Professional Documents
Culture Documents
/ip firewall filter add chain=input connection-state=invalid action=drop comment=Drop_invalid_connections /ip firewall filter add chain=input protocol=udp action=accept comment=UDP /ip firewall filter add chain=input protocol=icmp limit=50/5s,2 action=accept comment=Allow_limited_pings /ip firewall filter add chain=input protocol=icmp action=drop comment=Drop_excess_pings /ip firewall filter add chain=input protocol=tcp dst-port=21 src-addresslist=ournetwork action=accept comment=FTP /ip firewall filter add chain=input protocol=tcp dst-port=22 src-addresslist=ournetwork action=accept comment=SSH_for_secure_shell /ip firewall filter add chain=input protocol=tcp dst-port=23 src-addresslist=ournetwork action=accept comment=Telnet /ip firewall filter add chain=input protocol=tcp dst-port=80 src-addresslist=ournetwork action=accept comment=Web /ip firewall filter add chain=input protocol=tcp dst-port=8291 src-addresslist=ournetwork action=accept comment=winbox /ip firewall filter add chain=input protocol=tcp dst-port=1723 action=accept comment=pptp-server /ip firewall filter add chain=input action=log log-prefix="DROP INPUT" comment=Log_everything_else /ip firewall filter add chain=input protocol=tcp dst-port=23 src-addresslist=ournetwork action=accept comment=Telnet /ip firewall filter add chain=input protocol=tcp dst-port=80 src-addresslist=ournetwork action=accept comment=Web1 /ip firewall mangle add chain=prerouting protocol=icmp action=mark-connection newconnection-mark=icmp-con passthrough=yes comment= bikin_cepat_ping_dan_dns /ip firewall filter add chain=input protocol=tcp dst-port=1723 action=accept comment=pptp-server /ip firewall filter add chain=input action=log log-prefix="DROP INPUT" comment=Logeverythingelse /ip firewall filter add chain=input protocol=tcp dst-port=8291 src-addresslist=ournetwork action=accept comment=winbox1
===========================================================================================================================
protocol=tcp src-address=203.84.204.1-203.84.204.254 add action=accept chain=input comment=Anti-Netcut disabled=no protocol=tcp src-address=69.63.176.1-69.63.176.254 add action=accept chain=input comment=Anti-Netcut disabled=no protocol=tcp src-address=69.63.181.1-69.63.181.254 add action=accept chain=input comment=Anti-Netcut disabled=no protocol=tcp src-address=63.245.209.1-63.245.209.254 add action=accept chain=input comment=Anti-Netcut disabled=no protocol=tcp src-address=63.245.213.1-63.245.213.254
===========================================================================================================================
/ip firewall filter add chain=virus protocol=tcp dst-port=1377 action=drop comment=cichlid /ip firewall filter add chain=virus protocol=tcp dst-port=2745 action=drop comment=BagleVirus /ip firewall filter add chain=virus protocol=tcp dst-port=2283 action=drop comment=DropDumaruY /ip firewall filter add chain=virus protocol=tcp dst-port=2535 action=drop comment=DropBeagle /ip firewall filter add chain=virus protocol=tcp dst-port=2745 action=drop comment=DropBeagle_C-K /ip firewall filter add chain=virus protocol=tcp dst-port=3127 action=drop comment=DropMyDoom /ip firewall filter add chain=virus protocol=tcp dst-port=3410 action=drop comment=DropBackdoorOptixPro /ip firewall filter add chain=virus protocol=tcp dst-port=4444 action=drop comment=Worm1 /ip firewall filter add chain=virus protocol=udp dst-port=4444 action=drop comment=Worm2 /ip firewall filter add chain=virus protocol=tcp dst-port=5554 action=drop comment=DropSasser /ip firewall filter add chain=virus protocol=tcp dst-port=8866 action=drop comment=DropBeagleB /ip firewall filter add chain=virus protocol=tcp dst-port=9898 action=drop comment=DropDabber-A-B /ip firewall filter add chain=virus protocol=tcp dst-port=10080 action=drop comment=DropMyDoom-B /ip firewall filter add chain=virus protocol=tcp dst-port=12345 action=drop comment=DropNetBus /ip firewall filter add chain=virus protocol=tcp dst-port=27374 action=drop comment=DropSubSeven /ip firewall filter add chain=virus protocol=tcp dst-port=65506 action=drop comment=DropPhatBot,Agobot,Gaobot /ip firewall filter add chain=forward action=jump jump-target=virus comment=jump to the virus chain
===========================================================================================================================