+ Responder ao Tópico



  1. Citação Postado originalmente por LmcNet Ver Post
    Código PHP:
    ip firewall filter
    add
    chain
    =virus protocol=tcp dst-port=445 action=drop comment=;;; bloqueio de VIRUS conhecidos
    disable
    =no
     
    chain
    =virus protocol=udp dst-port=445 action=drop 
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=593 action=drop 
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=1080 action=drop 
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=1363 action=drop 
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=1364 action=drop 
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=1373 action=drop 
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=1377 action=drop 
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=1368 action=drop 
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=1433-1434 action=drop 
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=1024-1030 action=drop 
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=1214 action=drop 
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=135-139 action=drop comment=;;; Drop Blaster Worm
    disable
    =no
     
    chain
    =virus protocol=udp dst-port=135-139 action=drop comment=;;; Drop Messenger Worm
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=445 action=drop comment=;;; Drop Blaster Worm
    disable
    =no
     
    chain
    =virus protocol=udp dst-port=445 action=drop comment=;;; Drop Blaster Worm
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=593 action=drop comment=;;; ________
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=1024-1030 action=drop comment=;;; ________
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=1080 action=drop comment=;;; Drop MyDoom
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=1214 action=drop comment=;;; ________
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=1363 action=drop comment=;;; ndm requester
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=1364 action=drop comment=;;; ndm server
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=1368 action=drop comment=;;; screen cast
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=1373 action=drop comment=;;; hromgrafx
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=1377 action=drop comment=;;; cichlid
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=1433-1434 action=drop comment=;;; Worm
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=2745 action=drop comment=;;; Bagle Virus
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=2283 action=drop comment=;;; Drop Dumaru.Y
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=2535 action=drop comment=;;; Drop Beagle
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=2745 action=drop comment=;;; Drop Beagle.C-K
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=3127-3128 action=drop comment=;;; Drop porta proxy
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=3410 action=drop comment=;;; Drop Backdoor OptixPro
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=4444 action=drop comment=;;; Worm
    disable
    =no
     
     
    chain
    =virus protocol=udp dst-port=4444 action=drop comment=;;; Worm
    disable
    =no
     
     
    chain
    =virus protocol=tcp dst-port=5554 action=drop comment=;;; Drop Sasser
    disable
    =no
     
     
    chain
    =virus protocol=tcp dst-port=8866 action=drop comment=;;; Drop Beagle.B
    disable
    =no
     
     
    chain
    =virus protocol=tcp dst-port=9898 action=drop comment=;;; Drop Dabber.A-B
    disable
    =no
     
     
    chain
    =virus protocol=tcp dst-port=10000 action=drop comment=;;; Drop Dumaru.Y
    disable
    =no
     
     
    chain
    =virus protocol=tcp dst-port=10080 action=drop comment=;;; Drop MyDoom.B
    disable
    =no
     
     
    chain
    =virus protocol=tcp dst-port=12345 action=drop comment= ;;; Drop NetBus
    disable
    =no
     
     
    chain
    =virus protocol=tcp dst-port=17300 action=drop comment=;;; Drop Kuang2
    disable
    =no
     
     
    chain
    =virus protocol=tcp dst-port=27374 action=drop comment=;;; Drop SubSeven disable=no
     
    chain
    =virus protocol=tcp dst-port=65506 action=drop comment= ;;; Drop PhatBot, \ AgobotGaobot
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=135-139 action=drop comment= ;;; Drop Blaster Worm
    disable
    =no
     
    chain
    =virus protocol=udp dst-port=135-139 action=drop comment= ;;; Drop Messenger Worm
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=445 action=drop comment= ;;; Drop Blaster Worm
    disable
    =no
    chain
    =virus protocol=udp dst-port=445 action=drop comment= ;;; Drop Blaster Worm
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=593 action=drop comment=;;; ________
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=1024-1030 action=drop comment= ;;; ________
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=1080 action=drop comment=;;; Drop MyDoom
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=1214 action=drop comment= ;;; ________
    disable
    =no
    chain
    =virus protocol=tcp dst-port=1363 action=drop comment= ;;; ndm requester
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=1364 action=drop comment= ;;; ndm server
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=1368 action=drop comment= ;;; screen cast
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=1373 action=drop comment= ;;; hromgrafx
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=1377 action=drop comment=;;; cichlid
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=1433-1434 action=drop comment=;;; Worm
    disable
    =no
     
     
     
    chain
    =virus protocol=tcp dst-port=2745 action=drop comment=;;; Bagle Virus
    disable
    =no
     
     
    chain
    =virus protocol=tcp dst-port=2283 action=drop comment=;;; Drop Dumaru.Y
    disable
    =no
     
     
    chain
    =virus protocol=tcp dst-port=2535 action=drop comment=;;; Drop Beagle
    disable
    =no
     
     
    chain
    =virus protocol=tcp dst-port=2745 action=drop comment=;;; Drop Beagle.C-K
    disable
    =no
     
     
    chain
    =virus protocol=tcp dst-port=3127-3128 action=drop comment=;;; Drop MyDoom
    disable
    =no
     
     
    chain
    =virus protocol=tcp dst-port=3410 action=drop comment=;;; Drop Backdoor OptixPro
    disable
    =no
     
    chain
    =virus protocol=tcp dst-port=4444 action=drop comment=;;; Worm
    disable
    =no
     
     
    chain
    =virus protocol=udp dst-port=4444 action=drop comment=;;; Worm
    disable
    =no
     
     
    chain
    =virus protocol=tcp dst-port=5554 action=drop comment=;;; Drop Sasser
    disable
    =no
     
     
    chain
    =virus protocol=tcp dst-port=8866 action=drop comment=;;; bloqueio Beagle.B
    disable
    =no
     
     
    chain
    =virus protocol=tcp dst-port=9898 action=drop comment=;;; bloqueio Dabber.A-B
    disable
    =no
     
     
    chain
    =virus protocol=tcp dst-port=10000 action=drop comment=;;; bloqueio Dumaru.Y disable=no
     
     
    chain
    =virus protocol=tcp dst-port=10080 action=drop comment=;;; bloqueio MyDoom.B
    disable
    =no
     
     
    chain
    =virus protocol=tcp dst-port=12345 action=drop comment=;;; bloqueio NetBus
    disable
    =no
     
     
    chain
    =virus protocol=tcp dst-port=17300 action=drop comment=;;; bloqueio Kuang2
     disable
    =no
     
     
    chain
    =virus protocol=tcp dst-port=27374 action=drop comment=;;; bloqueio SubSeven
    disable
    =no
     
     
    chain
    =virus protocol=tcp dst-port=65506 action=drop comment=;;; bloqueio PhatBotAgobotGaobot 
    disable
    =no 
    Se foi util nao esqueçam de agradecer!!
    abrsss..

  2. Faltou um jump para ler este canal VIRUS:

    add action=jump chain=forward comment=";;; jump para o canal virus " disabled=no jump-target=virus



  3. Pessoal não aguentei ver este print do firewall filter e resolvi arrumar para não dormir no meio de uma aula caça niquel, aquelas cadeiras que só servem para preencher curriculum de curso.

    Código PHP:
    /ip firewall filter
    add chain
    =virus protocol=tcp dst-port=445 action=drop comment=";;; bloqueio de VIRUS conhecidos" disable=no 
    add chain
    =virus protocol=udp dst-port=445 action=drop disable=no 
    add chain
    =virus protocol=tcp dst-port=593 action=drop disable=no 
    add chain
    =virus protocol=tcp dst-port=1080 action=drop disable=no 
    add chain
    =virus protocol=tcp dst-port=1363 action=drop disable=no 
    add chain
    =virus protocol=tcp dst-port=1364 action=drop disable=no 
    add chain
    =virus protocol=tcp dst-port=1373 action=drop disable=no 
    add chain
    =virus protocol=tcp dst-port=1377 action=drop disable=no 
    add chain
    =virus protocol=tcp dst-port=1368 action=drop disable=no 
    add chain
    =virus protocol=tcp dst-port=1433-1434 action=drop disable=no 
    add chain
    =virus protocol=tcp dst-port=1024-1030 action=drop disable=no 
    add chain
    =virus protocol=tcp dst-port=1214 action=drop disable=no 
    add chain
    =virus protocol=tcp dst-port=135-139 action=drop comment=";;; Drop \ Blaster Worm" disable=no 
    add chain
    =virus protocol=udp dst-port=135-139 action=drop comment=";;; Drop \ Messenger Worm" disable=no 
    add chain
    =virus protocol=tcp dst-port=445 action=drop comment=";;; Drop Blaster \ Worm" disable=no 
    add chain
    =virus protocol=udp dst-port=445 action=drop comment=";;; Drop Blaster \ Worm" disable=no 
    add chain
    =virus protocol=tcp dst-port=593 action=drop comment=";;; ________" disable=no 
    add chain
    =virus protocol=tcp dst-port=1024-1030 action=drop comment=";;; ________" disable=no 
    add chain
    =virus protocol=tcp dst-port=1080 action=drop comment=";;; Drop MyDoom" disable=no 
    add chain
    =virus protocol=tcp dst-port=1214 action=drop comment=";;; ________" disable=no 
    add chain
    =virus protocol=tcp dst-port=1363 action=drop comment=";;; ndm requester" disable=no 
    add chain
    =virus protocol=tcp dst-port=1364 action=drop comment=";;; ndm server" disable=no 
    add chain
    =virus protocol=tcp dst-port=1368 action=drop comment=";;; screen cast" disable=no 
    add chain
    =virus protocol=tcp dst-port=1373 action=drop comment=";;; hromgrafx" disable=no 
    add chain
    =virus protocol=tcp dst-port=1377 action=drop comment=";;; cichlid" disable=no 
    add chain
    =virus protocol=tcp dst-port=1433-1434 action=drop comment=";;; Worm" disable=no 
    add chain
    =virus protocol=tcp dst-port=2745 action=drop comment=";;; Bagle Virus" disable=no 
    add chain
    =virus protocol=tcp dst-port=2283 action=drop comment=";;; Drop Dumaru.Y" disable=no 
    add chain
    =virus protocol=tcp dst-port=2535 action=drop comment=";;; Drop Beagle" disable=no 
    add chain
    =virus protocol=tcp dst-port=2745 action=drop comment=";;; Drop \ Beagle.C-K" disable=no 
    add chain
    =virus protocol=tcp dst-port=3127-3128 action=drop comment=";;; Drop \ porta proxy" disable=no 
    add chain
    =virus protocol=tcp dst-port=3410 action=drop comment=";;; Drop Backdoor \ OptixPro" disable=no 
    add chain
    =virus protocol=tcp dst-port=4444 action=drop comment=";;; Worm" disable=no 
    add chain
    =virus protocol=udp dst-port=4444 action=drop comment=";;; Worm" disable=no 
    add chain
    =virus protocol=tcp dst-port=5554 action=drop comment=";;; Drop Sasser" disable=no 
    add chain
    =virus protocol=tcp dst-port=8866 action=drop comment=";;; Drop Beagle.B" disable=no 
    add chain
    =virus protocol=tcp dst-port=9898 action=drop comment=";;; Drop \ Dabber.A-B" disable=no 
    add chain
    =virus protocol=tcp dst-port=10000 action=drop comment=";;; Drop \ Dumaru.Y" disable=no 
    add chain
    =virus protocol=tcp dst-port=10080 action=drop comment=";;; Drop \ MyDoom.B" disable=no 
    add chain
    =virus protocol=tcp dst-port=12345 action=drop comment=" ;;; Drop NetBus" disable=no 
    add chain
    =virus protocol=tcp dst-port=17300 action=drop comment=";;; Drop Kuang2" disable=no 
    add chain
    =virus protocol=tcp dst-port=27374 action=drop comment=";;; Drop \ SubSeven" disable=no 
    add chain
    =virus protocol=tcp dst-port=65506 action=drop comment";;; Drop PhatBot, \ Agobot, Gaobot" disable=no 
    add chain
    =virus protocol=tcp dst-port=135-139 action=drop comment=" ;;; Drop Blaster Worm" disable=no 
    add chain
    =virus protocol=udp dst-port=135-139 action=drop comment=" ;;; Drop Messenger Worm" disable=no 
    add chain
    =virus protocol=tcp dst-port=445 action=drop comment=" ;;; Drop Blaster Worm" disable=no
    add chain
    =virus protocol=udp dst-port=445 action=drop comment=" ;;; Drop Blaster Worm" disable=no 
    add chain
    =virus protocol=tcp dst-port=593 action=drop comment=";;; ________" disable=no 
    add chain
    =virus protocol=tcp dst-port=1024-1030 action=drop comment=" ;;; ________" disable=no 
    add chain
    =virus protocol=tcp dst-port=1080 action=drop comment=";;; Drop MyDoom" disable=no 
    add chain
    =virus protocol=tcp dst-port=1214 action=drop comment";;; ________" disable=no
    add chain
    =virus protocol=tcp dst-port=1363 action=drop comment";;; ndm requester" disable=no 
    add chain
    =virus protocol=tcp dst-port=1364 action=drop comment=" ;;; ndm server" disable=no 
    add chain
    =virus protocol=tcp dst-port=1368 action=drop comment=" ;;; screen cast" disable=no 
    add chain
    =virus protocol=tcp dst-port=1373 action=drop comment=" ;;; hromgrafx" disable=no 
    add chain
    =virus protocol=tcp dst-port=1377 action=drop comment=";;; cichlid" disable=no 
    add chain
    =virus protocol=tcp dst-port=1433-1434 action=drop comment=";;; Worm" disable=no  
    add chain
    =virus protocol=tcp dst-port=2745 action=drop comment=";;; Bagle Virus" disable=no 
    add chain
    =virus protocol=tcp dst-port=2283 action=drop comment=";;; Drop Dumaru.Y" disable=no 
    add chain
    =virus protocol=tcp dst-port=2535 action=drop comment=";;; Drop Beagle" disable=no 
    add chain
    =virus protocol=tcp dst-port=2745 action=drop comment=";;; Drop Beagle.C-K" disable=no 
    add chain
    =virus protocol=tcp dst-port=3127-3128 action=drop comment=";;; Drop MyDoom" disable=no  
    add chain
    =virus protocol=tcp dst-port=3410 action=drop comment=";;; Drop Backdoor OptixPro" disable=no 
    add chain
    =virus protocol=tcp dst-port=4444 action=drop comment=";;; Worm" disable=no 
    add chain
    =virus protocol=udp dst-port=4444 action=drop comment=";;; Worm" disable=no 
    add chain
    =virus protocol=tcp dst-port=5554 action=drop comment=";;; Drop Sasser" disable=no  
    add chain
    =virus protocol=tcp dst-port=8866 action=drop comment=";;; bloqueio Beagle.B" disable=no 
    add chain
    =virus protocol=tcp dst-port=9898 action=drop comment=";;; bloqueio Dabber.A-B" disable=no 
    add chain
    =virus protocol=tcp dst-port=10000 action=drop comment=";;; bloqueio Dumaru.Y" disable=no 
    add chain
    =virus protocol=tcp dst-port=10080 action=drop comment=";;; bloqueio MyDoom.B" disable=no 
    add chain
    =virus protocol=tcp dst-port=12345 action=drop comment=";;; bloqueio NetBus" disable=no 
    add chain
    =virus protocol=tcp dst-port=17300 action=drop comment=";;; bloqueio Kuang2"  disable=no 
    add chain
    =virus protocol=tcp dst-port=27374 action=drop comment=";;; bloqueio SubSeven" disable=no 
    add chain
    =virus protocol=tcp dst-port=65506 action=drop comment=";;; bloqueio PhatBot, Agobot, Gaobot" disable=no
    add action
    =jump chain=forward comment=";;; jump para o canal virus " disabled=no jump-target=virus 

  4. Agora sim! Melhor vlw pela correção
    Última edição por LmcNet; 17-11-2010 às 22:03.



  5. opa, vlw. Eu estasva rodando com nada de firewall coloquei pra rodar essas regras ai pra ver... vlw






Tópicos Similares

  1. Regras para bloqueio de virus! Firewall
    Por marcelorodrigues no fórum Redes
    Respostas: 1
    Último Post: 26-06-2014, 08:00
  2. Bloqueio de virus no firewall. Manter ou tirar?
    Por FernandodeDeus no fórum Redes
    Respostas: 9
    Último Post: 05-04-2010, 13:55
  3. Firewall+Bloqueio+de+Virus+conhecid os
    Por bykurumin no fórum Redes
    Respostas: 46
    Último Post: 24-07-2008, 18:26
  4. bloqueio de vírus e worms pelo MT
    Por Mr_Dom no fórum Redes
    Respostas: 1
    Último Post: 10-08-2006, 09:15
  5. Respostas: 1
    Último Post: 17-05-2006, 08:40

Visite: BR-Linux ·  VivaOLinux ·  Dicas-L