/ip firewall filter

add action=drop chain=input comment="A2bA2cA2dA2eA2fA2gA2h 1 A2hA2gA2fA2eA2dA2cA2b" disabled=no dst-port=21,22,23,8291 protocol=tcp src-address-list=login_error_ip

add action=add-src-to-address-list address-list=login_error_ip address-list-timeout=1d chain=input comment="A2bA2cA2dA2eA2fA2gA2h 2 A2hA2gA2fA2eA2dA2cA2b" connection-state=new disabled=no dst-port=21,22,23,8291 protocol=tcp src-address-list=ros_service_login5
add action=add-src-to-address-list address-list=ros_service_login5 address-list-timeout=1d30s chain=input comment="A2bA2cA2dA2eA2fA2gA2h 3 A2hA2gA2fA2eA2dA2cA2b" connection-state=new disabled=no dst-port=21,22,23,8291 protocol=tcp src-address-list=ros_service_login4

add action=add-src-to-address-list address-list=ros_service_login4 address-list-timeout=30s chain=input comment="A2bA2cA2dA2eA2fA2gA2h 4 A2hA2gA2fA2eA2dA2cA2b" connection-state=new disabled=no dst-port=21,22,23,8291 protocol=tcp src-address-list=ros_service_login3

add action=add-src-to-address-list address-list=ros_service_login3 address-list-timeout=30s chain=input comment="A2bA2cA2dA2eA2fA2gA2h 5 A2hA2gA2fA2eA2dA2cA2b" connection-state=new disabled=no dst-port=21,22,23,8291 protocol=tcp src-address-list=ros_service_login2

add action=add-src-to-address-list address-list=ros_service_login2 address-list-timeout=30s chain=input comment="A2bA2cA2dA2eA2fA2gA2h 6 A2hA2gA2fA2eA2dA2cA2b" connection-state=new disabled=no dst-port=21,22,23,8291 protocol=tcp src-address-list=ros_service_login1

add action=add-src-to-address-list address-list=ros_service_login1 address-list-timeout=30s chain=input comment="A2bA2cA2dA2eA2fA2gA2h 7 A2hA2gA2fA2eA2dA2cA2b" connection-state=new disabled=no dst-port=21,22,23,8291 protocol=tcp src-address-list=!Lan_ip

/ip firewall address-list
add address=192.168.3.0/24 disabled=no list=Lan_ip

导入就行,后面是要排除的内网地址

声明:本站所有文章,如无特殊说明或标注,均为本站原创发布。任何个人或组织,在未征得本站同意时,禁止复制、盗用、采集、发布本站内容到任何网站、书籍等各类媒体平台。如若本站内容侵犯了原著者的合法权益,可联系我们进行处理。