Re: Aqui vão alguns bloqueios de virus conhecidos e desconhecidos para sua rede
Citação:
Postado originalmente por
LmcNet
:congrats:
Código PHP:
ip firewall filter>
add
chain=virus protocol=tcp dst-port=445 action=drop comment=;;; bloqueio de \ VIRUS conhecidos
disable=no
chain=virus protocol=udp dst-port=445 action=drop
disable=no
chain=virus protocol=tcp dst-port=593 action=drop
disable=no
chain=virus protocol=tcp dst-port=1080 action=drop
disable=no
chain=virus protocol=tcp dst-port=1363 action=drop
disable=no
chain=virus protocol=tcp dst-port=1364 action=drop
disable=no
chain=virus protocol=tcp dst-port=1373 action=drop
disable=no
chain=virus protocol=tcp dst-port=1377 action=drop
disable=no
chain=virus protocol=tcp dst-port=1368 action=drop
disable=no
chain=virus protocol=tcp dst-port=1433-1434 action=drop
disable=no
chain=virus protocol=tcp dst-port=1024-1030 action=drop
disable=no
chain=virus protocol=tcp dst-port=1214 action=drop
disable=no
chain=virus protocol=tcp dst-port=135-139 action=drop comment=;;; Drop \ Blaster Worm
disable=no
chain=virus protocol=udp dst-port=135-139 action=drop comment=;;; Drop \ Messenger Worm
disable=no
chain=virus protocol=tcp dst-port=445 action=drop comment=;;; Drop Blaster \ Worm
disable=no
chain=virus protocol=udp dst-port=445 action=drop comment=;;; Drop Blaster \ Worm
disable=no
chain=virus protocol=tcp dst-port=593 action=drop comment=;;; ________
disable=no
chain=virus protocol=tcp dst-port=1024-1030 action=drop comment=;;; ________
disable=no
chain=virus protocol=tcp dst-port=1080 action=drop comment=;;; Drop MyDoom
disable=no
chain=virus protocol=tcp dst-port=1214 action=drop comment=;;; ________
disable=no
chain=virus protocol=tcp dst-port=1363 action=drop comment=;;; ndm requester
disable=no
chain=virus protocol=tcp dst-port=1364 action=drop comment=;;; ndm server
disable=no
chain=virus protocol=tcp dst-port=1368 action=drop comment=;;; screen cast
disable=no
chain=virus protocol=tcp dst-port=1373 action=drop comment=;;; hromgrafx
disable=no
chain=virus protocol=tcp dst-port=1377 action=drop comment=;;; cichlid
disable=no
chain=virus protocol=tcp dst-port=1433-1434 action=drop comment=;;; Worm
disable=no
chain=virus protocol=tcp dst-port=2745 action=drop comment=;;; Bagle Virus
disable=no
chain=virus protocol=tcp dst-port=2283 action=drop comment=;;; Drop Dumaru.Y
disable=no
chain=virus protocol=tcp dst-port=2535 action=drop comment=;;; Drop Beagle
disable=no
chain=virus protocol=tcp dst-port=2745 action=drop comment=;;; Drop \ Beagle.C-K
disable=no
chain=virus protocol=tcp dst-port=3127-3128 action=drop comment=;;; Drop \ porta proxy
disable=no
chain=virus protocol=tcp dst-port=3410 action=drop comment=;;; Drop Backdoor \ OptixPro
disable=no
chain=virus protocol=tcp dst-port=4444 action=drop comment=;;; Worm
disable=no
chain=virus protocol=udp dst-port=4444 action=drop comment=;;; Worm
disable=no
chain=virus protocol=tcp dst-port=5554 action=drop comment=;;; Drop Sasser
disable=no
chain=virus protocol=tcp dst-port=8866 action=drop comment=;;; Drop Beagle.B
disable=no
chain=virus protocol=tcp dst-port=9898 action=drop comment=;;; Drop \ Dabber.A-B
disable=no
chain=virus protocol=tcp dst-port=10000 action=drop comment=;;; Drop \ Dumaru.Y
disable=no
chain=virus protocol=tcp dst-port=10080 action=drop comment=;;; Drop \ MyDoom.B
disable=no
chain=virus protocol=tcp dst-port=12345 action=drop comment= ;;; Drop NetBus
disable=no
chain=virus protocol=tcp dst-port=17300 action=drop comment=;;; Drop Kuang2
disable=no
chain=virus protocol=tcp dst-port=27374 action=drop comment=;;; Drop \ SubSeven disable=no
chain=virus protocol=tcp dst-port=65506 action=drop comment= ;;; Drop PhatBot, \ Agobot, Gaobot
disable=no
chain=virus protocol=tcp dst-port=135-139 action=drop comment= ;;; Drop Blaster Worm
disable=no
chain=virus protocol=udp dst-port=135-139 action=drop comment= ;;; Drop Messenger Worm
disable=no
chain=virus protocol=tcp dst-port=445 action=drop comment= ;;; Drop Blaster Worm
disable=no
chain=virus protocol=udp dst-port=445 action=drop comment= ;;; Drop Blaster Worm
disable=no
chain=virus protocol=tcp dst-port=593 action=drop comment=;;; ________
disable=no
chain=virus protocol=tcp dst-port=1024-1030 action=drop comment= ;;; ________
disable=no
chain=virus protocol=tcp dst-port=1080 action=drop comment=;;; Drop MyDoom
disable=no
chain=virus protocol=tcp dst-port=1214 action=drop comment= ;;; ________
disable=no
chain=virus protocol=tcp dst-port=1363 action=drop comment= ;;; ndm requester
disable=no
chain=virus protocol=tcp dst-port=1364 action=drop comment= ;;; ndm server
disable=no
chain=virus protocol=tcp dst-port=1368 action=drop comment= ;;; screen cast
disable=no
chain=virus protocol=tcp dst-port=1373 action=drop comment= ;;; hromgrafx
disable=no
chain=virus protocol=tcp dst-port=1377 action=drop comment=;;; cichlid
disable=no
chain=virus protocol=tcp dst-port=1433-1434 action=drop comment=;;; Worm
disable=no
chain=virus protocol=tcp dst-port=2745 action=drop comment=;;; Bagle Virus
disable=no
chain=virus protocol=tcp dst-port=2283 action=drop comment=;;; Drop Dumaru.Y
disable=no
chain=virus protocol=tcp dst-port=2535 action=drop comment=;;; Drop Beagle
disable=no
chain=virus protocol=tcp dst-port=2745 action=drop comment=;;; Drop Beagle.C-K
disable=no
chain=virus protocol=tcp dst-port=3127-3128 action=drop comment=;;; Drop MyDoom
disable=no
chain=virus protocol=tcp dst-port=3410 action=drop comment=;;; Drop Backdoor OptixPro
disable=no
chain=virus protocol=tcp dst-port=4444 action=drop comment=;;; Worm
disable=no
chain=virus protocol=udp dst-port=4444 action=drop comment=;;; Worm
disable=no
chain=virus protocol=tcp dst-port=5554 action=drop comment=;;; Drop Sasser
disable=no
chain=virus protocol=tcp dst-port=8866 action=drop comment=;;; bloqueio Beagle.B
disable=no
chain=virus protocol=tcp dst-port=9898 action=drop comment=;;; bloqueio Dabber.A-B
disable=no
chain=virus protocol=tcp dst-port=10000 action=drop comment=;;; bloqueio Dumaru.Y disable=no
chain=virus protocol=tcp dst-port=10080 action=drop comment=;;; bloqueio MyDoom.B
disable=no
chain=virus protocol=tcp dst-port=12345 action=drop comment=;;; bloqueio NetBus
disable=no
chain=virus protocol=tcp dst-port=17300 action=drop comment=;;; bloqueio Kuang2
disable=no
chain=virus protocol=tcp dst-port=27374 action=drop comment=;;; bloqueio SubSeven
disable=no
chain=virus protocol=tcp dst-port=65506 action=drop comment=;;; bloqueio PhatBot, Agobot, Gaobot
disable=no
Se foi util nao esqueçam de agradecer!!
abrsss..
Re: Aqui vão alguns bloqueios de virus conhecidos e desconhecidos para sua rede
Faltou um jump para ler este canal VIRUS:
add action=jump chain=forward comment=";;; jump para o canal virus " disabled=no jump-target=virus
Re: Aqui vão alguns bloqueios de virus conhecidos e desconhecidos para sua rede
Pessoal não aguentei ver este print do firewall filter e resolvi arrumar para não dormir no meio de uma aula caça niquel, aquelas cadeiras que só servem para preencher curriculum de curso.
Código PHP:
/ip firewall filter
add chain=virus protocol=tcp dst-port=445 action=drop comment=";;; bloqueio de VIRUS conhecidos" disable=no
add chain=virus protocol=udp dst-port=445 action=drop disable=no
add chain=virus protocol=tcp dst-port=593 action=drop disable=no
add chain=virus protocol=tcp dst-port=1080 action=drop disable=no
add chain=virus protocol=tcp dst-port=1363 action=drop disable=no
add chain=virus protocol=tcp dst-port=1364 action=drop disable=no
add chain=virus protocol=tcp dst-port=1373 action=drop disable=no
add chain=virus protocol=tcp dst-port=1377 action=drop disable=no
add chain=virus protocol=tcp dst-port=1368 action=drop disable=no
add chain=virus protocol=tcp dst-port=1433-1434 action=drop disable=no
add chain=virus protocol=tcp dst-port=1024-1030 action=drop disable=no
add chain=virus protocol=tcp dst-port=1214 action=drop disable=no
add chain=virus protocol=tcp dst-port=135-139 action=drop comment=";;; Drop \ Blaster Worm" disable=no
add chain=virus protocol=udp dst-port=135-139 action=drop comment=";;; Drop \ Messenger Worm" disable=no
add chain=virus protocol=tcp dst-port=445 action=drop comment=";;; Drop Blaster \ Worm" disable=no
add chain=virus protocol=udp dst-port=445 action=drop comment=";;; Drop Blaster \ Worm" disable=no
add chain=virus protocol=tcp dst-port=593 action=drop comment=";;; ________" disable=no
add chain=virus protocol=tcp dst-port=1024-1030 action=drop comment=";;; ________" disable=no
add chain=virus protocol=tcp dst-port=1080 action=drop comment=";;; Drop MyDoom" disable=no
add chain=virus protocol=tcp dst-port=1214 action=drop comment=";;; ________" disable=no
add chain=virus protocol=tcp dst-port=1363 action=drop comment=";;; ndm requester" disable=no
add chain=virus protocol=tcp dst-port=1364 action=drop comment=";;; ndm server" disable=no
add chain=virus protocol=tcp dst-port=1368 action=drop comment=";;; screen cast" disable=no
add chain=virus protocol=tcp dst-port=1373 action=drop comment=";;; hromgrafx" disable=no
add chain=virus protocol=tcp dst-port=1377 action=drop comment=";;; cichlid" disable=no
add chain=virus protocol=tcp dst-port=1433-1434 action=drop comment=";;; Worm" disable=no
add chain=virus protocol=tcp dst-port=2745 action=drop comment=";;; Bagle Virus" disable=no
add chain=virus protocol=tcp dst-port=2283 action=drop comment=";;; Drop Dumaru.Y" disable=no
add chain=virus protocol=tcp dst-port=2535 action=drop comment=";;; Drop Beagle" disable=no
add chain=virus protocol=tcp dst-port=2745 action=drop comment=";;; Drop \ Beagle.C-K" disable=no
add chain=virus protocol=tcp dst-port=3127-3128 action=drop comment=";;; Drop \ porta proxy" disable=no
add chain=virus protocol=tcp dst-port=3410 action=drop comment=";;; Drop Backdoor \ OptixPro" disable=no
add chain=virus protocol=tcp dst-port=4444 action=drop comment=";;; Worm" disable=no
add chain=virus protocol=udp dst-port=4444 action=drop comment=";;; Worm" disable=no
add chain=virus protocol=tcp dst-port=5554 action=drop comment=";;; Drop Sasser" disable=no
add chain=virus protocol=tcp dst-port=8866 action=drop comment=";;; Drop Beagle.B" disable=no
add chain=virus protocol=tcp dst-port=9898 action=drop comment=";;; Drop \ Dabber.A-B" disable=no
add chain=virus protocol=tcp dst-port=10000 action=drop comment=";;; Drop \ Dumaru.Y" disable=no
add chain=virus protocol=tcp dst-port=10080 action=drop comment=";;; Drop \ MyDoom.B" disable=no
add chain=virus protocol=tcp dst-port=12345 action=drop comment=" ;;; Drop NetBus" disable=no
add chain=virus protocol=tcp dst-port=17300 action=drop comment=";;; Drop Kuang2" disable=no
add chain=virus protocol=tcp dst-port=27374 action=drop comment=";;; Drop \ SubSeven" disable=no
add chain=virus protocol=tcp dst-port=65506 action=drop comment= ";;; Drop PhatBot, \ Agobot, Gaobot" disable=no
add chain=virus protocol=tcp dst-port=135-139 action=drop comment=" ;;; Drop Blaster Worm" disable=no
add chain=virus protocol=udp dst-port=135-139 action=drop comment=" ;;; Drop Messenger Worm" disable=no
add chain=virus protocol=tcp dst-port=445 action=drop comment=" ;;; Drop Blaster Worm" disable=no
add chain=virus protocol=udp dst-port=445 action=drop comment=" ;;; Drop Blaster Worm" disable=no
add chain=virus protocol=tcp dst-port=593 action=drop comment=";;; ________" disable=no
add chain=virus protocol=tcp dst-port=1024-1030 action=drop comment=" ;;; ________" disable=no
add chain=virus protocol=tcp dst-port=1080 action=drop comment=";;; Drop MyDoom" disable=no
add chain=virus protocol=tcp dst-port=1214 action=drop comment= ";;; ________" disable=no
add chain=virus protocol=tcp dst-port=1363 action=drop comment= ";;; ndm requester" disable=no
add chain=virus protocol=tcp dst-port=1364 action=drop comment=" ;;; ndm server" disable=no
add chain=virus protocol=tcp dst-port=1368 action=drop comment=" ;;; screen cast" disable=no
add chain=virus protocol=tcp dst-port=1373 action=drop comment=" ;;; hromgrafx" disable=no
add chain=virus protocol=tcp dst-port=1377 action=drop comment=";;; cichlid" disable=no
add chain=virus protocol=tcp dst-port=1433-1434 action=drop comment=";;; Worm" disable=no
add chain=virus protocol=tcp dst-port=2745 action=drop comment=";;; Bagle Virus" disable=no
add chain=virus protocol=tcp dst-port=2283 action=drop comment=";;; Drop Dumaru.Y" disable=no
add chain=virus protocol=tcp dst-port=2535 action=drop comment=";;; Drop Beagle" disable=no
add chain=virus protocol=tcp dst-port=2745 action=drop comment=";;; Drop Beagle.C-K" disable=no
add chain=virus protocol=tcp dst-port=3127-3128 action=drop comment=";;; Drop MyDoom" disable=no
add chain=virus protocol=tcp dst-port=3410 action=drop comment=";;; Drop Backdoor OptixPro" disable=no
add chain=virus protocol=tcp dst-port=4444 action=drop comment=";;; Worm" disable=no
add chain=virus protocol=udp dst-port=4444 action=drop comment=";;; Worm" disable=no
add chain=virus protocol=tcp dst-port=5554 action=drop comment=";;; Drop Sasser" disable=no
add chain=virus protocol=tcp dst-port=8866 action=drop comment=";;; bloqueio Beagle.B" disable=no
add chain=virus protocol=tcp dst-port=9898 action=drop comment=";;; bloqueio Dabber.A-B" disable=no
add chain=virus protocol=tcp dst-port=10000 action=drop comment=";;; bloqueio Dumaru.Y" disable=no
add chain=virus protocol=tcp dst-port=10080 action=drop comment=";;; bloqueio MyDoom.B" disable=no
add chain=virus protocol=tcp dst-port=12345 action=drop comment=";;; bloqueio NetBus" disable=no
add chain=virus protocol=tcp dst-port=17300 action=drop comment=";;; bloqueio Kuang2" disable=no
add chain=virus protocol=tcp dst-port=27374 action=drop comment=";;; bloqueio SubSeven" disable=no
add chain=virus protocol=tcp dst-port=65506 action=drop comment=";;; bloqueio PhatBot, Agobot, Gaobot" disable=no
add action=jump chain=forward comment=";;; jump para o canal virus " disabled=no jump-target=virus
Re: Aqui vão alguns bloqueios de virus conhecidos e desconhecidos para sua rede
Agora sim! Melhor vlw pela correção
Re: Aqui vão alguns bloqueios de virus conhecidos e desconhecidos para sua rede
opa, vlw. Eu estasva rodando com nada de firewall coloquei pra rodar essas regras ai pra ver... vlw