[admin@RB3011UiAS] > ip firewall filter print Flags: X - disabled, I - invalid

1. [admin@RB3011UiAS] > ip firewall filter print
2. Flags: X - disabled, I - invalid, D - dynamic
3. 0 ;;; SSH to router
4. chain=input action=accept protocol=tcp dst-port=52222 log=no log-prefix=""
5.  
6. 1 ;;; OpenVPN
7. chain=input action=accept protocol=tcp dst-port=51194 log=no log-prefix=""
8.  
9. 2 ;;; Drop all invalid connections
10. chain=input action=drop connection-state=invalid log=no log-prefix=""
11.  
12. 3 ;;; Drop all other SSH & FTP connections
13. chain=input action=drop protocol=tcp in-interface=ether1 dst-port=21,22 log=no log-prefix=""
14.  
15. 4 ;;; Allow access to the router from the LAN using an address list
16. chain=input action=accept src-address-list=LAN log=no log-prefix=""
17.  
18. 5 ;;; Allow established connections to the router
19. chain=input action=accept connection-state=established log=no log-prefix=""
20.  
21. 6 ;;; Allow related connections to the router
22. chain=input action=accept connection-state=related log=no log-prefix=""
23.  
24. 7 ;;; Allow icmp requests
25. chain=input action=accept protocol=icmp log=no log-prefix=""
26.  
27. 8 ;;; Drop all other traffic to the router
28. chain=input action=drop log=no log-prefix=""
29.  
30. 9 ;;; Drop all invalid connections
31. chain=forward action=drop connection-state=invalid log=no log-prefix=""
32.  
33. 10 ;;; Block IPMI from WAN
34. chain=forward action=drop out-interface=ether1 src-mac-address=BC:5F:F4:FE:7C:AA log=no log-prefix=""
35.  
36. 11 ;;; Block Facebook on girls' laptop
37. chain=forward action=drop protocol=tcp dst-port=80,443 src-mac-address=00:24:D7:7E:66:90 content=facebook log=no log-prefix=""
38.  
39. 12 ;;; Block YouTube on girls' laptop TCP
40. chain=forward action=drop protocol=tcp dst-port=80,443 src-mac-address=00:24:D7:7E:66:90 content=youtube log=no log-prefix=""
41.  
42. 13 ;;; Block YouTube on girls' laptop UDP
43. chain=forward action=drop protocol=udp dst-port=80,443 src-mac-address=00:24:D7:7E:66:90 content=youtube log=no log-prefix=""
44.  
45. 14 ;;; Block Twitter on girls' laptop
46. chain=forward action=drop protocol=tcp dst-port=80,443 src-mac-address=00:24:D7:7E:66:90 content=twitter log=no log-prefix=""
47.  
48. 15 ;;; Allow established connections
49. chain=forward action=accept connection-state=established log=no log-prefix=""
50.  
51. 16 ;;; Allow related connections
52. chain=forward action=accept connection-state=related log=no log-prefix=""
53.  
54. 17 ;;; Allow new connections
55. chain=forward action=accept connection-state=new log=no log-prefix=""