# local netword 192.168.1.0/24
# mikroteros 2.9.26
# QQ:277370403
/ ip firewall filter
add chain=input connection-state=established action=accept /
comment="Established connections" disabled=no
add chain=input connection-state=related action=accept comment="Related /
connections" disabled=no
add chain=input connection-state=invalid action=drop comment="Drop invalid /
connections" disabled=no
add chain=input action=jump jump-target=viruses comment="!!!Viruse /
detection!!!" disabled=no
add chain=input protocol=udp action=accept comment="UDP protocol" disabled=no
add chain=input protocol=icmp action=accept comment="ICMP protocol" /
disabled=no
add chain=input src-address=192.168.1.0/24 action=accept comment="From local /
netword 192.168.1.0/24" disabled=no
add chain=input protocol=tcp dst-port=1723 action=accept comment="Allow PPTP" /
disabled=no
add chain=input protocol=gre action=accept comment="" disabled=no
add chain=input protocol=tcp dst-port=21 action=accept comment="Allow /
FTP,SSH,TELNET,WEB,WINBOX to router" disabled=no
add chain=input protocol=tcp dst-port=22 action=accept comment="" disabled=no
add chain=input protocol=tcp dst-port=23 action=accept comment="" disabled=no
add chain=input protocol=tcp dst-port=80 action=accept comment="" disabled=no
add chain=input protocol=tcp dst-port=8291 action=accept comment="" /
disabled=no
add chain=input protocol=tcp dst-port=9998 action=accept comment="Allow /
digital video recorder TCP:9998 UDP:9998" disabled=no
add chain=input protocol=udp dst-port=9998 action=accept comment="" /
disabled=no
add chain=input action=drop comment="Drop everything else" disabled=no
add chain=forward connection-state=established action=accept /
comment="Established connections" disabled=no
add chain=forward connection-state=related action=accept comment="Related /
connections" disabled=no
add chain=forward connection-state=invalid action=drop comment="Drop invalid /
connections" disabled=no
add chain=forward action=jump jump-target=viruses comment="!!!Viruse /
detection!!!" disabled=no
add chain=forward protocol=udp action=accept comment="UDP protocol" /
disabled=no
add chain=forward protocol=icmp action=accept comment="ICMP protocol" /
disabled=no
add chain=forward src-address=192.168.1.0/24 action=accept comment="From local /
netword 192.168.1.0/24" disabled=no
add chain=forward action=drop comment="Drop everything else" disabled=no
add chain=output connection-state=established action=accept /
comment="Established connections" disabled=no
add chain=output connection-state=related action=accept comment="Related /
connections" disabled=no
add chain=output connection-state=invalid action=drop comment="Drop invalid /
connections" disabled=no
add chain=viruses protocol=tcp dst-port=135-139 action=drop comment="Drop port /
TCP/UDP 135-139" disabled=no
add chain=viruses protocol=udp dst-port=135-139 action=drop comment="" /
disabled=no
① 凡本网注明稿件来源为"原创"的所有文字、图片和音视频稿件,版权均属本网所有。任何媒体、网站或个人转载、链接转贴或以其他方式复制发表时必须注明"稿件来源:我考网",违者本网将依法追究责任;
② 本网部分稿件来源于网络,任何单位或个人认为我考网发布的内容可能涉嫌侵犯其合法权益,应该及时向我考网书面反馈,并提供身份证明、权属证明及详细侵权情况证明,我考网在收到上述法律文件后,将会尽快移除被控侵权内容。