ProHoster > Π‘Π»ΠΎΠ³ > Kev tswj hwm > Kev ua haujlwm nyob deb hauv chaw ua haujlwm. RDP, Chaw nres nkoj Knocking, Mikrotik: yooj yim thiab nyab xeeb

Kev ua haujlwm nyob deb hauv chaw ua haujlwm. RDP, Chaw nres nkoj Knocking, Mikrotik: yooj yim thiab nyab xeeb

Vim yog tus kab mob covid-19 kis thoob qhov txhia chaw thiab kev cais tawm dav dav hauv ntau lub tebchaws, tib txoj hauv kev rau ntau lub tuam txhab ua haujlwm txuas ntxiv yog kev nkag mus rau thaj chaw ua haujlwm hauv Is Taws Nem. Muaj ntau txoj hauv kev zoo rau kev ua haujlwm nyob deb - tab sis muab qhov ntsuas ntawm qhov teeb meem, ib txoj hauv kev yooj yim rau txhua tus neeg siv los txuas rau lub chaw ua haujlwm yog xav tau thiab tsis tas yuav tsum muaj kev teeb tsa ntxiv, kev piav qhia, kev sib tham tedious thiab cov lus qhia ntev. Txoj kev no yog hlub los ntawm ntau tus thawj tswj hwm RDP (Remote Desktop Protocol). Kev sib txuas ncaj qha mus rau qhov chaw ua haujlwm ntawm RDP qhov zoo tshaj plaws daws peb qhov teeb meem, tshwj tsis yog rau ib qho loj ya hauv cov tshuaj pleev - ua kom RDP chaw nres nkoj qhib rau Is Taws Nem tsis zoo heev. Yog li ntawd, hauv qab no kuv tawm tswv yim yooj yim tab sis txhim khu kev qha txoj kev tiv thaiv.Kev ua haujlwm nyob deb hauv chaw ua haujlwm. RDP, Chaw nres nkoj Knocking, Mikrotik: yooj yim thiab nyab xeeb

Txij li thaum kuv feem ntau tuaj hla cov koom haum me me qhov twg Mikrotik cov cuab yeej siv los siv hauv Is Taws Nem, hauv qab no nws yuav qhia tias yuav ua li cas siv qhov no ntawm Mikrotik, tab sis Port Knocking tiv thaiv txoj kev siv tau yooj yim rau lwm cov khoom siv hauv chav kawm siab dua nrog cov tswv yim zoo sib xws router thiab firewall. .

Luv luv txog Port Knocking. Qhov zoo tshaj plaws kev tiv thaiv sab nraud ntawm lub network txuas nrog Is Taws Nem yog thaum txhua qhov chaw thiab cov chaw nres nkoj raug kaw los ntawm sab nraud los ntawm firewall. Thiab txawm hais tias ib lub router nrog xws li teeb tsa firewall tsis hnov ​​​​mob hauv txhua txoj hauv kev rau cov pob ntawv los ntawm sab nraud, nws mloog lawv. Yog li, koj tuaj yeem teeb tsa lub router kom thaum qee qhov (code) ib ntu ntawm cov pob ntawv network tau txais ntawm cov chaw nres nkoj sib txawv, nws (router) rau tus IP los ntawm qhov chaw pob ntawv los ntawm kev txiav tawm kev nkag mus rau qee yam kev pabcuam (chaw nres nkoj, kev cai, lwm yam).

Tam sim no mus ua lag luam. Kuv yuav tsis ua cov lus piav qhia ntxaws txog qhov teeb tsa firewall ntawm Mikrotik - Is Taws Nem yog tag nrho ntawm cov khoom siv zoo rau qhov no. Qhov zoo tshaj plaws, firewall thaiv tag nrho cov pob khoom tuaj, tab sis 

/ip firewall filter
add action=accept chain=input comment="established and related accept" connection-state=established,related

Tso cai nkag mus los ntawm kev tsim, muaj feem cuam tshuam.
Tam sim no peb teeb tsa Port Knocking ntawm Mikrotik:

/ip firewall filter
add action=drop chain=input dst-port=19000 protocol=tcp src-address-list="Black_scanners" comment=RemoteRules
add action=drop chain=input dst-port=16000 protocol=tcp src-address-list="Black_scanners" comment=RemoteRules
add action=add-src-to-address-list address-list="remote_port_1" address-list-timeout=1m chain=input dst-port=19000 protocol=tcp comment=RemoteRules
add action=add-src-to-address-list address-list="Black_scanners" address-list-timeout=60m chain=input dst-port=19001 protocol=tcp src-address-list="remote_port_1" comment=RemoteRules
add action=add-src-to-address-list address-list="Black_scanners" address-list-timeout=60m chain=input dst-port=18999 protocol=tcp src-address-list="remote_port_1" comment=RemoteRules
add action=add-src-to-address-list address-list="Black_scanners" address-list-timeout=60m chain=input dst-port=16001 protocol=tcp src-address-list="remote_port_1" comment=RemoteRules
add action=add-src-to-address-list address-list="Black_scanners" address-list-timeout=60m chain=input dst-port=15999 protocol=tcp src-address-list="remote_port_1" comment=RemoteRules
add action=add-src-to-address-list address-list="allow_remote_users" address-list-timeout=1m chain=input dst-port=16000 protocol=tcp src-address-list="remote_port_1" comment=RemoteRules
move [/ip firewall filter find comment=RemoteRules] 1
/ip firewall nat
add action=dst-nat chain=dstnat comment="remote_rdp" src-address-list="allow_remote_users" dst-port=33890 in-interface-list=WAN protocol=tcp to-addresses=192.168.1.33 to-ports=3389

Tam sim no hauv kev nthuav dav ntxiv:

thawj ob txoj cai 

/ip firewall filter
add action=drop chain=input dst-port=19000 protocol=tcp src-address-list="Black_scanners" comment=RemoteRules
add action=drop chain=input dst-port=16000 protocol=tcp src-address-list="Black_scanners" comment=RemoteRules

txwv tsis pub cov ntawv xa tuaj los ntawm IP chaw nyob uas tau teev npe dub thaum lub sijhawm kuaj xyuas chaw nres nkoj;

Txoj cai thib peb:

add action=add-src-to-address-list address-list="remote_port_1" address-list-timeout=1m chain=input dst-port=19000 protocol=tcp comment=RemoteRules

ntxiv ip rau cov npe ntawm cov tswv uas ua qhov tseeb thawj khob ntawm qhov chaw nres nkoj raug (19000);
Plaub txoj cai hauv qab no:

add action=add-src-to-address-list address-list="Black_scanners" address-list-timeout=60m chain=input dst-port=19001 protocol=tcp src-address-list="remote_port_1" comment=RemoteRules
add action=add-src-to-address-list address-list="Black_scanners" address-list-timeout=60m chain=input dst-port=18999 protocol=tcp src-address-list="remote_port_1" comment=RemoteRules
add action=add-src-to-address-list address-list="Black_scanners" address-list-timeout=60m chain=input dst-port=16001 protocol=tcp src-address-list="remote_port_1" comment=RemoteRules
add action=add-src-to-address-list address-list="Black_scanners" address-list-timeout=60m chain=input dst-port=15999 protocol=tcp src-address-list="remote_port_1" comment=RemoteRules

tsim ntxiab chaw nres nkoj rau cov neeg uas xav luam theej duab koj cov chaw nres nkoj, thiab yog tias qhov kev sim no raug kuaj pom, blacklist lawv tus ip rau 60 feeb, thaum thawj ob txoj cai yuav tsis muab lub sijhawm zoo li no los khob qhov chaw nres nkoj kom raug;

Txoj cai tom ntej:

add action=add-src-to-address-list address-list="allow_remote_users" address-list-timeout=1m chain=input dst-port=16000 protocol=tcp src-address-list="remote_port_1" comment=RemoteRules

muab ip tso rau hauv daim ntawv tso cai rau 1 feeb (tsim txaus los tsim kev sib txuas), txij li lub khob thib ob raug ua rau ntawm qhov chaw nres nkoj xav tau (16000);

Tom ntej no command:

move [/ip firewall filter find comment=RemoteRules] 1

txav peb cov cai mus txog qhov kev ua haujlwm ntawm firewall, vim tias feem ntau peb yuav twb muaj cov kev cai sib txawv uas tau teeb tsa uas yuav tiv thaiv peb cov tsim tshiab los ntawm kev ua haujlwm. Thawj txoj cai hauv Mikrotik pib ntawm xoom, tab sis ntawm kuv lub cuab yeej xoom tau nyob los ntawm txoj cai tsim thiab nws tsis tuaj yeem txav nws - Kuv tsiv mus rau 1. Yog li ntawd, peb saib peb cov chaw - qhov twg koj tuaj yeem txav mus los. thiab qhia tus lej xav tau.

Kev teeb tsa tom ntej:

/ip firewall nat
add action=dst-nat chain=dstnat comment="remote_rdp_to_33" src-address-list="allow_remote_users" dst-port=33890 in-interface-list=WAN protocol=tcp to-addresses=192.168.1.33 to-ports=3389

xa mus rau qhov chaw nres nkoj 33890 arbitrarily xaiv mus rau ib txwm RDP chaw nres nkoj 3389 thiab tus ip ntawm lub computer lossis lub davhlau ya nyob twg server peb xav tau. Peb tsim cov cai zoo li no rau txhua qhov tsim nyog cov peev txheej sab hauv, zoo dua teeb tsa tsis yog tus qauv (thiab txawv) cov chaw nres nkoj sab nraud. Lawm, tus ip ntawm cov peev txheej sab hauv yuav tsum yog qhov zoo li qub lossis kho ntawm DHCP server.

Tam sim no peb Mikrotik tau teeb tsa thiab peb xav tau cov txheej txheem yooj yim rau cov neeg siv txuas rau peb sab hauv RDP. Txij li thaum peb feem ntau muaj cov neeg siv Windows, peb tsim cov ntaub ntawv bat yooj yim thiab npe nws StartRDP.bat:

1.htm
1.rdp

raws li 1.htm muaj cov cai hauv qab no:

<img src="http://my_router.sn.mynetname.net:19000/1.jpg">
Π½Π°ΠΆΠΌΠΈΡ‚Π΅ ΠΎΠ±Π½ΠΎΠ²ΠΈΡ‚ΡŒ страницу для ΠΏΠΎΠ²Ρ‚ΠΎΡ€Π½ΠΎΠ³ΠΎ Π·Π°Ρ…ΠΎΠ΄Π° ΠΏΠΎ RDP
<img src="http://my_router.sn.mynetname.net:16000/2.jpg">

nws muaj ob qhov txuas mus rau cov duab xav txog uas nyob ntawm my_router.sn.mynetname.net - peb nqa qhov chaw nyob no los ntawm Mikrotik DDNS system tom qab ua kom nws hauv peb Mikrotik: mus rau IP-> Huab zaub mov - kos lub DDNS Enabled checkbox, nyem Thov thiab luam lub npe dns ntawm peb lub router. Tab sis qhov no tsuas yog tsim nyog thaum lub ip sab nraud ntawm lub router yog dynamic lossis kev teeb tsa nrog ntau tus neeg muab kev pabcuam hauv Is Taws Nem siv.

Qhov chaw nres nkoj hauv thawj qhov txuas: 19000 sib raug rau thawj qhov chaw nres nkoj uas koj yuav tsum tau khob, hauv qhov thib ob, raws li, mus rau qhov thib ob. Nyob nruab nrab ntawm cov kev sib txuas muaj cov lus qhia luv luv uas qhia tau tias yuav ua li cas yog tias tam sim ntawd peb qhov kev sib txuas raug cuam tshuam vim muaj teeb meem hauv lub network luv luv - peb rov kho nplooj ntawv, RDP chaw nres nkoj rov qhib rau peb li 1 feeb thiab peb qhov kev sib kho tau rov qab los. Tsis tas li ntawd, cov ntawv nyeem ntawm cov cim npe img ua rau lub sijhawm ncua sijhawm rau lub browser, uas txo qis qhov tshwm sim ntawm thawj pob ntawv raug xa mus rau qhov chaw nres nkoj thib ob (16000) - txog tam sim no tsis muaj qhov xwm txheej zoo li no hauv ob lub lis piam ntawm kev siv (30 neeg).

Tom ntej no los txog 1.rdp cov ntaub ntawv, uas peb tuaj yeem teeb tsa ib qho rau txhua tus lossis cais rau txhua tus neeg siv (Kuv tau ua qhov no - nws yooj yim dua los siv sijhawm 15 feeb ntxiv dua li ob peb teev sab laj cov neeg tsis tuaj yeem txiav txim siab) 

screen mode id:i:2
use multimon:i:1
.....
connection type:i:6
networkautodetect:i:0
.....
disable wallpaper:i:1
.....
full address:s:my_router.sn.mynetname.net:33890
.....
username:s:myuserlogin
domain:s:mydomain

ntawm qhov nthuav chaw ntawm no yog siv multimon: i: 1 - qhov no suav nrog kev siv ntau lub saib - qee qhov xav tau qhov no, tab sis lawv tus kheej yuav tsis xav tig nws.

Kev sib txuas hom: i: 6 thiab networkautodetect: i: 0 - txij li feem ntau ntawm Is Taws Nem yog siab dua 10 Mbps, tom qab ntawd qhib kev sib txuas hom 6 (hauv zos network 10 Mbps thiab siab dua) thiab tua networkautodetect, vim yog los ntawm lub neej ntawd (pib) , tom qab ntawd txawm tias qhov tsis tshua muaj me me network latency cia li teeb tsa peb qhov kev sib tham mus rau qhov qeeb qeeb rau lub sijhawm ntev, uas tuaj yeem tsim kev ceeb toom qeeb hauv kev ua haujlwm, tshwj xeeb tshaj yog hauv cov khoos phis tawj duab.

lov tes taw wallpaper: i: 1 - lov tes taw cov duab duab
username:s:myuserlogin - peb qhia tus neeg siv nkag mus, txij li qhov tseem ceeb ntawm peb cov neeg siv tsis paub lawv tus ID nkag mus
domain:s:mydomain - qhia lub npe lossis lub computer npe

Tab sis yog tias peb xav ua kom yooj yim peb txoj haujlwm ntawm kev tsim cov txheej txheem kev sib txuas, ces peb kuj tuaj yeem siv PowerShell - StartRDP.ps1

Test-NetConnection -ComputerName my_router.sn.mynetname.net -Port 19000
Test-NetConnection -ComputerName my_router.sn.mynetname.net -Port 16000
mstsc /v:my_router.sn.mynetname.net:33890

Tsis tas li ntawd me ntsis txog tus neeg siv khoom RDP hauv Windows: MS tau los ntev hauv kev txhim kho cov txheej txheem thiab nws cov neeg rau zaub mov thiab cov neeg siv khoom, tau siv ntau yam tseem ceeb - xws li ua haujlwm nrog kho vajtse 3D, ua kom zoo dua qhov kev daws teeb meem rau koj lub monitor, multiscreen, thiab lwm yam. Tab sis tau kawg, txhua yam yog siv nyob rau hauv rov qab compatibility hom, thiab yog hais tias tus neeg siv yog qhov rais 7, thiab tej thaj chaw deb PC yog Windows 10, ces RDP yuav ua hauj lwm siv raws tu qauv version 7.0. Tab sis qhov txiaj ntsig yog tias koj tuaj yeem hloov kho RDP versions rau cov ntawv tshiab tsis ntev los no - piv txwv li, koj tuaj yeem hloov kho cov txheej txheem version ntawm 7.0 (Windows 7) mus rau 8.1. Yog li ntawd, rau qhov yooj yim ntawm cov neeg siv khoom, nws yog ib qho tsim nyog yuav tsum tau nce cov versions ntawm cov neeg rau zaub mov kom ntau li ntau tau, nrog rau kev xa cov txuas mus rau cov tshiab versions ntawm RDP cov neeg siv khoom.

Yog li ntawd, peb muaj cov cuab yeej yooj yim thiab muaj kev nyab xeeb rau cov chaw taws teeb sib txuas rau lub PC ua haujlwm lossis lub davhlau ya nyob twg server. Tab sis kom muaj kev ruaj ntseg zoo dua, peb txoj kev Port Knocking tuaj yeem ua rau nyuaj rau kev tawm tsam los ntawm ntau qhov kev txiav txim siab, los ntawm kev ntxiv cov chaw nres nkoj los kuaj - koj tuaj yeem ntxiv 3,4,5,6 ... ib qhov chaw nres nkoj raws li tib lub logic. , thiab nyob rau hauv cov ntaub ntawv no ib tug ncaj qha intrusion rau hauv koj lub network yuav luag tsis yooj yim sua.

Cov ntaub ntawv dawb rau kev tsim cov chaw taws teeb sib txuas rau RDP.

Tau qhov twg los: www.hab.com

Ntxiv ib saib