| dc.description.abstract |
The growth of the Internet and computer networks is increasing very rapidly at this time making it easy for computer users to share resources and information through networks. This can be very dangerous if users do not increase network security. Various threats in technology such as virus attacks can be avoided by maximizing the identification of network and service security holes from possible attacks. Suricata is an Intuction detection system that can detect the threat of network activity attacks assisted by existing rules. To overcome the above problems, a cisco packet tracer application is used which is the right method for designing a network security system. The results of the test get optimal results from the results of the attack being detected by the Suricata intrusion detection system (IDS) log in the /var/log/suricata/fast.log dir, suricata configuration is not only for detecting, so it can also perform drop execution if there is suspicious activity by using netfilter where the test results show that the intrusion prevention system on the server can work well and efficiently. This can be seen with the accuracy of blocking intrusion with local rules that have been made and the absence of system crashes during testing.
Key Word: Intrusion Detection System, Intrusion Prevention System, Suricata, Netfilter, Cisco Packet Tracer.
| en_US |
