ISS + Internet SerVer SolutiON .... Mikrotik + Proxy 1 Wan A

Pertanyaan umum seputar distribusi Ubuntu yang menjadi distro wajib members ubuntu-indonesia.com
User avatar
TVONE
Posts: 21
Joined: 11 Apr 2012, 20:30
Contact:

ISS + Internet SerVer SolutiON .... Mikrotik + Proxy 1 Wan A

Postby TVONE » 12 Apr 2012, 19:50

Post By ISS + Internet Server Solution ... [quote][/quote]

IP ADDRESS IN MODEM ADSL MODE BRIDGE :

Modem : 192.168.3.1

IP ADDRESS IN CPU PROXY SERVER :

192.168.27.27

IP ADDRESS MODEM IN MIKROTIK:

192.168.3.2/24



INTERFACE NAME :

ether1 : Modem

ether2 : LAN

ether3 : Proxy





INTERFACE LIST :

/interface



add name="Modem" type="ether" mtu=1500 l2mtu=1524

add name="LAN" type="ether" mtu=1500 l2mtu=1524

add name="Proxy" type="ether" mtu=1500 l2mtu=1524



IP ADDRESS LIST :

/ip addr



add address=192.168.3.2/24 network=192.168.3.0 interface=Modem1 actual-interface=Modem

add address=192.168.1.1/24 network=192.168.1.0 interface=LAN actual-interface=LAN

add address=192.168.27.1/24 network=192.168.27.0 interface=Proxy actual-interface=Proxy





PPP-PPPoE CLIENT :

/interface pppoe-client



add name="pppoe-speedy1" max-mtu=1480 max-mru=1480 mrru=disabled interface=Modem user="*********@telkom.net" \

password="******" profile=default service-name="admin" ac-name="" add-default-route=yes dial-on-demand=no \

use-peer-dns=no allow=pap,chap,mschap1,mschap2

********* = ISI DGN USERNAME & PASSWORD SPEEDY ANDA





IP DNS :

Gunakan IP openDNS (Jika anda ingin memilah situs2 yang akan di blok) : 208.67.222.222 208.67.220.220

Gunakan IP DNS Nawala (Jika anda ingin otomatis situs2 yang akan di blok terutama situs2 porno) : 180.131.144.144 180.131.145.145

Gunakan IP DNS ISP anda (IP DNS terbaik adalah IP DNS dengan loop terpendek yaitu IP DNS ISP di wilayah anda)



IP DHCP SERVER :

DHCP-->DHCP Setup-->DHCP Server Interface=LAN-->NEXT..............FINISH

Gunakan IP openDNS (Jika anda ingin memilah situs2 yang akan di blok) : 208.67.222.222 208.67.220.220

Gunakan IP DNS Nawala (Jika anda ingin otomatis situs2 yang akan di blok terutama situs2 porno) : 180.131.144.144 180.131.145.145



IP FIRWALL NAT :

/ip fi nat



TRANSPARENT PROXY

add chain=dstnat action=dst-nat to-addresses=192.168.27.27 to-ports=3128 protocol=tcp src-address-list=LAN-NeT \

dst-address-list=!Proxy-NeT in-interface=LAN dst-port=80,81,8081,8080,3128



MASQUERADE

add chain=srcnat action=masquerade out-interface=pppoe-speedy1

add chain=srcnat action=masquerade out-interface=Modem



Transparent DNS

add chain=dstnat action=redirect to-ports=53 protocol=udp dst-port=53

add chain=dstnat action=redirect to-ports=53 protocol=tcp dst-port=53



SSH PROXY OUT REMOTE TO WINsCP

add chain=dstnat action=dst-nat to-addresses=192.168.27.27 to-ports=22 protocol=tcp dst-address="IP PUBLIK" \

dst-port=22 comment="SSH PROXY OUT REMOTE TO WINsCP"

"IP PUBLIK" : Isi dengan IP Publik Internet Speedy anda





IP FIREWALL ADDRESS-LIST

/ip fi addr



add list=LAN-NeT address=192.168.1.0/24

add list=Proxy-NeT address=192.168.27.0/24



Tambahan :

add list=Games address=203.89.146.0/23 comment="Gemscool"

add list=Games address=203.89.147.0/24 comment="Gemscool"

add list=Games address=203.89.146.156 comment="Gemscool"

add list=Games address=203.89.146.158 comment="Gemscool"

add list=Games address=203.89.146.166 comment="Gemscool"

add list=Games address=203.89.147.11 comment="Gemscool"

add list=Games address=203.89.146.99 comment="Gemscool"

add list=Games address=203.89.147.31 comment="Gemscool"

add list=Games address=203.89.146.130 comment="Gemscool"

add list=Games address=202.93.20.0/23 comment="Lytogame"

add list=Games address=202.93.21.0/24 comment="Lytogame"

add list=Games address=202.43.171.0/24 comment="Lytogame"

add list=Games address=202.93.16.0/24 comment="Lytogame"

add list=Games address=202.43.167.72 comment="Lytogame"

add list=Games address=202.93.20.253 comment="Lytogame"

add list=Games address=202.93.17.197 comment="Lytogame"

add list=Games address=117.103.58.198 comment="Lytogame"

add list=Games address=202.93.17.219 comment="Lytogame"

add list=Games address=202.103.21.84 comment="Lytogame"

add list=Games address=202.93.21.250 comment="Lytogame"

add list=Games address=202.93.21.251 comment="Lytogame"

add list=Games address=202.93.21.142 comment="Lytogame"

add list=Games address=202.93.21.244 comment="Lytogame"

add list=Games address=202.93.17.216 comment="Lytogame"

add list=Games address=122.102.49.0/24 comment="Megaxus"

add list=Games address=122.102.51.0/24 comment="Megaxus"

add list=Games address=122.102.53.0/24 comment="Megaxus"

add list=Games address=122.102.51.19 comment="Megaxus"

add list=Games address=122.102.51.17 comment="Megaxus"

add list=Games address=122.102.49.67 comment="Megaxus"

add list=Games address=122.102.49.132 comment="Megaxus"

add list=Games address=122.102.49.202 comment="Megaxus"

add list=Games address=122.102.53.4 comment="Megaxus"

add list=Games address=110.93.12.0/24 comment="Wavegame"

add list=Games address=122.93.12.201 comment="Wavegame"

add list=Games address=122.93.12.251 comment="Wavegame"

add list=Games address=204.160.144.254 comment="Atlantica Nexon"

add list=Games address=8.31.96.209 comment="Atlantica Nexon"

add list=Games address=208.85.111.0/24 comment="Atlantica Nexon"

add list=Games address=202.158.252.194 comment="FIFA Online"

add list=Games address=202.158.252.195 comment="FIFA Online"

add list=Games address=202.70.134.0/24 comment="Cabal Online"

add list=Games address=202.70.134.18 comment="Cabal Online"

add list=Games address=119.110.87.179 comment="IP Fresh-Ragnarok"

add list=Games address=69.175.20.186 comment="IP RF-Commanders"

add list=Games address=174.37.246.56 comment="IP RF-EQG"

add list=Games address=174.132.16.196 comment="IP RF-POA"

add list=Games address=202.162.207.111 comment="IP Dotta-Nusa"

add list=Games address=69.0.145.160 comment="IP Dota"

add list=Games address=72.172.238.49 comment="IP Dotta"

add list=Games address=202.78.197.18 comment="IP Tantra'

add list=Games address=202.78.197.0/24 comment="IP Drif-city"

add list=Games address=122.144.2.0/24 comment="IP IndoGamers"

add list=Games address=180.178.110.0/24 comment="IP X-Shot"

add list=Games address="64.211.145.89"

add list=Games address="64.211.145.91"

add list=Games address="64.211.145.104"

add list=Games address="64.233.181.97"

add list=Games address="64.233.189.113"

add list=Games address="65.54.82.164"

add list=Games address="65.55.162.26"

add list=Games address="66.220.146.25"

add list=Games address="69.63.181.11"

add list=Games address="69.63.181.16"

add list=Games address="69.63.186.30"

add list=Games address="74.125.153.138"

add list=Games address="75.125.122.98"

add list=Games address="116.12.45.2"

add list=Games address="119.110.77.1"

add list=Games address="119.110.77.2"

add list=Games address="119.110.77.3"

add list=Games address="119.110.77.4"

add list=Games address="119.110.77.5"

add list=Games address="119.110.77.6"

add list=Games address="119.110.77.7"

add list=Games address="119.160.200.173"

add list=Games address="119.160.200.166"

add list=Games address="119.160.200.168"

add list=Games address="122.102.49.0/24"

add list=Games address="122.102.48.0/24"

add list=Games address="122.102.50.0/24"

add list=Games address="122.102.51.0/24"

add list=Games address="122.102.52.0/24"

add list=Games address="122.102.53.0/24"

add list=Games address="122.102.54.0/24"

add list=Games address="122.102.55.0/24"

add list=Games address="122.144.2.38"

add list=Games address="122.144.2.132"

add list=Games address="122.144.2.137"

add list=Games address="125.160.17.181"

add list=Games address="125.160.17.182"

add list=Games address="124.195.18.122"

add list=Games address="125.56.199.10"

add list=Games address="125.56.199.16"

add list=Games address="125.56.199.27"

add list=Games address="125.160.173.26"

add list=Games address="125.163.212.218"

add list=Games address="173.194.0.148"

add list=Games address="202.43.161.117"

add list=Games address="202.43.161.120"

add list=Games address="202.43.161.121"

add list=Games address="202.43.167.70"

add list=Games address="202.43.171.131"

add list=Games address="202.43.171.130"

add list=Games address="202.43.171.133"

add list=Games address="202.43.171.134"

add list=Games address="202.57.118.35"

add list=Games address="202.57.118.54"

add list=Games address="202.58.163.204"

add list=Games address="202.67.15.34"

add list=Games address="202.70.134.34"

add list=Games address="202.70.134.35"

add list=Games address="202.70.134.37"

add list=Games address="202.74.73.98"

add list=Games address="202.78.197.83"

add list=Games address="202.78.197.85"

add list=Games address="202.89.208.61"

add list=Games address="202.93.17.0/24"

add list=Games address="202.93.18.0/24"

add list=Games address="202.93.19.0/24"

add list=Games address="202.93.20.0/24"

add list=Games address="202.93.21.0/24"

add list=Games address="202.93.22.0/24"

add list=Games address="202.93.23.0/24"

add list=Games address="202.93.24.0/24"

add list=Games address="202.93.25.0/24"

add list=Games address="202.93.26.0/24"

add list=Games address="202.93.27.0/24"

add list=Games address="202.93.28.0/24"

add list=Games address="202.93.29.0/24"

add list=Games address="202.93.30.0/24"

add list=Games address="202.93.31.0/24"

add list=Games address="202.162.207.111"

add list=Games address="202.138.226.22"

add list=Games address="202.138.226.19"

add list=Games address="202.149.65.139"

add list=Games address="202.149.65.142"

add list=Games address="202.149.65.160"

add list=Games address="202.93.16.0/24"

add list=Games address="203.77.212.20"

add list=Games address="203.89.146.0/24"

add list=Games address="203.89.147.12"

add list=Games address="203.89.147.13"

add list=Games address="204.2.171.27"

add list=Games address="204.2.171.154"

add list=Games address="204.2.171.97"

add list=Games address="204.2.171.112"

add list=Games address="204.117.211.2"

add list=Games address="204.117.211.3"

add list=Games address="204.117.211.4"

add list=Games address="209.190.9.202"

add list=Games address="209.51.218.170"

add list=Games address="211.43.208.219"

add list=Games address="211.233.43.45"

add list=Games address="212.58.226.79"

add list=Load-Poker address=216.252.121.168 comment="Load-Poker"

add list=Load-Poker address=216.252.121.169

add list=Load-Poker address=216.252.121.178

add list=Load-Poker address=208.43.79.19

add list=Load-Poker address=216.252.121.179

add list=Load-Poker address=184.72.247.138

add list=Load-Poker address=208.85.150.85

add list=Load-Poker address=216.227.212.167

add list=Load-Poker address=68.180.219.146

add list=Load-Poker address=67.228.216.164

add list=Load-Poker address=74.114.14.0/24

add list=Load-Poker address=64.71.138.105

add list=Load-Poker address=62.146.56.166

add list=Load-Poker address=184.105.197.12

add list=Load-Poker address=74.114.13.18

add list=Load-Poker address=74.217.68.204

add list=Load-Poker address=208.88.18.6

add list=Load-Poker address=199.9.252.170

add list=Load-Poker address=72.172.239.168

add list=Load-Poker address=74.114.12.233

add list=Load-Poker address=74.114.12.234

add list=Load-Poker address=199.9.252.172

add list=Load-Poker address=174.129.209.171

add list=Load-Poker address=75.126.250.198

add list=Load-Poker address=199.9.252.173

add list=Load-Poker address=68.180.219.144

add list=Load-Poker address=184.73.219.31

add list=Load-Poker address=174.129.56.62

add list=Load-Poker address=98.136.48.240

add list=Load-Poker address=174.129.190.31

add list=Load-Poker address=97.107.132.179

add list=Load-Poker address=64.127.108.169

add list=Load-Poker address=98.136.48.163

add list=Load-Poker address=74.86.119.18

add list=Load-Poker address=98.136.48.213

add list=Load-Poker address=67.228.216.163

add list=Load-Poker address=98.136.48.243

add list=Load-Poker address=98.136.48.234

add list=Load-Poker address=64.127.108.162

add list=Load-Poker address=202.157.174.20

add list=Load-Poker address=219.96.104.162

add list=Load-Poker address=98.136.48.219

add list=Load-Poker address=98.136.48.221

add list=Load-Poker address=98.136.48.220

add list=Load-Poker address=98.136.48.222

add list=Load-Poker address=98.136.48.235

add list=Load-Poker address=98.136.48.167

add list=Load-Poker address=79.125.7.18

add list=Load-Poker address=79.125.9.4

add list=Load-Poker address=218.213.86.12

add list=Load-Poker address=218.213.86.7

add list=Load-Poker address=98.136.48.212

add list=Load-Poker address=98.136.48.209

add list=Load-Poker address=98.136.48.208

add list=Load-Poker address=98.136.48.214

add list=Load-Poker address=98.136.48.241

add list=Load-Poker address=98.136.48.161

add list=Load-Poker address=98.136.48.215

add list=Load-Poker address=98.136.48.216

add list=Load-Poker address=98.136.48.210

add list=Load-Poker address=98.136.48.238

add list=Load-Poker address=202.78.200.35

add list=Load-Poker address=173.231.142.100

add list=Load-Poker address=98.136.48.236

add list=Load-Poker address=67.228.29.180

add list=Load-Poker address=98.136.48.242

add list=Load-Poker address=98.136.48.160

add list=Load-Poker address=98.136.48.165

add list=Load-Poker address=72.172.224.17

add list=Load-Poker address=72.172.224.11

add list=Load-Poker address=98.136.48.211

add list=Load-Poker address=98.136.48.166

add list=Load-Poker address=98.136.48.232

add list=Load-Poker address=98.136.48.239

add list=Load-Poker address=98.136.48.223

add list=Load-Poker address=98.136.48.237

add list=Load-Poker address=98.136.48.217

add list=Load-Poker address=98.136.48.162

add list=Load-Poker address=64.127.108.168

add list=Load-Poker address=209.20.93.211

add list=Load-Poker address=209.20.77.127

add list=Load-Poker address=174.36.242.26

add list=Load-Poker address=174.37.191.94

add list=Load-Poker address=72.172.239.163

add list=Load-Poker address=69.63.181.105

add list=Load-Poker address=64.127.108.165

add list=Load-Poker address=216.67.249.137

add list=Load-Poker address=173.231.142.101

add list=Load-Poker address=184.72.233.87

add list=Load-Poker address=72.172.239.164

add list=Load-Poker address=74.53.7.203

add list=Load-Poker address=184.72.58.19

add list=Load-Poker address=69.164.217.106

add list=Load-Poker address=74.86.120.196

add list=Load-Poker address=212.72.60.32

add list=Load-Poker address=74.53.22.42

add list=Load-Poker address=128.242.240.212

add list=Load-Poker address=128.242.240.148

add list=Load-Poker address=72.35.71.168

add list=Load-Poker address=74.86.120.195

add list=Load-Poker address=67.228.132.167

add list=Load-Poker address=64.236.111.28

add list=Load-Poker address=174.36.242.42

add list=Load-Poker address=72.172.232.90

add list=Load-Poker address=222.124.196.0/24

add list=Load-Poker address=72.37.153.226

add list=Load-Poker address=67.228.132.166

add list=Load-Poker address=67.228.132.169

add list=Load-Poker address=72.172.224.16

add list=Load-Poker address=209.20.84.182

add list=Load-Poker address=67.228.132.170

add list=Load-Poker address=128.242.245.148

add list=Load-Poker address=74.53.7.199

add list=Load-Poker address=72.172.224.13

add list=Load-Poker address=72.172.239.162

add list=Load-Poker address=72.172.224.9

add list=Load-Poker address=208.85.93.166

add list=Load-Poker address=208.85.93.165

add list=Load-Poker address=67.228.132.171

add list=Load-Poker address=75.101.154.77

add list=Load-Poker address=67.228.216.162

add list=Load-Poker address=174.36.242.34

add list=Load-Poker address=184.72.223.245

add list=Load-Poker address=174.120.49.154

add list=Load-Poker address=184.75.160.202



IP FIREWALL MANGLE :

/ip fi ma



PROXY-HIT

add chain=forward action=mark-connection new-connection-mark=HIT-conn passthrough=yes protocol=tcp \

in-interface=Proxy out-interface=LAN src-port=80,81,8081,8080,3128 dscp=12 comment="PROXY-HIT"

add chain=forward action=mark-packet new-packet-mark=PKT-HIT passthrough=no protocol=tcp in-interface=Proxy \

out-interface=LAN src-port=80,81,8081,8080,3128 connection-mark=HIT-conn



CRITICAL

add chain=postrouting action=change-dscp new-dscp=1 passthrough=yes protocol=icmp

add chain=postrouting action=change-dscp new-dscp=1 passthrough=yes protocol=udp dst-port=53

add chain=postrouting action=change-dscp new-dscp=1 passthrough=yes protocol=tcp dst-port=53

add chain=postrouting action=mark-connection new-connection-mark=critical-conn \

passthrough=yes dscp=1

add chain=postrouting action=mark-packet new-packet-mark=critical-pkt passthrough=no \

connection-mark=critical-conn



YAHOO

add chain=prerouting action=mark-connection new-connection-mark=yahoo-conn passthrough=yes \

protocol=tcp dst-port=5000-5010,5050,5100,8001,8002

add chain=prerouting action=mark-packet new-packet-mark=yahoo-pkt passthrough=no \

connection-mark=yahoo-conn



FB+GAME

add chain=prerouting action=mark-connection new-connection-mark=fb-conn passthrough=yes protocol=tcp \

src-address-list=LAN-NeT dst-address-list=Load-Poker dst-port=843,9339

add chain=prerouting action=mark-packet new-packet-mark=fb-pkt passthrough=no connection-mark=fb-conn



GEMSCOOL

add chain=prerouting action=mark-connection new-connection-mark=game-conn passthrough=yes protocol=tcp \

src-address-list=LAN-NeT dst-address-list=Games \

dst-port=39190,49100,5300,10001,14009-14010,15100,15101,16052,16073 comment="PORT GEMSCOOL"

add chain=prerouting action=mark-connection new-connection-mark=game-conn passthrough=yes protocol=udp \

src-address-list=LAN-NeT dst-address-list=Games dst-port=14010,40000-40005

add chain=prerouting action=mark-packet new-packet-mark=game-pkt passthrough=no connection-mark=game-conn \



LYTOGAME

add chain=prerouting action=mark-connection new-connection-mark=game-conn passthrough=yes protocol=tcp \

src-address-list=LAN-NeT dst-address-list=Games \

dst-port=9110,13008,13413,16666,17730,17745,20570,27780,36430,48871,49309,56527,63919,64507 \

comment="PORT LYTOGAME"

add chain=prerouting action=mark-connection new-connection-mark=game-conn passthrough=yes protocol=udp \

dst-port=12020-12080,13000-13080,17001

add chain=prerouting action=mark-packet new-packet-mark=game-pkt passthrough=no connection-mark=game-conn



MEGAXUS

add chain=prerouting action=mark-connection new-connection-mark=game-conn passthrough=yes protocol=tcp \

src-address-list=LAN-NeT dst-address-list=Games dst-port=4403,4410,8401,8406,18900,31719,46113,7777 \

comment="PORT MEGAXUS"

add chain=prerouting action=mark-connection new-connection-mark=game-conn passthrough=yes protocol=udp \

dst-port=21850,21891

add chain=prerouting action=mark-packet new-packet-mark=game-pkt passthrough=no connection-mark=game-conn



ALL GAME

add chain=prerouting action=mark-connection new-connection-mark=game-conn passthrough=yes protocol=tcp \

dst-port=1818,2001,4062,5340-5352,6000-6152,6214,7341-7350,7451,9376-9377,15001,15002 \

comment="PORT ALL GAME"

add chain=prerouting action=mark-connection new-connection-mark=game-conn passthrough=yes protocol=udp \

dst-port=1949,6100-6152,9600-9602,7777-7977,11100-11125,11440-11460,30000,42051-42052

add chain=prerouting action=mark-packet new-packet-mark=game-pkt passthrough=no connection-mark=game-conn



REALTIME

add chain=prerouting action=mark-connection new-connection-mark=realtime-conn passthrough=yes protocol=tcp \

dst-port=22,179,110,161 comment="REALTIME CONN"

add chain=prerouting action=mark-connection new-connection-mark=realtime-conn passthrough=yes protocol=udp \

dst-port=123

add chain=forward action=mark-packet new-packet-mark=realtime-pkt passthrough=no connection-mark=realtime-conn



CACHE-MISS

add chain=forward action=mark-connection new-connection-mark=HIT-LOSS passthrough=yes protocol=tcp \

in-interface=Proxy out-interface=LAN src-port=3128 packet-mark=no-mark comment="CACHE-MISS"



PROXY-SSH

add chain=prerouting action=mark-connection new-connection-mark=ssh-conn passthrough=yes protocol=tcp \

src-port=22 comment="PROXY-SSH"

add chain=forward action=mark-packet new-packet-mark=ssh-pkt passthrough=no protocol=tcp src-port=22 \

connection-mark=ssh-conn





BW-MANAGEMENT CONN FOR CLIENT :

add chain=prerouting action=mark-connection new-connection-mark=PC-OP passthrough=yes src-address=192.168.1.2 \

comment="BW-MANAGEMENT CONN FOR CLIENT"

add chain=prerouting action=mark-connection new-connection-mark=CLIENT-01 passthrough=yes packet-mark=!PKT-HIT connection-mark=!HIT-conn src-address=192.168.1.3

add chain=prerouting action=mark-connection new-connection-mark=CLIENT-02 passthrough=yes packet-mark=!PKT-HIT connection-mark=!HIT-conn src-address=192.168.1.4

add chain=prerouting action=mark-connection new-connection-mark=CLIENT-03 passthrough=yes packet-mark=!PKT-HIT connection-mark=!HIT-conn src-address=192.168.1.5

add chain=prerouting action=mark-connection new-connection-mark=CLIENT-04 passthrough=yes packet-mark=!PKT-HIT connection-mark=!HIT-conn src-address=192.168.1.6

add chain=prerouting action=mark-connection new-connection-mark=CLIENT-05 passthrough=yes packet-mark=!PKT-HIT connection-mark=!HIT-conn src-address=192.168.1.7

add chain=prerouting action=mark-connection new-connection-mark=CLIENT-06 passthrough=yes packet-mark=!PKT-HIT connection-mark=!HIT-conn src-address=192.168.1.8

add chain=prerouting action=mark-connection new-connection-mark=CLIENT-07 passthrough=yes packet-mark=!PKT-HIT connection-mark=!HIT-conn src-address=192.168.1.9

add chain=prerouting action=mark-connection new-connection-mark=CLIENT-08 passthrough=yes packet-mark=!PKT-HIT connection-mark=!HIT-conn src-address=192.168.1.10

add chain=prerouting action=mark-connection new-connection-mark=CLIENT-09 passthrough=yes packet-mark=!PKT-HIT connection-mark=!HIT-conn src-address=192.168.1.11



BW-MANAGEMENT PACKET FOR CLIENT :

add chain=prerouting action=mark-packet new-packet-mark=PC-OP passthrough=no connection-mark=PC-OP \

comment="BW-MANAGEMENT PACKET FOR CLIENT"

add chain=prerouting action=mark-packet new-packet-mark=CLIENT-01 passthrough=no connection-mark=CLIENT-01

add chain=prerouting action=mark-packet new-packet-mark=CLIENT-02 passthrough=no connection-mark=CLIENT-02

add chain=prerouting action=mark-packet new-packet-mark=CLIENT-03 passthrough=no connection-mark=CLIENT-03

add chain=prerouting action=mark-packet new-packet-mark=CLIENT-04 passthrough=no connection-mark=CLIENT-04

add chain=prerouting action=mark-packet new-packet-mark=CLIENT-05 passthrough=no connection-mark=CLIENT-05

add chain=prerouting action=mark-packet new-packet-mark=CLIENT-06 passthrough=no connection-mark=CLIENT-06

add chain=prerouting action=mark-packet new-packet-mark=CLIENT-07 passthrough=no connection-mark=CLIENT-07

add chain=prerouting action=mark-packet new-packet-mark=CLIENT-08 passthrough=no connection-mark=CLIENT-08

add chain=prerouting action=mark-packet new-packet-mark=CLIENT-09 passthrough=no connection-mark=CLIENT-09

add chain=prerouting action=mark-packet new-packet-mark=CLIENT-10 passthrough=no connection-mark=CLIENT-10

add chain=prerouting action=mark-packet new-packet-mark=CLIENT-11 passthrough=no connection-mark=CLIENT-11



QUEUE TYPE

/que ty



add name="PCQ-1Mbps" kind=pcq pcq-rate=1024k pcq-limit=50 pcq-classifier=dst-address pcq-total-limit=2000 \

pcq-burst-rate=0 pcq-burst-threshold=0 pcq-burst-time=10s pcq-src-address-mask=32 pcq-dst-address-mask=32 \

pcq-src-address6-mask=128 pcq-dst-address6-mask=128



add name="PCQ-1Mbps-UP" kind=pcq pcq-rate=1024k pcq-limit=50 pcq-classifier=src-address pcq-total-limit=2000 \

pcq-burst-rate=0 pcq-burst-threshold=0 pcq-burst-time=10s pcq-src-address-mask=32 pcq-dst-address-mask=32 \

pcq-src-address6-mask=128 pcq-dst-address6-mask=128



add name="HIT" kind=pcq pcq-rate=0 pcq-limit=50 pcq-classifier=dst-address pcq-total-limit=2000 pcq-burst-rate=0 \

pcq-burst-threshold=0 pcq-burst-time=10s pcq-src-address-mask=32 pcq-dst-address-mask=32 \

pcq-src-address6-mask=128 pcq-dst-address6-mask=128



add name="Yahoo" kind=pcq pcq-rate=0 pcq-limit=50 pcq-classifier=dst-address pcq-total-limit=2000 pcq-burst-rate=0 \

pcq-burst-threshold=0 pcq-burst-time=10s pcq-src-address-mask=32 pcq-dst-address-mask=32 \

pcq-src-address6-mask=128 pcq-dst-address6-mask=128



add name="FBgame" kind=pcq pcq-rate=512k pcq-limit=50 pcq-classifier=dst-address pcq-total-limit=2000 \

pcq-burst-rate=0 pcq-burst-threshold=0 pcq-burst-time=10s pcq-src-address-mask=32 pcq-dst-address-mask=32 \

pcq-src-address6-mask=128 pcq-dst-address6-mask=128



add name="GAME" kind=pcq pcq-rate=1024k pcq-limit=50 pcq-classifier=dst-address pcq-total-limit=2000 \

pcq-burst-rate=0 pcq-burst-threshold=0 pcq-burst-time=10s pcq-src-address-mask=32 pcq-dst-address-mask=32 \

pcq-src-address6-mask=128 pcq-dst-address6-mask=128



add name="critical" kind=pfifo pfifo-limit=50



QUEUE TREE

/que tr



add name="00. HIT" parent=global-out packet-mark=PKT-HIT limit-at=0 queue=HIT \

priority=1 max-limit=0 burst-limit=0 burst-threshold=0 burst-time=0s

add name="01. YAHOO" parent=global-out packet-mark=yahoo-pkt limit-at=32k \

queue=Yahoo priority=8 max-limit=128k burst-limit=0 burst-threshold=0 burst-time=0s

add name="02. FB+GAME" parent=global-out packet-mark=fb-pkt limit-at=100k \

queue=FBgame priority=5 max-limit=512k burst-limit=0 burst-threshold=0 burst-time=0s

add name="03. GAME ONLINE" parent=LAN packet-mark=game-pkt limit-at=128k \

queue=GAME priority=1 max-limit=1024k burst-limit=0 burst-threshold=0 burst-time=0s

add name="04. CRITICAL" parent=pppoe-speedy1 packet-mark=critical-pkt \

limit-at=64k queue=critical priority=1 max-limit=256k burst-limit=0 \

burst-threshold=0 burst-time=0s

add name="05. REALTIME" parent=global-out packet-mark=realtime-pkt \

limit-at=64k queue=critical-down priority=4 max-limit=256k burst-limit=0 \

burst-threshold=0 burst-time=0s

add name="06. PROXY SSH" parent=global-out packet-mark=ssh-pkt limit-at=256k \

queue=wireless-default priority=5 max-limit=6144k burst-limit=0 \

burst-threshold=0 burst-time=0s



add name="1. DOWNLINK" parent=global-out limit-at=0 priority=8 max-limit=1024k\

burst-limit=0 burst-threshold=0 burst-time=0s

add name="000. PC-OP" parent="01. DOWNLINK" packet-mark=PC-OP limit-at=165k queue=PCQ-1Mbps priority=8 max-limit=256k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="01. CLIENT-01" parent="01. DOWNLINK" packet-mark=CLIENT-01 limit-at=165k queue=PCQ-1Mbps priority=8 max-limit=256k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="02. CLIENT-02" parent="01. DOWNLINK" packet-mark=CLIENT-02 limit-at=165k queue=PCQ-1Mbps priority=8 max-limit=256k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="03. CLIENT-03" parent="01. DOWNLINK" packet-mark=CLIENT-03 limit-at=165k queue=PCQ-1Mbps priority=8 max-limit=256k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="04. CLIENT-04" parent="01. DOWNLINK" packet-mark=CLIENT-04 limit-at=165k queue=PCQ-1Mbps priority=8 max-limit=256k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="05. CLIENT-05" parent="01. DOWNLINK" packet-mark=CLIENT-05 limit-at=165k queue=PCQ-1Mbps priority=8 max-limit=256k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="06. CLIENT-06" parent="01. DOWNLINK" packet-mark=CLIENT-06 limit-at=165k queue=PCQ-1Mbps priority=8 max-limit=256k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="07. CLIENT-07" parent="01. DOWNLINK" packet-mark=CLIENT-07 limit-at=165k queue=PCQ-1Mbps priority=8 max-limit=256k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="08. CLIENT-08" parent="01. DOWNLINK" packet-mark=CLIENT-08 limit-at=165k queue=PCQ-1Mbps priority=8 max-limit=256k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="09. CLIENT-09" parent="01. DOWNLINK" packet-mark=CLIENT-09 limit-at=165k queue=PCQ-1Mbps priority=8 max-limit=256k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="10. CLIENT-10" parent="01. DOWNLINK" packet-mark=CLIENT-10 limit-at=165k queue=PCQ-1Mbps priority=8 max-limit=256k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="11. CLIENT-11" parent="01. DOWNLINK" packet-mark=CLIENT-11 limit-at=165k queue=PCQ-1Mbps priority=8 max-limit=256k \

burst-limit=0 burst-threshold=0 burst-time=0s



add name="2. UPLINK" parent=global-in limit-at=0 priority=8 max-limit=0 \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="000. PC-OP-up" parent="02. UPLINK" packet-mark=PC-OP limit-at=64k queue=PCQ-1Mbps-UP priority=8 max-limit=200k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="01. CLIENT-01-up" parent="02. UPLINK" packet-mark=CLIENT-01 limit-at=64k queue=PCQ-1Mbps-UP priority=8 max-limit=128k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="02. CLIENT-02-up" parent="02. UPLINK" packet-mark=CLIENT-02 limit-at=64k queue=PCQ-1Mbps-UP priority=8 max-limit=128k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="03. CLIENT-03-up" parent="02. UPLINK" packet-mark=CLIENT-03 limit-at=64k queue=PCQ-1Mbps-UP priority=8 max-limit=128k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="04. CLIENT-04-up" parent="02. UPLINK" packet-mark=CLIENT-04 limit-at=64k queue=PCQ-1Mbps-UP priority=8 max-limit=128k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="05. CLIENT-05-up" parent="02. UPLINK" packet-mark=CLIENT-05 limit-at=64k queue=PCQ-1Mbps-UP priority=8 max-limit=128k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="06. CLIENT-06-up" parent="02. UPLINK" packet-mark=CLIENT-06 limit-at=64k queue=PCQ-1Mbps-UP priority=8 max-limit=128k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="07. CLIENT-07-up" parent="02. UPLINK" packet-mark=CLIENT-07 limit-at=64k queue=PCQ-1Mbps-UP priority=8 max-limit=128k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="08. CLIENT-08-up" parent="02. UPLINK" packet-mark=CLIENT-08 limit-at=64k queue=PCQ-1Mbps-UP priority=8 max-limit=128k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="09. CLIENT-09-up" parent="02. UPLINK" packet-mark=CLIENT-09 limit-at=64k queue=PCQ-1Mbps-UP priority=8 max-limit=128k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="10. CLIENT-10-up" parent="02. UPLINK" packet-mark=CLIENT-10 limit-at=64k queue=PCQ-1Mbps-UP priority=8 max-limit=128k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="11. CLIENT-11-up" parent="02. UPLINK" packet-mark=CLIENT-11 limit-at=64k queue=PCQ-1Mbps-UP priority=8 max-limit=128k \

burst-limit=0 burst-threshold=0 burst-time=0s

IP FIREWALL FILTER RULES :
Blok Virus And Malware Diperhatikan
/ip fi fi
add chain=forward src-address=0.0.0.0/8 action=drop comment="Block Bogus IP Address" disabled=no

add chain=forward dst-address=0.0.0.0/8 action=drop comment="" disabled=no

add chain=forward src-address=127.0.0.0/8 action=drop comment="" disabled=no

add chain=forward dst-address=127.0.0.0/8 action=drop comment="" disabled=no

add chain=forward src-address=224.0.0.0/3 action=drop comment="" disabled=no

add chain=forward dst-address=224.0.0.0/3 action=drop comment="" disabled=no

add chain=input protocol=tcp dst-port=22 src-address-list=ssh_blacklistaction=drop comment="Drop SSH brute forcers" disabled=no

add chain=input protocol=tcp dst-port=22 connection-state=newsrc-address-list=ssh_stage3 action=add-src-to-address-listaddress-list=ssh_blacklist address-list-timeout=1w3d comment="" disabled=no

add chain=input protocol=tcp dst-port=22 connection-state=newsrc-address-list=ssh_stage2 action=add-src-to-address-listaddress-list=ssh_stage3 address-list-timeout=1m comment="" disabled=no

add chain=input protocol=tcp dst-port=22 connection-state=newsrc-address-list=ssh_stage1 action=add-src-to-address-listaddress-list=ssh_stage2 address-list-timeout=1m comment="" disabled=no

add chain=input protocol=tcp dst-port=22 connection-state=newaction=add-src-to-address-list address-list=ssh_stage1address-list-timeout=1m comment="" disabled=no

add chain=input protocol=tcp psd=21,3s,3,1 action=add-src-to-address-listaddress-list="port scanners" address-list-timeout=2w comment="Port Scanners to list " disabled=no

add chain=input protocol=tcp tcp-flags=fin,!syn,!rst,!psh,!ack,!urgaction=add-src-to-address-list address-list="port scanners"address-list-timeout=2w comment="" disabled=no

add chain=input protocol=tcp tcp-flags=fin,syn action=add-src-to-address-listaddress-list="port scanners" address-list-timeout=2w comment=""disabled=no

add chain=input protocol=tcp tcp-flags=syn,rst action=add-src-to-address-listaddress-list="port scanners" address-list-timeout=2w comment=""disabled=no

add chain=input protocol=tcp tcp-flags=fin,psh,urg,!syn,!rst,!ackaction=add-src-to-address-list address-list="port scanners"address-list-timeout=2w comment="" disabled=no

add chain=input protocol=tcp tcp-flags=fin,syn,rst,psh,ack,urgaction=add-src-to-address-list address-list="port scanners"address-list-timeout=2w comment="" disabled=no

add chain=input protocol=tcp tcp-flags=!fin,!syn,!rst,!psh,!ack,!urgaction=add-src-to-address-list address-list="port scanners"address-list-timeout=2w comment="" disabled=no

add chain=input src-address-list="port scanners" action=drop comment=""disabled=no

add chain=input protocol=tcp dst-port=21 src-address-list=ftp_blacklistaction=drop comment="Filter FTP to Box" disabled=no

add chain=output protocol=tcp content="530 Login incorrect"dst-limit=1/1m,9,dst-address/1m action=accept comment="" disabled=no

add chain=output protocol=tcp content="530 Login incorrect"action=add-dst-to-address-list address-list=ftp_blacklistaddress-list-timeout=3h comment="" disabled=no

add chain=forward protocol=tcp action=jump jump-target=tcp comment="Separate Protocol into Chains" disabled=no

add chain=forward protocol=udp action=jump jump-target=udp comment=""disabled=no

add chain=forward protocol=icmp action=jump jump-target=icmp comment=""disabled=no

add chain=udp protocol=udp dst-port=69 action=drop comment="Blocking UDP Packet" disabled=no

add chain=udp protocol=udp dst-port=111 action=drop comment="" disabled=no

add chain=udp protocol=udp dst-port=135 action=drop comment="" disabled=no

add chain=udp protocol=udp dst-port=137-139 action=drop comment="" disabled=no

add chain=udp protocol=udp dst-port=2049 action=drop comment="" disabled=no

add chain=udp protocol=udp dst-port=3133 action=drop comment="" disabled=no

add chain=tcp protocol=tcp dst-port=69 action=drop comment="Bloking TCP Packet" disabled=no

add chain=tcp protocol=tcp dst-port=111 action=drop comment="" disabled=no

add chain=tcp protocol=tcp dst-port=119 action=drop comment="" disabled=no

add chain=tcp protocol=tcp dst-port=135 action=drop comment="" disabled=no

add chain=tcp protocol=tcp dst-port=137-139 action=drop comment="" disabled=no

add chain=tcp protocol=tcp dst-port=445 action=drop comment="" disabled=no

add chain=tcp protocol=tcp dst-port=2049 action=drop comment="" disabled=no

add chain=tcp protocol=tcp dst-port=12345-12346 action=drop comment=""disabled=no

add chain=tcp protocol=tcp dst-port=20034 action=drop comment="" disabled=no

add chain=tcp protocol=tcp dst-port=3133 action=drop comment="" disabled=no

add chain=tcp protocol=tcp dst-port=67-68 action=drop comment="" disabled=no

add chain=icmp protocol=icmp icmp-options=0:0-255 limit=5,5 action=acceptcomment="Limited Ping Flood" disabled=no

add chain=icmp protocol=icmp icmp-options=3:3 limit=5,5 action=acceptcomment="" disabled=no

add chain=icmp protocol=icmp icmp-options=3:4 limit=5,5 action=acceptcomment="" disabled=no

add chain=icmp protocol=icmp icmp-options=8:0-255 limit=5,5 action=acceptcomment="" disabled=no

add chain=icmp protocol=icmp icmp-options=11:0-255 limit=5,5 action=acceptcomment="" disabled=no

add chain=icmp protocol=icmp action=drop comment="" disabled=no

add chain=input dst-address-type=broadcast action=accept comment="Allow Broadcast Traffic" disabled=no

add chain=input connection-state=established action=accept comment="Connection State" disabled=no

add chain=input connection-state=related action=accept comment="" disabled=no

add chain=input connection-state=invalid action=drop comment="" disabled=no

add chain=virus protocol=udp action=drop dst-port=1 comment="Sockets des Troie"

add chain=virus protocol=tcp action=drop dst-port=2 comment="Death"

add chain=virus protocol=tcp action=drop dst-port=20 comment="Senna Spy FTP server"

add chain=virus protocol=tcp action=drop dst-port=21 comment="Back Construction, Blade Runner, Cattivik FTP Server, CC Invader, Dark FTP, Doly Trojan, Fore, Invisible FTP, Juggernaut 42, Larva, MotIv FTP, Net Administrator, Ramen, Senna Spy FTP server, The Flu, Traitor 21, WebEx, WinCrash"

add chain=virus protocol=tcp action=drop dst-port=22 comment="Shaft"

add chain=virus protocol=tcp action=drop dst-port=23 comment="Fire HacKer, Tiny Telnet Server TTS, Truva Atl"

add chain=virus protocol=tcp action=drop dst-port=25 comment="Ajan, Antigen, Barok, Email Password Sender EPS, EPS II, Gip, Gris, Happy99, Hpteam mail, Hybris, I love you, Kuang2, Magic Horse, MBT Mail Bombing Trojan, Moscow Email trojan, Naebi, NewApt worm, ProMail trojan, Shtirlitz, Stealth, Tapiras, Terminator, WinPC, WinSpy"

add chain=virus protocol=tcp action=drop dst-port=30 comment="Agent 40421"

add chain=virus protocol=tcp action=drop dst-port=31 comment="Agent 31, Hackers Paradise, Masters Paradise"

add chain=virus protocol=tcp action=drop dst-port=41 comment="Deep Throat, Foreplay"

add chain=virus protocol=tcp action=drop dst-port=48 comment="DRAT"

add chain=virus protocol=tcp action=drop dst-port=50 comment="DRAT"

add chain=virus protocol=tcp action=drop dst-port=58 comment="DMSetup"

add chain=virus protocol=tcp action=drop dst-port=59 comment="DMSetup"

add chain=virus protocol=tcp action=drop dst-port=79 comment="CDK, Firehotcker"

add chain=virus protocol=tcp action=drop dst-port=80 comment="711 trojan, Seven Eleven, AckCmd, Back End, Back Orifice 2000 Plug-Ins, Cafeini, CGI Backdoor, Executor, God Message, God Message Creator, Hooker, IISworm, MTX, NCX, Reverse WWW Tunnel Backdoor, RingZero, Seeker, WAN Remote, Web Server CT, WebDownloader"

add chain=virus protocol=tcp action=drop dst-port=81 comment="RemoConChubo"

add chain=virus protocol=tcp action=drop dst-port=99 comment="Hidden Port, NCX"

add chain=virus protocol=tcp action=drop dst-port=110 comment="ProMail trojan"

add chain=virus protocol=tcp action=drop dst-port=113 comment="Invisible Identd Deamon, Kazimas"

add chain=virus protocol=tcp action=drop dst-port=119 comment="Happy99"

add chain=virus protocol=tcp action=drop dst-port=121 comment="Attack Bot, God Message, JammerKillah"

add chain=virus protocol=tcp action=drop dst-port=123 comment="Net Controller"

add chain=virus protocol=tcp action=drop dst-port=133 comment="Farnaz"

add chain=virus protocol=tcp action=drop dst-port=135-139 comment="Blaster worm"

add chain=virus protocol=udp action=drop dst-port=135-139 comment="messenger worm"

add chain=virus protocol=tcp action=drop dst-port=142 comment="NetTaxi"

add chain=virus protocol=tcp action=drop dst-port=146 comment="Infector"

add chain=virus protocol=udp action=drop dst-port=146 comment="Infector"

add chain=virus protocol=tcp action=drop dst-port=170 comment="A-trojan"

add chain=virus protocol=tcp action=drop dst-port=334 comment="Backage"

add chain=virus protocol=tcp action=drop dst-port=411 comment="Backage"

add chain=virus protocol=tcp action=drop dst-port=420 comment="Breach, Incognito"

add chain=virus protocol=tcp action=drop dst-port=421 comment="TCP Wrappers trojan"

add chain=virus protocol=tcp action=drop dst-port=445 comment="Blaster worm"

add chain=virus protocol=udp action=drop dst-port=445 comment="Blaster worm"

add chain=virus protocol=tcp action=drop dst-port=455 comment="Fatal Connections"

add chain=virus protocol=tcp action=drop dst-port=456 comment="Hackers Paradise"

add chain=virus protocol=tcp action=drop dst-port=513 comment="Grlogin"

add chain=virus protocol=tcp action=drop dst-port=514 comment="RPC Backdoor"

add chain=virus protocol=tcp action=drop dst-port=531 comment="Net666, Rasmin"

add chain=virus protocol=tcp action=drop dst-port=555 comment="711 trojan, Seven Eleven, Ini-Killer, Net Administrator, Phase Zero, Phase-0, Stealth Spy"

add chain=virus protocol=tcp action=drop dst-port=605 comment="Secret Service"

add chain=virus protocol=tcp action=drop dst-port=666 comment="Attack FTP, Back Construction, BLA trojan, Cain & Abel, NokNok, Satans Back Door SBD, ServU, Shadow Phyre, th3r1pp3rz Therippers"

add chain=virus protocol=tcp action=drop dst-port=667 comment="SniperNet"

add chain=virus protocol=tcp action=drop dst-port=669 comment="DP trojan"

add chain=virus protocol=tcp action=drop dst-port=692 comment="GayOL"

add chain=virus protocol=tcp action=drop dst-port=777 comment="AimSpy, Undetected"

add chain=virus protocol=tcp action=drop dst-port=808 comment="WinHole"

add chain=virus protocol=tcp action=drop dst-port=911 comment="Dark Shadow"

add chain=virus protocol=tcp action=drop dst-port=999 comment="Deep Throat, Foreplay, WinSatan"

add chain=virus protocol=tcp action=drop dst-port=1000 comment="Der Spaeher, Direct Connection"

add chain=virus protocol=tcp action=drop dst-port=1001 comment="Der Spaeher, Le Guardien, Silencer, WebEx"

add chain=virus protocol=tcp action=drop dst-port=1010-1016 comment="Doly Trojan"

add chain=virus protocol=tcp action=drop dst-port=1020 comment="Vampire"

add chain=virus protocol=tcp action=drop dst-port=1024 comment="Jade, Latinus, NetSpy"

add chain=virus protocol=tcp action=drop dst-port=1025 comment="Remote Storm"

add chain=virus protocol=udp action=drop dst-port=1025 comment="Remote Storm"

add chain=virus protocol=tcp action=drop dst-port=1035 comment="Multidropper"

add chain=virus protocol=tcp action=drop dst-port=1042 comment="BLA trojan"

add chain=virus protocol=tcp action=drop dst-port=1045 comment="Rasmin"

add chain=virus protocol=tcp action=drop dst-port=1049 comment="sbin initd"

add chain=virus protocol=tcp action=drop dst-port=1050 comment="MiniCommand"

add chain=virus protocol=tcp action=drop dst-port=1053 comment="The Thief"

add chain=virus protocol=tcp action=drop dst-port=1054 comment="AckCmd"

add chain=virus protocol=tcp action=drop dst-port=1080-1083 comment="WinHole"

add chain=virus protocol=tcp action=drop dst-port=1090 comment="Xtreme"

add chain=virus protocol=tcp action=drop dst-port=1095-1098 comment="Remote Administration Tool RAT"

add chain=virus protocol=tcp action=drop dst-port=1099 comment="Blood Fest Evolution, Remote Administration Tool RAT"

add chain=virus protocol=tcp action=drop dst-port=1150-1151 comment="Orion"

add chain=virus protocol=tcp action=drop dst-port=1170 comment="Psyber Stream Server PSS, Streaming Audio Server, Voice"

add chain=virus protocol=udp action=drop dst-port=1200-1201 comment="NoBackO"

add chain=virus protocol=tcp action=drop dst-port=1207 comment="SoftWAR"

add chain=virus protocol=tcp action=drop dst-port=1208 comment="Infector"

add chain=virus protocol=tcp action=drop dst-port=1212 comment="Kaos"

add chain=virus protocol=tcp action=drop dst-port=1234 comment="SubSeven Java client, Ultors Trojan"

add chain=virus protocol=tcp action=drop dst-port=1243 comment="BackDoor-G, SubSeven, SubSeven Apocalypse, Tiles"

add chain=virus protocol=tcp action=drop dst-port=1245 comment="VooDoo Doll"

add chain=virus protocol=tcp action=drop dst-port=1255 comment="Scarab"

add chain=virus protocol=tcp action=drop dst-port=1256 comment="Project nEXT"

add chain=virus protocol=tcp action=drop dst-port=1269 comment="Matrix"

add chain=virus protocol=tcp action=drop dst-port=1272 comment="The Matrix"

add chain=virus protocol=tcp action=drop dst-port=1313 comment="NETrojan"

add chain=virus protocol=tcp action=drop dst-port=1338 comment="Millenium Worm"

add chain=virus protocol=tcp action=drop dst-port=1349 comment="Bo dll"

add chain=virus protocol=tcp action=drop dst-port=1394 comment="GoFriller, Backdoor G-1"

add chain=virus protocol=tcp action=drop dst-port=1441 comment="Remote Storm"

add chain=virus protocol=tcp action=drop dst-port=1492 comment="FTP99CMP"

add chain=virus protocol=tcp action=drop dst-port=1524 comment="Trinoo"

add chain=virus protocol=tcp action=drop dst-port=1568 comment="Remote Hack"

add chain=virus protocol=tcp action=drop dst-port=1600 comment="Direct Connection, Shivka-Burka"

add chain=virus protocol=tcp action=drop dst-port=1703 comment="Exploiter"

add chain=virus protocol=tcp action=drop dst-port=1777 comment="Scarab"

add chain=virus protocol=tcp action=drop dst-port=1807 comment="SpySender"

add chain=virus protocol=tcp action=drop dst-port=1966 comment="Fake FTP"

add chain=virus protocol=tcp action=drop dst-port=1967 comment="WM FTP Server"

add chain=virus protocol=tcp action=drop dst-port=1969 comment="OpC BO"

add chain=virus protocol=tcp action=drop dst-port=1981 comment="Bowl, Shockrave"

add chain=virus protocol=tcp action=drop dst-port=1999 comment="Back Door, SubSeven, TransScout"

add chain=virus protocol=tcp action=drop dst-port=2000 comment="Der Spaeher, Insane Network, Last 2000, Remote Explorer 2000, Senna Spy Trojan Generator"

add chain=virus protocol=tcp action=drop dst-port=2001 comment="Der Spaeher, Trojan Cow"

add chain=virus protocol=tcp action=drop dst-port=2023 comment="Ripper Pro"

add chain=virus protocol=tcp action=drop dst-port=2080 comment="WinHole"

add chain=virus protocol=tcp action=drop dst-port=2115 comment="Bugs"

add chain=virus protocol=udp action=drop dst-port=2130 comment="Mini Backlash"

add chain=virus protocol=tcp action=drop dst-port=2140 comment="The Invasor"

add chain=virus protocol=udp action=drop dst-port=2140 comment="Deep Throat, Foreplay"

add chain=virus protocol=tcp action=drop dst-port=2155 comment="Illusion Mailer"

add chain=virus protocol=tcp action=drop dst-port=2255 comment="Nirvana"

add chain=virus protocol=tcp action=drop dst-port=2283 comment="Hvl RAT"

add chain=virus protocol=tcp action=drop dst-port=2300 comment="Xplorer"

add chain=virus protocol=tcp action=drop dst-port=2311 comment="Studio 54"

add chain=virus protocol=tcp action=drop dst-port=2330-2339 comment="Contact"

add chain=virus protocol=udp action=drop dst-port=2339 comment="Voice Spy"

add chain=virus protocol=tcp action=drop dst-port=2345 comment="Doly Trojan"

add chain=virus protocol=tcp action=drop dst-port=2565 comment="Striker trojan"

add chain=virus protocol=tcp action=drop dst-port=2583 comment="WinCrash"

add chain=virus protocol=tcp action=drop dst-port=2600 comment="Digital RootBeer"

add chain=virus protocol=tcp action=drop dst-port=2716 comment="The Prayer"

add chain=virus protocol=tcp action=drop dst-port=2773-2774 comment="SubSeven, SubSeven 2.1 Gold"

add chain=virus protocol=tcp action=drop dst-port=2801 comment="Phineas Phucker"

add chain=virus protocol=udp action=drop dst-port=2989 comment="Remote Administration Tool RAT"

add chain=virus protocol=tcp action=drop dst-port=3000 comment="Remote Shut"

add chain=virus protocol=tcp action=drop dst-port=3024 comment="WinCrash"

add chain=virus protocol=tcp action=drop dst-port=3031 comment="Microspy"

add chain=virus protocol=tcp action=drop dst-port=3128 comment="Reverse WWW Tunnel Backdoor, RingZero"

add chain=virus protocol=tcp action=drop dst-port=3129 comment="Masters Paradise"

add chain=virus protocol=tcp action=drop dst-port=3150 comment="The Invasor"

add chain=virus protocol=udp action=drop dst-port=3150 comment="Deep Throat, Foreplay, Mini Backlash"

add chain=virus protocol=tcp action=drop dst-port=3456 comment="Terror trojan"

add chain=virus protocol=tcp action=drop dst-port=3459 comment="Eclipse 2000, Sanctuary"

add chain=virus protocol=tcp action=drop dst-port=3700 comment="Portal of Doom"

add chain=virus protocol=tcp action=drop dst-port=3777 comment="PsychWard"

add chain=virus protocol=tcp action=drop dst-port=3791-3801 comment="Total Solar Eclypse"

add chain=virus protocol=tcp action=drop dst-port=4000 comment="SkyDance"

add chain=virus protocol=tcp action=drop dst-port=4092 comment="WinCrash"

add chain=virus protocol=tcp action=drop dst-port=4242 comment="Virtual Hacking Machine VHM"

add chain=virus protocol=tcp action=drop dst-port=4321 comment="BoBo"

add chain=virus protocol=tcp action=drop dst-port=4444 comment="Prosiak, Swift Remote"

add chain=virus protocol=tcp action=drop dst-port=4567 comment="File Nail"

add chain=virus protocol=tcp action=drop dst-port=4590 comment="ICQ Trojan"

add chain=virus protocol=tcp action=drop dst-port=4950 comment="ICQ Trogen Lm"

add chain=virus protocol=tcp action=drop dst-port=5000 comment="Back Door Setup, Blazer5, Bubbel, ICKiller, Ra1d, Sockets des Troie"

add chain=virus protocol=tcp action=drop dst-port=5001 comment="Back Door Setup, Sockets des Troie"

add chain=virus protocol=tcp action=drop dst-port=5002 comment="cd00r, Shaft"

add chain=virus protocol=tcp action=drop dst-port=5010 comment="Solo"

add chain=virus protocol=tcp action=drop dst-port=5011 comment="One of the Last Trojans OOTLT, One of the Last Trojans OOTLT, modified"

add chain=virus protocol=tcp action=drop dst-port=5025 comment="WM Remote KeyLogger"

add chain=virus protocol=tcp action=drop dst-port=5031-5032 comment="Net Metropolitan"

add chain=virus protocol=tcp action=drop dst-port=5321 comment="Firehotcker"

add chain=virus protocol=tcp action=drop dst-port=5333 comment="Backage, NetDemon"

add chain=virus protocol=tcp action=drop dst-port=5343 comment="wCrat WC Remote Administration Tool"

add chain=virus protocol=tcp action=drop dst-port=5400-5402 comment="Back Construction, Blade Runner"

add chain=virus protocol=tcp action=drop dst-port=5512 comment="Illusion Mailer"

add chain=virus protocol=tcp action=drop dst-port=5534 comment="The Flu"

add chain=virus protocol=tcp action=drop dst-port=5550 comment="Xtcp"

add chain=virus protocol=tcp action=drop dst-port=5555 comment="ServeMe"

add chain=virus protocol=tcp action=drop dst-port=5556-5557 comment="BO Facil"

add chain=virus protocol=tcp action=drop dst-port=5569 comment="Robo-Hack"

add chain=virus protocol=tcp action=drop dst-port=5637-5638 comment="PC Crasher"

add chain=virus protocol=tcp action=drop dst-port=5742 comment="WinCrash"

add chain=virus protocol=tcp action=drop dst-port=5760 comment="Portmap Remote Root Linux Exploit"

add chain=virus protocol=tcp action=drop dst-port=5880-5889 comment="Y3K RAT"

add chain=virus protocol=tcp action=drop dst-port=6000 comment="The Thing"

add chain=virus protocol=tcp action=drop dst-port=6006 comment="Bad Blood"

add chain=virus protocol=tcp action=drop dst-port=6272 comment="Secret Service"
User avatar
TVONE
Posts: 21
Joined: 11 Apr 2012, 20:30
Contact:

Re: ISS + Internet SerVer SolutiON .... Mikrotik + Proxy 1 W

Postby TVONE » 12 Apr 2012, 19:53

TVONE wrote:Post By ISS + Internet Server Solution ...


IP ADDRESS IN MODEM ADSL MODE BRIDGE :

Modem : 192.168.3.1

IP ADDRESS IN CPU PROXY SERVER :

192.168.27.27

IP ADDRESS MODEM IN MIKROTIK:

192.168.3.2/24



INTERFACE NAME :

ether1 : Modem

ether2 : LAN

ether3 : Proxy





INTERFACE LIST :

/interface



add name="Modem" type="ether" mtu=1500 l2mtu=1524

add name="LAN" type="ether" mtu=1500 l2mtu=1524

add name="Proxy" type="ether" mtu=1500 l2mtu=1524



IP ADDRESS LIST :

/ip addr



add address=192.168.3.2/24 network=192.168.3.0 interface=Modem1 actual-interface=Modem

add address=192.168.1.1/24 network=192.168.1.0 interface=LAN actual-interface=LAN

add address=192.168.27.1/24 network=192.168.27.0 interface=Proxy actual-interface=Proxy





PPP-PPPoE CLIENT :

/interface pppoe-client



add name="pppoe-speedy1" max-mtu=1480 max-mru=1480 mrru=disabled interface=Modem user="*********@telkom.net" \

password="******" profile=default service-name="admin" ac-name="" add-default-route=yes dial-on-demand=no \

use-peer-dns=no allow=pap,chap,mschap1,mschap2

********* = ISI DGN USERNAME & PASSWORD SPEEDY ANDA





IP DNS :

Gunakan IP openDNS (Jika anda ingin memilah situs2 yang akan di blok) : 208.67.222.222 208.67.220.220

Gunakan IP DNS Nawala (Jika anda ingin otomatis situs2 yang akan di blok terutama situs2 porno) : 180.131.144.144 180.131.145.145

Gunakan IP DNS ISP anda (IP DNS terbaik adalah IP DNS dengan loop terpendek yaitu IP DNS ISP di wilayah anda)



IP DHCP SERVER :

DHCP-->DHCP Setup-->DHCP Server Interface=LAN-->NEXT..............FINISH

Gunakan IP openDNS (Jika anda ingin memilah situs2 yang akan di blok) : 208.67.222.222 208.67.220.220

Gunakan IP DNS Nawala (Jika anda ingin otomatis situs2 yang akan di blok terutama situs2 porno) : 180.131.144.144 180.131.145.145



IP FIRWALL NAT :

/ip fi nat



TRANSPARENT PROXY

add chain=dstnat action=dst-nat to-addresses=192.168.27.27 to-ports=3128 protocol=tcp src-address-list=LAN-NeT \

dst-address-list=!Proxy-NeT in-interface=LAN dst-port=80,81,8081,8080,3128



MASQUERADE

add chain=srcnat action=masquerade out-interface=pppoe-speedy1

add chain=srcnat action=masquerade out-interface=Modem



Transparent DNS

add chain=dstnat action=redirect to-ports=53 protocol=udp dst-port=53

add chain=dstnat action=redirect to-ports=53 protocol=tcp dst-port=53



SSH PROXY OUT REMOTE TO WINsCP

add chain=dstnat action=dst-nat to-addresses=192.168.27.27 to-ports=22 protocol=tcp dst-address="IP PUBLIK" \

dst-port=22 comment="SSH PROXY OUT REMOTE TO WINsCP"

"IP PUBLIK" : Isi dengan IP Publik Internet Speedy anda





IP FIREWALL ADDRESS-LIST

/ip fi addr



add list=LAN-NeT address=192.168.1.0/24

add list=Proxy-NeT address=192.168.27.0/24



Tambahan :

add list=Games address=203.89.146.0/23 comment="Gemscool"

add list=Games address=203.89.147.0/24 comment="Gemscool"

add list=Games address=203.89.146.156 comment="Gemscool"

add list=Games address=203.89.146.158 comment="Gemscool"

add list=Games address=203.89.146.166 comment="Gemscool"

add list=Games address=203.89.147.11 comment="Gemscool"

add list=Games address=203.89.146.99 comment="Gemscool"

add list=Games address=203.89.147.31 comment="Gemscool"

add list=Games address=203.89.146.130 comment="Gemscool"

add list=Games address=202.93.20.0/23 comment="Lytogame"

add list=Games address=202.93.21.0/24 comment="Lytogame"

add list=Games address=202.43.171.0/24 comment="Lytogame"

add list=Games address=202.93.16.0/24 comment="Lytogame"

add list=Games address=202.43.167.72 comment="Lytogame"

add list=Games address=202.93.20.253 comment="Lytogame"

add list=Games address=202.93.17.197 comment="Lytogame"

add list=Games address=117.103.58.198 comment="Lytogame"

add list=Games address=202.93.17.219 comment="Lytogame"

add list=Games address=202.103.21.84 comment="Lytogame"

add list=Games address=202.93.21.250 comment="Lytogame"

add list=Games address=202.93.21.251 comment="Lytogame"

add list=Games address=202.93.21.142 comment="Lytogame"

add list=Games address=202.93.21.244 comment="Lytogame"

add list=Games address=202.93.17.216 comment="Lytogame"

add list=Games address=122.102.49.0/24 comment="Megaxus"

add list=Games address=122.102.51.0/24 comment="Megaxus"

add list=Games address=122.102.53.0/24 comment="Megaxus"

add list=Games address=122.102.51.19 comment="Megaxus"

add list=Games address=122.102.51.17 comment="Megaxus"

add list=Games address=122.102.49.67 comment="Megaxus"

add list=Games address=122.102.49.132 comment="Megaxus"

add list=Games address=122.102.49.202 comment="Megaxus"

add list=Games address=122.102.53.4 comment="Megaxus"

add list=Games address=110.93.12.0/24 comment="Wavegame"

add list=Games address=122.93.12.201 comment="Wavegame"

add list=Games address=122.93.12.251 comment="Wavegame"

add list=Games address=204.160.144.254 comment="Atlantica Nexon"

add list=Games address=8.31.96.209 comment="Atlantica Nexon"

add list=Games address=208.85.111.0/24 comment="Atlantica Nexon"

add list=Games address=202.158.252.194 comment="FIFA Online"

add list=Games address=202.158.252.195 comment="FIFA Online"

add list=Games address=202.70.134.0/24 comment="Cabal Online"

add list=Games address=202.70.134.18 comment="Cabal Online"

add list=Games address=119.110.87.179 comment="IP Fresh-Ragnarok"

add list=Games address=69.175.20.186 comment="IP RF-Commanders"

add list=Games address=174.37.246.56 comment="IP RF-EQG"

add list=Games address=174.132.16.196 comment="IP RF-POA"

add list=Games address=202.162.207.111 comment="IP Dotta-Nusa"

add list=Games address=69.0.145.160 comment="IP Dota"

add list=Games address=72.172.238.49 comment="IP Dotta"

add list=Games address=202.78.197.18 comment="IP Tantra'

add list=Games address=202.78.197.0/24 comment="IP Drif-city"

add list=Games address=122.144.2.0/24 comment="IP IndoGamers"

add list=Games address=180.178.110.0/24 comment="IP X-Shot"

add list=Games address="64.211.145.89"

add list=Games address="64.211.145.91"

add list=Games address="64.211.145.104"

add list=Games address="64.233.181.97"

add list=Games address="64.233.189.113"

add list=Games address="65.54.82.164"

add list=Games address="65.55.162.26"

add list=Games address="66.220.146.25"

add list=Games address="69.63.181.11"

add list=Games address="69.63.181.16"

add list=Games address="69.63.186.30"

add list=Games address="74.125.153.138"

add list=Games address="75.125.122.98"

add list=Games address="116.12.45.2"

add list=Games address="119.110.77.1"

add list=Games address="119.110.77.2"

add list=Games address="119.110.77.3"

add list=Games address="119.110.77.4"

add list=Games address="119.110.77.5"

add list=Games address="119.110.77.6"

add list=Games address="119.110.77.7"

add list=Games address="119.160.200.173"

add list=Games address="119.160.200.166"

add list=Games address="119.160.200.168"

add list=Games address="122.102.49.0/24"

add list=Games address="122.102.48.0/24"

add list=Games address="122.102.50.0/24"

add list=Games address="122.102.51.0/24"

add list=Games address="122.102.52.0/24"

add list=Games address="122.102.53.0/24"

add list=Games address="122.102.54.0/24"

add list=Games address="122.102.55.0/24"

add list=Games address="122.144.2.38"

add list=Games address="122.144.2.132"

add list=Games address="122.144.2.137"

add list=Games address="125.160.17.181"

add list=Games address="125.160.17.182"

add list=Games address="124.195.18.122"

add list=Games address="125.56.199.10"

add list=Games address="125.56.199.16"

add list=Games address="125.56.199.27"

add list=Games address="125.160.173.26"

add list=Games address="125.163.212.218"

add list=Games address="173.194.0.148"

add list=Games address="202.43.161.117"

add list=Games address="202.43.161.120"

add list=Games address="202.43.161.121"

add list=Games address="202.43.167.70"

add list=Games address="202.43.171.131"

add list=Games address="202.43.171.130"

add list=Games address="202.43.171.133"

add list=Games address="202.43.171.134"

add list=Games address="202.57.118.35"

add list=Games address="202.57.118.54"

add list=Games address="202.58.163.204"

add list=Games address="202.67.15.34"

add list=Games address="202.70.134.34"

add list=Games address="202.70.134.35"

add list=Games address="202.70.134.37"

add list=Games address="202.74.73.98"

add list=Games address="202.78.197.83"

add list=Games address="202.78.197.85"

add list=Games address="202.89.208.61"

add list=Games address="202.93.17.0/24"

add list=Games address="202.93.18.0/24"

add list=Games address="202.93.19.0/24"

add list=Games address="202.93.20.0/24"

add list=Games address="202.93.21.0/24"

add list=Games address="202.93.22.0/24"

add list=Games address="202.93.23.0/24"

add list=Games address="202.93.24.0/24"

add list=Games address="202.93.25.0/24"

add list=Games address="202.93.26.0/24"

add list=Games address="202.93.27.0/24"

add list=Games address="202.93.28.0/24"

add list=Games address="202.93.29.0/24"

add list=Games address="202.93.30.0/24"

add list=Games address="202.93.31.0/24"

add list=Games address="202.162.207.111"

add list=Games address="202.138.226.22"

add list=Games address="202.138.226.19"

add list=Games address="202.149.65.139"

add list=Games address="202.149.65.142"

add list=Games address="202.149.65.160"

add list=Games address="202.93.16.0/24"

add list=Games address="203.77.212.20"

add list=Games address="203.89.146.0/24"

add list=Games address="203.89.147.12"

add list=Games address="203.89.147.13"

add list=Games address="204.2.171.27"

add list=Games address="204.2.171.154"

add list=Games address="204.2.171.97"

add list=Games address="204.2.171.112"

add list=Games address="204.117.211.2"

add list=Games address="204.117.211.3"

add list=Games address="204.117.211.4"

add list=Games address="209.190.9.202"

add list=Games address="209.51.218.170"

add list=Games address="211.43.208.219"

add list=Games address="211.233.43.45"

add list=Games address="212.58.226.79"

add list=Load-Poker address=216.252.121.168 comment="Load-Poker"

add list=Load-Poker address=216.252.121.169

add list=Load-Poker address=216.252.121.178

add list=Load-Poker address=208.43.79.19

add list=Load-Poker address=216.252.121.179

add list=Load-Poker address=184.72.247.138

add list=Load-Poker address=208.85.150.85

add list=Load-Poker address=216.227.212.167

add list=Load-Poker address=68.180.219.146

add list=Load-Poker address=67.228.216.164

add list=Load-Poker address=74.114.14.0/24

add list=Load-Poker address=64.71.138.105

add list=Load-Poker address=62.146.56.166

add list=Load-Poker address=184.105.197.12

add list=Load-Poker address=74.114.13.18

add list=Load-Poker address=74.217.68.204

add list=Load-Poker address=208.88.18.6

add list=Load-Poker address=199.9.252.170

add list=Load-Poker address=72.172.239.168

add list=Load-Poker address=74.114.12.233

add list=Load-Poker address=74.114.12.234

add list=Load-Poker address=199.9.252.172

add list=Load-Poker address=174.129.209.171

add list=Load-Poker address=75.126.250.198

add list=Load-Poker address=199.9.252.173

add list=Load-Poker address=68.180.219.144

add list=Load-Poker address=184.73.219.31

add list=Load-Poker address=174.129.56.62

add list=Load-Poker address=98.136.48.240

add list=Load-Poker address=174.129.190.31

add list=Load-Poker address=97.107.132.179

add list=Load-Poker address=64.127.108.169

add list=Load-Poker address=98.136.48.163

add list=Load-Poker address=74.86.119.18

add list=Load-Poker address=98.136.48.213

add list=Load-Poker address=67.228.216.163

add list=Load-Poker address=98.136.48.243

add list=Load-Poker address=98.136.48.234

add list=Load-Poker address=64.127.108.162

add list=Load-Poker address=202.157.174.20

add list=Load-Poker address=219.96.104.162

add list=Load-Poker address=98.136.48.219

add list=Load-Poker address=98.136.48.221

add list=Load-Poker address=98.136.48.220

add list=Load-Poker address=98.136.48.222

add list=Load-Poker address=98.136.48.235

add list=Load-Poker address=98.136.48.167

add list=Load-Poker address=79.125.7.18

add list=Load-Poker address=79.125.9.4

add list=Load-Poker address=218.213.86.12

add list=Load-Poker address=218.213.86.7

add list=Load-Poker address=98.136.48.212

add list=Load-Poker address=98.136.48.209

add list=Load-Poker address=98.136.48.208

add list=Load-Poker address=98.136.48.214

add list=Load-Poker address=98.136.48.241

add list=Load-Poker address=98.136.48.161

add list=Load-Poker address=98.136.48.215

add list=Load-Poker address=98.136.48.216

add list=Load-Poker address=98.136.48.210

add list=Load-Poker address=98.136.48.238

add list=Load-Poker address=202.78.200.35

add list=Load-Poker address=173.231.142.100

add list=Load-Poker address=98.136.48.236

add list=Load-Poker address=67.228.29.180

add list=Load-Poker address=98.136.48.242

add list=Load-Poker address=98.136.48.160

add list=Load-Poker address=98.136.48.165

add list=Load-Poker address=72.172.224.17

add list=Load-Poker address=72.172.224.11

add list=Load-Poker address=98.136.48.211

add list=Load-Poker address=98.136.48.166

add list=Load-Poker address=98.136.48.232

add list=Load-Poker address=98.136.48.239

add list=Load-Poker address=98.136.48.223

add list=Load-Poker address=98.136.48.237

add list=Load-Poker address=98.136.48.217

add list=Load-Poker address=98.136.48.162

add list=Load-Poker address=64.127.108.168

add list=Load-Poker address=209.20.93.211

add list=Load-Poker address=209.20.77.127

add list=Load-Poker address=174.36.242.26

add list=Load-Poker address=174.37.191.94

add list=Load-Poker address=72.172.239.163

add list=Load-Poker address=69.63.181.105

add list=Load-Poker address=64.127.108.165

add list=Load-Poker address=216.67.249.137

add list=Load-Poker address=173.231.142.101

add list=Load-Poker address=184.72.233.87

add list=Load-Poker address=72.172.239.164

add list=Load-Poker address=74.53.7.203

add list=Load-Poker address=184.72.58.19

add list=Load-Poker address=69.164.217.106

add list=Load-Poker address=74.86.120.196

add list=Load-Poker address=212.72.60.32

add list=Load-Poker address=74.53.22.42

add list=Load-Poker address=128.242.240.212

add list=Load-Poker address=128.242.240.148

add list=Load-Poker address=72.35.71.168

add list=Load-Poker address=74.86.120.195

add list=Load-Poker address=67.228.132.167

add list=Load-Poker address=64.236.111.28

add list=Load-Poker address=174.36.242.42

add list=Load-Poker address=72.172.232.90

add list=Load-Poker address=222.124.196.0/24

add list=Load-Poker address=72.37.153.226

add list=Load-Poker address=67.228.132.166

add list=Load-Poker address=67.228.132.169

add list=Load-Poker address=72.172.224.16

add list=Load-Poker address=209.20.84.182

add list=Load-Poker address=67.228.132.170

add list=Load-Poker address=128.242.245.148

add list=Load-Poker address=74.53.7.199

add list=Load-Poker address=72.172.224.13

add list=Load-Poker address=72.172.239.162

add list=Load-Poker address=72.172.224.9

add list=Load-Poker address=208.85.93.166

add list=Load-Poker address=208.85.93.165

add list=Load-Poker address=67.228.132.171

add list=Load-Poker address=75.101.154.77

add list=Load-Poker address=67.228.216.162

add list=Load-Poker address=174.36.242.34

add list=Load-Poker address=184.72.223.245

add list=Load-Poker address=174.120.49.154

add list=Load-Poker address=184.75.160.202



IP FIREWALL MANGLE :

/ip fi ma



PROXY-HIT

add chain=forward action=mark-connection new-connection-mark=HIT-conn passthrough=yes protocol=tcp \

in-interface=Proxy out-interface=LAN src-port=80,81,8081,8080,3128 dscp=12 comment="PROXY-HIT"

add chain=forward action=mark-packet new-packet-mark=PKT-HIT passthrough=no protocol=tcp in-interface=Proxy \

out-interface=LAN src-port=80,81,8081,8080,3128 connection-mark=HIT-conn



CRITICAL

add chain=postrouting action=change-dscp new-dscp=1 passthrough=yes protocol=icmp

add chain=postrouting action=change-dscp new-dscp=1 passthrough=yes protocol=udp dst-port=53

add chain=postrouting action=change-dscp new-dscp=1 passthrough=yes protocol=tcp dst-port=53

add chain=postrouting action=mark-connection new-connection-mark=critical-conn \

passthrough=yes dscp=1

add chain=postrouting action=mark-packet new-packet-mark=critical-pkt passthrough=no \

connection-mark=critical-conn



YAHOO

add chain=prerouting action=mark-connection new-connection-mark=yahoo-conn passthrough=yes \

protocol=tcp dst-port=5000-5010,5050,5100,8001,8002

add chain=prerouting action=mark-packet new-packet-mark=yahoo-pkt passthrough=no \

connection-mark=yahoo-conn



FB+GAME

add chain=prerouting action=mark-connection new-connection-mark=fb-conn passthrough=yes protocol=tcp \

src-address-list=LAN-NeT dst-address-list=Load-Poker dst-port=843,9339

add chain=prerouting action=mark-packet new-packet-mark=fb-pkt passthrough=no connection-mark=fb-conn



GEMSCOOL

add chain=prerouting action=mark-connection new-connection-mark=game-conn passthrough=yes protocol=tcp \

src-address-list=LAN-NeT dst-address-list=Games \

dst-port=39190,49100,5300,10001,14009-14010,15100,15101,16052,16073 comment="PORT GEMSCOOL"

add chain=prerouting action=mark-connection new-connection-mark=game-conn passthrough=yes protocol=udp \

src-address-list=LAN-NeT dst-address-list=Games dst-port=14010,40000-40005

add chain=prerouting action=mark-packet new-packet-mark=game-pkt passthrough=no connection-mark=game-conn \



LYTOGAME

add chain=prerouting action=mark-connection new-connection-mark=game-conn passthrough=yes protocol=tcp \

src-address-list=LAN-NeT dst-address-list=Games \

dst-port=9110,13008,13413,16666,17730,17745,20570,27780,36430,48871,49309,56527,63919,64507 \

comment="PORT LYTOGAME"

add chain=prerouting action=mark-connection new-connection-mark=game-conn passthrough=yes protocol=udp \

dst-port=12020-12080,13000-13080,17001

add chain=prerouting action=mark-packet new-packet-mark=game-pkt passthrough=no connection-mark=game-conn



MEGAXUS

add chain=prerouting action=mark-connection new-connection-mark=game-conn passthrough=yes protocol=tcp \

src-address-list=LAN-NeT dst-address-list=Games dst-port=4403,4410,8401,8406,18900,31719,46113,7777 \

comment="PORT MEGAXUS"

add chain=prerouting action=mark-connection new-connection-mark=game-conn passthrough=yes protocol=udp \

dst-port=21850,21891

add chain=prerouting action=mark-packet new-packet-mark=game-pkt passthrough=no connection-mark=game-conn



ALL GAME

add chain=prerouting action=mark-connection new-connection-mark=game-conn passthrough=yes protocol=tcp \

dst-port=1818,2001,4062,5340-5352,6000-6152,6214,7341-7350,7451,9376-9377,15001,15002 \

comment="PORT ALL GAME"

add chain=prerouting action=mark-connection new-connection-mark=game-conn passthrough=yes protocol=udp \

dst-port=1949,6100-6152,9600-9602,7777-7977,11100-11125,11440-11460,30000,42051-42052

add chain=prerouting action=mark-packet new-packet-mark=game-pkt passthrough=no connection-mark=game-conn



REALTIME

add chain=prerouting action=mark-connection new-connection-mark=realtime-conn passthrough=yes protocol=tcp \

dst-port=22,179,110,161 comment="REALTIME CONN"

add chain=prerouting action=mark-connection new-connection-mark=realtime-conn passthrough=yes protocol=udp \

dst-port=123

add chain=forward action=mark-packet new-packet-mark=realtime-pkt passthrough=no connection-mark=realtime-conn



CACHE-MISS

add chain=forward action=mark-connection new-connection-mark=HIT-LOSS passthrough=yes protocol=tcp \

in-interface=Proxy out-interface=LAN src-port=3128 packet-mark=no-mark comment="CACHE-MISS"



PROXY-SSH

add chain=prerouting action=mark-connection new-connection-mark=ssh-conn passthrough=yes protocol=tcp \

src-port=22 comment="PROXY-SSH"

add chain=forward action=mark-packet new-packet-mark=ssh-pkt passthrough=no protocol=tcp src-port=22 \

connection-mark=ssh-conn





BW-MANAGEMENT CONN FOR CLIENT :

add chain=prerouting action=mark-connection new-connection-mark=PC-OP passthrough=yes src-address=192.168.1.2 \

comment="BW-MANAGEMENT CONN FOR CLIENT"

add chain=prerouting action=mark-connection new-connection-mark=CLIENT-01 passthrough=yes packet-mark=!PKT-HIT connection-mark=!HIT-conn src-address=192.168.1.3

add chain=prerouting action=mark-connection new-connection-mark=CLIENT-02 passthrough=yes packet-mark=!PKT-HIT connection-mark=!HIT-conn src-address=192.168.1.4

add chain=prerouting action=mark-connection new-connection-mark=CLIENT-03 passthrough=yes packet-mark=!PKT-HIT connection-mark=!HIT-conn src-address=192.168.1.5

add chain=prerouting action=mark-connection new-connection-mark=CLIENT-04 passthrough=yes packet-mark=!PKT-HIT connection-mark=!HIT-conn src-address=192.168.1.6

add chain=prerouting action=mark-connection new-connection-mark=CLIENT-05 passthrough=yes packet-mark=!PKT-HIT connection-mark=!HIT-conn src-address=192.168.1.7

add chain=prerouting action=mark-connection new-connection-mark=CLIENT-06 passthrough=yes packet-mark=!PKT-HIT connection-mark=!HIT-conn src-address=192.168.1.8

add chain=prerouting action=mark-connection new-connection-mark=CLIENT-07 passthrough=yes packet-mark=!PKT-HIT connection-mark=!HIT-conn src-address=192.168.1.9

add chain=prerouting action=mark-connection new-connection-mark=CLIENT-08 passthrough=yes packet-mark=!PKT-HIT connection-mark=!HIT-conn src-address=192.168.1.10

add chain=prerouting action=mark-connection new-connection-mark=CLIENT-09 passthrough=yes packet-mark=!PKT-HIT connection-mark=!HIT-conn src-address=192.168.1.11



BW-MANAGEMENT PACKET FOR CLIENT :

add chain=prerouting action=mark-packet new-packet-mark=PC-OP passthrough=no connection-mark=PC-OP \

comment="BW-MANAGEMENT PACKET FOR CLIENT"

add chain=prerouting action=mark-packet new-packet-mark=CLIENT-01 passthrough=no connection-mark=CLIENT-01

add chain=prerouting action=mark-packet new-packet-mark=CLIENT-02 passthrough=no connection-mark=CLIENT-02

add chain=prerouting action=mark-packet new-packet-mark=CLIENT-03 passthrough=no connection-mark=CLIENT-03

add chain=prerouting action=mark-packet new-packet-mark=CLIENT-04 passthrough=no connection-mark=CLIENT-04

add chain=prerouting action=mark-packet new-packet-mark=CLIENT-05 passthrough=no connection-mark=CLIENT-05

add chain=prerouting action=mark-packet new-packet-mark=CLIENT-06 passthrough=no connection-mark=CLIENT-06

add chain=prerouting action=mark-packet new-packet-mark=CLIENT-07 passthrough=no connection-mark=CLIENT-07

add chain=prerouting action=mark-packet new-packet-mark=CLIENT-08 passthrough=no connection-mark=CLIENT-08

add chain=prerouting action=mark-packet new-packet-mark=CLIENT-09 passthrough=no connection-mark=CLIENT-09

add chain=prerouting action=mark-packet new-packet-mark=CLIENT-10 passthrough=no connection-mark=CLIENT-10

add chain=prerouting action=mark-packet new-packet-mark=CLIENT-11 passthrough=no connection-mark=CLIENT-11



QUEUE TYPE

/que ty



add name="PCQ-1Mbps" kind=pcq pcq-rate=1024k pcq-limit=50 pcq-classifier=dst-address pcq-total-limit=2000 \

pcq-burst-rate=0 pcq-burst-threshold=0 pcq-burst-time=10s pcq-src-address-mask=32 pcq-dst-address-mask=32 \

pcq-src-address6-mask=128 pcq-dst-address6-mask=128



add name="PCQ-1Mbps-UP" kind=pcq pcq-rate=1024k pcq-limit=50 pcq-classifier=src-address pcq-total-limit=2000 \

pcq-burst-rate=0 pcq-burst-threshold=0 pcq-burst-time=10s pcq-src-address-mask=32 pcq-dst-address-mask=32 \

pcq-src-address6-mask=128 pcq-dst-address6-mask=128



add name="HIT" kind=pcq pcq-rate=0 pcq-limit=50 pcq-classifier=dst-address pcq-total-limit=2000 pcq-burst-rate=0 \

pcq-burst-threshold=0 pcq-burst-time=10s pcq-src-address-mask=32 pcq-dst-address-mask=32 \

pcq-src-address6-mask=128 pcq-dst-address6-mask=128



add name="Yahoo" kind=pcq pcq-rate=0 pcq-limit=50 pcq-classifier=dst-address pcq-total-limit=2000 pcq-burst-rate=0 \

pcq-burst-threshold=0 pcq-burst-time=10s pcq-src-address-mask=32 pcq-dst-address-mask=32 \

pcq-src-address6-mask=128 pcq-dst-address6-mask=128



add name="FBgame" kind=pcq pcq-rate=512k pcq-limit=50 pcq-classifier=dst-address pcq-total-limit=2000 \

pcq-burst-rate=0 pcq-burst-threshold=0 pcq-burst-time=10s pcq-src-address-mask=32 pcq-dst-address-mask=32 \

pcq-src-address6-mask=128 pcq-dst-address6-mask=128



add name="GAME" kind=pcq pcq-rate=1024k pcq-limit=50 pcq-classifier=dst-address pcq-total-limit=2000 \

pcq-burst-rate=0 pcq-burst-threshold=0 pcq-burst-time=10s pcq-src-address-mask=32 pcq-dst-address-mask=32 \

pcq-src-address6-mask=128 pcq-dst-address6-mask=128



add name="critical" kind=pfifo pfifo-limit=50



QUEUE TREE

/que tr



add name="00. HIT" parent=global-out packet-mark=PKT-HIT limit-at=0 queue=HIT \

priority=1 max-limit=0 burst-limit=0 burst-threshold=0 burst-time=0s

add name="01. YAHOO" parent=global-out packet-mark=yahoo-pkt limit-at=32k \

queue=Yahoo priority=8 max-limit=128k burst-limit=0 burst-threshold=0 burst-time=0s

add name="02. FB+GAME" parent=global-out packet-mark=fb-pkt limit-at=100k \

queue=FBgame priority=5 max-limit=512k burst-limit=0 burst-threshold=0 burst-time=0s

add name="03. GAME ONLINE" parent=LAN packet-mark=game-pkt limit-at=128k \

queue=GAME priority=1 max-limit=1024k burst-limit=0 burst-threshold=0 burst-time=0s

add name="04. CRITICAL" parent=pppoe-speedy1 packet-mark=critical-pkt \

limit-at=64k queue=critical priority=1 max-limit=256k burst-limit=0 \

burst-threshold=0 burst-time=0s

add name="05. REALTIME" parent=global-out packet-mark=realtime-pkt \

limit-at=64k queue=critical-down priority=4 max-limit=256k burst-limit=0 \

burst-threshold=0 burst-time=0s

add name="06. PROXY SSH" parent=global-out packet-mark=ssh-pkt limit-at=256k \

queue=wireless-default priority=5 max-limit=6144k burst-limit=0 \

burst-threshold=0 burst-time=0s



add name="1. DOWNLINK" parent=global-out limit-at=0 priority=8 max-limit=1024k\

burst-limit=0 burst-threshold=0 burst-time=0s

add name="000. PC-OP" parent="01. DOWNLINK" packet-mark=PC-OP limit-at=165k queue=PCQ-1Mbps priority=8 max-limit=256k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="01. CLIENT-01" parent="01. DOWNLINK" packet-mark=CLIENT-01 limit-at=165k queue=PCQ-1Mbps priority=8 max-limit=256k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="02. CLIENT-02" parent="01. DOWNLINK" packet-mark=CLIENT-02 limit-at=165k queue=PCQ-1Mbps priority=8 max-limit=256k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="03. CLIENT-03" parent="01. DOWNLINK" packet-mark=CLIENT-03 limit-at=165k queue=PCQ-1Mbps priority=8 max-limit=256k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="04. CLIENT-04" parent="01. DOWNLINK" packet-mark=CLIENT-04 limit-at=165k queue=PCQ-1Mbps priority=8 max-limit=256k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="05. CLIENT-05" parent="01. DOWNLINK" packet-mark=CLIENT-05 limit-at=165k queue=PCQ-1Mbps priority=8 max-limit=256k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="06. CLIENT-06" parent="01. DOWNLINK" packet-mark=CLIENT-06 limit-at=165k queue=PCQ-1Mbps priority=8 max-limit=256k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="07. CLIENT-07" parent="01. DOWNLINK" packet-mark=CLIENT-07 limit-at=165k queue=PCQ-1Mbps priority=8 max-limit=256k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="08. CLIENT-08" parent="01. DOWNLINK" packet-mark=CLIENT-08 limit-at=165k queue=PCQ-1Mbps priority=8 max-limit=256k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="09. CLIENT-09" parent="01. DOWNLINK" packet-mark=CLIENT-09 limit-at=165k queue=PCQ-1Mbps priority=8 max-limit=256k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="10. CLIENT-10" parent="01. DOWNLINK" packet-mark=CLIENT-10 limit-at=165k queue=PCQ-1Mbps priority=8 max-limit=256k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="11. CLIENT-11" parent="01. DOWNLINK" packet-mark=CLIENT-11 limit-at=165k queue=PCQ-1Mbps priority=8 max-limit=256k \

burst-limit=0 burst-threshold=0 burst-time=0s



add name="2. UPLINK" parent=global-in limit-at=0 priority=8 max-limit=0 \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="000. PC-OP-up" parent="02. UPLINK" packet-mark=PC-OP limit-at=64k queue=PCQ-1Mbps-UP priority=8 max-limit=200k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="01. CLIENT-01-up" parent="02. UPLINK" packet-mark=CLIENT-01 limit-at=64k queue=PCQ-1Mbps-UP priority=8 max-limit=128k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="02. CLIENT-02-up" parent="02. UPLINK" packet-mark=CLIENT-02 limit-at=64k queue=PCQ-1Mbps-UP priority=8 max-limit=128k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="03. CLIENT-03-up" parent="02. UPLINK" packet-mark=CLIENT-03 limit-at=64k queue=PCQ-1Mbps-UP priority=8 max-limit=128k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="04. CLIENT-04-up" parent="02. UPLINK" packet-mark=CLIENT-04 limit-at=64k queue=PCQ-1Mbps-UP priority=8 max-limit=128k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="05. CLIENT-05-up" parent="02. UPLINK" packet-mark=CLIENT-05 limit-at=64k queue=PCQ-1Mbps-UP priority=8 max-limit=128k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="06. CLIENT-06-up" parent="02. UPLINK" packet-mark=CLIENT-06 limit-at=64k queue=PCQ-1Mbps-UP priority=8 max-limit=128k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="07. CLIENT-07-up" parent="02. UPLINK" packet-mark=CLIENT-07 limit-at=64k queue=PCQ-1Mbps-UP priority=8 max-limit=128k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="08. CLIENT-08-up" parent="02. UPLINK" packet-mark=CLIENT-08 limit-at=64k queue=PCQ-1Mbps-UP priority=8 max-limit=128k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="09. CLIENT-09-up" parent="02. UPLINK" packet-mark=CLIENT-09 limit-at=64k queue=PCQ-1Mbps-UP priority=8 max-limit=128k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="10. CLIENT-10-up" parent="02. UPLINK" packet-mark=CLIENT-10 limit-at=64k queue=PCQ-1Mbps-UP priority=8 max-limit=128k \

burst-limit=0 burst-threshold=0 burst-time=0s

add name="11. CLIENT-11-up" parent="02. UPLINK" packet-mark=CLIENT-11 limit-at=64k queue=PCQ-1Mbps-UP priority=8 max-limit=128k \

burst-limit=0 burst-threshold=0 burst-time=0s

IP FIREWALL FILTER RULES :
Blok Virus And Malware Diperhatikan
/ip fi fi
add chain=forward src-address=0.0.0.0/8 action=drop comment="Block Bogus IP Address" disabled=no

add chain=forward dst-address=0.0.0.0/8 action=drop comment="" disabled=no

add chain=forward src-address=127.0.0.0/8 action=drop comment="" disabled=no

add chain=forward dst-address=127.0.0.0/8 action=drop comment="" disabled=no

add chain=forward src-address=224.0.0.0/3 action=drop comment="" disabled=no

add chain=forward dst-address=224.0.0.0/3 action=drop comment="" disabled=no

add chain=input protocol=tcp dst-port=22 src-address-list=ssh_blacklistaction=drop comment="Drop SSH brute forcers" disabled=no

add chain=input protocol=tcp dst-port=22 connection-state=newsrc-address-list=ssh_stage3 action=add-src-to-address-listaddress-list=ssh_blacklist address-list-timeout=1w3d comment="" disabled=no

add chain=input protocol=tcp dst-port=22 connection-state=newsrc-address-list=ssh_stage2 action=add-src-to-address-listaddress-list=ssh_stage3 address-list-timeout=1m comment="" disabled=no

add chain=input protocol=tcp dst-port=22 connection-state=newsrc-address-list=ssh_stage1 action=add-src-to-address-listaddress-list=ssh_stage2 address-list-timeout=1m comment="" disabled=no

add chain=input protocol=tcp dst-port=22 connection-state=newaction=add-src-to-address-list address-list=ssh_stage1address-list-timeout=1m comment="" disabled=no

add chain=input protocol=tcp psd=21,3s,3,1 action=add-src-to-address-listaddress-list="port scanners" address-list-timeout=2w comment="Port Scanners to list " disabled=no

add chain=input protocol=tcp tcp-flags=fin,!syn,!rst,!psh,!ack,!urgaction=add-src-to-address-list address-list="port scanners"address-list-timeout=2w comment="" disabled=no

add chain=input protocol=tcp tcp-flags=fin,syn action=add-src-to-address-listaddress-list="port scanners" address-list-timeout=2w comment=""disabled=no

add chain=input protocol=tcp tcp-flags=syn,rst action=add-src-to-address-listaddress-list="port scanners" address-list-timeout=2w comment=""disabled=no

add chain=input protocol=tcp tcp-flags=fin,psh,urg,!syn,!rst,!ackaction=add-src-to-address-list address-list="port scanners"address-list-timeout=2w comment="" disabled=no

add chain=input protocol=tcp tcp-flags=fin,syn,rst,psh,ack,urgaction=add-src-to-address-list address-list="port scanners"address-list-timeout=2w comment="" disabled=no

add chain=input protocol=tcp tcp-flags=!fin,!syn,!rst,!psh,!ack,!urgaction=add-src-to-address-list address-list="port scanners"address-list-timeout=2w comment="" disabled=no

add chain=input src-address-list="port scanners" action=drop comment=""disabled=no

add chain=input protocol=tcp dst-port=21 src-address-list=ftp_blacklistaction=drop comment="Filter FTP to Box" disabled=no

add chain=output protocol=tcp content="530 Login incorrect"dst-limit=1/1m,9,dst-address/1m action=accept comment="" disabled=no

add chain=output protocol=tcp content="530 Login incorrect"action=add-dst-to-address-list address-list=ftp_blacklistaddress-list-timeout=3h comment="" disabled=no

add chain=forward protocol=tcp action=jump jump-target=tcp comment="Separate Protocol into Chains" disabled=no

add chain=forward protocol=udp action=jump jump-target=udp comment=""disabled=no

add chain=forward protocol=icmp action=jump jump-target=icmp comment=""disabled=no

add chain=udp protocol=udp dst-port=69 action=drop comment="Blocking UDP Packet" disabled=no

add chain=udp protocol=udp dst-port=111 action=drop comment="" disabled=no

add chain=udp protocol=udp dst-port=135 action=drop comment="" disabled=no

add chain=udp protocol=udp dst-port=137-139 action=drop comment="" disabled=no

add chain=udp protocol=udp dst-port=2049 action=drop comment="" disabled=no

add chain=udp protocol=udp dst-port=3133 action=drop comment="" disabled=no

add chain=tcp protocol=tcp dst-port=69 action=drop comment="Bloking TCP Packet" disabled=no

add chain=tcp protocol=tcp dst-port=111 action=drop comment="" disabled=no

add chain=tcp protocol=tcp dst-port=119 action=drop comment="" disabled=no

add chain=tcp protocol=tcp dst-port=135 action=drop comment="" disabled=no

add chain=tcp protocol=tcp dst-port=137-139 action=drop comment="" disabled=no

add chain=tcp protocol=tcp dst-port=445 action=drop comment="" disabled=no

add chain=tcp protocol=tcp dst-port=2049 action=drop comment="" disabled=no

add chain=tcp protocol=tcp dst-port=12345-12346 action=drop comment=""disabled=no

add chain=tcp protocol=tcp dst-port=20034 action=drop comment="" disabled=no

add chain=tcp protocol=tcp dst-port=3133 action=drop comment="" disabled=no

add chain=tcp protocol=tcp dst-port=67-68 action=drop comment="" disabled=no

add chain=icmp protocol=icmp icmp-options=0:0-255 limit=5,5 action=acceptcomment="Limited Ping Flood" disabled=no

add chain=icmp protocol=icmp icmp-options=3:3 limit=5,5 action=acceptcomment="" disabled=no

add chain=icmp protocol=icmp icmp-options=3:4 limit=5,5 action=acceptcomment="" disabled=no

add chain=icmp protocol=icmp icmp-options=8:0-255 limit=5,5 action=acceptcomment="" disabled=no

add chain=icmp protocol=icmp icmp-options=11:0-255 limit=5,5 action=acceptcomment="" disabled=no

add chain=icmp protocol=icmp action=drop comment="" disabled=no

add chain=input dst-address-type=broadcast action=accept comment="Allow Broadcast Traffic" disabled=no

add chain=input connection-state=established action=accept comment="Connection State" disabled=no

add chain=input connection-state=related action=accept comment="" disabled=no

add chain=input connection-state=invalid action=drop comment="" disabled=no

add chain=virus protocol=udp action=drop dst-port=1 comment="Sockets des Troie"

add chain=virus protocol=tcp action=drop dst-port=2 comment="Death"

add chain=virus protocol=tcp action=drop dst-port=20 comment="Senna Spy FTP server"

add chain=virus protocol=tcp action=drop dst-port=21 comment="Back Construction, Blade Runner, Cattivik FTP Server, CC Invader, Dark FTP, Doly Trojan, Fore, Invisible FTP, Juggernaut 42, Larva, MotIv FTP, Net Administrator, Ramen, Senna Spy FTP server, The Flu, Traitor 21, WebEx, WinCrash"

add chain=virus protocol=tcp action=drop dst-port=22 comment="Shaft"

add chain=virus protocol=tcp action=drop dst-port=23 comment="Fire HacKer, Tiny Telnet Server TTS, Truva Atl"

add chain=virus protocol=tcp action=drop dst-port=25 comment="Ajan, Antigen, Barok, Email Password Sender EPS, EPS II, Gip, Gris, Happy99, Hpteam mail, Hybris, I love you, Kuang2, Magic Horse, MBT Mail Bombing Trojan, Moscow Email trojan, Naebi, NewApt worm, ProMail trojan, Shtirlitz, Stealth, Tapiras, Terminator, WinPC, WinSpy"

add chain=virus protocol=tcp action=drop dst-port=30 comment="Agent 40421"

add chain=virus protocol=tcp action=drop dst-port=31 comment="Agent 31, Hackers Paradise, Masters Paradise"

add chain=virus protocol=tcp action=drop dst-port=41 comment="Deep Throat, Foreplay"

add chain=virus protocol=tcp action=drop dst-port=48 comment="DRAT"

add chain=virus protocol=tcp action=drop dst-port=50 comment="DRAT"

add chain=virus protocol=tcp action=drop dst-port=58 comment="DMSetup"

add chain=virus protocol=tcp action=drop dst-port=59 comment="DMSetup"

add chain=virus protocol=tcp action=drop dst-port=79 comment="CDK, Firehotcker"

add chain=virus protocol=tcp action=drop dst-port=80 comment="711 trojan, Seven Eleven, AckCmd, Back End, Back Orifice 2000 Plug-Ins, Cafeini, CGI Backdoor, Executor, God Message, God Message Creator, Hooker, IISworm, MTX, NCX, Reverse WWW Tunnel Backdoor, RingZero, Seeker, WAN Remote, Web Server CT, WebDownloader"

add chain=virus protocol=tcp action=drop dst-port=81 comment="RemoConChubo"

add chain=virus protocol=tcp action=drop dst-port=99 comment="Hidden Port, NCX"

add chain=virus protocol=tcp action=drop dst-port=110 comment="ProMail trojan"

add chain=virus protocol=tcp action=drop dst-port=113 comment="Invisible Identd Deamon, Kazimas"

add chain=virus protocol=tcp action=drop dst-port=119 comment="Happy99"

add chain=virus protocol=tcp action=drop dst-port=121 comment="Attack Bot, God Message, JammerKillah"

add chain=virus protocol=tcp action=drop dst-port=123 comment="Net Controller"

add chain=virus protocol=tcp action=drop dst-port=133 comment="Farnaz"

add chain=virus protocol=tcp action=drop dst-port=135-139 comment="Blaster worm"

add chain=virus protocol=udp action=drop dst-port=135-139 comment="messenger worm"

add chain=virus protocol=tcp action=drop dst-port=142 comment="NetTaxi"

add chain=virus protocol=tcp action=drop dst-port=146 comment="Infector"

add chain=virus protocol=udp action=drop dst-port=146 comment="Infector"

add chain=virus protocol=tcp action=drop dst-port=170 comment="A-trojan"

add chain=virus protocol=tcp action=drop dst-port=334 comment="Backage"

add chain=virus protocol=tcp action=drop dst-port=411 comment="Backage"

add chain=virus protocol=tcp action=drop dst-port=420 comment="Breach, Incognito"

add chain=virus protocol=tcp action=drop dst-port=421 comment="TCP Wrappers trojan"

add chain=virus protocol=tcp action=drop dst-port=445 comment="Blaster worm"

add chain=virus protocol=udp action=drop dst-port=445 comment="Blaster worm"

add chain=virus protocol=tcp action=drop dst-port=455 comment="Fatal Connections"

add chain=virus protocol=tcp action=drop dst-port=456 comment="Hackers Paradise"

add chain=virus protocol=tcp action=drop dst-port=513 comment="Grlogin"

add chain=virus protocol=tcp action=drop dst-port=514 comment="RPC Backdoor"

add chain=virus protocol=tcp action=drop dst-port=531 comment="Net666, Rasmin"

add chain=virus protocol=tcp action=drop dst-port=555 comment="711 trojan, Seven Eleven, Ini-Killer, Net Administrator, Phase Zero, Phase-0, Stealth Spy"

add chain=virus protocol=tcp action=drop dst-port=605 comment="Secret Service"

add chain=virus protocol=tcp action=drop dst-port=666 comment="Attack FTP, Back Construction, BLA trojan, Cain & Abel, NokNok, Satans Back Door SBD, ServU, Shadow Phyre, th3r1pp3rz Therippers"

add chain=virus protocol=tcp action=drop dst-port=667 comment="SniperNet"

add chain=virus protocol=tcp action=drop dst-port=669 comment="DP trojan"

add chain=virus protocol=tcp action=drop dst-port=692 comment="GayOL"

add chain=virus protocol=tcp action=drop dst-port=777 comment="AimSpy, Undetected"

add chain=virus protocol=tcp action=drop dst-port=808 comment="WinHole"

add chain=virus protocol=tcp action=drop dst-port=911 comment="Dark Shadow"

add chain=virus protocol=tcp action=drop dst-port=999 comment="Deep Throat, Foreplay, WinSatan"

add chain=virus protocol=tcp action=drop dst-port=1000 comment="Der Spaeher, Direct Connection"

add chain=virus protocol=tcp action=drop dst-port=1001 comment="Der Spaeher, Le Guardien, Silencer, WebEx"

add chain=virus protocol=tcp action=drop dst-port=1010-1016 comment="Doly Trojan"

add chain=virus protocol=tcp action=drop dst-port=1020 comment="Vampire"

add chain=virus protocol=tcp action=drop dst-port=1024 comment="Jade, Latinus, NetSpy"

add chain=virus protocol=tcp action=drop dst-port=1025 comment="Remote Storm"

add chain=virus protocol=udp action=drop dst-port=1025 comment="Remote Storm"

add chain=virus protocol=tcp action=drop dst-port=1035 comment="Multidropper"

add chain=virus protocol=tcp action=drop dst-port=1042 comment="BLA trojan"

add chain=virus protocol=tcp action=drop dst-port=1045 comment="Rasmin"

add chain=virus protocol=tcp action=drop dst-port=1049 comment="sbin initd"

add chain=virus protocol=tcp action=drop dst-port=1050 comment="MiniCommand"

add chain=virus protocol=tcp action=drop dst-port=1053 comment="The Thief"

add chain=virus protocol=tcp action=drop dst-port=1054 comment="AckCmd"

add chain=virus protocol=tcp action=drop dst-port=1080-1083 comment="WinHole"

add chain=virus protocol=tcp action=drop dst-port=1090 comment="Xtreme"

add chain=virus protocol=tcp action=drop dst-port=1095-1098 comment="Remote Administration Tool RAT"

add chain=virus protocol=tcp action=drop dst-port=1099 comment="Blood Fest Evolution, Remote Administration Tool RAT"

add chain=virus protocol=tcp action=drop dst-port=1150-1151 comment="Orion"

add chain=virus protocol=tcp action=drop dst-port=1170 comment="Psyber Stream Server PSS, Streaming Audio Server, Voice"

add chain=virus protocol=udp action=drop dst-port=1200-1201 comment="NoBackO"

add chain=virus protocol=tcp action=drop dst-port=1207 comment="SoftWAR"

add chain=virus protocol=tcp action=drop dst-port=1208 comment="Infector"

add chain=virus protocol=tcp action=drop dst-port=1212 comment="Kaos"

add chain=virus protocol=tcp action=drop dst-port=1234 comment="SubSeven Java client, Ultors Trojan"

add chain=virus protocol=tcp action=drop dst-port=1243 comment="BackDoor-G, SubSeven, SubSeven Apocalypse, Tiles"

add chain=virus protocol=tcp action=drop dst-port=1245 comment="VooDoo Doll"

add chain=virus protocol=tcp action=drop dst-port=1255 comment="Scarab"

add chain=virus protocol=tcp action=drop dst-port=1256 comment="Project nEXT"

add chain=virus protocol=tcp action=drop dst-port=1269 comment="Matrix"

add chain=virus protocol=tcp action=drop dst-port=1272 comment="The Matrix"

add chain=virus protocol=tcp action=drop dst-port=1313 comment="NETrojan"

add chain=virus protocol=tcp action=drop dst-port=1338 comment="Millenium Worm"

add chain=virus protocol=tcp action=drop dst-port=1349 comment="Bo dll"

add chain=virus protocol=tcp action=drop dst-port=1394 comment="GoFriller, Backdoor G-1"

add chain=virus protocol=tcp action=drop dst-port=1441 comment="Remote Storm"

add chain=virus protocol=tcp action=drop dst-port=1492 comment="FTP99CMP"

add chain=virus protocol=tcp action=drop dst-port=1524 comment="Trinoo"

add chain=virus protocol=tcp action=drop dst-port=1568 comment="Remote Hack"

add chain=virus protocol=tcp action=drop dst-port=1600 comment="Direct Connection, Shivka-Burka"

add chain=virus protocol=tcp action=drop dst-port=1703 comment="Exploiter"

add chain=virus protocol=tcp action=drop dst-port=1777 comment="Scarab"

add chain=virus protocol=tcp action=drop dst-port=1807 comment="SpySender"

add chain=virus protocol=tcp action=drop dst-port=1966 comment="Fake FTP"

add chain=virus protocol=tcp action=drop dst-port=1967 comment="WM FTP Server"

add chain=virus protocol=tcp action=drop dst-port=1969 comment="OpC BO"

add chain=virus protocol=tcp action=drop dst-port=1981 comment="Bowl, Shockrave"

add chain=virus protocol=tcp action=drop dst-port=1999 comment="Back Door, SubSeven, TransScout"

add chain=virus protocol=tcp action=drop dst-port=2000 comment="Der Spaeher, Insane Network, Last 2000, Remote Explorer 2000, Senna Spy Trojan Generator"

add chain=virus protocol=tcp action=drop dst-port=2001 comment="Der Spaeher, Trojan Cow"

add chain=virus protocol=tcp action=drop dst-port=2023 comment="Ripper Pro"

add chain=virus protocol=tcp action=drop dst-port=2080 comment="WinHole"

add chain=virus protocol=tcp action=drop dst-port=2115 comment="Bugs"

add chain=virus protocol=udp action=drop dst-port=2130 comment="Mini Backlash"

add chain=virus protocol=tcp action=drop dst-port=2140 comment="The Invasor"

add chain=virus protocol=udp action=drop dst-port=2140 comment="Deep Throat, Foreplay"

add chain=virus protocol=tcp action=drop dst-port=2155 comment="Illusion Mailer"

add chain=virus protocol=tcp action=drop dst-port=2255 comment="Nirvana"

add chain=virus protocol=tcp action=drop dst-port=2283 comment="Hvl RAT"

add chain=virus protocol=tcp action=drop dst-port=2300 comment="Xplorer"

add chain=virus protocol=tcp action=drop dst-port=2311 comment="Studio 54"

add chain=virus protocol=tcp action=drop dst-port=2330-2339 comment="Contact"

add chain=virus protocol=udp action=drop dst-port=2339 comment="Voice Spy"

add chain=virus protocol=tcp action=drop dst-port=2345 comment="Doly Trojan"

add chain=virus protocol=tcp action=drop dst-port=2565 comment="Striker trojan"

add chain=virus protocol=tcp action=drop dst-port=2583 comment="WinCrash"

add chain=virus protocol=tcp action=drop dst-port=2600 comment="Digital RootBeer"

add chain=virus protocol=tcp action=drop dst-port=2716 comment="The Prayer"

add chain=virus protocol=tcp action=drop dst-port=2773-2774 comment="SubSeven, SubSeven 2.1 Gold"

add chain=virus protocol=tcp action=drop dst-port=2801 comment="Phineas Phucker"

add chain=virus protocol=udp action=drop dst-port=2989 comment="Remote Administration Tool RAT"

add chain=virus protocol=tcp action=drop dst-port=3000 comment="Remote Shut"

add chain=virus protocol=tcp action=drop dst-port=3024 comment="WinCrash"

add chain=virus protocol=tcp action=drop dst-port=3031 comment="Microspy"

add chain=virus protocol=tcp action=drop dst-port=3128 comment="Reverse WWW Tunnel Backdoor, RingZero"

add chain=virus protocol=tcp action=drop dst-port=3129 comment="Masters Paradise"

add chain=virus protocol=tcp action=drop dst-port=3150 comment="The Invasor"

add chain=virus protocol=udp action=drop dst-port=3150 comment="Deep Throat, Foreplay, Mini Backlash"

add chain=virus protocol=tcp action=drop dst-port=3456 comment="Terror trojan"

add chain=virus protocol=tcp action=drop dst-port=3459 comment="Eclipse 2000, Sanctuary"

add chain=virus protocol=tcp action=drop dst-port=3700 comment="Portal of Doom"

add chain=virus protocol=tcp action=drop dst-port=3777 comment="PsychWard"

add chain=virus protocol=tcp action=drop dst-port=3791-3801 comment="Total Solar Eclypse"

add chain=virus protocol=tcp action=drop dst-port=4000 comment="SkyDance"

add chain=virus protocol=tcp action=drop dst-port=4092 comment="WinCrash"

add chain=virus protocol=tcp action=drop dst-port=4242 comment="Virtual Hacking Machine VHM"

add chain=virus protocol=tcp action=drop dst-port=4321 comment="BoBo"

add chain=virus protocol=tcp action=drop dst-port=4444 comment="Prosiak, Swift Remote"

add chain=virus protocol=tcp action=drop dst-port=4567 comment="File Nail"

add chain=virus protocol=tcp action=drop dst-port=4590 comment="ICQ Trojan"

add chain=virus protocol=tcp action=drop dst-port=4950 comment="ICQ Trogen Lm"

add chain=virus protocol=tcp action=drop dst-port=5000 comment="Back Door Setup, Blazer5, Bubbel, ICKiller, Ra1d, Sockets des Troie"

add chain=virus protocol=tcp action=drop dst-port=5001 comment="Back Door Setup, Sockets des Troie"

add chain=virus protocol=tcp action=drop dst-port=5002 comment="cd00r, Shaft"

add chain=virus protocol=tcp action=drop dst-port=5010 comment="Solo"

add chain=virus protocol=tcp action=drop dst-port=5011 comment="One of the Last Trojans OOTLT, One of the Last Trojans OOTLT, modified"

add chain=virus protocol=tcp action=drop dst-port=5025 comment="WM Remote KeyLogger"

add chain=virus protocol=tcp action=drop dst-port=5031-5032 comment="Net Metropolitan"

add chain=virus protocol=tcp action=drop dst-port=5321 comment="Firehotcker"

add chain=virus protocol=tcp action=drop dst-port=5333 comment="Backage, NetDemon"

add chain=virus protocol=tcp action=drop dst-port=5343 comment="wCrat WC Remote Administration Tool"

add chain=virus protocol=tcp action=drop dst-port=5400-5402 comment="Back Construction, Blade Runner"

add chain=virus protocol=tcp action=drop dst-port=5512 comment="Illusion Mailer"

add chain=virus protocol=tcp action=drop dst-port=5534 comment="The Flu"

add chain=virus protocol=tcp action=drop dst-port=5550 comment="Xtcp"

add chain=virus protocol=tcp action=drop dst-port=5555 comment="ServeMe"

add chain=virus protocol=tcp action=drop dst-port=5556-5557 comment="BO Facil"

add chain=virus protocol=tcp action=drop dst-port=5569 comment="Robo-Hack"

add chain=virus protocol=tcp action=drop dst-port=5637-5638 comment="PC Crasher"

add chain=virus protocol=tcp action=drop dst-port=5742 comment="WinCrash"

add chain=virus protocol=tcp action=drop dst-port=5760 comment="Portmap Remote Root Linux Exploit"

add chain=virus protocol=tcp action=drop dst-port=5880-5889 comment="Y3K RAT"

add chain=virus protocol=tcp action=drop dst-port=6000 comment="The Thing"

add chain=virus protocol=tcp action=drop dst-port=6006 comment="Bad Blood"

add chain=virus protocol=tcp action=drop dst-port=6272 comment="Secret Service"

User avatar
iwantoyanto
Posts: 7
Joined: 13 Apr 2012, 20:01
Location: surabaya

Re: ISS + Internet SerVer SolutiON .... Mikrotik + Proxy 1 W

Postby iwantoyanto » 15 Apr 2012, 12:39

tanks...mas...atas infonya....
User avatar
sukses
Posts: 1
Joined: 30 Apr 2012, 05:40

Re: ISS + Internet SerVer SolutiON .... Mikrotik + Proxy 1 W

Postby sukses » 30 Apr 2012, 05:53

mantab

Return to “Pertanyaan Umum”

Who is online

Users browsing this forum: No registered users and 1 guest