API tools faq
paste
Advertisement
Guest User

filter

a guest
Aug 20th, 2017
526
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 7.13 KB | None | 0 0
raw download clone embed print report
  1. admin@192.168.84.1's password:
  2.  
  3.  
  4.  
  5.  
  6.  
  7.  
  8.  
  9.  
  10. MMM MMM KKK TTTTTTTTTTT KKK
  11. MMMM MMMM KKK TTTTTTTTTTT KKK
  12. MMM MMMM MMM III KKK KKK RRRRRR OOOOOO TTT III KKK KKK
  13. MMM MM MMM III KKKKK RRR RRR OOO OOO TTT III KKKKK
  14. MMM MMM III KKK KKK RRRRRR OOO OOO TTT III KKK KKK
  15. MMM MMM III KKK KKK RRR RRR OOOOOO TTT III KKK KKK
  16.  
  17. MikroTik RouterOS 6.40 (c) 1999-2017 http://www.mikrotik.com/
  18.  
  19. [?] Gives the list of available commands
  20. command [?] Gives help on the command and list of arguments
  21.  
  22. [Tab] Completes the command/word. If the input is ambiguous,
  23. a second [Tab] gives possible options
  24.  
  25. / Move up to base level
  26. .. Move up one level
  27. /command Use command at the base level
  28.  
  29. [admin@MikroTik] > ip firewall filter print
  30. Flags: X - disabled, I - invalid, D - dynamic
  31. 0 ;;; OpenVPN
  32. chain=input action=accept protocol=tcp dst-port=1194 log=no log-prefix=""
  33.  
  34. 1 ;;; L2TP / IPSec
  35. chain=input action=accept protocol=ipsec-esp log=no log-prefix=""
  36.  
  37. 2 ;;; VPN ----> Debian VM
  38. chain=forward action=accept src-address=192.168.170.3 dst-address=192.168.84.248 in-interface=all-ppp out-interface=ether7 log=no log-prefix=""
  39.  
  40. 3 ;;; VPN ----> CentOS VM
  41. chain=forward action=accept src-address=192.168.170.3 dst-address=192.168.84.249 in-interface=all-ppp out-interface=ether7 log=no log-prefix=""
  42.  
  43. 4 ;;; VPN ----> CentOS VIRT HOST
  44. chain=forward action=accept src-address=192.168.170.3 dst-address=192.168.84.250 in-interface=all-ppp out-interface=ether7 log=no log-prefix=""
  45.  
  46. 5 ;;; VPN ----> Linksys Switch 251
  47. chain=forward action=accept src-address=192.168.170.3 dst-address=192.168.84.251 in-interface=all-ppp out-interface=ether7 log=no log-prefix=""
  48.  
  49. 6 ;;; PPPoE USER------->PPPoE USER = drop user ISOLATION
  50. chain=forward action=drop in-interface=all-ppp out-interface=all-ppp log=no log-prefix=""
  51.  
  52. 7 ;;; PPPoE-------->PPPoE = DROP IPADDRESS/ALL PPP INTERFACE
  53. chain=forward action=drop src-address-list=PPPoE-172.16.10.1-254 out-interface=all-ppp log=no log-prefix=""
  54.  
  55. 8 ;;; PPPoE-------->LAN 192.150.100.0 = DROP IPADDRESS
  56. chain=forward action=drop src-address-list=PPPoE-172.16.10.1-254 dst-address-list=WAN 192.150 log=no log-prefix=""
  57.  
  58. 9 ;;; PPPoE------->ALL VLAN = DROP
  59. chain=forward action=drop in-interface=all-ppp out-interface=all-vlan log=no log-prefix=""
  60.  
  61. 10 ;;; PPPoE-------->LAN 192.168 = DROP - ALL PPP to ETHER7 INTERFACE
  62. chain=forward action=drop in-interface=all-ppp out-interface=ether7 log=no log-prefix=""
  63.  
  64. 11 ;;; PPPoE-------->LAN 192.168 = DROP IPADDRESS to ETHER7
  65. chain=forward action=drop src-address-list=PPPoE-172.16.10.1-254 out-interface=ether7 log=no log-prefix=""
  66.  
  67. 12 ;;; PPPoE-------->LAN 192.168 = DROP - IPADDRESS
  68. chain=forward action=drop src-address-list=PPPoE-172.16.10.1-254 dst-address-list=LAN log=no log-prefix=""
  69.  
  70. 13 ;;; VLAN = DROP ALL VLAN to ALL ETHERNET INTERFACE
  71. chain=forward action=drop in-interface=all-vlan out-interface=all-ethernet log=no log-prefix=""
  72.  
  73. 14 ;;; VLAN = DROP ALL ETHERNET to ALL VLAN INTERFACE
  74. chain=forward action=drop in-interface=all-ethernet out-interface=all-vlan log=no log-prefix=""
  75.  
  76. 15 ;;; VLAN = DROP ALL VLAN to ALL VLAN
  77. chain=forward action=drop in-interface=all-vlan out-interface=all-vlan log=no log-prefix=""
  78.  
  79. 16 ;;; VLAN = DROP ALL VLAN to ALL PPP
  80. chain=forward action=drop in-interface=all-vlan out-interface=all-ppp log=no log-prefix=""
  81.  
  82. 17 ;;; WEBSITE BLOCK TORRENT BLOCK LAYER 7 FILTER
  83. chain=forward action=reject reject-with=tcp-reset layer7-protocol=weboldalblock protocol=tcp dst-port=80,443,8080 log=yes log-prefix="weboldalblock"
  84.  
  85. 18 chain=forward action=accept connection-state=established,related log=yes log-prefix="ACCEPTLOG"
  86.  
  87. 19 ;;; UDP-53
  88. chain=forward action=accept protocol=udp dst-port=53 log=yes log-prefix="UDP-UDP"
  89.  
  90. 20 ;;; NTP-123
  91. chain=forward action=accept protocol=udp dst-port=123 log=yes log-prefix="NTP-UDP"
  92.  
  93. 21 ;;; 80-HTTP
  94. chain=forward action=accept protocol=tcp dst-port=80 log=yes log-prefix="HTTPLOG-TCP"
  95.  
  96. 22 ;;; 8080-HTTP
  97. chain=forward action=accept protocol=tcp dst-port=8080 log=yes log-prefix="HTTPLOG-TCP"
  98.  
  99. 23 ;;; 6667 IRC
  100. chain=forward action=accept protocol=tcp dst-port=6667 log=yes log-prefix="IRCLOG-TCP"
  101.  
  102. 24 ;;; 22 SSH
  103. chain=forward action=accept protocol=tcp dst-port=22 log=yes log-prefix="SSHLOG"
  104.  
  105. 25 ;;; 20 FTP DATA
  106. chain=forward action=accept protocol=tcp dst-port=20 log=yes log-prefix="FTPLOG"
  107.  
  108. 26 ;;; L2TP VPN
  109. chain=forward action=accept protocol=tcp dst-port=1701 log=yes log-prefix="L2TP-LOG"
  110.  
  111. 27 ;;; L2TP VPN
  112. chain=forward action=accept protocol=udp dst-port=500 log=yes log-prefix="L2TP-LOG"
  113.  
  114. 28 ;;; L2TP VPN
  115. chain=forward action=accept protocol=udp dst-port=4500 log=yes log-prefix="L2TP-LOG"
  116.  
  117. 29 ;;; 21 FTP CONTROL
  118. chain=forward action=accept protocol=tcp dst-port=21 log=yes log-prefix="FTPLOG"
  119.  
  120. 30 ;;; 23 TELNET
  121. chain=forward action=accept protocol=tcp dst-port=23 log=yes log-prefix="TELNETLOG"
  122.  
  123. 31 ;;; 25 SMTP tcp
  124. chain=forward action=accept protocol=tcp dst-port=25 log=yes log-prefix="SMTPLOG"
  125.  
  126. 32 ;;; 25 SMTP udp
  127. chain=forward action=accept protocol=udp dst-port=25 log=yes log-prefix="SMTPLOG"
  128.  
  129. 33 ;;; 110 POP3
  130. chain=forward action=accept protocol=tcp dst-port=110 log=yes log-prefix="POP3LOG"
  131.  
  132. 34 ;;; 143 IMAP4
  133. chain=forward action=accept protocol=tcp dst-port=143 log=yes log-prefix="IMAP4-LOG"
  134.  
  135. 35 ;;; 993 IMAP4 SSL
  136. chain=forward action=accept protocol=tcp dst-port=993 log=yes log-prefix="IMAP4-SSL-LOG"
  137.  
  138. 36 ;;; 995 POP3 SSL
  139. chain=forward action=accept protocol=tcp dst-port=995 log=yes log-prefix="POP3-SSL-LOG"
  140.  
  141. 37 ;;; 465 SMTP SSL
  142. chain=forward action=accept protocol=tcp dst-port=465 log=yes log-prefix="SMTP-SSL-LOG"
  143.  
  144. 38 ;;; 443-HTTPS
  145. chain=forward action=accept protocol=tcp dst-port=443 log=yes log-prefix="HTTPSLOG-TCP"
  146.  
  147. 39 ;;; 60007-GEORGX-ZNC
  148. chain=forward action=accept protocol=tcp dst-port=60007 log=no log-prefix=""
  149.  
  150. 40 ;;; 554-KAMERA-RTSP
  151. chain=forward action=accept protocol=tcp dst-port=554 log=no log-prefix=""
  152.  
  153. 41 ;;; 1935-KAMERA-RTMP
  154. chain=forward action=accept protocol=tcp dst-port=1935 log=no log-prefix=""
  155.  
  156. 42 ;;; 8105
  157. chain=forward action=accept protocol=tcp dst-port=8105 log=no log-prefix=""
  158.  
  159. 43 ;;; 514-REMOTE-SYSLOG
  160. chain=forward action=accept protocol=udp dst-port=514 log=no log-prefix=""
  161.  
  162. 44 chain=forward action=drop protocol=udp src-port=0-65535 log=yes log-prefix="DROPLOG-UDP"
  163.  
  164. 45 chain=forward action=drop protocol=tcp src-port=0-65535 log=yes log-prefix="DROPLOG-TCP"
  165.  
  166. 46 chain=forward action=drop protocol=tcp log=no log-prefix=""
  167.  
  168. [admin@MikroTik] >
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!