Analisis Penerapan Firewall Nftables Sebagai Sistem Keamanan Server Pada Mesin Virtualisasi
DOI:
https://doi.org/10.22441/incomtech.v9i1.5676Keywords:
Firewall, Virtual mesin, DDoS, Linux, Nftables, Troughput, CPU UsageAbstract
Teknologi virtualisasi telah mengubah arah revolusi industri komputer dengan cara penurunan biaya-biaya modal, biaya operasional, ketersediaan layanan yang lebih tinggi dan mekanisme perlindungan data. Begitupun di Balai Teknologi Polimer yang menerapkan server-servernya di dalam mesin virtualisasi, pada penelitian ini dilakukan analisa dan penerapan firewall dengan menggunakan nftables pada mesin virtualisasi. Nftables adalah firewall generasi baru di sistem operasi linux yang siap menggantikan iptables sebagai firewall. Penelitian ini menguji kinerja firewall nftables terhadap serangan DDoS ( Distribution Denial of Service). Pengambilan data pengujian DDoS dilakukan sebanyak 30 kali dengan tools yang ada di linux, yaitu htping3 dan wireshark. Skenario 1 tanpa gangguan DDoS diambil data sebanyak 10 kali, skenario 2 dengan DDoS gangguan ke server sebanyak 32000 byte dengan 3 komputer sebanyak 10 kali. Dan terakhir skenario 3 dengan gangguan DDoS sebanyak 65000 byte dengan 6 komputer sebanyak 10 kali juga. Hasil penelitian menunjukan saat tidak ada serangan DDoS server berjalan baik dengan troughput yang besar dan pemakaian sumber daya CPU (%) yang kecil. Namun setelah dilakukan serangan DDoS terjadi penurunan nilai troughput dan pemakaian CPU yang besar. Semakin besar jumlah serangan maka semakin menurunkan nilai troughput dan makin membesarnya pemakaian sumber daya CPU dari server firewall.
Downloads
Downloads
Published
How to Cite
Issue
Section
License
The copyright to this article is transferred to Universitas Mercu Buana (UMB) if and when the article is accepted for publication. The undersigned hereby transfers any and all rights in and to the paper including without limitation all copyrights to UMB. The undersigned hereby represents and warrants that the paper is original and that he/she is the author of the paper, except for material that is clearly identified as to its original source, with permission notices from the copyright owners where required. The undersigned represents that he/she has the power and authority to make and execute this assignment.
We declare that:
1. This paper has not been published in the same form elsewhere.
2. It will not be submitted anywhere else for publication prior to acceptance/rejection by this Journal.
3. A copyright permission is obtained for materials published elsewhere and which require this permission for reproduction.
Furthermore, I/We hereby transfer the unlimited rights of publication of the above mentioned paper in whole to UMB. The copyright transfer covers the exclusive right to reproduce and distribute the article, including reprints, translations, photographic reproductions, microform, electronic form (offline, online) or any other reproductions of similar nature.
The corresponding author signs for and accepts responsibility for releasing this material on behalf of any and all co-authors. This agreement is to be signed by at least one of the authors who have obtained the assent of the co-author(s) where applicable. After submission of this agreement signed by the corresponding author, changes of authorship or in the order of the authors listed will not be accepted.
Retained Rights/Terms and Conditions
1. Authors retain all proprietary rights in any process, procedure, or article of manufacture described in the Work.
2. Authors may reproduce or authorize others to reproduce the Work or derivative works for the authors personal use or for company use, provided that the source and the UMB copyright notice are indicated, the copies are not used in any way that implies UMB endorsement of a product or service of any employer, and the copies themselves are not offered for sale.
3. Although authors are permitted to re-use all or portions of the Work in other works, this does not include granting third-party requests for reprinting, republishing, or other types of re-use.
