saber69
September 10th, 2011, 05:15
سلام از اساتید گرامی یه سوال داشتم آیا با استفاده از رول های زیر میشه پورت های اضافه در میکروتیک رو محدود کرد؟
[admin@sv-misagh] /ip firewall filter> add chain=forward action=drop connection-st ate=invalid [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp fr agment=no dst-port=25 time=0s-23h59m59s,sun,mon,tue,wed,thu,fri,sat [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp fr agment=no dst-port=110 time=0s-23h59m59s,sun,mon,tue,wed,thu,fri,sat [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=135-139 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=udp ds t-port=135-139 [admin@sv-misagh] /ip firewall filter> ad chain=virus action=drop protocol=tcp dst -port=445 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=593 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=udp ds t-port=445 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=1024-1030 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=1080 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=1214 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=1363 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=1364 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=1368 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=1373 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=1377 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=1433-1434 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=2745 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=2283 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=2535 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=2745 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=3127-3128 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=3410 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=4444 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=udp ds t-port=4444 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=5554 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=8866 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=9898 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=10000 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=10080 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=12345 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=17300 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=27374 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=27374 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=65506 [admin@sv-misagh] /ip firewall filter> add chain=forward action=jump jump-target=v irus [admin@sv-misagh] /ip firewall filter> add chain=forward action=drop p2p=all-p2p [admin@sv-misagh] /ip firewall filter> add chain=forward action=drop layer7-protoc ol=p2p_www [admin@sv-misagh] /ip firewall filter> add chain=forward action=drop protocol=udp layer7-protocol=p2p_dns dst-port=53 Layer7
p2p_dns ^.+(torrent|thepiratebay|isohunt|entertane|demonoi d|btjunkie|mininova|flixflux|vertor|h33t|zoozle|bi tnova|bitsoup|meganova|fulldls|btbot|fenopy|gpirat e|commonbits).*$ p2p_www ^.*(get|GET).+(torrent|thepiratebay|isohunt|entert ane|demonoid|btjunkie|mininova|flixflux|vertor|h33 t|zoozle|bitnova|bitsoup|meganova|fulldls|btbot|fe nopy|gpirate|commonbits).*$ اما با این وجود باز هم ابیوز تورنت دارم
[admin@sv-misagh] /ip firewall filter> add chain=forward action=drop connection-st ate=invalid [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp fr agment=no dst-port=25 time=0s-23h59m59s,sun,mon,tue,wed,thu,fri,sat [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp fr agment=no dst-port=110 time=0s-23h59m59s,sun,mon,tue,wed,thu,fri,sat [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=135-139 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=udp ds t-port=135-139 [admin@sv-misagh] /ip firewall filter> ad chain=virus action=drop protocol=tcp dst -port=445 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=593 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=udp ds t-port=445 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=1024-1030 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=1080 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=1214 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=1363 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=1364 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=1368 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=1373 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=1377 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=1433-1434 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=2745 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=2283 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=2535 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=2745 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=3127-3128 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=3410 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=4444 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=udp ds t-port=4444 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=5554 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=8866 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=9898 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=10000 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=10080 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=12345 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=17300 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=27374 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=27374 [admin@sv-misagh] /ip firewall filter> add chain=virus action=drop protocol=tcp ds t-port=65506 [admin@sv-misagh] /ip firewall filter> add chain=forward action=jump jump-target=v irus [admin@sv-misagh] /ip firewall filter> add chain=forward action=drop p2p=all-p2p [admin@sv-misagh] /ip firewall filter> add chain=forward action=drop layer7-protoc ol=p2p_www [admin@sv-misagh] /ip firewall filter> add chain=forward action=drop protocol=udp layer7-protocol=p2p_dns dst-port=53 Layer7
p2p_dns ^.+(torrent|thepiratebay|isohunt|entertane|demonoi d|btjunkie|mininova|flixflux|vertor|h33t|zoozle|bi tnova|bitsoup|meganova|fulldls|btbot|fenopy|gpirat e|commonbits).*$ p2p_www ^.*(get|GET).+(torrent|thepiratebay|isohunt|entert ane|demonoid|btjunkie|mininova|flixflux|vertor|h33 t|zoozle|bitnova|bitsoup|meganova|fulldls|btbot|fe nopy|gpirate|commonbits).*$ اما با این وجود باز هم ابیوز تورنت دارم