新闻资讯
看你所看,想你所想

软路由策略

2023-01-14 00:57:06分类:首页 > 百科资料阅读()评论()

软路由帝维上出振福威书一策略是指,防DDOS攻击 完保起/ ip firewall 来自filter add chain=input protocol=icmp in-interface=ethe360百科r1 action=drop comment="No DDOS" /将"ether1"改成您的处网网卡名称,此行请不要复制上!

  • 中文名 软路由策略
  • 目    的 防止病毒攻击
  • 属    于 程序
  • 程序注意 不要复制

常见木马

  / ip firewall filter

  add chain=forward protocol=tcp dst-port=1999 action=drop comment="Backdoor.GrayBird.ad"

  add chain=forward dst-address=80.190.240.125 action=drop

映内温概反  add chain=forw专屋赶采武检ard dst-address=203.209.245.168 action=drop

  add c来自hain=forward dst-address=210.192.122.106 action=drop

  add chain=forward dst-address=218印冷来树体晶轮.30.88.43 act360百科ion=drop

  add chain=forward dst-address=219.238.233.110 action=drop

  add chai放超n=forward dst-address=222.186.8.88 action=drop

  add cha望就先始移正医in=forward dst-address=124.42.125.37 action=drop

  犯选批呼add chain=forward dst-address=210.192.122.剧殖简甚探怕木107 action=drop

  add chain=forward dst-address=61.147.1密短赵强染孩裂齐难18.198 action=drop

  ad钱省美香关盐黄复体细d chain=forward dst-address=219.238.233.11 action=drop

其他信息

  抗三波病毒

  / ip firewall filter

  add chain=forward protocol=tcp dst-port=135-139 action=drop comment="No 境送孙良足早只概3B"

  禁止PING路由

  / ip firewall filter

  add chai红策矛松期句不越振n=output protocol=icmp action=drop comment="No Ping"

  禁止P2P下载

  / ip firewall filter

  add chain=forward protocol=tcp dst-port=4661-4662 action=drop comment="No Emule"

  add chain=forward protocol=tcp d煤基笑st-port=4242 action=drop

  add chain=forward dst-address=62.241.53.15 action=drop

  禁止比特精灵下载

  / ip fi促斗青效显处rewall filter

  a杨客dd chain=forward protocol=tc额件愿就胜期组触倒境p dst-port=16881 action=drop comment="NoBitSpirit"

  批量绑定ARP

  :foreach szwm in=[/ip arp find dynamic=yes ] do=[/ip arp add copy-from=$szwm]

  端口映射

  ip firewall nat add chain=dstnat dst-address=(外网IP) protocol=tcp dst-port=外端口 to-addresses=(内网IP) to-ports=内端口 action=dst-nat

  封域名

  / ip firewall filter

  add chain=forward content=域名action=reject comment="备注"

  双线切换

  / system script

  add name="dxup" source="/ip route set \[/ip route find comment=tel\] \

  gateway=电信网关;

  \n/ip route set \[/ip route find comment=tel\] \

  disable=no;" policy=ftp,reboot,read,write,policy,test,winbox,password

  add name="cncup" source="/ip routeenable\[/ip route find \

  gateway=网通网关\]" \

  policy=ftp,reboot,read,write,policy,test,winbox,password

  add name="dxdown" source="/ip route set \[/ip route find comment=tel\] \

  gateway=网通网关" \

  policy=ftp,reboot,read,write,policy,test,winbox,password

  add name="cncdown" source="/ip route disable \[/ip route find \

  gateway=网通网关\]" \

  policy=ftp,reboot,read,write,policy,test,winbox,password

转载请注明出处累积网 » 软路由策略

相关推荐

    声明:此文信息来源于网络,登载此文只为提供信息参考,并不用于任何商业目的。如有侵权,请及时联系我们:fendou3451@163.com