找回密码
 注册

QQ登录

只需一步,快速开始

搜索
查看: 1983|回复: 1

[其它] Router OS Prot ban~

[复制链接]
发表于 2005-8-22 05:01:38 | 显示全部楼层 |阅读模式

马上注册,结交更多好友,享用更多功能,让你轻松玩转社区。

您需要 登录 才可以下载或查看,没有账号?注册

×
请问 怎么封锁prot,就是不给人家访问我的端口
routeros
发表于 2005-8-22 09:17:39 | 显示全部楼层
/ ip firewall rule input
add dst-address=:500 protocol=udp action=drop comment="" disabled=no
    disabled=no
add tcp-options=non-syn-only connection-state=established action=accept comment="Accept \
    established connections" disabled=no
add connection-state=invalid action=drop comment="Drop invalid connections" disabled=no
add connection-state=related action=accept comment="Accept related connections" \
    disabled=no
add action=jump jump-target=virus comment="!!! Check for well-known viruses !!!" \
    disabled=no
add protocol=udp action=accept comment="UDP" disabled=no
add protocol=icmp action=drop comment="Drop excess pings" disabled=no
add src-address=192.168.1.0/24 dst-address=:22 protocol=tcp action=accept comment="SSH for  purposes"     disabled=no
add src-address=192.168.1.0/24 dst-address=:3987 protocol=tcp action=accept comment="winbox for  purposes"     disabled=no
add src-address=192.168.1.0/24 dst-address=:80 protocol=tcp action=accept comment="" disabled=no
add action=drop comment="Log and drop everything else" disabled=no
routeros
回复

使用道具 举报

您需要登录后才可以回帖 登录 | 注册

本版积分规则

QQ|Archiver|手机版|小黑屋|软路由 ( 渝ICP备15001194号-1|渝公网安备 50011602500124号 )

GMT+8, 2024-11-6 03:55 , Processed in 0.065613 second(s), 4 queries , Gzip On, Redis On.

Powered by Discuz! X3.5 Licensed

© 2001-2024 Discuz! Team.

快速回复 返回顶部 返回列表