Блокировка с помощью RouterOS firewall Layer7 protocol
/ip firewall layer7-protocol
add name=DHT regexp="^d1:[a|r]d2:id20:.*:y1:[q|r]e"
add name="\B5TP-1" regexp="\\x7F\\xFF\\xFF\\xFF\\xAB"
add name="\B5TP-2" regexp="\\\\x7F\\\\xFF\\\\xFF\\\\xFF\\\\xAB"
add name="\B5TP-3" regexp="\\x7F\\xFF\\xFF\\xFF\\x0"
add name="\B5TP-4" regexp="\\\\x7F\\\\xFF\\\\xFF\\\\xFF\\\\x0"
/ip firewall filter
add action=drop chain=forward connection-state=invalid
add action=drop chain=input connection-state=invalid
add action=drop chain=forward comment="Drop Layer7 DHT" layer7-protocol="\B5TP-1" protocol=udp
add action=drop chain=forward comment="Drop Layer7 DHT" layer7-protocol="\B5TP-3" protocol=udp
add action=drop chain=input comment="Drop Layer7 DHT" layer7-protocol="\B5TP-3" protocol=udp
add action=drop chain=forward comment="Drop Layer7 DHT" layer7-protocol="\B5TP-4" protocol=udp
add action=drop chain=input comment="Drop Layer7 DHT" layer7-protocol="\B5TP-4" protocol=udp
add action=drop chain=input comment="Drop Layer7 DHT" layer7-protocol="\B5TP-1" protocol=udp
add action=drop chain=forward comment="Drop Layer7 DHT" layer7-protocol="\B5TP-2" protocol=udp
add action=drop chain=input comment="Drop Layer7 DHT" layer7-protocol="\B5TP-2" protocol=udp
add action=drop chain=forward comment="block forward DHT layer7" layer7-protocol=DHT
add action=drop chain=input comment="block output DHT 7Layer" in-interface=rtk_limit layer7-protocol=DHT
Доп ссылочки:
http://wiki.mikrotik.com/wiki/Category:Russian
http://mikrotik.spb.ru/index.php?route=information/information&information_id=7
Сообщения
Комментариев нет:
Отправить комментарий