Professional Documents
Culture Documents
Detecting Network Viruses Using Mikrotik: GLC Webinar, 25 August 2016 Achmad Mardiansyah GLC Networks, Indonesia
Detecting Network Viruses Using Mikrotik: GLC Webinar, 25 August 2016 Achmad Mardiansyah GLC Networks, Indonesia
using mikrotik
GLC webinar, 25 august 2016
Achmad Mardiansyah
achmad@glcnetworks.com
GLC Networks, Indonesia
www.glcnetworks.com
Agenda
● Introduction
● Computer Virus
● Monitoring network with mikrotik
● Demo
● Q&A
www.glcnetworks.com
What is GLC?
3
www.glcnetworks.com
Trainer Introduction
4
www.glcnetworks.com
Please introduce yourself
● Your name
● Your company/university?
● Your networking experience?
● Your mikrotik experience?
● Your expectation from this course?
5
www.glcnetworks.com
What is Mikrotik?
● Name of a company
● A brand
● A program (e.g. mikrotik academy)
● Headquarter: Riga, Latvia
6
www.glcnetworks.com
What are mikrotik products?
● Router OS
○ The OS. Specialized for networking
○ Website: www.mikrotik.com/download
● RouterBoard
○ The hardware
○ RouterOS installed
○ Website: www.routerboard.com
7
www.glcnetworks.com
What Router OS can do?
● Go to www.mikrotik.com
○ Download: what_is_routeros.pdf
○ Download: product catalog
○ Download: newsletter
8
www.glcnetworks.com
What are Mikrotik training & certifications?
9
www.glcnetworks.com
Computer virus
www.glcnetworks.com
What is virus, worms, trojan horse?
Virus
Worms
● Worms are insidious because they rely less (or not at all) upon human
behavior in order to spread themselves from one computer to others.
Trojan Horses
www.glcnetworks.com
Virus characteristic
www.glcnetworks.com
How computer virus infects other software
www.glcnetworks.com
Virus propagation
● Boot sector
● Non resident
● Macro virus
● Via hacked website (XSS - cross side scripting)
www.glcnetworks.com
Virus countermeasures on
network
www.glcnetworks.com
Virus identification
www.glcnetworks.com
Virus countermeasures
Local host
● Install antivirus
● Use checksum software
Network devices
● Apply IDS
● Setup firewall rules
www.glcnetworks.com
On routeros...
www.glcnetworks.com
Demo
www.glcnetworks.com
Firewall limit, conn-limit, address-list, tarpit
www.glcnetworks.com
Sniffing on RouterOS
www.glcnetworks.com
torch
www.glcnetworks.com
QA
www.glcnetworks.com
End of slides
www.glcnetworks.com