الجمعة، 26 أغسطس 2016
رول حمايه من الفيروسات وهجمات الدوز
الرول من موقع أجنبي
///////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
/ip firewall filter
add action=passthrough chain=unused-hs-chain comment=\
"place hotspot rules here" disabled=yes
add action=accept chain=forward connection-state=established disabled=no \
protocol=icmp
add action=accept chain=forward connection-state=related disabled=no \
protocol=icmp
add action=accept chain=forward disabled=no icmp-options=8:0 limit=5,30 \
protocol=icmp
add action=log chain=forward disabled=no log-prefix="Block Ping of Death" \
protocol=icmp
add action=drop chain=forward disabled=no protocol=icmp
add action=jump chain=forward comment=Jump_to_block-ddos disabled=no \
jump-target=block-ddos protocol=udp
add action=jump chain=input comment=Jump_to_block-ddos disabled=no \
jump-target=block-ddos protocol=udp
add action=return chain=block-ddos disabled=no limit=400,32
add action=log chain=block-ddos disabled=no log-prefix=DDOS_ATTACK:
add action=drop chain=block-ddos disabled=no limit=32,32
add action=jump chain=input comment=Jump_to_block-ddos disabled=no \
jump-target=block-ddos protocol=udp
add action=add-src-to-address-list address-list=blocked-addr \
address-list-timeout=1d chain=input connection-limit=100,32 disabled=no \
protocol=tcp
add action=tarpit chain=input connection-limit=3,32 disabled=no protocol=tcp \
src-address-list=blocked-addr
add action=jump chain=forward comment="SYN Flood protect" connection-state=\
new disabled=no jump-target=SYN-Protect protocol=tcp tcp-flags=syn
add action=accept chain=SYN-Protect connection-state=new disabled=no limit=\
400,5 protocol=tcp tcp-flags=syn
add action=drop chain=SYN-Protect connection-state=new disabled=no protocol=\
tcp tcp-flags=syn
add action=drop chain=virus comment="Drop Spammer" disabled=no dst-port=25 \
protocol=tcp src-address-list=spammer
add action=add-src-to-address-list address-list=spammer address-list-timeout=\
1d chain=virus comment="add to spammer list" connection-limit=30,32 \
disabled=no dst-port=25 limit=10,5 protocol=tcp src-address-list=!smtpOK
add action=drop chain=virus comment="SMTP SPAM stopper!" disabled=no \
dst-port=25 protocol=tcp src-address-list=!smtpOK
add action=drop chain=virus comment="Drop 53 DoS attack" disabled=no \
dst-port=53 protocol=tcp src-address-list=spammer
add action=drop chain=virus comment="Drop 53 DoS attack" disabled=no \
dst-port=53 protocol=udp src-address-list=spammer
add action=drop chain=virus comment="Drop 80 DoS attack" disabled=no \
dst-port=80 protocol=tcp src-address-list=spammer
add action=add-src-to-address-list address-list=spammer address-list-timeout=\
2d chain=virus comment="Drop 80 DoS attack" connection-limit=40,32 \
disabled=no dst-port=80 limit=20,5 protocol=tcp src-address-list=!smtpOK
add action=drop chain=forward comment="drop invalid connections" \
connection-state=invalid disabled=no protocol=tcp
add action=accept chain=forward connection-state=established disabled=no
add action=accept chain=forward comment="allow related connections" \
connection-state=related disabled=no
add action=drop chain=forward disabled=no src-address=0.0.0.0/8
add action=drop chain=forward disabled=no dst-address=0.0.0.0/8
add action=drop chain=forward disabled=no src-address=127.0.0.0/8
add action=drop chain=forward disabled=no dst-address=127.0.0.0/8
add action=drop chain=forward disabled=no src-address=224.0.0.0/3
add action=drop chain=forward disabled=no dst-address=224.0.0.0/3
add action=jump chain=forward disabled=no jump-target=tcp protocol=tcp
add action=jump chain=forward disabled=no jump-target=udp protocol=udp
add action=jump chain=forward disabled=no jump-target=icmp protocol=icmp
add action=drop chain=tcp comment="deny TFTP" disabled=no dst-port=69 \
protocol=tcp
add action=drop chain=tcp comment="deny RPC portmapper" disabled=no dst-port=\
111 protocol=tcp
add action=drop chain=tcp comment="deny RPC portmapper" disabled=no dst-port=\
135 protocol=tcp
add action=drop chain=tcp comment="deny NBT" disabled=no dst-port=137-139 \
protocol=tcp
add action=drop chain=tcp comment="deny cifs" disabled=no dst-port=445 \
protocol=tcp
add action=drop chain=tcp comment="deny NFS" disabled=no dst-port=2049 \
protocol=tcp
add action=drop chain=tcp comment="deny NetBus" disabled=no dst-port=\
12345-12346 protocol=tcp
add action=drop chain=tcp comment="deny NetBus" disabled=no dst-port=20034 \
protocol=tcp
add action=drop chain=tcp comment="deny BackOriffice" disabled=no dst-port=\
3133 protocol=tcp
add action=drop chain=tcp comment="deny DHCP" disabled=no dst-port=67-68 \
protocol=tcp
add action=drop chain=udp comment="deny TFTP" disabled=no dst-port=69 \
protocol=udp
add action=drop chain=udp comment="deny PRC portmapper" disabled=no dst-port=\
111 protocol=udp
add action=drop chain=udp comment="deny PRC portmapper" disabled=no dst-port=\
135 protocol=udp
add action=drop chain=udp comment="deny NBT" disabled=no dst-port=137-139 \
protocol=udp
add action=drop chain=udp comment="deny NFS" disabled=no dst-port=2049 \
protocol=udp
add action=drop chain=udp comment="deny BackOriffice" disabled=no dst-port=\
3133 protocol=udp
add action=accept chain=icmp comment="echo reply" disabled=no icmp-options=\
0:0 protocol=icmp
add action=accept chain=icmp comment="net unreachable" disabled=no \
icmp-options=3:0 protocol=icmp
add action=accept chain=icmp comment="host unreachable" disabled=no \
icmp-options=3:1 protocol=icmp
add action=accept chain=icmp comment=\
"host unreachable fragmentation required" disabled=no icmp-options=3:4 \
protocol=icmp
add action=accept chain=icmp comment="allow source quench" disabled=no \
icmp-options=4:0 protocol=icmp
add action=accept chain=icmp comment="allow echo request" disabled=no \
icmp-options=8:0 protocol=icmp
add action=accept chain=icmp comment="allow time exceed" disabled=no \
icmp-options=11:0 protocol=icmp
add action=accept chain=icmp disabled=no icmp-options=12:0 protocol=icmp
add action=drop chain=icmp comment="deny all other types" disabled=no
add action=drop chain=input comment="drop ftp brute forcers" disabled=no \
dst-port=21 protocol=tcp src-address-list=ftp_blacklist
add action=accept chain=output content="530 Login incorrect" disabled=no \
dst-limit=1/1m,9,dst-address/1m protocol=tcp
add action=add-dst-to-address-list address-list=ftp_blacklist \
address-list-timeout=3h chain=output content="530 Login incorrect" \
disabled=no protocol=tcp
add action=drop chain=input comment="drop ssh brute forcers" disabled=no \
dst-port=22 protocol=tcp src-address-list=ssh_blacklist
add action=add-src-to-address-list address-list=ssh_blacklist \
address-list-timeout=1w3d chain=input connection-state=new disabled=no \
dst-port=22 protocol=tcp src-address-list=ssh_stage3
add action=add-src-to-address-list address-list=ssh_stage3 \
address-list-timeout=1m chain=input connection-state=new disabled=no \
dst-port=22 protocol=tcp src-address-list=ssh_stage2
add action=add-src-to-address-list address-list=ssh_stage2 \
address-list-timeout=1m chain=input connection-state=new disabled=no \
dst-port=22 protocol=tcp src-address-list=ssh_stage1
add action=add-src-to-address-list address-list=ssh_stage1 \
address-list-timeout=1m chain=input connection-state=new disabled=no \
dst-port=22 protocol=tcp
add action=drop chain=forward comment="drop ssh brute downstream" disabled=no \
dst-port=22 protocol=tcp src-address-list=ssh_blacklist
add action=drop chain=forward comment=Conficker disabled=no dst-port=135 \
protocol=udp
add action=drop chain=forward comment=Conficker disabled=no dst-port=137 \
protocol=udp
add action=drop chain=forward comment=Conficker disabled=no dst-port=138 \
protocol=udp
add action=drop chain=forward comment=Conficker disabled=no dst-port=445 \
protocol=udp
add action=drop chain=forward comment=Conficker disabled=no dst-port=135 \
protocol=tcp
add action=drop chain=forward comment=Conficker disabled=no dst-port=139 \
protocol=tcp
add action=drop chain=forward comment=Conficker disabled=no dst-port=5933 \
protocol=tcp
add action=drop chain=forward comment=Conficker disabled=no dst-port=445 \
protocol=tcp
add action=drop chain=forward comment=Conficker disabled=no dst-port=4691 \
protocol=tcp
///////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
/ip firewall filter
add action=passthrough chain=unused-hs-chain comment=\
"place hotspot rules here" disabled=yes
add action=accept chain=forward connection-state=established disabled=no \
protocol=icmp
add action=accept chain=forward connection-state=related disabled=no \
protocol=icmp
add action=accept chain=forward disabled=no icmp-options=8:0 limit=5,30 \
protocol=icmp
add action=log chain=forward disabled=no log-prefix="Block Ping of Death" \
protocol=icmp
add action=drop chain=forward disabled=no protocol=icmp
add action=jump chain=forward comment=Jump_to_block-ddos disabled=no \
jump-target=block-ddos protocol=udp
add action=jump chain=input comment=Jump_to_block-ddos disabled=no \
jump-target=block-ddos protocol=udp
add action=return chain=block-ddos disabled=no limit=400,32
add action=log chain=block-ddos disabled=no log-prefix=DDOS_ATTACK:
add action=drop chain=block-ddos disabled=no limit=32,32
add action=jump chain=input comment=Jump_to_block-ddos disabled=no \
jump-target=block-ddos protocol=udp
add action=add-src-to-address-list address-list=blocked-addr \
address-list-timeout=1d chain=input connection-limit=100,32 disabled=no \
protocol=tcp
add action=tarpit chain=input connection-limit=3,32 disabled=no protocol=tcp \
src-address-list=blocked-addr
add action=jump chain=forward comment="SYN Flood protect" connection-state=\
new disabled=no jump-target=SYN-Protect protocol=tcp tcp-flags=syn
add action=accept chain=SYN-Protect connection-state=new disabled=no limit=\
400,5 protocol=tcp tcp-flags=syn
add action=drop chain=SYN-Protect connection-state=new disabled=no protocol=\
tcp tcp-flags=syn
add action=drop chain=virus comment="Drop Spammer" disabled=no dst-port=25 \
protocol=tcp src-address-list=spammer
add action=add-src-to-address-list address-list=spammer address-list-timeout=\
1d chain=virus comment="add to spammer list" connection-limit=30,32 \
disabled=no dst-port=25 limit=10,5 protocol=tcp src-address-list=!smtpOK
add action=drop chain=virus comment="SMTP SPAM stopper!" disabled=no \
dst-port=25 protocol=tcp src-address-list=!smtpOK
add action=drop chain=virus comment="Drop 53 DoS attack" disabled=no \
dst-port=53 protocol=tcp src-address-list=spammer
add action=drop chain=virus comment="Drop 53 DoS attack" disabled=no \
dst-port=53 protocol=udp src-address-list=spammer
add action=drop chain=virus comment="Drop 80 DoS attack" disabled=no \
dst-port=80 protocol=tcp src-address-list=spammer
add action=add-src-to-address-list address-list=spammer address-list-timeout=\
2d chain=virus comment="Drop 80 DoS attack" connection-limit=40,32 \
disabled=no dst-port=80 limit=20,5 protocol=tcp src-address-list=!smtpOK
add action=drop chain=forward comment="drop invalid connections" \
connection-state=invalid disabled=no protocol=tcp
add action=accept chain=forward connection-state=established disabled=no
add action=accept chain=forward comment="allow related connections" \
connection-state=related disabled=no
add action=drop chain=forward disabled=no src-address=0.0.0.0/8
add action=drop chain=forward disabled=no dst-address=0.0.0.0/8
add action=drop chain=forward disabled=no src-address=127.0.0.0/8
add action=drop chain=forward disabled=no dst-address=127.0.0.0/8
add action=drop chain=forward disabled=no src-address=224.0.0.0/3
add action=drop chain=forward disabled=no dst-address=224.0.0.0/3
add action=jump chain=forward disabled=no jump-target=tcp protocol=tcp
add action=jump chain=forward disabled=no jump-target=udp protocol=udp
add action=jump chain=forward disabled=no jump-target=icmp protocol=icmp
add action=drop chain=tcp comment="deny TFTP" disabled=no dst-port=69 \
protocol=tcp
add action=drop chain=tcp comment="deny RPC portmapper" disabled=no dst-port=\
111 protocol=tcp
add action=drop chain=tcp comment="deny RPC portmapper" disabled=no dst-port=\
135 protocol=tcp
add action=drop chain=tcp comment="deny NBT" disabled=no dst-port=137-139 \
protocol=tcp
add action=drop chain=tcp comment="deny cifs" disabled=no dst-port=445 \
protocol=tcp
add action=drop chain=tcp comment="deny NFS" disabled=no dst-port=2049 \
protocol=tcp
add action=drop chain=tcp comment="deny NetBus" disabled=no dst-port=\
12345-12346 protocol=tcp
add action=drop chain=tcp comment="deny NetBus" disabled=no dst-port=20034 \
protocol=tcp
add action=drop chain=tcp comment="deny BackOriffice" disabled=no dst-port=\
3133 protocol=tcp
add action=drop chain=tcp comment="deny DHCP" disabled=no dst-port=67-68 \
protocol=tcp
add action=drop chain=udp comment="deny TFTP" disabled=no dst-port=69 \
protocol=udp
add action=drop chain=udp comment="deny PRC portmapper" disabled=no dst-port=\
111 protocol=udp
add action=drop chain=udp comment="deny PRC portmapper" disabled=no dst-port=\
135 protocol=udp
add action=drop chain=udp comment="deny NBT" disabled=no dst-port=137-139 \
protocol=udp
add action=drop chain=udp comment="deny NFS" disabled=no dst-port=2049 \
protocol=udp
add action=drop chain=udp comment="deny BackOriffice" disabled=no dst-port=\
3133 protocol=udp
add action=accept chain=icmp comment="echo reply" disabled=no icmp-options=\
0:0 protocol=icmp
add action=accept chain=icmp comment="net unreachable" disabled=no \
icmp-options=3:0 protocol=icmp
add action=accept chain=icmp comment="host unreachable" disabled=no \
icmp-options=3:1 protocol=icmp
add action=accept chain=icmp comment=\
"host unreachable fragmentation required" disabled=no icmp-options=3:4 \
protocol=icmp
add action=accept chain=icmp comment="allow source quench" disabled=no \
icmp-options=4:0 protocol=icmp
add action=accept chain=icmp comment="allow echo request" disabled=no \
icmp-options=8:0 protocol=icmp
add action=accept chain=icmp comment="allow time exceed" disabled=no \
icmp-options=11:0 protocol=icmp
add action=accept chain=icmp disabled=no icmp-options=12:0 protocol=icmp
add action=drop chain=icmp comment="deny all other types" disabled=no
add action=drop chain=input comment="drop ftp brute forcers" disabled=no \
dst-port=21 protocol=tcp src-address-list=ftp_blacklist
add action=accept chain=output content="530 Login incorrect" disabled=no \
dst-limit=1/1m,9,dst-address/1m protocol=tcp
add action=add-dst-to-address-list address-list=ftp_blacklist \
address-list-timeout=3h chain=output content="530 Login incorrect" \
disabled=no protocol=tcp
add action=drop chain=input comment="drop ssh brute forcers" disabled=no \
dst-port=22 protocol=tcp src-address-list=ssh_blacklist
add action=add-src-to-address-list address-list=ssh_blacklist \
address-list-timeout=1w3d chain=input connection-state=new disabled=no \
dst-port=22 protocol=tcp src-address-list=ssh_stage3
add action=add-src-to-address-list address-list=ssh_stage3 \
address-list-timeout=1m chain=input connection-state=new disabled=no \
dst-port=22 protocol=tcp src-address-list=ssh_stage2
add action=add-src-to-address-list address-list=ssh_stage2 \
address-list-timeout=1m chain=input connection-state=new disabled=no \
dst-port=22 protocol=tcp src-address-list=ssh_stage1
add action=add-src-to-address-list address-list=ssh_stage1 \
address-list-timeout=1m chain=input connection-state=new disabled=no \
dst-port=22 protocol=tcp
add action=drop chain=forward comment="drop ssh brute downstream" disabled=no \
dst-port=22 protocol=tcp src-address-list=ssh_blacklist
add action=drop chain=forward comment=Conficker disabled=no dst-port=135 \
protocol=udp
add action=drop chain=forward comment=Conficker disabled=no dst-port=137 \
protocol=udp
add action=drop chain=forward comment=Conficker disabled=no dst-port=138 \
protocol=udp
add action=drop chain=forward comment=Conficker disabled=no dst-port=445 \
protocol=udp
add action=drop chain=forward comment=Conficker disabled=no dst-port=135 \
protocol=tcp
add action=drop chain=forward comment=Conficker disabled=no dst-port=139 \
protocol=tcp
add action=drop chain=forward comment=Conficker disabled=no dst-port=5933 \
protocol=tcp
add action=drop chain=forward comment=Conficker disabled=no dst-port=445 \
protocol=tcp
add action=drop chain=forward comment=Conficker disabled=no dst-port=4691 \
protocol=tcp
اسكربت تحديد والتحكم بالمواقع الاباحية
نظرا لكثرة المواقع الاباحية وصعوبة حظرها خصوصا عند استخدام برامج vpn جئنا اليوم بفكره أخري
هي تحديد سرعه لهذه المواقع بحيث تكون بطيئة جدا ولا تفيد بشئ
اسكربت تحديد والتحكم بالمواقع الاباحية
لاتنسوووو تبدلو كرت الدخول بكرت دخولكم هنا بالرول كرت الدخول باسم
in
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
اولا مستخدمي الاصدار 5 من الميكروتك
/ip firewall layer7-protocol
add name=mate regexp="^.*(log.apk.v-mate.mobi|api.vidmate|vidmate)\\.com.*"
add name=xvideos regexp="^.*(xvideos|xnxx|pornhup|porn|xxx|sex)\\.com.*"
/ip firewall mangle
add action=add-dst-to-address-list address-list=mate.mobi \
address-list-timeout=0s chain=postrouting comment=maet disabled=no \
layer7-protocol=mate out-interface=in
add action=add-dst-to-address-list address-list=xvideos address-list-timeout=\
0s chain=postrouting comment=uc9.ucweb.com disabled=no layer7-protocol=\
xvideos out-interface=in
add action=mark-packet chain=prerouting comment=sex disabled=no \
new-packet-mark=xv passthrough=yes src-address-list=xvideos
add action=mark-packet chain=prerouting comment=mate.mobi disabled=no \
new-packet-mark=tubemate passthrough=yes src-address-list=mate.mobi
/queue tree
add burst-limit=0 burst-threshold=0 burst-time=0s comment=\
"\CA\CD\CC\ED\E3 \C7\E1\E3\E6\C7\DE\DA \C7\E1\C7\C8\C7\CD\ED " disabled=\
no limit-at=0 max-limit=0 name=XV packet-mark=xv parent=global-out \
priority=8 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=0 name=tubemate packet-mark=tubemate parent=global-out \
priority=8 queue=default
////////////////////////////////////////////////////////////////////////////////////////////////////////
ثانيا مستخدمي الاصدار 6 من الميكروتك
/ip firewall layer7-protocol
add name=mate regexp="^.*(log.apk.v-mate.mobi|api.vidmate|vidmate)\\.com.*"
add name=xvideos regexp="^.*(xvideos|xnxx|pornhup|porn|xxx|sex)\\.com.*"
/ip firewall mangle
add action=add-dst-to-address-list address-list=mate.mobi \
address-list-timeout=0s chain=postrouting comment=maet disabled=no \
layer7-protocol=mate out-interface=in
add action=add-dst-to-address-list address-list=xvideos address-list-timeout=\
0s chain=postrouting comment=uc9.ucweb.com disabled=no layer7-protocol=\
xvideos out-interface=in
add action=mark-packet chain=prerouting comment=sex disabled=no \
new-packet-mark=xv passthrough=yes src-address-list=xvideos
add action=mark-packet chain=prerouting comment=mate.mobi disabled=no \
new-packet-mark=tubemate passthrough=yes src-address-list=mate.mobi
/queue tree
add burst-limit=0 burst-threshold=0 burst-time=0s comment=\
"\CA\CD\CC\ED\E3 \C7\E1\E3\E6\C7\DE\DA \C7\E1\C7\C8\C7\CD\ED " disabled=\
no limit-at=0 max-limit=0 name=XV packet-mark=xv parent=global-out \
priority=8 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=0 name=tubemate packet-mark=tubemate parent=global-out \
priority=8 queue=default
هي تحديد سرعه لهذه المواقع بحيث تكون بطيئة جدا ولا تفيد بشئ
اسكربت تحديد والتحكم بالمواقع الاباحية
لاتنسوووو تبدلو كرت الدخول بكرت دخولكم هنا بالرول كرت الدخول باسم
in
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
اولا مستخدمي الاصدار 5 من الميكروتك
/ip firewall layer7-protocol
add name=mate regexp="^.*(log.apk.v-mate.mobi|api.vidmate|vidmate)\\.com.*"
add name=xvideos regexp="^.*(xvideos|xnxx|pornhup|porn|xxx|sex)\\.com.*"
/ip firewall mangle
add action=add-dst-to-address-list address-list=mate.mobi \
address-list-timeout=0s chain=postrouting comment=maet disabled=no \
layer7-protocol=mate out-interface=in
add action=add-dst-to-address-list address-list=xvideos address-list-timeout=\
0s chain=postrouting comment=uc9.ucweb.com disabled=no layer7-protocol=\
xvideos out-interface=in
add action=mark-packet chain=prerouting comment=sex disabled=no \
new-packet-mark=xv passthrough=yes src-address-list=xvideos
add action=mark-packet chain=prerouting comment=mate.mobi disabled=no \
new-packet-mark=tubemate passthrough=yes src-address-list=mate.mobi
/queue tree
add burst-limit=0 burst-threshold=0 burst-time=0s comment=\
"\CA\CD\CC\ED\E3 \C7\E1\E3\E6\C7\DE\DA \C7\E1\C7\C8\C7\CD\ED " disabled=\
no limit-at=0 max-limit=0 name=XV packet-mark=xv parent=global-out \
priority=8 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=0 name=tubemate packet-mark=tubemate parent=global-out \
priority=8 queue=default
////////////////////////////////////////////////////////////////////////////////////////////////////////
ثانيا مستخدمي الاصدار 6 من الميكروتك
/ip firewall layer7-protocol
add name=mate regexp="^.*(log.apk.v-mate.mobi|api.vidmate|vidmate)\\.com.*"
add name=xvideos regexp="^.*(xvideos|xnxx|pornhup|porn|xxx|sex)\\.com.*"
/ip firewall mangle
add action=add-dst-to-address-list address-list=mate.mobi \
address-list-timeout=0s chain=postrouting comment=maet disabled=no \
layer7-protocol=mate out-interface=in
add action=add-dst-to-address-list address-list=xvideos address-list-timeout=\
0s chain=postrouting comment=uc9.ucweb.com disabled=no layer7-protocol=\
xvideos out-interface=in
add action=mark-packet chain=prerouting comment=sex disabled=no \
new-packet-mark=xv passthrough=yes src-address-list=xvideos
add action=mark-packet chain=prerouting comment=mate.mobi disabled=no \
new-packet-mark=tubemate passthrough=yes src-address-list=mate.mobi
/queue tree
add burst-limit=0 burst-threshold=0 burst-time=0s comment=\
"\CA\CD\CC\ED\E3 \C7\E1\E3\E6\C7\DE\DA \C7\E1\C7\C8\C7\CD\ED " disabled=\
no limit-at=0 max-limit=0 name=XV packet-mark=xv parent=global-out \
priority=8 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \
max-limit=0 name=tubemate packet-mark=tubemate parent=global-out \
priority=8 queue=default
الأربعاء، 24 أغسطس 2016
الاسكربت الحصري لعمل تحديد لبرامج التحميل عبر الاندرويد ..حيث انها لاتتتوقف عبر التقسيم
رول مجرب مع شبكات وممتاز تم السيطرة ع برنامجين تيوب ميت وسناب تيوب
///////////////////////////////
/ip fir address-list
add address=8.37.224.0/20 comment=u.ucfly.com disabled=no list=u.ucfly.com
add address=107.20.0.0/14 comment=SnapTube disabled=no list=SnapTube
رول مجرب مع شبكات وممتاز تم السيطرة ع برنامجين تيوب ميت وسناب تيوب
///////////////////////////////
/ip fir address-list
add address=8.37.224.0/20 comment=u.ucfly.com disabled=no list=u.ucfly.com
add address=107.20.0.0/14 comment=SnapTube disabled=no list=SnapTube
/ip firewall mangle
add action=mark-packet chain=prerouting comment=fB.com/alzobdy|7744039606 disabled=no \
new-packet-mark=u.ucfly.com passthrough=yes src-address-list=u.ucfly.com
add action=mark-packet chain=prerouting comment=fB.com/alzobdy|7744039606 disabled=no \
new-packet-mark=SnapTube passthrough=yes src-address-list=SnapTube
new-packet-mark=SnapTube passthrough=yes src-address-list=SnapTube
للنسخ 5
/queue tree
/queue tree
add burst-limit=0 burst-threshold=0 burst-time=0s comment=\
"u.ucfly.com " disabled=\
no limit-at=0 max-limit=750k name=u.ucfly.com packet-mark=u.ucfly.com parent=global-out \
priority=8 queue=default
"u.ucfly.com " disabled=\
no limit-at=0 max-limit=750k name=u.ucfly.com packet-mark=u.ucfly.com parent=global-out \
priority=8 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s comment=\
"SnapTube " disabled=\
no limit-at=0 max-limit=750k name=SnapTube packet-mark=SnapTube parent=global-out \
priority=8 queue=default
"SnapTube " disabled=\
no limit-at=0 max-limit=750k name=SnapTube packet-mark=SnapTube parent=global-out \
priority=8 queue=default
للنسخ 6
/queue tree
/queue tree
add burst-limit=0 burst-threshold=0 burst-time=0s comment=\
"u.ucfly.com " disabled=\
no limit-at=0 max-limit=750k name=u.ucfly.com packet-mark=u.ucfly.com parent=global \
priority=8 queue=default
"u.ucfly.com " disabled=\
no limit-at=0 max-limit=750k name=u.ucfly.com packet-mark=u.ucfly.com parent=global \
priority=8 queue=default
add burst-limit=0 burst-threshold=0 burst-time=0s comment=\
"SnapTube " disabled=\
no limit-at=0 max-limit=750k name=SnapTube packet-mark=SnapTube parent=global \
priority=8 queue=default
"SnapTube " disabled=\
no limit-at=0 max-limit=750k name=SnapTube packet-mark=SnapTube parent=global \
priority=8 queue=default
الرول الاروع في قفل ومنع تحديثات الوندوز للنسخ 5 و 6
مقدم من الاخ محمد الزبيدي
ومجرب مني شخصياً
مقدم من الاخ محمد الزبيدي
ومجرب مني شخصياً
/ip firewall filter
add action=reject chain=forward comment="block_WinUp" content=update.microsoft.com disabled=no reject-with=icmp-network-unreachable
add action=reject chain=forward comment="block_WinUp" content=download.microsoft.com disabled=no reject-with=icmp-network-unreachable
add action=reject chain=forward comment="block_WinUp" content=download.windowsupdate.com disabled=no reject-with=icmp-network-unreachable
add action=reject chain=forward comment="block_WinUp" content=wustat.windows.com disabled=no reject-with=icmp-network-unreachable
add action=reject chain=forward comment="block_WinUp" content=ntservicepack.microsoft.com disabled=no reject-with=icmp-network-unreachable
add action=reject chain=forward comment="block_WinUp" content=stats.microsoft.com disabled=no reject-with=icmp-network-unreachable
add action=reject chain=forward comment="block_WinUp" content=windowsupdate.com disabled=no reject-with=icmp-network-unreachable
add action=reject chain=forward comment="block_WinUp" content=update.microsoft.com disabled=no reject-with=icmp-network-unreachable
add action=reject chain=forward comment="block_WinUp" content=download.microsoft.com disabled=no reject-with=icmp-network-unreachable
add action=reject chain=forward comment="block_WinUp" content=download.windowsupdate.com disabled=no reject-with=icmp-network-unreachable
add action=reject chain=forward comment="block_WinUp" content=wustat.windows.com disabled=no reject-with=icmp-network-unreachable
add action=reject chain=forward comment="block_WinUp" content=ntservicepack.microsoft.com disabled=no reject-with=icmp-network-unreachable
add action=reject chain=forward comment="block_WinUp" content=stats.microsoft.com disabled=no reject-with=icmp-network-unreachable
add action=reject chain=forward comment="block_WinUp" content=windowsupdate.com disabled=no reject-with=icmp-network-unreachable
رول تحديد سرعه جوجل بلاي للنسخ 5
/ip firewall layer7-protocol
add comment="PLAY STORE" name="Google Play Store" regexp=\
^.+.play.google.com.*
^.+.play.google.com.*
/ip firewall mangle
add action=add-src-to-address-list address-list=APK address-list-timeout=1d \
chain=prerouting comment=APK disabled=no layer7-protocol=\
"Google Play Store"
add action=mark-packet chain=prerouting comment="Google Play Store" disabled=\
no new-packet-mark="Google Play Store" passthrough=yes src-address-list=\
APK
chain=prerouting comment=APK disabled=no layer7-protocol=\
"Google Play Store"
add action=mark-packet chain=prerouting comment="Google Play Store" disabled=\
no new-packet-mark="Google Play Store" passthrough=yes src-address-list=\
APK
/queue tree
add burst-limit=0 burst-threshold=0 burst-time=0s comment="Google Play Store" \
disabled=no limit-at=0 max-limit=0 name="Google Play Store" packet-mark=\
"Google Play Store" parent=global-out priority=8 queue=default
يتم تحديد السرعة من queue tree
add burst-limit=0 burst-threshold=0 burst-time=0s comment="Google Play Store" \
disabled=no limit-at=0 max-limit=0 name="Google Play Store" packet-mark=\
"Google Play Store" parent=global-out priority=8 queue=default
يتم تحديد السرعة من queue tree
رول تحديد سرعه قوقل بلاي للنسخ 6
/ip firewall layer7-protocol
add comment="PLAY STORE" name="Google Play Store" regexp=\
^.+.play.google.com.*
^.+.play.google.com.*
/ip firewall mangle
add action=add-src-to-address-list address-list=APK address-list-timeout=1d \
chain=prerouting comment=APK disabled=no layer7-protocol=\
"Google Play Store"
add action=mark-packet chain=prerouting comment="Google Play Store" disabled=\
no new-packet-mark="Google Play Store" passthrough=yes src-address-list=\
APK
chain=prerouting comment=APK disabled=no layer7-protocol=\
"Google Play Store"
add action=mark-packet chain=prerouting comment="Google Play Store" disabled=\
no new-packet-mark="Google Play Store" passthrough=yes src-address-list=\
APK
/queue tree
add burst-limit=0 burst-threshold=0 burst-time=0s comment="Google Play Store" \
disabled=no limit-at=0 max-limit=0 name="Google Play Store" packet-mark=\
"Google Play Store" parent=global priority=8 queue=default
يتم تحديد السرعة من queue tree
add burst-limit=0 burst-threshold=0 burst-time=0s comment="Google Play Store" \
disabled=no limit-at=0 max-limit=0 name="Google Play Store" packet-mark=\
"Google Play Store" parent=global priority=8 queue=default
يتم تحديد السرعة من queue tree
تسريع لعبه كلاش اوف كلانس في الميكروتك
او بالامكان التحكم باجمالي خروجها من queue tree
او بالامكان التحكم باجمالي خروجها من queue tree
اسكربت تسريع اللعبه
فكرة الاخ / محمد الديلمي
فكرة الاخ / محمد الديلمي
عمل الاخ / محمد الزبدي
//////////////////////////////
//////////////////////////////
/ip fir address-list
add address=54.230.0.0/15 comment=clashofclans disabled=no list=clashofclans
add address=54.230.0.0/15 comment=clashofclans disabled=no list=clashofclans
/ip firewall mangle
add action=mark-packet chain=prerouting comment=fB.com/alzobdy|clashofclans disabled=no \
new-packet-mark=clashofclans passthrough=yes src-address-list=clashofclans
للنسخ 5
/queue tree
/queue tree
add burst-limit=0 burst-threshold=0 burst-time=0s comment=\
"clashofclans " disabled=\
no limit-at=0 max-limit=0 name=clashofclans packet-mark=clashofclans parent=global-out \
priority=8 queue=default
"clashofclans " disabled=\
no limit-at=0 max-limit=0 name=clashofclans packet-mark=clashofclans parent=global-out \
priority=8 queue=default
للنسخ 6
/queue tree
/queue tree
add burst-limit=0 burst-threshold=0 burst-time=0s comment=\
"clashofclans " disabled=\
no limit-at=0 max-limit=0 name=clashofclans packet-mark=clashofclans parent=global \
priority=8 queue=default
"clashofclans " disabled=\
no limit-at=0 max-limit=0 name=clashofclans packet-mark=clashofclans parent=global \
priority=8 queue=default
رول لتغيير DNS تلقائي
الرول من تعديل الاخ محمد الزبيدي ومن صنع الاخ احمد العربي تم تعديله ليناسب الخطوط اليمنيه فقط
/system scheduler
/system scheduler
add comment="DNS SPEED -Mikrotik YEMEN" disabled=no interval=22m name="DNS 1" \
on-event="/ip dns set servers=8.8.8.8,8.8.4.4\r\
\n:delay 86400s\r\
\n" policy=ftp,reboot,read,write,policy,test,password,sniff,sensitive \
start-time=startup
add comment="DNS SPEED -Mikrotik YEMEN" disabled=yes interval=20m name=\
"DNS 2" on-event=\
"/ip dns set servers=208.67.222.123,208.67.220.123\r\
\n:delay 86400s" policy=\
ftp,reboot,read,write,policy,test,password,sniff,sensitive start-time=\
startup
add comment="DNS SPEED -Mikrotik YEMEN" disabled=yes interval=19m name=\
"DNS 3" on-event="/ip dns set servers=4.2.2.3,4.2.2.4\r\
\n:delay 86400s" policy=\
ftp,reboot,read,write,policy,test,password,sniff,sensitive start-time=\
startup
add comment="DNS SPEED -Mikrotik YEMEN" disabled=yes interval=9m name="DNS 4" \
on-event=\
"/ip dns set servers=195.175.39.39,195.175.39.40\r\
\n:delay 86400s" policy=\
ftp,reboot,read,write,policy,test,password,sniff,sensitive start-date=\
aug/07/2016 start-time=17:31:44
add comment="DNS SPEED -Mikrotik YEMEN" disabled=no interval=2m name="DNS 12" \
on-event="/ip dns set servers=82.114.160.33,82.114.160.34\r\
\n\r\
\n" policy=ftp,reboot,read,write,policy,test,password,sniff,sensitive \
start-time=startup
add comment="DNS SPEED -Mikrotik YEMEN" disabled=no interval=4m name="DNS 11" \
on-event=\
"/ip dns set servers=82.114.160.35,82.114.160.38\r\
\n:delay 86400s" policy=\
ftp,reboot,read,write,policy,test,password,sniff,sensitive start-time=\
startup
add comment="DNS SPEED -Mikrotik YEMEN" disabled=yes interval=8m name="DNS 9" \
on-event="/ip dns set servers=77.88.8.7,77.88.8.3\r\
\n:delay 86400s" policy=\
ftp,reboot,read,write,policy,test,password,sniff,sensitive start-time=\
startup
add comment="DNS SPEED -Mikrotik YEMEN" disabled=yes interval=12m name=\
"DNS 7" on-event=\
"/ip dns set servers=199.85.126.20,199.85.127.20\r\
\n:delay 86400s" policy=\
ftp,reboot,read,write,policy,test,password,sniff,sensitive start-time=\
startup
add comment="DNS SPEED -Mikrotik YEMEN" disabled=yes interval=14m name=\
"DNS 6" on-event=\
"/ip dns set servers=198.153.192.50,198.153.194.50\r\
\n:delay 86400s" policy=\
ftp,reboot,read,write,policy,test,password,sniff,sensitive start-time=\
startup
add comment="DNS SPEED -Mikrotik YEMEN" disabled=yes interval=16m name=\
"DNS 5" on-event="/ip dns set servers=4.2.2.1,4.2.2.2\r\
\n:delay 86400s" policy=\
ftp,reboot,read,write,policy,test,password,sniff,sensitive start-time=\
startup
add disabled=no interval=10m name=tango on-event=tango policy=\
ftp,reboot,read,write,policy,test,winbox,password,sniff,sensitive,api \
start-date=aug/09/2016 start-time=23:51:45
add disabled=no interval=10m name=imo on-event=imo policy=\
ftp,reboot,read,write,policy,test,winbox,password,sniff,sensitive,api \
start-date=aug/09/2016 start-time=23:52:05
add disabled=no interval=30m name=whatsapp on-event=whatsapp policy=\
ftp,reboot,read,write,policy,test,winbox,password,sniff,sensitive,api \
start-time=startup
add comment="DNS SPEED -Mikrotik YEMEN" disabled=no interval=3m name="DNS 13" \
on-event="/ip dns set servers=82.114.160.33,82.114.160.37\r\
\n\r\
\n" policy=ftp,reboot,read,write,policy,test,password,sniff,sensitive \
start-time=startup
on-event="/ip dns set servers=8.8.8.8,8.8.4.4\r\
\n:delay 86400s\r\
\n" policy=ftp,reboot,read,write,policy,test,password,sniff,sensitive \
start-time=startup
add comment="DNS SPEED -Mikrotik YEMEN" disabled=yes interval=20m name=\
"DNS 2" on-event=\
"/ip dns set servers=208.67.222.123,208.67.220.123\r\
\n:delay 86400s" policy=\
ftp,reboot,read,write,policy,test,password,sniff,sensitive start-time=\
startup
add comment="DNS SPEED -Mikrotik YEMEN" disabled=yes interval=19m name=\
"DNS 3" on-event="/ip dns set servers=4.2.2.3,4.2.2.4\r\
\n:delay 86400s" policy=\
ftp,reboot,read,write,policy,test,password,sniff,sensitive start-time=\
startup
add comment="DNS SPEED -Mikrotik YEMEN" disabled=yes interval=9m name="DNS 4" \
on-event=\
"/ip dns set servers=195.175.39.39,195.175.39.40\r\
\n:delay 86400s" policy=\
ftp,reboot,read,write,policy,test,password,sniff,sensitive start-date=\
aug/07/2016 start-time=17:31:44
add comment="DNS SPEED -Mikrotik YEMEN" disabled=no interval=2m name="DNS 12" \
on-event="/ip dns set servers=82.114.160.33,82.114.160.34\r\
\n\r\
\n" policy=ftp,reboot,read,write,policy,test,password,sniff,sensitive \
start-time=startup
add comment="DNS SPEED -Mikrotik YEMEN" disabled=no interval=4m name="DNS 11" \
on-event=\
"/ip dns set servers=82.114.160.35,82.114.160.38\r\
\n:delay 86400s" policy=\
ftp,reboot,read,write,policy,test,password,sniff,sensitive start-time=\
startup
add comment="DNS SPEED -Mikrotik YEMEN" disabled=yes interval=8m name="DNS 9" \
on-event="/ip dns set servers=77.88.8.7,77.88.8.3\r\
\n:delay 86400s" policy=\
ftp,reboot,read,write,policy,test,password,sniff,sensitive start-time=\
startup
add comment="DNS SPEED -Mikrotik YEMEN" disabled=yes interval=12m name=\
"DNS 7" on-event=\
"/ip dns set servers=199.85.126.20,199.85.127.20\r\
\n:delay 86400s" policy=\
ftp,reboot,read,write,policy,test,password,sniff,sensitive start-time=\
startup
add comment="DNS SPEED -Mikrotik YEMEN" disabled=yes interval=14m name=\
"DNS 6" on-event=\
"/ip dns set servers=198.153.192.50,198.153.194.50\r\
\n:delay 86400s" policy=\
ftp,reboot,read,write,policy,test,password,sniff,sensitive start-time=\
startup
add comment="DNS SPEED -Mikrotik YEMEN" disabled=yes interval=16m name=\
"DNS 5" on-event="/ip dns set servers=4.2.2.1,4.2.2.2\r\
\n:delay 86400s" policy=\
ftp,reboot,read,write,policy,test,password,sniff,sensitive start-time=\
startup
add disabled=no interval=10m name=tango on-event=tango policy=\
ftp,reboot,read,write,policy,test,winbox,password,sniff,sensitive,api \
start-date=aug/09/2016 start-time=23:51:45
add disabled=no interval=10m name=imo on-event=imo policy=\
ftp,reboot,read,write,policy,test,winbox,password,sniff,sensitive,api \
start-date=aug/09/2016 start-time=23:52:05
add disabled=no interval=30m name=whatsapp on-event=whatsapp policy=\
ftp,reboot,read,write,policy,test,winbox,password,sniff,sensitive,api \
start-time=startup
add comment="DNS SPEED -Mikrotik YEMEN" disabled=no interval=3m name="DNS 13" \
on-event="/ip dns set servers=82.114.160.33,82.114.160.37\r\
\n\r\
\n" policy=ftp,reboot,read,write,policy,test,password,sniff,sensitive \
start-time=startup
اغلاق عمل طريقه البحث فى مواقع البحث عن المواقع الاباحيه
البحث الامن فى الميكروتيك
انت الان فى امان مع البحث الامن فى شبكتك
/ip dns
set allow-remote-requests=yes cache-max-ttl=1h cache-size=8192KiB \
max-udp-packet-size=8192 servers=199.85.126.20,199.85.127.20
/ip dns static
add address=216.239.32.20 disabled=no name=www.google.co.idttl=1d
add address=216.239.38.120 disabled=no name=www.google.comttl=1d
add address=216.239.38.120 disabled=no name=www.google.com.egttl=1d
add address=216.239.38.120 disabled=no name=www.youtube.comttl=1d
/ip dns
set allow-remote-requests=yes cache-max-ttl=1h cache-size=8192KiB \
max-udp-packet-size=8192 servers=199.85.126.20,199.85.127.20
/ip dns static
add address=216.239.32.20 disabled=no name=www.google.co.idttl=1d
add address=216.239.38.120 disabled=no name=www.google.comttl=1d
add address=216.239.38.120 disabled=no name=www.google.com.egttl=1d
add address=216.239.38.120 disabled=no name=www.youtube.comttl=1d
المصدر للطريقة :
https://speedlink0.blogspot.com.eg/2016/08/blog-post_19.html
https://speedlink0.blogspot.com.eg/2016/08/blog-post_19.html
الاثنين، 22 أغسطس 2016
لمن اراد الاسكربت ويحب يحظر الواتس اب
طريقة حظر الواتس اب
/ip firewall address-list
add address=31.13.64.51 list=Whatsapp
add address=31.13.65.49 list=Whatsapp
add address=31.13.66.49 list=Whatsapp
add address=31.13.67.51 list=Whatsapp
add address=31.13.69.240 list=Whatsapp
add address=31.13.70.49 list=Whatsapp
add address=31.13.71.49 list=Whatsapp
add address=31.13.72.52 list=Whatsapp
add address=31.13.73.49 list=Whatsapp
add address=31.13.74.49 list=Whatsapp
add address=31.13.75.52 list=Whatsapp
add address=31.13.76.81 list=Whatsapp
add address=31.13.77.49 list=Whatsapp
add address=31.13.79.195 list=Whatsapp
add address=31.13.80.53 list=Whatsapp
add address=31.13.81.53 list=Whatsapp
add address=31.13.82.51 list=Whatsapp
add address=31.13.83.51 list=Whatsapp
add address=31.13.84.51 list=Whatsapp
add address=31.13.85.51 list=Whatsapp
add address=31.13.86.51 list=Whatsapp
add address=31.13.87.51 list=Whatsapp
add address=31.13.88.49 list=Whatsapp
add address=31.13.88.57 list=Whatsapp
add address=31.13.90.51 list=Whatsapp
add address=31.13.91.51 list=Whatsapp
add address=31.13.92.52 list=Whatsapp
add address=31.13.93.51 list=Whatsapp
add address=31.13.95.63 list=Whatsapp
add address=50.22.75.192/27 list=Whatsapp
add address=50.22.93.192/27 list=Whatsapp
add address=50.22.198.204/30 list=Whatsapp
add address=50.22.210.32/30 list=Whatsapp
add address=50.22.210.128/27 list=Whatsapp
add address=50.22.225.64/27 list=Whatsapp
add address=50.22.235.248/30 list=Whatsapp
add address=50.22.240.160/27 list=Whatsapp
add address=50.23.90.128/27 list=Whatsapp
add address=50.97.57.128/27 list=Whatsapp
add address=75.126.39.32/27 list=Whatsapp
add address=108.168.174.0/27 list=Whatsapp
add address=108.168.176.192/26 list=Whatsapp
add address=108.168.177.0/27 list=Whatsapp
add address=108.168.180.96/27 list=Whatsapp
add address=108.168.254.65 list=Whatsapp
add address=108.168.255.224 list=Whatsapp
add address=108.168.255.227 list=Whatsapp
add address=158.85.0.96/27 list=Whatsapp
add address=158.85.5.192/27 list=Whatsapp
add address=158.85.46.128/27 list=Whatsapp
add address=158.85.48.224/27 list=Whatsapp
add address=158.85.58.0/25 list=Whatsapp
add address=158.85.61.192/27 list=Whatsapp
add address=158.85.224.160/27 list=Whatsapp
add address=158.85.233.32/27 list=Whatsapp
add address=158.85.249.128/27 list=Whatsapp
add address=158.85.249.224/27 list=Whatsapp
add address=158.85.254.64/27 list=Whatsapp
add address=169.53.29.128/27 list=Whatsapp
add address=169.53.71.224/27 list=Whatsapp
add address=169.53.250.128/26 list=Whatsapp
add address=169.54.2.160/27 list=Whatsapp
add address=169.54.51.32/27 list=Whatsapp
add address=169.54.55.192/27 list=Whatsapp
add address=169.54.210.0/27 list=Whatsapp
add address=169.54.222.128/27 list=Whatsapp
add address=169.55.69.128/26 list=Whatsapp
add address=169.55.74.32/27 list=Whatsapp
add address=169.55.235.160/27 list=Whatsapp
add address=173.192.162.32/27 list=Whatsapp
add address=173.192.219.128/27 list=Whatsapp
add address=173.192.222.160/27 list=Whatsapp
add address=173.192.231.32/27 list=Whatsapp
add address=173.193.205.0/27 list=Whatsapp
add address=173.193.230.96/27 list=Whatsapp
add address=173.193.230.128/27 list=Whatsapp
add address=173.193.230.192/27 list=Whatsapp
add address=173.193.239.0/27 list=Whatsapp
add address=174.36.208.128/27 list=Whatsapp
add address=174.36.210.32/27 list=Whatsapp
add address=174.36.251.192/27 list=Whatsapp
add address=174.37.199.192/27 list=Whatsapp
add address=174.37.215.28/30 list=Whatsapp
add address=174.37.217.64/27 list=Whatsapp
add address=174.37.231.64/27 list=Whatsapp
add address=174.37.243.64/27 list=Whatsapp
add address=174.37.251.0/27 list=Whatsapp
add address=179.60.192.51 list=Whatsapp
add address=179.60.193.51 list=Whatsapp
add address=179.60.195.51 list=Whatsapp
add address=184.173.73.176/28 list=Whatsapp
add address=184.173.136.64/27 list=Whatsapp
add address=184.173.147.32/27 list=Whatsapp
add address=184.173.161.64 list=Whatsapp
add address=184.173.161.160/27 list=Whatsapp
add address=184.173.173.116 list=Whatsapp
add address=184.173.179.32/27 list=Whatsapp
add address=184.173.195.32/27 list=Whatsapp
add address=184.173.201.32/27 list=Whatsapp
add address=184.173.204.32/27 list=Whatsapp
add address=184.173.250.53 list=Whatsapp
add address=192.155.212.192/27 list=Whatsapp
add address=198.11.193.182/31 list=Whatsapp
add address=198.11.212.0/27 list=Whatsapp
add address=198.11.217.192/27 list=Whatsapp
add address=198.11.251.32/27 list=Whatsapp
add address=198.23.80.0/27 list=Whatsapp
add address=198.23.86.224/27 list=Whatsapp
add address=198.23.87.64/27 list=Whatsapp
add address=208.43.115.192/27 list=Whatsapp
add address=208.43.117.79 list=Whatsapp
add address=208.43.117.136 list=Whatsapp
add address=208.43.122.128/27 list=Whatsapp
/ip firewall address-list
add address=31.13.64.51 list=Whatsapp
add address=31.13.65.49 list=Whatsapp
add address=31.13.66.49 list=Whatsapp
add address=31.13.67.51 list=Whatsapp
add address=31.13.69.240 list=Whatsapp
add address=31.13.70.49 list=Whatsapp
add address=31.13.71.49 list=Whatsapp
add address=31.13.72.52 list=Whatsapp
add address=31.13.73.49 list=Whatsapp
add address=31.13.74.49 list=Whatsapp
add address=31.13.75.52 list=Whatsapp
add address=31.13.76.81 list=Whatsapp
add address=31.13.77.49 list=Whatsapp
add address=31.13.79.195 list=Whatsapp
add address=31.13.80.53 list=Whatsapp
add address=31.13.81.53 list=Whatsapp
add address=31.13.82.51 list=Whatsapp
add address=31.13.83.51 list=Whatsapp
add address=31.13.84.51 list=Whatsapp
add address=31.13.85.51 list=Whatsapp
add address=31.13.86.51 list=Whatsapp
add address=31.13.87.51 list=Whatsapp
add address=31.13.88.49 list=Whatsapp
add address=31.13.88.57 list=Whatsapp
add address=31.13.90.51 list=Whatsapp
add address=31.13.91.51 list=Whatsapp
add address=31.13.92.52 list=Whatsapp
add address=31.13.93.51 list=Whatsapp
add address=31.13.95.63 list=Whatsapp
add address=50.22.75.192/27 list=Whatsapp
add address=50.22.93.192/27 list=Whatsapp
add address=50.22.198.204/30 list=Whatsapp
add address=50.22.210.32/30 list=Whatsapp
add address=50.22.210.128/27 list=Whatsapp
add address=50.22.225.64/27 list=Whatsapp
add address=50.22.235.248/30 list=Whatsapp
add address=50.22.240.160/27 list=Whatsapp
add address=50.23.90.128/27 list=Whatsapp
add address=50.97.57.128/27 list=Whatsapp
add address=75.126.39.32/27 list=Whatsapp
add address=108.168.174.0/27 list=Whatsapp
add address=108.168.176.192/26 list=Whatsapp
add address=108.168.177.0/27 list=Whatsapp
add address=108.168.180.96/27 list=Whatsapp
add address=108.168.254.65 list=Whatsapp
add address=108.168.255.224 list=Whatsapp
add address=108.168.255.227 list=Whatsapp
add address=158.85.0.96/27 list=Whatsapp
add address=158.85.5.192/27 list=Whatsapp
add address=158.85.46.128/27 list=Whatsapp
add address=158.85.48.224/27 list=Whatsapp
add address=158.85.58.0/25 list=Whatsapp
add address=158.85.61.192/27 list=Whatsapp
add address=158.85.224.160/27 list=Whatsapp
add address=158.85.233.32/27 list=Whatsapp
add address=158.85.249.128/27 list=Whatsapp
add address=158.85.249.224/27 list=Whatsapp
add address=158.85.254.64/27 list=Whatsapp
add address=169.53.29.128/27 list=Whatsapp
add address=169.53.71.224/27 list=Whatsapp
add address=169.53.250.128/26 list=Whatsapp
add address=169.54.2.160/27 list=Whatsapp
add address=169.54.51.32/27 list=Whatsapp
add address=169.54.55.192/27 list=Whatsapp
add address=169.54.210.0/27 list=Whatsapp
add address=169.54.222.128/27 list=Whatsapp
add address=169.55.69.128/26 list=Whatsapp
add address=169.55.74.32/27 list=Whatsapp
add address=169.55.235.160/27 list=Whatsapp
add address=173.192.162.32/27 list=Whatsapp
add address=173.192.219.128/27 list=Whatsapp
add address=173.192.222.160/27 list=Whatsapp
add address=173.192.231.32/27 list=Whatsapp
add address=173.193.205.0/27 list=Whatsapp
add address=173.193.230.96/27 list=Whatsapp
add address=173.193.230.128/27 list=Whatsapp
add address=173.193.230.192/27 list=Whatsapp
add address=173.193.239.0/27 list=Whatsapp
add address=174.36.208.128/27 list=Whatsapp
add address=174.36.210.32/27 list=Whatsapp
add address=174.36.251.192/27 list=Whatsapp
add address=174.37.199.192/27 list=Whatsapp
add address=174.37.215.28/30 list=Whatsapp
add address=174.37.217.64/27 list=Whatsapp
add address=174.37.231.64/27 list=Whatsapp
add address=174.37.243.64/27 list=Whatsapp
add address=174.37.251.0/27 list=Whatsapp
add address=179.60.192.51 list=Whatsapp
add address=179.60.193.51 list=Whatsapp
add address=179.60.195.51 list=Whatsapp
add address=184.173.73.176/28 list=Whatsapp
add address=184.173.136.64/27 list=Whatsapp
add address=184.173.147.32/27 list=Whatsapp
add address=184.173.161.64 list=Whatsapp
add address=184.173.161.160/27 list=Whatsapp
add address=184.173.173.116 list=Whatsapp
add address=184.173.179.32/27 list=Whatsapp
add address=184.173.195.32/27 list=Whatsapp
add address=184.173.201.32/27 list=Whatsapp
add address=184.173.204.32/27 list=Whatsapp
add address=184.173.250.53 list=Whatsapp
add address=192.155.212.192/27 list=Whatsapp
add address=198.11.193.182/31 list=Whatsapp
add address=198.11.212.0/27 list=Whatsapp
add address=198.11.217.192/27 list=Whatsapp
add address=198.11.251.32/27 list=Whatsapp
add address=198.23.80.0/27 list=Whatsapp
add address=198.23.86.224/27 list=Whatsapp
add address=198.23.87.64/27 list=Whatsapp
add address=208.43.115.192/27 list=Whatsapp
add address=208.43.117.79 list=Whatsapp
add address=208.43.117.136 list=Whatsapp
add address=208.43.122.128/27 list=Whatsapp
/ip firewall filter
add chain=forward dst-address-list=Whatsapp action=drop comment="Whatsapp Drop"
add chain=forward dst-address-list=Whatsapp action=drop comment="Whatsapp Drop"
add chain=input src-address-list=Whatsapp action=drop comment="Whatsapp Drop"
..........................................................................................
الشرح منقول من محمد الزبيدي
مرحبا بكم اعزائي
ساشرح لكم كيفية اضافة ميزة التحكم في سوق الابل ستور
ايفون
ايباد
اجهزة لابااات الماك
تابعو الشرح الحصررري
وتابعو المزيد عبر الفيسبوك
alzobdy
نسخ خمسة V5
اضافة يدوي نتيجة لوجود فواصل والنسخ ماتتقبل
باسم
itunes.apple.com1
في layer 7
محتوي الامر
search.itunes.apple.com|idmsa.apple.com|itunes.apple.com|images.apple.com|itunesconnect.apple.com|userpub.itunes.apple.com|iosapps.itunes.apple.com|supportdownload.apple.com
/queue tree
add burst-limit=0 burst-threshold=0 burst-time=0s comment="ios||FB.com/alzobdy||967774039606" \
disabled=no limit-at=0 max-limit=750k name="ios" packet-mark=\
"ios" parent=global-out priority=8 queue=default
RB V6 نسخ
اضافة يدوي نتيجة لوجود فواصل والنسخ ماتتقبل
باسم
itunes.apple.com
في layer 7
محتوي الامر
search.itunes.apple.com|idmsa.apple.com|itunes.apple.com|images.apple.com|itunesconnect.apple.com|userpub.itunes.apple.com|iosapps.itunes.apple.com|supportdownload.apple.com
/ip firewall mangle
add action=add-src-to-address-list address-list=IOS address-list-timeout=1d \
chain=prerouting comment=itunes.apple.com disabled=no layer7-protocol=\
itunes.apple.com
add action=mark-packet chain=prerouting comment=\
"itunes.apple.com||FB .com/alzobdy ||967 774039606" disabled=no \
layer7-protocol=itunes.apple.com new-packet-mark=ios passthrough=yes \
src-address-list=IOS
/queue tree
add burst-limit=0 burst-threshold=0 burst-time=0s comment="ios||FB.com/alzobdy||967774039606" \
disabled=no limit-at=0 max-limit=750k name="ios" packet-mark=\
"ios" parent=global priority=8 queue=default
التحكم يكون من هنا
ممكن ان اردتم
يكون
واحد ميجا
او 2ميجا
اجمالي ما سيسحبة المشتركين من سوق ابل ستور
ممكن تتركة مفتوح لحد ما تشوف كم اقصى شي يسحبو
كل مدير شبكة ع شبكتة وسرعه شبكتة
موفقين شباب
الشرح منقول من محمد الزبيدي
ترقبو الجديد
ساشرح لكم كيفية اضافة ميزة التحكم في سوق الابل ستور
ايفون
ايباد
اجهزة لابااات الماك
تابعو الشرح الحصررري
وتابعو المزيد عبر الفيسبوك
alzobdy
نسخ خمسة V5
اضافة يدوي نتيجة لوجود فواصل والنسخ ماتتقبل
باسم
itunes.apple.com1
في layer 7
محتوي الامر
search.itunes.apple.com|idmsa.apple.com|itunes.apple.com|images.apple.com|itunesconnect.apple.com|userpub.itunes.apple.com|iosapps.itunes.apple.com|supportdownload.apple.com
/ip firewall mangle
add action=mark-packet chain=prerouting comment=\
"itunes.apple.com||FB .com/alzobdy ||967 774039606" disabled=no \
layer7-protocol=itunes.apple.com new-packet-mark=ios passthrough=yes \
src-address-list=IOS
"itunes.apple.com||FB .com/alzobdy ||967 774039606" disabled=no \
layer7-protocol=itunes.apple.com new-packet-mark=ios passthrough=yes \
src-address-list=IOS
/queue tree
add burst-limit=0 burst-threshold=0 burst-time=0s comment="ios||FB.com/alzobdy||967774039606" \
disabled=no limit-at=0 max-limit=750k name="ios" packet-mark=\
"ios" parent=global-out priority=8 queue=default
RB V6 نسخ
اضافة يدوي نتيجة لوجود فواصل والنسخ ماتتقبل
باسم
itunes.apple.com
في layer 7
محتوي الامر
search.itunes.apple.com|idmsa.apple.com|itunes.apple.com|images.apple.com|itunesconnect.apple.com|userpub.itunes.apple.com|iosapps.itunes.apple.com|supportdownload.apple.com
/ip firewall mangle
add action=add-src-to-address-list address-list=IOS address-list-timeout=1d \
chain=prerouting comment=itunes.apple.com disabled=no layer7-protocol=\
itunes.apple.com
add action=mark-packet chain=prerouting comment=\
"itunes.apple.com||FB .com/alzobdy ||967 774039606" disabled=no \
layer7-protocol=itunes.apple.com new-packet-mark=ios passthrough=yes \
src-address-list=IOS
/queue tree
add burst-limit=0 burst-threshold=0 burst-time=0s comment="ios||FB.com/alzobdy||967774039606" \
disabled=no limit-at=0 max-limit=750k name="ios" packet-mark=\
"ios" parent=global priority=8 queue=default
التحكم يكون من هنا
ممكن ان اردتم
يكون
واحد ميجا
او 2ميجا
اجمالي ما سيسحبة المشتركين من سوق ابل ستور
ممكن تتركة مفتوح لحد ما تشوف كم اقصى شي يسحبو
كل مدير شبكة ع شبكتة وسرعه شبكتة
موفقين شباب
الشرح منقول من محمد الزبيدي
ترقبو الجديد
الاشتراك في:
التعليقات (Atom)