Fail Over
/log error message="Ola mundo!"
/ip route disable [find comment=ROOT]
/ip route enable [find comment=ROOT]
/tool netwatch
add down-script="ip route disable [find comment=ISP]" host=198.97.190.53 up-script="/ip route enable [find comment=ISP]"
#######################################################
export script
:local Id [/system identity get name]
:local Time [/system clock get time]
:local Date [/system clock get date]
:local Month [:tostr ([:find [:toarray "jan,feb,mar,apr,may,jun,jul,ago,sep,oct,nov,dec"] [:pick $Date 0 3]]+1)]
:if (:len $Month<2) do={
:set Month "0$Month"
}
:set Month [:pick [$Month] 0 2]
:global TimeDate ([:pick $Time 0 2]."-".[:pick $Time 3 5]."-".[:pick $Time 6 8]."-".[:pick $Date 4 6]."-".$Month."-".[:pick $Date 7 11])
:local File "$Id-$TimeDate"
:log info message="Statrt export $Id-$TimeDate"
export show-sensitive file=$File
:log info message="Finish export $Id-$TimeDate"
#######################################################
Port Knocking
/ip firewall filter
add action=add-src-to-address-list address-list=knocking-level1 \
address-list-timeout=1s chain=input dst-port=9000 protocol=tcp
add action=add-src-to-address-list address-list=knocking-level2 \
address-list-timeout=1s chain=input dst-port=8000 protocol=tcp \
src-address-list=knocking-level1
add action=add-src-to-address-list address-list=knocking-level3 \
address-list-timeout=1s chain=input dst-port=8001 protocol=tcp \
src-address-list=knocking-level2
add action=add-src-to-address-list address-list=knocking-level4 \
address-list-timeout=1s chain=input dst-port=1000 protocol=tcp \
src-address-list=knocking-level3
add action=add-src-to-address-list address-list=knocking-level5 \
address-list-timeout=1s chain=input dst-port=999 protocol=tcp \
src-address-list=knocking-level4
add action=add-src-to-address-list address-list=knocking-level6 \
address-list-timeout=1s chain=input dst-port=1001 protocol=tcp \
src-address-list=knocking-level5
add action=add-src-to-address-list address-list=knocking-level7 \
address-list-timeout=1m chain=input dst-port=9001 log=yes log-prefix=\
knocking-level7 protocol=tcp src-address-list=knocking-level6
add action=add-src-to-address-list address-list=knocking-level1 \
address-list-timeout=1s chain=input dst-port=9000 protocol=udp
add action=add-src-to-address-list address-list=knocking-level2 \
address-list-timeout=1s chain=input dst-port=8000 protocol=udp \
src-address-list=knocking-level1
add action=add-src-to-address-list address-list=knocking-level3 \
address-list-timeout=1s chain=input dst-port=8001 protocol=udp \
src-address-list=knocking-level2
add action=add-src-to-address-list address-list=knocking-level4 \
address-list-timeout=1s chain=input dst-port=1000 protocol=udp \
src-address-list=knocking-level3
add action=add-src-to-address-list address-list=knocking-level5 \
address-list-timeout=1s chain=input dst-port=999 protocol=udp \
src-address-list=knocking-level4
add action=add-src-to-address-list address-list=knocking-level6 \
address-list-timeout=1s chain=input dst-port=1001 protocol=udp \
src-address-list=knocking-level5
add action=add-src-to-address-list address-list=knocking-level7 \
address-list-timeout=1m chain=input dst-port=9001 log=yes log-prefix=\
knocking-level7 protocol=udp src-address-list=knocking-level6
add action=accept chain=input dst-port=22 protocol=tcp src-address-list=\
knocking-level7
add action=drop chain=input dst-port=22 protocol=tcp
Protegendo o Roteador MikroTik com Port Knocking Show archive.org snapshot
Port Knocking from Linux
Show archive.org snapshot
Port knocking, aprenda a melhorar as polĂtica de segurança de seu firewall Linux e Mikrotik
Show archive.org snapshot
Port Knocking from Windows
Show archive.org snapshot
Download
Show archive.org snapshot
Manual
Show archive.org snapshot
how-to-enable-the-telnet-client-in-windows-10
Show archive.org snapshot
9000:udp,8000:udp,8001:udp,1000:udp,999:udp,1001:udp
#######################################################
Posted by L3UNIX to L3UNIX's deck (2023-01-07 17:47)