ken-1976 wrote:
pctine ,gf...(恕刪)
試試這個方法
http://klseet.com/index.php/mikrotik/mikrotik-rb750-750g/setup-for-unifi
jaredlu wrote:
請問可以將 MOD ...(恕刪)
http://www.mobile01.com/topicdetail.php?f=110&t=3205444&p=227#51535819
除設定第三張圖是ether5和bridge1還不夠,還得再新增一個ether1和bridge1才行.
yblin99 wrote:
又是駭客問題今天試一...(恕刪)
其實需透過chain=input與ROS連接的服務很少,
大多是透過chain=forward與電腦連接.
與其如此就將service type外的連接給drop ,我是這樣認為.
把同意連接的電腦清單(All-Lan) ,與DNS-Server list先建立起來.
/ip firewall address-list
匯入下面的Rule:
/ip firewall filter我想您的問題應該會隨之迎刃而解!!
add action=drop chain=input comment=\
"\A5\E1\B1\F3\ABD\A5\BB\BE\F7\AA\BA\AB\CA\A5]" dst-address-type=!local
add action=drop chain=input comment="\\A5\\E1\\B1\\F3\\B5L\\AE\\C4\\AA\\BA\\AB\\CA\\A5]" \
connection-state=invalid
add action=drop chain=input comment="\\A5\\E1\\B1\\F3\\A6h\\BC\\BD\\AA\\BA\\AB\\CA\\A5]" \
src-address-type=!unicast
add action=drop chain=input comment="DoS\\A9\\DA\\B5\\B4\\AAA\\B0\\C8\\A7\\F0\\C0\\BB" \
connection-limit=10,32 protocol=tcp
add action=drop chain=input comment="\\A8\\BE\\A4\\EE\\B3Q\\B1\\BD\\BA\\CB Port" \
protocol=tcp src-address-list="port scanners"
add action=add-src-to-address-list address-list="port scanners" \
address-list-timeout=2w chain=input protocol=tcp psd=21,3s,3,1
add action=add-src-to-address-list address-list="port scanners" \
address-list-timeout=2w chain=input protocol=tcp tcp-flags=\
fin,!syn,!rst,!psh,!ack,!urg
add action=add-src-to-address-list address-list="port scanners" \
address-list-timeout=2w chain=input protocol=tcp tcp-flags=fin,syn
add action=add-src-to-address-list address-list="port scanners" \
address-list-timeout=2w chain=input protocol=tcp tcp-flags=syn,rst
add action=add-src-to-address-list address-list="port scanners" \
address-list-timeout=2w chain=input protocol=tcp tcp-flags=\
fin,psh,urg,!syn,!rst,!ack
add action=add-src-to-address-list address-list="port scanners" \
address-list-timeout=2w chain=input protocol=tcp tcp-flags=\
fin,syn,rst,psh,ack,urg
add action=add-src-to-address-list address-list="port scanners" \
address-list-timeout=2w chain=input protocol=tcp tcp-flags=\
!fin,!syn,!rst,!psh,!ack,!urg
add chain=input comment="\\A4\\B9\\B3\\\\\\B0\\CF\\BA\\F4\\B8\\CB\\B8m" src-address-list=All-Lan
add chain=input comment="\\A4\\B9\\B3\\\\VPN" dst-port=1723 protocol=tcp
add chain=input protocol=gre
add chain=input dst-port=500,1701,4500 protocol=udp
add chain=input dst-port=1194 protocol=tcp
add chain=input comment="\\A4\\B9\\B3\\\\DNS" src-address-list=DNS-Server
add chain=input comment="\\A4\\B9\\B3\\\\ROS-Cloud\\A6\\F8\\AAA\\BE\\B9" protocol=udp \
src-address=81.198.87.240
add chain=input comment="\\A4\\B9\\B3\\\\\\B6l\\A5\\F3\\A6\\F8\\AAA\\BE\\B9" protocol=tcp \
src-port=25
add chain=input comment="\\A4\\B9\\B3\\\\WWW\\A6\\F8\\AAA\\BE\\B9" protocol=tcp \
src-port=80,443
add chain=input comment="\\A4\\B9\\B3\\\\\\AE\\C9\\B6\\A1\\A6\\F8\\AAA\\BE\\B9" protocol=\
udp src-port=123
add action=drop chain=input comment=\
"\A5\E1\B1\F3\A5\BC\A9w\B8q\AA\BA\AB\CA\A5]"
內文搜尋
從 APP 打開
X