Thursday, 3 November 2011

Keamanan Mikrotik dari Virus

Author: De Teknologi | Posted at: Thursday, November 03, 2011 | Filed Under: quickedit pencil -->
Pastekan di New terminal
/ip firewall filter

add action=passthrough chain=unused-hs-chain comment=\
    "place hotspot rules here" disabled=yes
add action=drop chain=input comment=Drop_invalid_connections \
    connection-state=invalid disabled=no
add action=accept chain=input comment=UDP disabled=no protocol=udp
add action=accept chain=input comment=Allow_limited_pings disabled=no limit=\
    50/5s,2 protocol=icmp
add action=drop chain=input comment=Drop_excess_pings disabled=no protocol=\
    icmp
add action=accept chain=input comment=FTP disabled=no dst-port=21 protocol=\
    tcp src-address-list=ournetwork
add action=accept chain=input comment=SSH_for_secure_shell disabled=no \
    dst-port=22 protocol=tcp src-address-list=ournetwork
add action=accept chain=input comment=Telnet disabled=no dst-port=23 \
    protocol=tcp src-address-list=ournetwork
add action=accept chain=input comment=Web disabled=no dst-port=80 protocol=\
    tcp src-address-list=ournetwork
add action=accept chain=input comment=winbox disabled=no dst-port=8291 \
    protocol=tcp src-address-list=ournetwork
add action=accept chain=input comment=pptp-server disabled=no dst-port=1723 \
    protocol=tcp
add action=log chain=input comment=Log_everything_else disabled=no \
    log-prefix="DROP INPUT"
add action=accept chain=input comment=Telnet disabled=no dst-port=23 \
    protocol=tcp src-address-list=ournetwork
add action=accept chain=input comment=Web1 disabled=no dst-port=80 protocol=\
    tcp src-address-list=ournetwork
add action=accept chain=input comment=pptp-server disabled=no dst-port=1723 \
    protocol=tcp
add action=log chain=input comment=Logeverythingelse disabled=no log-prefix=\
    "DROP INPUT"
add action=accept chain=input comment=winbox1 disabled=no dst-port=8291 \
    protocol=tcp src-address-list=ournetwork
add action=drop chain=forward comment=drop_invalid_connections \
    connection-state=invalid disabled=no
add action=drop chain=virus comment=Drop_Blaster_Worm disabled=no dst-port=\
    135-139 protocol=tcp
add action=drop chain=virus comment=Worm disabled=no dst-port=1433-1434 \
    protocol=tcp
add action=drop chain=virus comment=Drop_Blaster_Worm disabled=no dst-port=\
    445 protocol=tcp
add action=drop chain=virus comment=Drop_Blaster_Worm disabled=no dst-port=\
    445 protocol=udp
add action=drop chain=virus comment=________ disabled=no dst-port=593 \
    protocol=tcp
add action=drop chain=virus comment=__________ disabled=no dst-port=1024-1030 \
    protocol=tcp
add action=drop chain=virus comment=Drop_MyDoom disabled=no dst-port=1080 \
    protocol=tcp
add action=drop chain=virus comment=______ disabled=no dst-port=1214 \
    protocol=tcp
add action=drop chain=virus comment=ndmrequester disabled=no dst-port=1363 \
    protocol=tcp
add action=drop chain=virus comment=ndmserver disabled=no dst-port=1364 \
    protocol=tcp
add action=drop chain=virus comment=screenCast disabled=no dst-port=1368 \
    protocol=tcp
add action=drop chain=virus comment=hromgrafx disabled=no dst-port=1373 \
    protocol=tcp
add action=drop chain=virus comment=cichlid disabled=no dst-port=1377 \
    protocol=tcp
add action=drop chain=virus comment=BagleVirus disabled=no dst-port=2745 \
    protocol=tcp
add action=drop chain=virus comment=DropDumaruY disabled=no dst-port=2283 \
    protocol=tcp
add action=drop chain=virus comment=DropBeagle disabled=no dst-port=2535 \
    protocol=tcp
add action=drop chain=virus comment=DropBeagle_C-K disabled=no dst-port=2745 \
    protocol=tcp
add action=drop chain=virus comment=DropMyDoom disabled=no dst-port=3127 \
    protocol=tcp
add action=drop chain=virus comment=DropBackdoorOptixPro disabled=no \
    dst-port=3410 protocol=tcp
add action=drop chain=virus comment=Worm1 disabled=no dst-port=4444 protocol=\
    tcp
add action=drop chain=virus comment=Worm2 disabled=no dst-port=4444 protocol=\
    udp
add action=drop chain=virus comment=DropSasser disabled=no dst-port=5554 \
    protocol=tcp
add action=drop chain=virus comment=DropBeagleB disabled=no dst-port=8866 \
    protocol=tcp
add action=drop chain=virus comment=DropDabber-A-B disabled=no dst-port=9898 \
    protocol=tcp
add action=drop chain=virus comment=DropMyDoom-B disabled=no dst-port=10080 \
    protocol=tcp
add action=drop chain=virus comment=DropNetBus disabled=no dst-port=12345 \
    protocol=tcp
add action=drop chain=virus comment=DropKuang2 disabled=no dst-port=17300 \
    protocol=tcp
add action=drop chain=virus comment=DropSubSeven disabled=no dst-port=27374 \
    protocol=tcp
add action=drop chain=virus comment=DropPhatBot,Agobot,Gaobot disabled=no \
    dst-port=65506 protocol=tcp
add action=jump chain=forward comment=JumpToTheVirusChain disabled=no \
    jump-target=virus


Artikel Terkait:

Share This
Subscribe Here

0 comments:

Post a Comment

Subscribe to: Post Comments (Atom)
 

Site Info

free counters

SyakirahNET Copyright © 2009 BeMagazine Blogger Template is Designed by Blogger Template
In Collaboration with fifa

Related Posts Plugin for WordPress, Blogger...