2017년 4월 28일 금요일

netsh - portproxy, nat (port forwarding)

netsh interface portproxy add v4tov4 listenport=4389 listenaddress=192.168.1.111 connectport=80 connectaddress=192.168.0.33

netsh interface portproxy add v4tov4 listenport=4389 listenaddress=0.0.0.0 connectport=3389 connectaddress=192.168.100.101


netsh interface portproxy add v4tov4 listenport=4389  connectport=3389 connectaddress= 192.168.100.103 protocol=tcp


netsh interface portproxy delete v4tov4 listenport=4422 listenaddress=192.168.100.101
netsh interface portproxy show all
netsh interface portproxy reset

"IP Helper" service 


netsh routing ip nat add portmapping "LAN NAME" tcp 0.0.0.0 5118  192.168.0.3 8182

 


2017년 4월 17일 월요일

중국 주요 IP 할당 대역 (방화벽 차단용)

IP 할당 블럭중에, 한국쪽으로 해킹/스캔 이력이 있었거나 넓은 폭으로 중국에서 할당 받은 대역 목록.

해외에서 해킹 접속건이 가장 많고 빈번한 곳이 중국으로, 중국쪽에 접속 서비스를 하지 않으면서  접근 시도가 있는 경우 방화벽에서 차단해 보는 것도 좋음.  (차단 목록이 많으므로 대량 접속 서버/방화벽에서는 부하를 잃으킬 수 있으니 주의 필요)

 

14.16.0.0-14.31.255.255,
14.103.0.0-14.127.255.255,
14.144.0.0-14.159.255.255,
27.184.0.0-27.227.255.255,
36.96.0.0-36.223.255.255,
39.64.0.0-39.108.255.255,
39.128.0.0-39.191.255.255,
42.128.0.0-42.143.255.255,
42.156.36.0-42.187.123.255,
42.202.0.0-42.240.255.255,
47.92.0.0-47.127.255.255,
49.64.0.0-49.95.255.255,
58.30.0.0-58.63.255.255,
58.192.0.0-58.223.255.255,
58.240.0.0-58.255.255.255,
59.32.0.0-59.83.255.255,
59.192.0.0-60.31.255.255,
60.160.0.0-60.191.255.255,
60.200.0.0-60.223.255.255,
61.128.0.0-61.191.255.255,
61.232.0.0-61.237.255.255,
61.240.0.0-61.243.255.255,
101.4.0.0-101.7.255.255,
101.16.0.0-101.49.255.255,
101.64.0.0-101.78.3.255,
101.80.0.0-101.96.11.255,
101.104.0.0-101.107.255.255,
101.120.0.0-101.126.255.255,
101.129.0.0-101.135.255.255,
101.144.0.0-101.159.255.255,
101.192.0.0-101.201.255.255,
101.224.0.0-101.233.255.255,
101.236.0.0-101.249.255.255,
101.251.8.0-101.254.255.255,
103.32.0.0-103.35.51.255,
106.2.0.0-106.9.255.255,
106.11.0.0-106.50.255.255,
106.52.0.0-106.63.255.255,
106.80.0.0-106.95.255.255,
106.108.0.0-106.127.255.255,
106.224.0.0-106.239.255.255,
110.16.0.0-110.19.255.255,
110.40.0.0-110.43.255.255,
110.51.0.0-110.53.255.255,
110.56.0.0-110.65.255.255,
110.80.0.0-110.91.255.255,
110.94.0.0-110.127.255.255,
110.152.0.0-110.157.255.255,
110.176.0.0-110.223.255.255,
110.240.0.0-111.63.255.255,
111.72.0.0-111.79.255.255,
111.112.0.0-111.117.255.255,
111.126.0.0-111.167.255.255,
111.172.0.0-111.183.255.255,
111.192.0.0-111.215.255.255,
111.224.0.0-111.231.255.255,
112.0.0.0-112.63.162.115,
112.63.162.152-112.67.255.255,
112.80.0.0-112.103.255.255,
112.192.0.0-112.195.255.255,
112.224.0.0-113.9.255.255,
113.12.0.0-113.18.255.255,
113.24.0.0-113.27.255.255,
113.44.0.0-113.51.255.255,
113.54.0.0-113.59.127.255,
113.62.0.0-113.129.255.255,
113.132.0.0-113.143.255.255,
113.218.0.0-113.251.255.255,
114.80.0.0-114.107.255.255,
114.208.0.0-114.255.255.255,
115.44.0.0-115.63.255.255,
115.100.0.0-115.107.255.255,
115.148.0.0-115.159.255.255,
115.168.0.0-115.175.255.255,
115.190.0.0-115.239.255.255,
116.1.0.0-116.11.255.255,
116.16.0.0-116.31.255.255,
116.52.0.0-116.57.255.255,
116.128.0.0-116.192.255.255,
116.228.199.140-116.236.185.219,
116.242.0.0-116.249.255.255,
117.8.0.0-117.15.255.255,
117.21.0.0-117.45.255.255,
117.59.0.0-117.73.255.255,
117.74.128.0-117.95.255.255,
117.112.0.0-117.119.255.255,
117.124.0.0-117.191.255.255,
118.72.0.0-118.81.255.255,
118.112.0.0-118.126.255.255,
118.193.96.0-118.199.255.255,
118.224.0.0-118.230.255.255,
118.244.0.0-119.2.31.255,
119.2.128.0-119.8.255.255,
119.27.0.0-119.40.255.255,
119.48.0.0-119.55.255.255,
119.84.0.0-119.91.255.255,
119.96.0.0-119.103.255.255,
119.112.0.0-119.147.255.255,
119.148.160.0-119.148.191.255,
119.161.120.0-119.167.255.255,
119.176.0.0-119.191.255.255,
119.252.240.0-120.15.255.255,
120.30.0.0-120.49.255.255,
120.64.0.0-120.71.255.255,
120.76.0.0-120.87.255.255,
120.128.0.0-120.135.255.255,
120.192.0.0-120.255.255.255,
121.8.0.0-121.43.255.255,
121.192.0.0-121.199.255.255,
121.224.0.0-121.239.255.255,
122.4.0.0-122.8.255.255,
122.64.0.0-122.97.255.255,
122.136.0.0-122.143.255.255,
122.188.0.0-122.195.255.255,
122.226.204.104-122.247.255.255,
123.4.0.0-123.15.255.255,
123.52.0.0-123.59.255.255,
123.64.0.0-123.98.127.255,
123.112.0.0-123.135.255.255,
123.144.0.0-123.175.255.255,
123.249.0.0-123.249.255.255,
124.67.0.0-124.79.255.255,
124.88.0.0-124.95.255.255,
124.112.0.0-124.119.255.255,
124.126.0.0-124.135.255.255,
124.160.0.0-124.167.255.255,
124.200.0.0-124.207.255.255,
124.220.0.0-124.240.191.255,
125.31.192.0-125.47.255.255,
125.64.0.0-125.98.255.255,
125.104.0.0-125.127.255.255,
125.216.0.0-125.223.255.255,
139.196.0.0-139.215.255.255,
171.8.0.0-171.15.255.255,
171.34.0.0-171.47.255.255,
171.80.0.0-171.95.255.255,
171.104.0.0-171.127.255.255,
171.208.0.0-171.223.255.255,
175.0.0.0-175.27.255.255,
175.46.0.0-175.95.255.255,
175.146.0.0-175.155.255.255,
175.160.0.0-175.175.255.255,
175.185.0.0-175.191.255.255,
180.95.128.0-180.127.255.255,
180.136.0.0-180.143.255.255,
180.152.0.0-180.168.81.51,
180.168.170.80-180.175.255.255,
182.32.0.0-182.47.255.255,
182.96.0.0-182.151.255.255,
182.200.0.0-182.207.255.255,
182.240.0.0-182.247.255.255,
183.0.0.0-183.71.255.255,
183.128.0.0-183.170.255.255,
183.184.0.0-183.255.255.255,
202.97.128.0-202.120.24.223,
202.120.25.0-202.122.7.255,
202.192.243.0-202.207.255.255,
210.25.0.0-210.31.210.3,
210.31.210.8-210.47.255.255,
210.72.0.0-210.78.255.255,
211.64.0.0-211.71.255.255,
211.80.0.0-211.103.255.255,
211.136.0.0-211.160.50.255,
211.160.54.0-211.167.255.255,
218.0.0.0-218.30.55.255,
218.56.0.0-218.80.233.127,
218.80.233.132-218.99.255.255,
218.104.0.0-218.109.255.255,
218.192.0.0-218.207.255.255,
218.240.0.0-218.247.255.255,
219.128.0.0-219.159.255.255,
219.216.0.0-219.239.255.255,
219.242.0.0-219.247.255.255,
220.160.0.0-220.207.255.255,
220.248.0.0-220.252.255.255,
221.0.0.0-221.12.191.255,
221.172.0.0-221.183.255.255,
221.192.0.0-221.199.207.255,
221.199.224.0-221.239.255.255,
222.16.0.0-222.68.180.211,
222.68.180.216-222.95.255.255,
222.128.0.0-222.143.255.255,
222.168.0.0-222.223.255.255,
222.240.0.0-222.249.255.255,
223.0.0.0-223.15.255.255,
223.64.0.0-223.117.255.255,
223.120.0.0-223.129.255.255,
223.144.0.0-223.163.255.255,
223.208.0.0-223.215.255.255,
223.240.0.0-223.251.255.255

 


2019년 12월 MS 취약점 패치 주요 사항

서버 관련 주요 중요 취약점 CVE-2019-1470 | Hyper-V 정보 유출 취약성 https://portal.msrc.microsoft.com/ko-KR/security-guidance/advisory/CVE-2019-1470 CVE...