Analisis Implementasi Keamanan Jaringan dengan Fail2ban Terhadap serangan Bruteforce

Abstract

Malicious attacks on network security continue to increase over time. Even though in this globalization era, everyone uses the internet. Servers that are open to public networks are often the target of brute force attacks, especially on ports that allow Secure Shell (SSH) access. This research explores the process of securing the Ubuntu server system from brute force attacks on SSH ports through the implementation of Fail2ban. Open port analysis using Nmap to find out ports that are vulnerable to attacks. Next, a brute force attack using Hydra on the SSH port was carried out to test the system's vulnerability. After the initial attack attempt is successful, Fail2ban is implemented to reduce the risk of brute force by initiating login attempts. The results show that Fail2ban is effective in preventing attacks by continuously blocking IPs that try to log in. The Fail2ban implementation has proven effective in protecting servers from brute force attacks on SSH ports. Once installed and configured, Fail2ban successfully blocks IP attackers who attempt to log in repeatedly by entering incorrect passwords.