supportvps
March 6th, 2012, 02:33
http://parsaspace.com/files/0049094884/Mikrotik_Security_plus.rar.html (http://parsaspace.com/files/0049094884/Mikrotik_Security_plus.rar.html)
توجه ! این یک نسخه آرشیو شده میباشد و در این حالت شما عکسی را مشاهده نمیکنید برای مشاهده کامل متن و عکسها بر روی لینک مقابل کلیک کنید : اموزش تنظیمات فایروال Mikrotik
ilmavps
March 6th, 2012, 13:32
سلام ممنون عالی بود اگر میشه لیستی از پورت هایی که در سرور باید بسته بشه را هم بزارید
Mehdi_Enter
March 11th, 2012, 04:48
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=20
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=21
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=22
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=23
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=80
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=115
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=194
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=443
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=531
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=989
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=990
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=1194
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=1293
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=1503
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=1645
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=1646
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=1701
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=1707
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=1812
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=1813
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=2082
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=2083
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=2083
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=2086
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=2087
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=2095
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=2096
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=2222
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=3389
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=3723
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=3724
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=3724
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=3724
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=3978
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=3979
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=4000
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=4001
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=4500
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=4664
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=4711
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=4712
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=5000
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=5050
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=5190
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=5500
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=5517
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=5800
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=5900
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=5938
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=6112
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=6571
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=6891-6900
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=6901
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=8008
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=8080
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=8086
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=8086
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=8087
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=8087
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=8087
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=8090
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=8291
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=8880
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=8887
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=8888
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=9030
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=9050
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=9051
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=10000
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=19294
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=19295
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=19302
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=28960
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=udp port=53
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=icmp
ip firewall filter add chain=forward disabled=no action=drop in-interface=ether1
ip firewall filter add action=drop chain=forward disabled=no in-interface=ether1 p2p=all-p2p
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=21
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=22
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=23
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=80
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=115
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=194
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=443
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=531
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=989
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=990
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=1194
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=1293
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=1503
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=1645
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=1646
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=1701
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=1707
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=1812
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=1813
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=2082
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=2083
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=2083
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=2086
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=2087
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=2095
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=2096
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=2222
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=3389
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=3723
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=3724
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=3724
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=3724
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=3978
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=3979
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=4000
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=4001
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=4500
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=4664
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=4711
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=4712
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=5000
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=5050
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=5190
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=5500
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=5517
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=5800
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=5900
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=5938
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=6112
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=6571
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=6891-6900
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=6901
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=8008
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=8080
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=8086
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=8086
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=8087
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=8087
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=8087
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=8090
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=8291
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=8880
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=8887
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=8888
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=9030
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=9050
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=9051
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=10000
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=19294
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=19295
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=19302
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=tcp port=28960
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=udp port=53
ip firewall filter add chain=forward disabled=no action=accept in-interface=ether1 protocol=icmp
ip firewall filter add chain=forward disabled=no action=drop in-interface=ether1
ip firewall filter add action=drop chain=forward disabled=no in-interface=ether1 p2p=all-p2p
Powered by vBulletin® Version 4.2.5 Copyright © 2024 vBulletin Solutions, Inc. All rights reserved.