ini sekedar menulis ulang script dari kitab kuning hasil dari kumpluk2 FMI .... biar mudah untuk copas-nya ... monggo ini paidjo coba ketik ulang di notepad biar bisa langsung copas ke new-terminal sampian kabeh ....
dlm hal ini paidjo gak ngerti jawa-ne opo maneh cino-ne .... ancen paidjo gak sekolah .... hehehe
monggo langsung di copas mawon ... sami kalih-an kulo inggih ngoten sok-sok .... heheheh ....
gak usah isin2 ... master2 FMI pasti maklum lek formula-ne di repek kr wong ndeso2 ky awak-e ndewe iki .... xixixixixi ... pisss ::::::::
lek pingin memodif juga monggo ... trs mengko kulo repek-e .... xixixixixxi .... pissss lah broo ...
==========I MELINDUNGI KLIEN I================
/ip fi filter
add chain=forward connection-state=established comment="allow established"
add chain=forward connection-state=related comment="allow related connections"
add chain=forward connection-state=invalid action-drop comment="drop invalid connections"
==========I chain virus I===============
add chain=virus protocol=tcp dst-port=135-139 action=drop comment="drop blaster worm"
add chain=virus protocol=udp dst-port=135-139 action=drop comment="drop messeger worm"
add chain=virus protocol=tcp dst-port=455 action=drop comment="drop blaster worm"
add chain=virus protocol=udp dst-port=455 action=drop comment="drop blaster worm"
add chain=virus protocol=tcp dst-port=593 action=drop comment="_________"
add chain=virus protocol=tcp dst-port=1024-1030 action=drop comment="___________"
add chain=virus protocol=tcp dst-port=1080 action=drop comment="drop my-doom"
add chain=virus protocol=tcp dst-port=1224 action=drop comment="_________"
add chain=virus protocol=tcp dst-port=1363 action=drop comment="ndm requester"
add chain=virus protocol=tcp dst-port=1364 action=drop comment="ndm server"
add chain=virus protocol=tcp dst-port=1368 action=drop comment="screen cast"
add chain=virus protocol=tcp dst-port=1373 action=drop comment="hromgrafx"
add chain=virus protocol=tcp dst-port=1377 action=drop comment="dcichild"
add chain=virus protocol=tcp dst-port=1433-1434 action=drop comment="worm"
add chain=virus protocol=tcp dst-port=2283 action=drop comment="dumaru.y"
add chain=virus protocol=tcp dst-port=2535 action=drop comment="drop bangle"
add chain=virus protocol=tcp dst-port=2745 action=drop comment="bangle virus"
add chain=virus protocol=tcp dst-port=3127-3128 action=drop comment="drop my-doom"
add chain=virus protocol=tcp dst-port=3410 action=drop comment="drop back-door optic-pro"
add chain=virus protocol=tcp dst-port=4444 action=drop comment="worm"
add chain=virus protocol=udp dst-port=4444 action=drop comment="worm"
add chain=virus protocol=tcp dst-port=5554 action=drop comment="drop sasser"
add chain=virus protocol=tcp dst-port=8866 action=drop comment="drop bangle.b"
add chain=virus protocol=tcp dst-port=9898 action=drop comment="drop darbber.a-b"
add chain=virus protocol=tcp dst-port=10000 action=drop comment="drop damaru.y"
add chain=virus protocol=tcp dst-port=10080 action=drop comment="drop my-doom.b"
add chain=virus protocol=tcp dst-port=12345 action=drop comment="drop netbus"
add chain=virus protocol=tcp dst-port=17300 action=drop comment="drop kuang2"
add chain=virus protocol=tcp dst-port=27374 action=drop comment="drop subseven"
add chain=virus protocol=tcp dst-port=65506 action=drop comment="drop pathbot,agobot,gaobot"
======I forward ke chain virus I==============
add chain=forward action=jump jump-target=virus comment="jump to the virus chain"
======I finising I========
add chain=forward protocol=icmp comment="allow ping"
add chain=forward protocol=udp comment="allow udp"
add chain=forward action=drop comment="drop evriting else"
Tidak ada komentar:
Posting Komentar