blueabc 发表于 2008-9-2 14:28:33

请ROS高手帮帮忙,ADSL+ROS共享上网,某些IP突然上不到网?

我这里是ADSL通ROS共享上网,网段192.168.0.2-192.168.0.244全部限速为UPload 256k, Download 512kIP,MAC,ARP未做绑定.
自从导入专业防火增加后,有些IP突然上不了网,本地连接禁用再启用也上不了,改IP就可以上了,这是怎么回事啊?请高手帮助一下,谢谢.

红烧排骨 发表于 2008-9-2 14:44:29

是不是防火墙里面把某些端口给限制到了?虽然网站端口一般是80,但我们电脑访问网站的时候,出去的断开一般不是80

blueabc 发表于 2008-9-2 14:59:35

我装的ROS是2.9.27版,导入的防火墙是for2.9.26版的:
-------------------------------
/ ip firewall filter
ad ch forward pr tcp dst-po 135-139 act drop
ad ch forward pr tcp dst-po 82 act drop comm Worm.NetSky.Y@mm
ad ch forward pr tcp dst-po 113 act drop comm W32.Korgo.A/B/C/D/E/F-1
ad ch forward pr tcp dst-po 2041 act drop comm W33.Korgo.A/B/C/D/E/F-2
ad ch forward pr tcp dst-po 3067 act drop comm W32.Korgo.A/B/C/D/E/F-3
ad ch forward pr tcp dst-po 6667 act drop comm W32.Korgo.A/B/C/D/E/F-4
ad ch forward pr tcp dst-po 445 act drop comm W32.Korgo.A/B/C/D/E/F-5
ad ch forward pr tcp dst-po 1000-1001 act drop comm Backdoor.Nibu.B-1
ad ch forward pr tcp dst-po 2283 act drop comm Backdoor.Nibu.B-2
ad ch forward pr tcp dst-po 10000 act drop comm Backdoor.Nibu.E/G/H
ad ch forward pr tcp dst-po 3422 act drop comm Backdoor.IRC.Aladinz.R-1
ad ch forward pr tcp dst-po 43958 act drop comm Backdoor.IRC.Aladinz.R-2
ad ch forward pr tcp dst-po 5554 act drop comm W32.Dabber.A/B-1
ad ch forward pr tcp dst-po 8967 act drop comm W32.Dabber.A/B-2
ad ch forward pr tcp dst-po 9898-9999 act drop comm W32.Dabber.A/B-3
ad ch forward pr tcp dst-po 6789 act drop comm Worm.NetSky.S/T/U@mm
ad ch forward pr tcp dst-po 8787 act drop comm Back.Orifice.2000.Trojan-1
ad ch forward pr tcp dst-po 8879 act drop comm Back.Orifice.2000.Trojan-2
ad ch forward pr tcp dst-po 31666 act drop comm Back.Orifice.2000.Trojan-3
ad ch forward pr tcp dst-po 31337-31338 act drop comm Back.Orifice.2000.Trojan-4
ad ch forward pr tcp dst-po 54320-54321 act drop comm Back.Orifice.2000.Trojan-5
ad ch forward pr tcp dst-po 12345-12346 act drop comm Block.NetBus.Trojan-1
ad ch forward pr tcp dst-po 20034 act drop comm Block.NetBus.Trojan-2
ad ch forward pr tcp dst-po 21554 act drop comm GirlFriend.Trojan-1
ad ch forward pr tcp dst-po 41 act drop comm DeepThroat.Trojan-1
ad ch forward pr tcp dst-po 3150 act drop comm DeepThroat.Trojan-2
ad ch forward pr tcp dst-po 999 act drop comm DeepThroat.Trojan-3
ad ch forward pr tcp dst-po 6670 act drop comm DeepThroat.Trojan-4
ad ch forward pr tcp dst-po 6771 act drop comm DeepThroat.Trojan-5
ad ch forward pr tcp dst-po 60000 act drop comm DeepThroat.Trojan-6
ad ch forward pr tcp dst-po 2140 act drop comm DeepThroat.Trojan-7
ad ch forward pr tcp dst-po 10067 act drop comm Portal.of.Doom.Trojan-1
ad ch forward pr tcp dst-po 10167 act drop comm Portal.of.Doom.Trojan-2
ad ch forward pr tcp dst-po 3700 act drop comm Portal.of.Doom.Trojan-3
ad ch forward pr tcp dst-po 9872-9875 act drop comm Portal.of.Doom.Trojan-4
ad ch forward pr tcp dst-po 6883 act drop comm Delta.Source.Trojan-1
ad ch forward pr tcp dst-po 26274 act drop comm Delta.Source.Trojan-2
ad ch forward pr tcp dst-po 4444 act drop comm Delta.Source.Trojan-3
ad ch forward pr tcp dst-po 47262 act drop comm Delta.Source.Trojan-4
ad ch forward pr tcp dst-po 3791 act drop comm Eclypse.Trojan-1
ad ch forward pr tcp dst-po 3801 act drop comm Eclypse.Trojan-2
ad ch forward pr tcp dst-po 65390 act drop comm Eclypse.Trojan-3
ad ch forward pr tcp dst-po 5880-5882 act drop comm Y3K.RAT.Trojan-1
ad ch forward pr tcp dst-po 5888-5889 act drop comm Y3K.RAT.Trojan-2
ad ch forward pr tcp dst-po 30100-30103 act drop comm NetSphere.Trojan-1
ad ch forward pr tcp dst-po 30133 act drop comm NetSphere.Trojan-2
ad ch forward pr tcp dst-po 7300-7301 act drop comm NetMonitor.Trojan-1
ad ch forward pr tcp dst-po 7306-7308 act drop comm NetMonitor.Trojan-2
ad ch forward pr tcp dst-po 79 act drop comm FireHotcker.Trojan-1
ad ch forward pr tcp dst-po 5031 act drop comm FireHotcker.Trojan-2
ad ch forward pr tcp dst-po 5321 act drop comm FireHotcker.Trojan-3
ad ch forward pr tcp dst-po 6400 act drop comm TheThing.Trojan-1
ad ch forward pr tcp dst-po 7777 act drop comm TheThing.Trojan-2
ad ch forward pr tcp dst-po 1047 act drop comm GateCrasher.Trojan-1
ad ch forward pr tcp dst-po 6969-6970 act drop comm GateCrasher.Trojan-2
ad ch forward pr tcp dst-po 2774 act drop comm SubSeven-1
ad ch forward pr tcp dst-po 27374 act drop comm SubSeven-2
ad ch forward pr tcp dst-po 1243 act drop comm SubSeven-3
ad ch forward pr tcp dst-po 1234 act drop comm SubSeven-4
ad ch forward pr tcp dst-po 6711-6713 act drop comm SubSeven-5
ad ch forward pr tcp dst-po 16959 act drop comm SubSeven-7
ad ch forward pr tcp dst-po 11000 act drop comm Senna.Spy.Trojan-1
ad ch forward pr tcp dst-po 13000 act drop comm Senna.Spy.Trojan-2
ad ch forward pr tcp dst-po 25685-25686 act drop comm Moonpie.Trojan-1
ad ch forward pr tcp dst-po 25982 act drop comm Moonpie.Trojan-2
ad ch forward pr tcp dst-po 1024-1030 act drop comm NetSpy.Trojan-1
ad ch forward pr tcp dst-po 1033 act drop comm NetSpy.Trojan-2
ad ch forward pr tcp dst-po 31337-31339 act drop comm NetSpy.Trojan-3
ad ch forward pr tcp dst-po 8102 act drop comm Trojan
ad ch forward pr tcp dst-po 7306 act drop comm Netspy3.0Trojan
ad ch forward pr tcp dst-po 8011 act drop comm WAY.Trojan
ad ch forward pr tcp dst-po 7626 act drop comm Trojan.BingHe
ad ch forward pr tcp dst-po 19191 act drop comm Trojan.NianSeHoYian
ad ch forward pr tcp dst-po 23444-23445 act drop comm NetBull.Trojan
ad ch forward pr tcp dst-po 2583 act drop comm WinCrash.Trojan-1
ad ch forward pr tcp dst-po 3024 act drop comm WinCrash.Trojan-2
ad ch forward pr tcp dst-po 4092 act drop comm WinCrash.Trojan-3
ad ch forward pr tcp dst-po 5714 act drop comm WinCrash.Trojan-4
ad ch forward pr tcp dst-po 1010-1012 act drop comm Doly1.0/1.35/1.5trojan-1
ad ch forward pr tcp dst-po 1015 act drop comm Doly1.0/1.35/1.5trojan-2
ad ch forward pr tcp dst-po 1999-2005 act drop comm TransScout.Trojan-1
ad ch forward pr tcp dst-po 9878 act drop comm TransScout.Trojan-2
ad ch forward pr tcp dst-po 2773 act drop comm Backdoor.YAI..Trojan-1
ad ch forward pr tcp dst-po 7215 act drop comm Backdoor.YAI.Trojan-2
ad ch forward pr tcp dst-po 54283 act drop comm Backdoor.YAI.Trojan-3
ad ch forward pr tcp dst-po 1003 act drop comm BackDoorTrojan-1
ad ch forward pr tcp dst-po 5598 act drop comm BackDoorTrojan-2
ad ch forward pr tcp dst-po 5698 act drop comm BackDoorTrojan-3
ad ch forward pr tcp dst-po 2716 act drop comm PrayerTrojan-1
ad ch forward pr tcp dst-po 9999 act drop comm PrayerTrojan-2
ad ch forward pr tcp dst-po 21544 act drop comm SchwindlerTrojan-1
ad ch forward pr tcp dst-po 31554 act drop comm SchwindlerTrojan-2
ad ch forward pr tcp dst-po 18753 act drop comm Shaft.DDoS.Trojan-1
ad ch forward pr tcp dst-po 20432 act drop comm Shaft.DDoS.Trojan-2
ad ch forward pr tcp dst-po 65000 act drop comm Devil.DDoS.Trojan
ad ch forward pr tcp dst-po 11831 act drop comm LatinusTrojan-1
ad ch forward pr tcp dst-po 29559 act drop comm LatinusTrojan-2
ad ch forward pr tcp dst-po 1784 act drop comm Snid.X2Trojan-1
ad ch forward pr tcp dst-po 3586 act drop comm Snid.X2Trojan-2
ad ch forward pr tcp dst-po 7609 act drop comm Snid.X2Trojan-3
ad ch forward pr tcp dst-po 12348-12349 act drop comm BionetTrojan-1
ad ch forward pr tcp dst-po 12478 act drop comm BionetTrojan-2
ad ch forward pr tcp dst-po 57922 act drop comm BionetTrojan-3
ad ch forward pr tcp dst-po 3127-3198 act drop comm Worm.Novarg.a.Mydoom.a.-1
ad ch forward pr tcp dst-po 4444 act drop comm Worm.MsBlaster-1
ad ch forward pr tcp dst-po 6777 act drop comm Worm.BBeagle.a.Bagle.a.
ad ch forward pr tcp dst-po 8866 act drop comm Worm.BBeagle.b
ad ch forward pr tcp dst-po 2745 act drop comm Worm.BBeagle.c-g/j-l
ad ch forward pr tcp dst-po 2556 act drop comm Worm.BBeagle.p/q/r/n
ad ch forward pr tcp dst-po 20742 act drop comm Worm.BBEagle.m-2
ad ch forward pr tcp dst-po 4751 act drop comm Worm.BBeagle.s/t/u/v
ad ch forward pr tcp dst-po 2535 act drop comm Worm.BBeagle.aa/ab/w/x-z-2
ad ch forward pr tcp dst-po 5238 act drop comm Worm.LovGate.r.RpcExploit
ad ch forward pr tcp dst-po 1068 act drop comm Worm.Sasser.a
ad ch forward pr tcp dst-po 5554 act drop comm Worm.Sasser.b/c/f
ad ch forward pr tcp dst-po 9996 act drop comm Worm.Sasser.b/c/f
ad ch forward pr tcp dst-po 9995 act drop comm Worm.Sasser.d
ad ch forward pr tcp dst-po 10168 act drop comm Worm.Lovgate.a/b/c/d
ad ch forward pr tcp dst-po 20808 act drop comm Worm.Lovgate.v.QQ
ad ch forward pr tcp dst-po 1092 act drop comm Worm.Lovgate.f/g
ad ch forward pr tcp dst-po 20168 act drop comm Worm.Lovgate.f/g
ad ch forward pr tcp dst-po 593 act drop
ad ch forward pr tcp dst-po 1214 act drop
ad ch forward pr tcp dst-po 1363-1364 act drop comm ndm.requester
ad ch forward pr tcp dst-po 1368 act drop comm screen.cast
ad ch forward pr tcp dst-po 1373 act drop comm hromgrafx
ad ch forward pr tcp dst-po 1377 act drop comm cichlid
ad ch forward pr tcp dst-po 3410 act drop comm Backdoor.OptixPro

ad ch forward pr udp dst-po 135-139 act drop
ad ch forward pr udp dst-po 8787 act drop comm Back.Orifice.2000.Trojan-6
ad ch forward pr udp dst-po 8879 act drop comm Back.Orifice.2000.Trojan-7
ad ch forward pr udp dst-po 31666 act drop comm Back.Orifice.2000.Trojan-8
ad ch forward pr udp dst-po 31337-31338 act drop comm Back.Orifice.2000.Trojan-9
ad ch forward pr udp dst-po 54320-54321 act drop comm Back.Orifice.2000.Trojan-10
ad ch forward pr udp dst-po 12345-12346 act drop comm Block.NetBus.Trojan-3
ad ch forward pr udp dst-po 20034 act drop comm Block.NetBus.Trojan-4
ad ch forward pr udp dst-po 21554 act drop comm GirlFriend.Trojan-2
ad ch forward pr udp dst-po 41 act drop comm DeepThroat.Trojan-8
ad ch forward pr udp dst-po 3150 act drop comm DeepThroat.Trojan-9
ad ch forward pr udp dst-po 999 act drop comm DeepThroat.Trojan-10
ad ch forward pr udp dst-po 6670 act drop comm DeepThroat.Trojan-11
ad ch forward pr udp dst-po 6771 act drop comm DeepThroat.Trojan-12
ad ch forward pr udp dst-po 60000 act drop comm DeepThroat.Trojan-13
ad ch forward pr udp dst-po 10067 act drop comm Portal.of.Doom.Trojan-5
ad ch forward pr udp dst-po 10167 act drop comm Portal.of.Doom.Trojan-6
ad ch forward pr udp dst-po 3700 act drop comm Portal.of.Doom.Trojan-7
ad ch forward pr udp dst-po 9872-9875 act drop comm Portal.of.Doom.Trojan-8
ad ch forward pr udp dst-po 6883 act drop comm Delta.Source.Trojan-5
ad ch forward pr udp dst-po 26274 act drop comm Delta.Source.Trojan-6
ad ch forward pr udp dst-po 44444 act drop comm Delta.Source.Trojan-7
ad ch forward pr udp dst-po 47262 act drop comm Delta.Source.Trojan-8
ad ch forward pr udp dst-po 3791 act drop comm Eclypse.Trojan-1
ad ch forward pr udp dst-po 3801 act drop comm Eclypse.Trojan-2
ad ch forward pr udp dst-po 5880-5882 act drop comm Eclypse.Trojan-3
ad ch forward pr udp dst-po 5888-5889 act drop comm Eclypse.Trojan-4
ad ch forward pr udp dst-po 34555 act drop comm Trin00.DDoS.Trojan-1
ad ch forward pr udp dst-po 35555 act drop comm Trin00.DDoS.Trojan-2
ad ch forward pr udp dst-po 31338 act drop comm NetSpy.DK.Trojan-1
ad ch forward pr udp dst-po 69 act drop comm Worm.MsBlaster-2
ad ch forward pr udp dst-po 123 act drop comm Worm.Sobig.f-1
ad ch forward pr udp dst-po 995-999 act drop comm Worm.Sobig.f-2
ad ch forward pr udp dst-po 8998 act drop comm Worm.Sobig.f-3
----------------------------
刚刚有又一台机上了网,Ping了下ros地址,通.再ping DNS的也通.最后没改IP也能上网了.这又是什么问题,真的好奇怪,是不是上面的防火墙作怪啊?

红烧排骨 发表于 2008-9-3 18:27:38

实在不行,就把防火墙全部禁用试试看,就知道是不是防火墙的原因了啊
页: [1]
查看完整版本: 请ROS高手帮帮忙,ADSL+ROS共享上网,某些IP突然上不到网?