Documente Academic
Documente Profesional
Documente Cultură
/ip dns
set allow-remote-requests=yes cache-max-ttl=1w cache-size=4096KiB \
max-udp-packet-size=512 servers="8.8.8.8,8.8.4.4"
/ip route
add gateway=192.168.1.254 comment="" disabled=no
/ip
set
set
set
set
set
set
set
service
telnet address=0.0.0.0/0 disabled=yes port=23
ftp address=0.0.0.0/0 disabled=yes port=21
www address=0.0.0.0/0 disabled=no port=80
ssh address=0.0.0.0/0 disabled=yes port=22
www-ssl address=0.0.0.0/0 certificate=none disabled=yes port=443
api address=0.0.0.0/0 disabled=yes port=8728
winbox address=0.0.0.0/0 disabled=no port=8291
firewall address-list
address=192.168.5.1-192.168.5.254 comment="" disabled=no list=LocalNet
address=192.168.15.1-192.168.15.30 comment="" disabled=no list=hotspotNet
address=192.168.10.1-192.168.10.30 comment="" disabled=no list=omnitik
ICKiller"
add chain=virus protocol=tcp action=drop dst-port=7891 comment="The ReVeNgEr"
add chain=virus protocol=tcp action=drop dst-port=7983 comment="Mstream"
add chain=virus protocol=tcp action=drop dst-port=8787 comment="Back Orifice 200
0"
add chain=virus protocol=tcp action=drop dst-port=8988 comment="BacHack"
add chain=virus protocol=tcp action=drop dst-port=8989 comment="Rcon, Recon, Xco
n"
add chain=virus protocol=tcp action=drop dst-port=9000 comment="Netministrator"
add chain=virus protocol=udp action=drop dst-port=9325 comment="Mstream"
add chain=virus protocol=tcp action=drop dst-port=9400 comment="InCommand"
add chain=virus protocol=tcp action=drop dst-port=9872-9875 comment="Portal of D
oom"
add chain=virus protocol=tcp action=drop dst-port=9876 comment="Cyber Attacker,
Rux"
add chain=virus protocol=tcp action=drop dst-port=9878 comment="TransScout"
add chain=virus protocol=tcp action=drop dst-port=9989 comment="Ini-Killer"
add chain=virus protocol=tcp action=drop dst-port=9999 comment="The Prayer"
add chain=virus protocol=tcp action=drop dst-port=10000-10005 comment="OpwinTRoj
an"
add chain=virus protocol=udp action=drop dst-port=10067 comment="Portal of Doom"
add chain=virus protocol=tcp action=drop dst-port=10085-10086 comment="Syphillis
"
add chain=virus protocol=tcp action=drop dst-port=10100 comment="Control Total,
Gift trojan"
add chain=virus protocol=tcp action=drop dst-port=10101 comment="BrainSpy, Silen
cer"
add chain=virus protocol=udp action=drop dst-port=10167 comment="Portal of Doom"
add chain=virus protocol=tcp action=drop dst-port=10520 comment="Acid Shivers"
add chain=virus protocol=tcp action=drop dst-port=10528 comment="Host Control"
add chain=virus protocol=tcp action=drop dst-port=10607 comment="Coma"
add chain=virus protocol=udp action=drop dst-port=10666 comment="Ambush"
add chain=virus protocol=tcp action=drop dst-port=11000 comment="Senna Spy Troja
n Generator"
add chain=virus protocol=tcp action=drop dst-port=11050-11051 comment="Host Cont
rol"
add chain=virus protocol=tcp action=drop dst-port=11223 comment="Progenic trojan
, Secret Agent"
add chain=virus protocol=tcp action=drop dst-port=12076 comment="Gjamer"
add chain=virus protocol=tcp action=drop dst-port=12223 comment="Hack99 KeyLogger"
add chain=virus protocol=tcp action=drop dst-port=12345 comment="Ashley, cron cr
ontab, \
Fat Bitch trojan, GabanBus, icmp_client.c, icmp_pipe.c, Mypic, NetBus, NetBus To
y, \
NetBus worm, Pie Bill Gates, Whack Job, X-bill"
add chain=virus protocol=tcp action=drop dst-port=12346 comment="Fat Bitch troja
n, GabanBus, NetBus, X-bill"
add chain=virus protocol=tcp action=drop dst-port=12349 comment="BioNet"
add chain=virus protocol=tcp action=drop dst-port=12361-12363 comment="Whack-a-m
ole"
add chain=virus protocol=udp action=drop dst-port=12623 comment="DUN Control"
add chain=virus protocol=tcp action=drop dst-port=12624 comment="ButtMan"
add chain=virus protocol=tcp action=drop dst-port=12631 comment="Whack Job"
add chain=virus protocol=tcp action=drop dst-port=12754 comment="Mstream"
add chain=virus protocol=tcp action=drop dst-port=13000 comment="Senna Spy Troja
n Generator, \
Senna Spy Trojan Generator"
add chain=virus protocol=tcp action=drop dst-port=13010 comment="Hacker Brasil H
BR"
add chain=virus protocol=tcp action=drop dst-port=13013-13014 comment="PsychWard
"
add chain=virus protocol=tcp action=drop dst-port=13223 comment="Hack99 KeyLogger"
add chain=virus protocol=tcp action=drop dst-port=13473 comment="Chupacabra"
add chain=virus protocol=tcp action=drop dst-port=14500-14503 comment="PC Invade
r"
add chain=virus protocol=tcp action=drop dst-port=15000 comment="NetDemon"
add chain=virus protocol=tcp action=drop dst-port=15092 comment="Host Control"
add chain=virus protocol=tcp action=drop dst-port=15104 comment="Mstream"
add chain=virus protocol=tcp action=drop dst-port=15382 comment="SubZero"
add chain=virus protocol=tcp action=drop dst-port=15858 comment="CDK"
add chain=virus protocol=tcp action=drop dst-port=16484 comment="Mosucker"
add chain=virus protocol=tcp action=drop dst-port=16660 comment="Stacheldraht"
add chain=virus protocol=tcp action=drop dst-port=16772 comment="ICQ Revenge"
add chain=virus protocol=tcp action=drop dst-port=16959 comment="SubSeven, Subse
ven 2.1.4 DefCon 8"
add chain=virus protocol=tcp action=drop dst-port=16969 comment="Priority"
add chain=virus protocol=tcp action=drop dst-port=17166 comment="Mosaic"
add chain=virus protocol=tcp action=drop dst-port=17300 comment="Kuang2 the viru
s"
add chain=virus protocol=tcp action=drop dst-port=17449 comment="Kid Terror"
add chain=virus protocol=tcp action=drop dst-port=17499-17500 comment="CrazzyNet
"
add chain=virus protocol=tcp action=drop dst-port=17569 comment="Infector"
add chain=virus protocol=tcp action=drop dst-port=17593 comment="Audiodoor"
add chain=virus protocol=tcp action=drop dst-port=17777 comment="Nephron"
add chain=virus protocol=udp action=drop dst-port=18753 comment="Shaft"
add chain=virus protocol=tcp action=drop dst-port=19864 comment="ICQ Revenge"
add chain=virus protocol=tcp action=drop dst-port=20000 comment="Millenium"
add chain=virus protocol=tcp action=drop dst-port=20001 comment="Millenium, Mill
enium Lm"
add chain=virus protocol=tcp action=drop dst-port=20002 comment="AcidkoR"
add chain=virus protocol=tcp action=drop dst-port=20005 comment="Mosucker"
add chain=virus protocol=tcp action=drop dst-port=20023 comment="VP Killer"
add chain=virus protocol=tcp action=drop dst-port=20034 comment="NetBus 2.0 Pro,
\
NetBus 2.0 Pro Hidden, NetRex, Whack Job"
add chain=virus protocol=tcp action=drop dst-port=20203 comment="Chupacabra"
add chain=virus protocol=tcp action=drop dst-port=20331 comment="BLA trojan"
add chain=virus protocol=tcp action=drop dst-port=20432 comment="Shaft"
add chain=virus protocol=udp action=drop dst-port=20433 comment="Shaft"
add chain=virus protocol=tcp action=drop dst-port=21544 comment="GirlFriend, Kid
Terror"
add chain=virus protocol=tcp action=drop dst-port=21554 comment="Exploiter, \
Kid Terror, Schwindler, Winsp00fer"
add chain=virus protocol=tcp action=drop dst-port=22222 comment="Donald Dick, \
Prosiak, Ruler, RUX The TIc.K"
add chain=virus protocol=tcp action=drop dst-port=23005-23006 comment="NetTrash"
add chain=virus protocol=tcp action=drop dst-port=23023 comment="Logged"
add chain=virus protocol=tcp action=drop dst-port=23032 comment="Amanda"
add chain=virus protocol=tcp action=drop dst-port=23432 comment="Asylum"
add chain=virus protocol=tcp action=drop dst-port=23456 comment="Evil FTP, Ugly
FTP, Whack Job"
add chain=virus protocol=tcp action=drop dst-port=23476 comment="Donald Dick"
add chain=virus protocol=udp action=drop dst-port=23476 comment="Donald Dick"
add chain=virus protocol=tcp action=drop dst-port=23477 comment="Donald Dick"
add chain=virus protocol=tcp action=drop dst-port=23777 comment="InetSpy"
add chain=virus protocol=tcp action=drop dst-port=24000 comment="Infector"
add chain=virus protocol=tcp action=drop dst-port=25685-25982 comment="Moonpie"
add chain=virus protocol=udp action=drop dst-port=26274 comment="Delta Source"
add chain=virus protocol=tcp action=drop dst-port=26681 comment="Voice Spy"
3133 protocol=udp
add action=accept chain=icmp comment="limit packets 5/secs" disabled=no \
icmp-options=0:0-255 limit=5,5 protocol=icmp
add action=accept chain=icmp comment="limit packets 5/secs" disabled=no \
icmp-options=3:0 protocol=icmp
add action=accept chain=icmp comment="limit packets 5/secs" disabled=no \
icmp-options=3:3 limit=5,5 protocol=icmp
add action=accept chain=icmp comment="limit packets 5/secs" disabled=no \
icmp-options=3:4 limit=5,5 protocol=icmp
add action=accept chain=icmp comment="limit packets 5/secs" disabled=no \
icmp-options=8:0-255 limit=5,5 protocol=icmp
add action=accept chain=icmp comment="limit packets 5/secs" disabled=no \
icmp-options=11:0-255 limit=5,5 protocol=icmp
add action=drop chain=icmp comment="Drop other icmp packets" disabled=no
add action=accept chain=forward comment="Allow Established connections" \
connection-state=established disabled=no
/ip firewall filter
add action=accept chain=forward comment="Allow Forward from Local Network" \
disabled=no src-address-list=LocalNet
add action=accept chain=forward comment="Allow Forward from RT RW NET Network" \
disabled=no src-address-list=hotspotNet
add action=accept chain=forward comment="Allow Forward from omnitik Network" \
disabled=no src-address-list=omnitik
/ip firewall nat
add action=masquerade src-address-list=LocalNet chain=srcnat comment="NAT-Local"
disabled=no \
out-interface=Speedy
add action=masquerade src-address-list=hotspotNet chain=srcnat comment="NAT-hots
pot" disabled=no \
out-interface=Speedy
add action=masquerade src-address-list=omnitik chain=srcnat comment="omnitik" di
sabled=no \
out-interface=Speedy
/queue tree
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=0 name="A. PROXY HIT Local" packet-mark=proxy-hit parent=Local \
priority=1 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=0 name="E. PROXY HIT hotspot" packet-mark=proxy-hit parent=hotspot \
priority=1 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
disabled=no limit-at=0 \
parent=\
disabled=no limit-at=0 \
parent=\
disabled=no limit-at=0 \
parent=\
disabled=no limit-at=0 \
parent=\
/queue tree
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no
max-limit=256k name=hotspot1 packet-mark=hotspot1 parent=\
"F. DOWNRTRW 1M" priority=8 queue=pcq_down
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no
max-limit=256k name=hotspot2 packet-mark=hotspot2 parent=\
"F. DOWNRTRW 1M" priority=8 queue=pcq_down
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no
max-limit=256k name=hotspot3 packet-mark=hotspot3 parent=\
"F. DOWNRTRW 1M" priority=8 queue=pcq_down
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no
max-limit=256k name=hotspot4 packet-mark=hotspot4 parent=\
"F. DOWNRTRW 1M" priority=8 queue=pcq_down
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no
max-limit=256k name=hotspot5 packet-mark=hotspot5 parent=\
"F. DOWNRTRW 1M" priority=8 queue=pcq_down
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no
max-limit=256k name=hotspot6 packet-mark=hotspot6 parent=\
"F. DOWNRTRW 1M" priority=8 queue=pcq_down
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no
max-limit=256k name=hotspot7 packet-mark=hotspot7 parent=\
"F. DOWNRTRW 1M" priority=8 queue=pcq_down
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no
max-limit=256k name=hotspot8 packet-mark=hotspot8 parent=\
"F. DOWNRTRW 1M" priority=8 queue=pcq_down
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no
max-limit=256k name=hotspot9 packet-mark=hotspot9 parent=\
"F. DOWNRTRW 1M" priority=8 queue=pcq_down
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no
max-limit=256k name=hotspot10 packet-mark=hotspot10 parent=\
"F. DOWNRTRW 1M" priority=8 queue=pcq_down
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no
max-limit=256k name=hotspot11 packet-mark=hotspot11 parent=\
"F. DOWNRTRW 1M" priority=8 queue=pcq_down
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no
max-limit=256k name=hotspot12 packet-mark=hotspot12 parent=\
"F. DOWNRTRW 1M" priority=8 queue=pcq_down
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no
max-limit=256k name=hotspot13 packet-mark=hotspot13 parent=\
"F. DOWNRTRW 1M" priority=8 queue=pcq_down
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no
max-limit=256k name=hotspot14 packet-mark=hotspot14 parent=\
"F. DOWNRTRW 1M" priority=8 queue=pcq_down
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no
max-limit=256k name=hotspot15 packet-mark=hotspot15 parent=\
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
disabled=no limit-at=0 \
parent=\
disabled=no limit-at=0 \
parent=\
disabled=no limit-at=0 \
parent=\
disabled=no limit-at=0 \
parent=\
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \
limit-at=0 \