封掉扫描ROS指定端口的IP


/ip firewall filter

add action=drop chain=input comment="A2bA2cA2dA2eA2fA2gA2h 1 A2hA2gA2fA2eA2dA2cA2b" disabled=no dst-port=21,22,23,8291 protocol=tcp src-address-list=login_error_ip

add action=add-src-to-address-list address-list=login_error_ip address-list-timeout=1d chain=input comment="A2bA2cA2dA2eA2fA2gA2h 2 A2hA2gA2fA2eA2dA2cA2b" connection-state=new disabled=no dst-port=21,22,23,8291 protocol=tcp src-address-list=ros_service_login5
add action=add-src-to-address-list address-list=ros_service_login5 address-list-timeout=1d30s chain=input comment="A2bA2cA2dA2eA2fA2gA2h 3 A2hA2gA2fA2eA2dA2cA2b" connection-state=new disabled=no dst-port=21,22,23,8291 protocol=tcp src-address-list=ros_service_login4

add action=add-src-to-address-list address-list=ros_service_login4 address-list-timeout=30s chain=input comment="A2bA2cA2dA2eA2fA2gA2h 4 A2hA2gA2fA2eA2dA2cA2b" connection-state=new disabled=no dst-port=21,22,23,8291 protocol=tcp src-address-list=ros_service_login3

add action=add-src-to-address-list address-list=ros_service_login3 address-list-timeout=30s chain=input comment="A2bA2cA2dA2eA2fA2gA2h 5 A2hA2gA2fA2eA2dA2cA2b" connection-state=new disabled=no dst-port=21,22,23,8291 protocol=tcp src-address-list=ros_service_login2

add action=add-src-to-address-list address-list=ros_service_login2 address-list-timeout=30s chain=input comment="A2bA2cA2dA2eA2fA2gA2h 6 A2hA2gA2fA2eA2dA2cA2b" connection-state=new disabled=no dst-port=21,22,23,8291 protocol=tcp src-address-list=ros_service_login1

add action=add-src-to-address-list address-list=ros_service_login1 address-list-timeout=30s chain=input comment="A2bA2cA2dA2eA2fA2gA2h 7 A2hA2gA2fA2eA2dA2cA2b" connection-state=new disabled=no dst-port=21,22,23,8291 protocol=tcp src-address-list=!Lan_ip

/ip firewall address-list
add address=192.168.3.0/24 disabled=no list=Lan_ip

导入就行,后面是要排除的内网地址

去打赏

您的支持将鼓励我们继续创作!

[微信] 扫描二维码打赏

[支付宝] 扫描二维码打赏

正在跳转到PayPal...

未经允许不得转载:飞翔线 » 封掉扫描ROS指定端口的IP