I finally found an article, unfortunately I forgot his link address so he could not specify the address here but its conclusions on the mode settings filewall - mangle nothing changed except that the existing system command scheduler nice.rsc added to download automatically.

Logo Mikrotik

Port Forwarding Solution for Limited IP Public (mikrotik)

Posted by newbiepost On 12:44 AM

From the examples of cases I've ever experienced, most agencies have multiple servers for data processing needs, it's just that they do not have a public ip which is comparable in the operation of the server. This happens because usually provaider only provide 1 public IP to their customers, unless the consumer is able to pay more for some public ip.
Of course this is a constraint when we'll get into a server but outside the network from the server itself, so I tried to explain the network topology to outsmart this problem.
Ok who first noticed the image below:


















Pictured above is one of the network topology and institutions that are the problems I mentioned above. we can see that a mikrotik router is used to organize and divide the network at this institution.
so can see the image below:







 



The above picture is a network system in the wake of the parent to the client, the weakness of such systems is of course only be a public ip on the router. For more details, see the image below:






 



So the picture above explains that only in a shared public ip alone, in the firewall mikrotik exactly on private ip nat every dishared made ​​only to the public with the command ip nat masquerade.
Nat masquerade allows clients identified using only my public ip when we will go into punlic ip, the only router that can access while another client is used as a server can not access from outside.
note the following images:








 


And a solution to this problem are as follows:











 
The picture above explains that the system is applied to the routers ip is the way forward despite allowing port has only 1 public ip but we can use the port for forwarding to the client that the server can be access from the outside.

, | edit post

0 Response to "Port Forwarding Solution for Limited IP Public (mikrotik)"

Post a Comment

Subscribe to: Post Comments (Atom)