Página 1 de 2 12 ÚltimoÚltimo
+ Responder ao Tópico



  1. Tenho configurado aqui o controle dos P2P, e até ai tudo bem, mas o Programa uTorrent passa por esse controle, indo até o limite do cliente, teria como especificar velocidade pra estes programas tbm?
    Ja busquei aqui no Forum sobre isso e não encontrei.
    Abraços...

  2. Citação Postado originalmente por JeanGutemberg Ver Post
    ...
    Programa uTorrent... teria como especificar velocidade pra estes programas tbm?
    ....
    Este programa pode tá usando a porta do ssh e também criptografia, o que torna meio difícil esta tarefa. Mas procure no site do programa saber quais as portas padrão dele e faça controle delas.



  3. Olá Jean esperimente adicionar essas regras em /IP FIREWALL FILTER e as coloque no inicio (topo) da lista de regras.

    /IP FIREWALL FILTER
    Código :
    / ip firewall filter 
    add chain=forward src-address=192.168.0.0/16 protocol=tcp src-port=0 action=drop comment="CONTROLE P2P Warez E \
        Semelhantes" disabled=no 
    add chain=forward src-address=192.168.0.0/16 protocol=tcp dst-port=0 action=drop comment="" disabled=no 
    add chain=forward src-address=192.168.0.0/16 protocol=udp src-port=0 action=drop comment="" disabled=no 
    add chain=forward src-address=192.168.0.0/16 protocol=udp dst-port=0 action=drop comment="" disabled=no 
    add chain=forward src-address=192.168.0.0/16 p2p=warez action=drop comment="" disabled=no

    Espero ter ajudado. Caso resolva seu problema não se esqueça de agradecer.

  4. Estas regras eu tenho no meu firewall, a ultima da lista que vc me passou bloqueia o ARES.
    Mas como eu não queria bloquear ele, pois ja reclamaram pra mim, eu Bloqueio das 8 da manha até as 11 da noite.

    Vou te passar meu Firewall:



    MMM MMM KKK TTTTTTTTTTT KKK
    MMMM MMMM KKK TTTTTTTTTTT KKK
    MMM MMMM MMM III KKK KKK RRRRRR OOOOOO TTT III KKK KKK
    MMM MM MMM III KKKKK RRR RRR OOO OOO TTT III KKKKK
    MMM MMM III KKK KKK RRRRRR OOO OOO TTT III KKK KKK
    MMM MMM III KKK KKK RRR RRR OOOOOO TTT III KKK KKK
    MikroTik RouterOS 2.9.27 (c) 1999-2006 www.routerclub.com






    / ip firewall filter
    add chain=services src-address=127.0.0.1 dst-address=127.0.0.1 action=accept \
    comment="accept localhost" disabled=no
    add chain=input protocol=tcp dst-port=1863 action=accept comment="Melhoras no \
    MSN" disabled=no
    add chain=input protocol=tcp src-port=1863 action=accept comment="" \
    disabled=no
    add chain=input protocol=tcp dst-port=443 action=accept comment="" disabled=no
    add chain=forward protocol=tcp dst-port=443 action=accept comment="" \
    disabled=no
    add chain=input connection-state=invalid action=drop comment="Drop Invalid \
    connections" disabled=no
    add chain=input connection-state=established action=accept comment="" \
    disabled=no
    add chain=input protocol=udp action=accept comment="Allow UDP" disabled=no
    add chain=input protocol=icmp action=accept comment="Allow ICMP" disabled=no
    add chain=input src-address=20.20.0.0/16 action=accept comment="PERMITIR \
    ACESSO AO ROUTER SOMENTE DESTA REDE" disabled=no
    add chain=forward protocol=tcp tcp-flags=syn connection-limit=30,32 \
    action=drop comment="5 conexes simutaneas por cliente" disabled=no
    add chain=forward protocol=udp action=jump jump-target=udp comment="" \
    disabled=no
    add chain=forward protocol=icmp action=jump jump-target=icmp comment="" \
    disabled=no
    add chain=forward src-address=20.20.0.0/16 protocol=udp src-port=0 action=drop \
    comment="Controle P2P ARES e Semelhantes" disabled=no
    add chain=forward src-address=20.20.0.0/16 protocol=udp dst-port=0 action=drop \
    comment="" disabled=no
    add chain=forward src-address=20.20.0.0/16 protocol=tcp src-port=0 action=drop \
    comment="" disabled=no
    add chain=forward src-address=20.20.0.0/16 protocol=tcp dst-port=0 action=drop \
    comment="" disabled=no
    add chain=forward src-address=20.20.0.0/16 p2p=warez \
    time=8h-23h,sat,fri,thu,wed,tue,mon,sun action=drop comment="Bloqueio ARES \
    - 08:00 ate 23:00" disabled=no
    add chain=forward src-address=20.20.0.0/16 protocol=udp dst-port=10025-65535 \
    action=drop comment="BLOQUEIO DE PORTAS TCP-UDP" disabled=no
    add chain=input protocol=udp src-port=135 action=drop comment="Drop Netbius e \
    Similar" disabled=no
    add chain=input protocol=tcp src-port=135 action=drop comment="" disabled=no
    add chain=input protocol=udp src-port=136 action=drop comment="" disabled=no
    add chain=input protocol=tcp src-port=136 action=drop comment="" disabled=no
    add chain=input protocol=udp src-port=137 action=drop comment="" disabled=no
    add chain=input protocol=tcp src-port=137 action=drop comment="" disabled=no
    add chain=input protocol=udp src-port=138 action=drop comment="" disabled=no
    add chain=input protocol=tcp src-port=138 action=drop comment="" disabled=no
    add chain=input protocol=udp src-port=139 action=drop comment="" disabled=no
    add chain=input protocol=tcp src-port=139 action=drop comment="" disabled=no
    add chain=input protocol=tcp src-port=445 action=drop comment="" disabled=no
    add chain=input protocol=udp src-port=445 action=drop comment="" disabled=no
    add chain=forward protocol=udp dst-port=135 action=drop comment="Drop Netbius \
    e Similar" disabled=no
    add chain=forward protocol=tcp dst-port=135 action=drop comment="" disabled=no
    add chain=forward protocol=udp dst-port=136 action=drop comment="" disabled=no
    add chain=forward protocol=tcp dst-port=136 action=drop comment="" disabled=no
    add chain=forward protocol=udp dst-port=137 action=drop comment="" disabled=no
    add chain=forward protocol=tcp dst-port=137 action=drop comment="" disabled=no
    add chain=forward protocol=udp dst-port=138 action=drop comment="" disabled=no
    add chain=forward protocol=tcp dst-port=138 action=drop comment="" disabled=no
    add chain=forward protocol=udp dst-port=139 action=drop comment="" disabled=no
    add chain=forward protocol=tcp dst-port=139 action=drop comment="" disabled=no
    add chain=forward protocol=tcp dst-port=445 action=drop comment="" disabled=no
    add chain=forward protocol=udp dst-port=445 action=drop comment="" disabled=no
    add chain=Output protocol=udp src-port=135 action=drop comment="Drop Netbius e \
    Similar" disabled=no
    add chain=Output protocol=tcp src-port=135 action=drop comment="" disabled=no
    add chain=Output protocol=udp src-port=136 action=drop comment="" disabled=no
    add chain=Output protocol=tcp src-port=136 action=drop comment="" disabled=no
    add chain=Output protocol=udp src-port=137 action=drop comment="" disabled=no
    add chain=Output protocol=tcp src-port=137 action=drop comment="" disabled=no
    add chain=Output protocol=udp src-port=138 action=drop comment="" disabled=no
    add chain=Output protocol=tcp src-port=138 action=drop comment="" disabled=no
    add chain=Output protocol=udp src-port=139 action=drop comment="" disabled=no
    add chain=Output protocol=tcp src-port=139 action=drop comment="" disabled=no
    add chain=Output protocol=tcp src-port=445 action=drop comment="" disabled=no
    add chain=Output protocol=udp src-port=445 action=drop comment="" disabled=no
    add chain=forward src-address=20.20.0.0/16 protocol=tcp tcp-flags=syn \
    connection-limit=30,32 action=drop comment="Limitando a 20 o n mero \
    conexoes simult neas" disabled=yes
    add chain=forward src-address=20.20.54.2 protocol=udp action=drop comment="Se \
    tiver passando do Queue" disabled=yes
    add chain=forward dst-address=20.20.54.2 protocol=udp action=drop comment="" \
    disabled=yes
    add chain=forward src-address=20.20.56.2 protocol=udp action=drop comment="" \
    disabled=yes
    add chain=forward dst-address=20.20.56.2 protocol=udp action=drop comment="" \
    disabled=yes
    add chain=input protocol=icmp action=drop comment="BLOQUEAR PING" disabled=yes
    add chain=forward src-address=20.20.8.2 time=0s-6h,fri,thu,wed,tue,mon \
    action=drop comment="bloqueio por horario FERNANDO PIO MEIA NOITE AS 6" \
    disabled=yes
    add chain=input in-interface=LINK protocol=tcp dst-port=3122 action=drop \
    comment="Protecao Externa Proxy" disabled=no



  5. Caro colega aparentemente está certo a unica coisa que vi errada é que essas regras de bloqueio arez devem ser as primeiras regras do firewall.
    Ahhhh, uma pergunta seu controle de horario está funcionando blz.
    ?






Tópicos Similares

  1. Respostas: 22
    Último Post: 16-05-2013, 21:08
  2. Tem como limitar o no. de msgs por usuario do qmail?
    Por Edilmar no fórum Servidores de Rede
    Respostas: 2
    Último Post: 02-01-2008, 11:32
  3. Respostas: 0
    Último Post: 07-12-2007, 22:20
  4. Respostas: 19
    Último Post: 27-06-2007, 17:19
  5. Respostas: 5
    Último Post: 23-12-2006, 15:01

Visite: BR-Linux ·  VivaOLinux ·  Dicas-L