Ip Firewall Mangle

add chain=prerouting in-interface=Public dst-address-list=nat-addr \
action=mark-packet new-packet-mark=nat-traversal passthrough=no comment="" \

disabled=no
add chain=prerouting protocol=tcp connection-state=new action=jump \
jump-target=tcp-services comment="TCP Services" disabled=no
add chain=prerouting protocol=udp connection-state=new action=jump \
jump-target=udp-services comment="UDP Services" disabled=no
add chain=prerouting connection-state=new action=jump \
jump-target=other-services comment="Other Services" disabled=no
add chain=prerouting action=jump jump-target=queues-services comment="Queues \
Services -- Mark Packets" disabled=no
add chain=queues-services connection-mark=ping action=mark-packet \
new-packet-mark=PING passthrough=yes comment="" disabled=no
add chain=forward p2p=all-p2p action=mark-connection new-connection-mark=p2p \
passthrough=yes comment="" disabled=no
add chain=queues-services connection-mark=ftp action=mark-packet \
new-packet-mark=FTP passthrough=yes comment="" disabled=no
add chain=queues-services connection-mark=http action=mark-packet \
new-packet-mark=HTTP passthrough=yes comment="" disabled=no
add chain=queues-services connection-mark=dns action=mark-packet \
new-packet-mark=DNS passthrough=yes comment="" disabled=no
add chain=queues-services connection-mark=pop3 action=mark-packet \
new-packet-mark=POP3 passthrough=yes comment="" disabled=no
add chain=queues-services connection-mark=https action=mark-packet \
new-packet-mark=HTTPS passthrough=yes comment="" disabled=no
add chain=queues-services connection-mark=msn action=mark-packet \
new-packet-mark=MSN passthrough=yes comment="" disabled=no
add chain=queues-services connection-mark=yahoo-juegos action=mark-packet \
new-packet-mark=YAHOO-JUEGOS passthrough=yes comment="" disabled=no
add chain=queues-services connection-mark=winbox action=mark-packet \
new-packet-mark=WinBOX passthrough=yes comment="" disabled=no
add chain=queues-services connection-mark=smtp action=mark-packet \
new-packet-mark=SMTP passthrough=yes comment="" disabled=no
add chain=queues-services connection-mark=ssh action=mark-packet \
new-packet-mark=SSH passthrough=yes comment="" disabled=no
add chain=tcp-services protocol=tcp src-port=1024-65535 dst-port=20-21 \
action=mark-connection new-connection-mark=ftp passthrough=no comment="" \
disabled=no
add chain=tcp-services protocol=tcp src-port=513-65535 dst-port=22 \
action=mark-connection new-connection-mark=ssh passthrough=no comment="" \
disabled=no
action=mark-connection new-connection-mark=telnet passthrough=no \
comment="" disabled=no
action=mark-connection new-connection-mark=smtp passthrough=no comment="" \
disabled=no
add chain=tcp-services protocol=tcp src-port=53 dst-port=53 \
action=mark-connection new-connection-mark=dns passthrough=no comment="" \
disabled=no
disabled=no
action=mark-connection new-connection-mark=http passthrough=no comment="" \
disabled=no
action=mark-connection new-connection-mark=pop3 passthrough=no comment="" \
disabled=no
action=mark-connection new-connection-mark=auth passthrough=no comment="" \
disabled=no
action=mark-connection new-connection-mark=nntp passthrough=no comment="" \
disabled=no
action=mark-connection new-connection-mark=imap passthrough=no comment="" \
disabled=no
action=mark-connection new-connection-mark=snmp passthrough=no comment="" \
disabled=no
action=mark-connection new-connection-mark=LDAP passthrough=no comment="" \
disabled=no
action=mark-connection new-connection-mark=https passthrough=no comment="" \
disabled=no
action=mark-connection new-connection-mark=smtps passthrough=no comment="" \
disabled=no
action=mark-connection new-connection-mark=imaps passthrough=no comment="" \
disabled=no
action=mark-connection new-connection-mark=pop3s passthrough=no comment="" \
disabled=no
action=mark-connection new-connection-mark=pptp passthrough=no comment="" \
disabled=no
action=mark-connection new-connection-mark=msn passthrough=no comment="" \
disabled=no
action=mark-connection new-connection-mark=kgs passthrough=no comment="" \
disabled=no
action=mark-connection new-connection-mark=proxy passthrough=no comment="" \
disabled=no
action=mark-connection new-connection-mark=win-ts passthrough=no \
action=mark-connection new-connection-mark=emule passthrough=no comment="" \
disabled=no
action=mark-connection new-connection-mark=overnet passthrough=no \
add chain=tcp-services protocol=tcp src-port=4711 dst-port=1024-65535 \
disabled=no
action=mark-connection new-connection-mark=h323 passthrough=yes comment="" \
disabled=no
action=mark-connection new-connection-mark=RTSP passthrough=no comment="" \
disabled=no
action=mark-connection new-connection-mark=RTSP passthrough=no comment="" \
disabled=no
action=mark-connection new-connection-mark=sipv2 passthrough=yes \
action=mark-connection new-connection-mark=ctiqbe passthrough=no \
action=mark-connection new-connection-mark=vnc passthrough=no comment="" \
disabled=no
action=mark-connection new-connection-mark=irc passthrough=no comment="" \
disabled=no
action=mark-connection new-connection-mark=bittorrent passthrough=no \
action=mark-connection new-connection-mark=env-fich-msn passthrough=yes \
action=mark-connection new-connection-mark=voz-msn passthrough=yes \
action=mark-connection new-connection-mark=Netshow passthrough=no \
action=mark-connection new-connection-mark=Radmin passthrough=no \
disabled=no
disabled=no
action=mark-connection new-connection-mark=winbox passthrough=no \
action=mark-connection new-connection-mark=yahoo-juegos passthrough=no \
add chain=tcp-services protocol=tcp action=mark-connection \
new-connection-mark=other-tcp passthrough=no comment="" disabled=no
add chain=udp-services protocol=udp src-port=1024-65535 dst-port=53 \
disabled=no
action=mark-connection new-connection-mark=ntp passthrough=no comment="" \
disabled=no
action=mark-connection new-connection-mark=l2tp passthrough=no comment="" \
disabled=no
disabled=no
disabled=no
add chain=udp-services protocol=udp src-port=4672 dst-port=1024-65535 \
disabled=no
add chain=udp-services protocol=udp src-port=1024-65535 dst-port=5060-5061 \
action=mark-connection new-connection-mark=sipv2 passthrough=yes \
action=mark-connection new-connection-mark=skype passthrough=no comment="" \
disabled=no
action=mark-connection new-connection-mark=CU-SeeMe passthrough=no \
add chain=udp-services protocol=udp connection-state=new \
action=mark-connection new-connection-mark=other-udp passthrough=no \
add chain=other-services protocol=icmp icmp-options=8:0-255 \
action=mark-connection new-connection-mark=ping passthrough=no comment="" \
disabled=no
add chain=other-services protocol=gre action=mark-connection \
new-connection-mark=gre passthrough=no comment="" disabled=no
add chain=other-services action=mark-connection new-connection-mark=other \
passthrough=no comment="" disabled=no
add chain=forward action=jump jump-target=queues-services comment="Jump a \
Queues Services -- Marco P2P" disabled=no
add chain=queues-services connection-mark=sipv2 action=mark-packet \
new-packet-mark=SIP-VoIP passthrough=yes comment="" disabled=no
add chain=queues-services connection-mark=Netshow action=mark-packet \
new-packet-mark=STREAM passthrough=yes comment="" disabled=no
add chain=queues-services connection-mark=proxy action=mark-packet \
new-packet-mark=PROXY passthrough=yes comment="" disabled=no
add chain=queues-services connection-mark=p2p action=mark-packet \
new-packet-mark=P2P passthrough=yes comment="" disabled=no
add chain=queues-services connection-mark=other-tcp action=mark-packet \
new-packet-mark=TCP passthrough=yes comment="" disabled=no
add chain=queues-services connection-mark=other-udp action=mark-packet \
new-packet-mark=UDP passthrough=yes comment="" disabled=no
add chain=output src-address=192.168.0.1 protocol=tcp dst-port=80 \
action=mark-connection new-connection-mark=mt-proxy passthrough=yes \
add chain=output action=jump jump-target=queues-services comment="Marcado del \
WebProxy del MT" disabled=no
add chain=queues-services connection-mark=mt-proxy action=mark-packet \
new-packet-mark=MT-PROXY passthrough=yes comment="" disabled=no

Ip Firewall Mangle

Hochgeladen von

Dokumentinformationen

Originaltitel

Copyright

Verfügbare Formate

Dieses Dokument teilen

Dokument teilen oder einbetten

Freigabeoptionen

Stufen Sie dieses Dokument als nützlich ein?

Sind diese Inhalte unangemessen?

Copyright:

Verfügbare Formate

Ip Firewall Mangle

Hochgeladen von

Copyright:

Verfügbare Formate

add chain=prerouting in-interface=Public dst-address-list=nat-addr \

action=mark-packet new-packet-mark=nat-traversal passthrough=no comment="" \

Das könnte Ihnen auch gefallen