ROS脚本大全通用CentOS教程Word格式文档下载.docx
《ROS脚本大全通用CentOS教程Word格式文档下载.docx》由会员分享,可在线阅读,更多相关《ROS脚本大全通用CentOS教程Word格式文档下载.docx(5页珍藏版)》请在冰点文库上搜索。
ipfirewallnataddchain=dstnatdst-address=(202.96.134.134)protocol=tcpdst-port=80to-addresses=(192.168.0.1)to-ports=80action=dst-nat
四:
封端口号
/ipfirewallfilter
adchforwardprtcpdst-po8000actdropcomment=”BlockadeQQ”
五:
更变telnet服务端口
/ipservicesettelnetport=23
六:
更变SSH管理服务端口
/ipservicesetsshport=22
七:
更变www服务端口号
/ipservicesetwwwport=80
八:
更变FTP服务端口号
/ipservicesetftpport=21
九:
增加本ROS管理用户
/useraddname=wbszpassword=admingroup=full
十:
删除限速脚本
forwbszfrom1to254do={/queuesimpleremove(wbsz.$wbsz)}
十一:
封IP脚步本
addchain=forwarddst-address=58.60.13.38/32action=dropcomment=”BlockadeQQ”
十二:
禁P2P脚本
addchain=forwardsrc-address=192.168.0.0/24p2p=all-p2paction=dropcomment=”NoP2P”
十三:
限制每台机最大的TCP线程数(线程数=60)
addchain=forwardprotocol=tcpconnection-limit=60,32action=drop\
disabled=no
十四:
一次性绑定所有在线机器MAC
foreachwbszin=[/iparpfinddynamic=yes]do=[/iparpaddcopy-from=$wbsz]
十五:
解除所以绑定的MAC
foreachwbszin[/iparpfind]do={/iparpremove$wbsz}
十六:
禁Ping
addchain=outputprotocol=icmpaction=dropcomment=”NoPing”
十七:
禁电驴
addchain=forwardprotocol=tcpdst-port=4661-4662action=dropcomment=”NoEmule”
addchain=forwardprotocol=tcpdst-port=4242action=drop
addchain=forwarddst-address=62.241.53.15action=drop
十八:
禁PPLIVE
addchain=forwardprotocol=tcpdst-port=8008action=dropcomment=”NoPPliveTV”
addchain=forwardprotocol=udpdst-port=4004action=drop
addchain=forwarddst-address=218.108.237.11action=drop
十九:
禁QQ直播
addchain=forwardprotocol=udpdst-port=13000-14000action=dropcomment=”NoQQLive”
二十:
禁比特精灵
addchain=forwardprotocol=tcpdst-port=16881action=dropcomment=”NoBitSpirit”
二十一:
禁QQ聊天(一般公司才需要)
addchain=forwardsrc-address=10.5.6.7/32action=acceptcomment=”NoTencentQQ”
adchforwardprtcpdst-po8000actdrop
adchforwardprudpdst-po8000actdrop
addchain=forwarddst-address=61.144.238.0/24action=drop
addchain=forwarddst-address=61.152.100.0/24action=drop
addchain=forwarddst-address=61.141.194.0/24action=drop
addchain=forwarddst-address=202.96.170.163/32action=drop
addchain=forwarddst-address=202.104.129.0/24action=drop
addchain=forwarddst-address=202.104.193.20/32action=drop
addchain=forwarddst-address=202.104.193.11/32action=drop
addchain=forwarddst-address=202.104.193.12/32action=drop
addchain=forwarddst-address=218.17.209.23/32action=drop
addchain=forwarddst-address=218.18.95.153/32action=drop
addchain=forwarddst-address=218.18.95.165/32action=drop
addchain=forwarddst-address=218.18.95.220/32action=drop
addchain=forwarddst-address=218.85.138.70/32action=drop
addchain=forwarddst-address=219.133.38.0/24action=drop
addchain=forwarddst-address=219.133.49.0/24action=drop
addchain=forwarddst-address=220.133.40.0/24action=drop
addchain=forwardcontent=sz.tencentaction=reject
addchain=forwardcontent=sz2.tencentaction=reject
addchain=forwardcontent=sz3.tencentaction=reject
addchain=forwardcontent=sz4.tencentaction=reject
addchain=forwardcontent=sz5.tencentaction=reject
addchain=forwardcontent=sz6.tencentaction=reject
addchain=forwardcontent=sz7.tencentaction=reject
addchain=forwardcontent=sz8.tencentaction=rejec
addchain=forwardcontent=sz9.tencentaction=rejec
addchain=forwardcontent=tcpconn.tencentaction=reject
addchain=forwardcontent=tcpconn2.tencentaction=reject
addchain=forwardcontent=tcpconn3.tencentaction=reject
addchain=forwardcontent=tcpconn4.tencentaction=reject
addchain=forwardcontent=tcpconn5.tencentaction=reject
addchain=forwardcontent=tcpconn6.tencentaction=reject
addchain=forwardcontent=tcpconn7.tencentaction=reject
addchain=forwardcontent=tcpconn8.tencentaction=reject
addchain=forwardcontent=qqaction=reject
addchain=forwardcontent=www.qqaction=reject
二十二:
防止灰鸽子入浸
addchain=forwardprotocol=tcpdst-port=1999action=dropcomment=”Backdoor.GrayBird.ad”
addchain=forwarddst-address=80.190.240.125action=drop
addchain=forwarddst-address=203.209.245.168action=drop
addchain=forwarddst-address=210.192.122.106action=drop
addchain=forwarddst-address=218.30.88.43action=drop
addchain=forwarddst-address=219.238.233.110action=drop
addchain=forwarddst-address=222.186.8.88action=drop
addchain=forwarddst-address=124.42.125.37action=drop
addchain=forwarddst-address=210.192.122.107action=drop
addchain=forwarddst-address=61.147.118.198action=drop
addchain=forwarddst-address=219.238.233.11action=drop
二十三:
防三波
addchain=forwardprotocol=tcpdst-port=135-139action=dropcomment=”No3B”
以上脚本使用说明:
用winbox.exe登陆找到System—Script–点击+将对应脚本复制其中后,点击RunScript即脚本安装成功!
升级会员 