· 7 years ago · Jul 06, 2018, 05:04 PM
1/ip firewall layer7-protocol
2add comment="" name=Yahoo regexp="^(ymsg|ypns|yhoo).\?.\?.\?.\?.\?.\?.\?[lwt].*\\xc0\\x80"
3add comment="" name=MSN regexp=\
4 "ver [0-9]+ msnp[1-9][0-9]\? [\\x09-\\x0d -~]*cvr0\\x0d\\x0a\$|usr 1 [!-~]+ [0-9. ]+\\x0d\\x0a\$|ans 1 [!-~]+ [0-9. ]+\\x0d\\x0a\$"
5add comment="" name="MSN FT" regexp="^(ver [ -~]*msnftp\\x0d\\x0aver msnftp\\x0d\\x0ausr|method msnmsgr:)"
6add comment="" name=Skype regexp="^..\\x02............."
7add comment="" name=Skype-to-Phone regexp="^(\\x01.\?.\?.\?.\?.\?.\?.\?.\?\\x01|\\x02.\?.\?.\?.\?.\?.\?.\?.\?\\x02|\\x03.\?.\?.\?.\?.\?.\?.\
8 \?.\?\\x03|\\x04.\?.\?.\?.\?.\?.\?.\?.\?\\x04|\\x05.\?.\?.\?.\?.\?.\?.\?.\?\\x05|\\x06.\?.\?.\?.\?.\?.\?.\?.\?\\x06|\\x07.\?.\?.\?.\?.\?\
9 .\?.\?.\?\\x07|\\x08.\?.\?.\?.\?.\?.\?.\?.\?\\x08|\\x09.\?.\?.\?.\?.\?.\?.\?.\?\\x09|\\x0a.\?.\?.\?.\?.\?.\?.\?.\?\\x0a|\\x0b.\?.\?.\?.\
10 \?.\?.\?.\?.\?\\x0b|\\x0c.\?.\?.\?.\?.\?.\?.\?.\?\\x0c|\\x0d.\?.\?.\?.\?.\?.\?.\?.\?\\x0d|\\x0e.\?.\?.\?.\?.\?.\?.\?.\?\\x0e|\\x0f.\?.\?\
11 .\?.\?.\?.\?.\?.\?\\x0f|\\x10.\?.\?.\?.\?.\?.\?.\?.\?\\x10|\\x11.\?.\?.\?.\?.\?.\?.\?.\?\\x11|\\x12.\?.\?.\?.\?.\?.\?.\?.\?\\x12|\\x13.\
12 \?.\?.\?.\?.\?.\?.\?.\?\\x13|\\x14.\?.\?.\?.\?.\?.\?.\?.\?\\x14|\\x15.\?.\?.\?.\?.\?.\?.\?.\?\\x15|\\x16.\?.\?.\?.\?.\?.\?.\?.\?\\x16|\\\
13 x17.\?.\?.\?.\?.\?.\?.\?.\?\\x17|\\x18.\?.\?.\?.\?.\?.\?.\?.\?\\x18|\\x19.\?.\?.\?.\?.\?.\?.\?.\?\\x19|\\x1a.\?.\?.\?.\?.\?.\?.\?.\?\\x1\
14 a|\\x1b.\?.\?.\?.\?.\?.\?.\?.\?\\x1b|\\x1c.\?.\?.\?.\?.\?.\?.\?.\?\\x1c|\\x1d.\?.\?.\?.\?.\?.\?.\?.\?\\x1d|\\x1e.\?.\?.\?.\?.\?.\?.\?.\?\
15 \\x1e|\\x1f.\?.\?.\?.\?.\?.\?.\?.\?\\x1f|\\x20.\?.\?.\?.\?.\?.\?.\?.\?\\x20|\\x21.\?.\?.\?.\?.\?.\?.\?.\?\\x21|\\x22.\?.\?.\?.\?.\?.\?.\
16 \?.\?\\x22|\\x23.\?.\?.\?.\?.\?.\?.\?.\?\\x23|\\\$.\?.\?.\?.\?.\?.\?.\?.\?\\\$|\\x25.\?.\?.\?.\?.\?.\?.\?.\?\\x25|\\x26.\?.\?.\?.\?.\?.\
17 \?.\?.\?\\x26|\\x27.\?.\?.\?.\?.\?.\?.\?.\?\\x27|\\(.\?.\?.\?.\?.\?.\?.\?.\?\\(|\\).\?.\?.\?.\?.\?.\?.\?.\?\\)|\\*.\?.\?.\?.\?.\?.\?.\?.\
18 \?\\*|\\+.\?.\?.\?.\?.\?.\?.\?.\?\\+|\\x2c.\?.\?.\?.\?.\?.\?.\?.\?\\x2c|\\x2d.\?.\?.\?.\?.\?.\?.\?.\?\\x2d|\\..\?.\?.\?.\?.\?.\?.\?.\?\\\
19 .|\\x2f.\?.\?.\?.\?.\?.\?.\?.\?\\x2f|\\x30.\?.\?.\?.\?.\?.\?.\?.\?\\x30|\\x31.\?.\?.\?.\?.\?.\?.\?.\?\\x31|\\x32.\?.\?.\?.\?.\?.\?.\?.\?\
20 \\x32|\\x33.\?.\?.\?.\?.\?.\?.\?.\?\\x33|\\x34.\?.\?.\?.\?.\?.\?.\?.\?\\x34|\\x35.\?.\?.\?.\?.\?.\?.\?.\?\\x35|\\x36.\?.\?.\?.\?.\?.\?.\
21 \?.\?\\x36|\\x37.\?.\?.\?.\?.\?.\?.\?.\?\\x37|\\x38.\?.\?.\?.\?.\?.\?.\?.\?\\x38|\\x39.\?.\?.\?.\?.\?.\?.\?.\?\\x39|\\x3a.\?.\?.\?.\?.\?\
22 .\?.\?.\?\\x3a|\\x3b.\?.\?.\?.\?.\?.\?.\?.\?\\x3b|\\x3c.\?.\?.\?.\?.\?.\?.\?.\?\\x3c|\\x3d.\?.\?.\?.\?.\?.\?.\?.\?\\x3d|\\x3e.\?.\?.\?.\
23 \?.\?.\?.\?.\?\\x3e|\\\?.\?.\?.\?.\?.\?.\?.\?.\?\\\?|\\x40.\?.\?.\?.\?.\?.\?.\?.\?\\x40|\\x41.\?.\?.\?.\?.\?.\?.\?.\?\\x41|\\x42.\?.\?.\
24 \?.\?.\?.\?.\?.\?\\x42|\\x43.\?.\?.\?.\?.\?.\?.\?.\?\\x43|\\x44.\?.\?.\?.\?.\?.\?.\?.\?\\x44|\\x45.\?.\?.\?.\?.\?.\?.\?.\?\\x45|\\x46.\?\
25 .\?.\?.\?.\?.\?.\?.\?\\x46|\\x47.\?.\?.\?.\?.\?.\?.\?.\?\\x47|\\x48.\?.\?.\?.\?.\?.\?.\?.\?\\x48|\\x49.\?.\?.\?.\?.\?.\?.\?.\?\\x49|\\x4\
26 a.\?.\?.\?.\?.\?.\?.\?.\?\\x4a|\\x4b.\?.\?.\?.\?.\?.\?.\?.\?\\x4b|\\x4c.\?.\?.\?.\?.\?.\?.\?.\?\\x4c|\\x4d.\?.\?.\?.\?.\?.\?.\?.\?\\x4d|\
27 \\x4e.\?.\?.\?.\?.\?.\?.\?.\?\\x4e|\\x4f.\?.\?.\?.\?.\?.\?.\?.\?\\x4f|\\x50.\?.\?.\?.\?.\?.\?.\?.\?\\x50|\\x51.\?.\?.\?.\?.\?.\?.\?.\?\\\
28 x51|\\x52.\?.\?.\?.\?.\?.\?.\?.\?\\x52|\\x53.\?.\?.\?.\?.\?.\?.\?.\?\\x53|\\x54.\?.\?.\?.\?.\?.\?.\?.\?\\x54|\\x55.\?.\?.\?.\?.\?.\?.\?.\
29 \?\\x55|\\x56.\?.\?.\?.\?.\?.\?.\?.\?\\x56|\\x57.\?.\?.\?.\?.\?.\?.\?.\?\\x57|\\x58.\?.\?.\?.\?.\?.\?.\?.\?\\x58|\\x59.\?.\?.\?.\?.\?.\?\
30 .\?.\?\\x59|\\x5a.\?.\?.\?.\?.\?.\?.\?.\?\\x5a|\\[.\?.\?.\?.\?.\?.\?.\?.\?\\[|\\\\.\?.\?.\?.\?.\?.\?.\?.\?\\\\|\\].\?.\?.\?.\?.\?.\?.\?.\
31 \?\\]|\\^.\?.\?.\?.\?.\?.\?.\?.\?\\^|\\x5f.\?.\?.\?.\?.\?.\?.\?.\?\\x5f|\\x60.\?.\?.\?.\?.\?.\?.\?.\?\\x60|\\x61.\?.\?.\?.\?.\?.\?.\?.\?\
32 \\x61|\\x62.\?.\?.\?.\?.\?.\?.\?.\?\\x62|\\x63.\?.\?.\?.\?.\?.\?.\?.\?\\x63|\\x64.\?.\?.\?.\?.\?.\?.\?.\?\\x64|\\x65.\?.\?.\?.\?.\?.\?.\
33 \?.\?\\x65|\\x66.\?.\?.\?.\?.\?.\?.\?.\?\\x66|\\x67.\?.\?.\?.\?.\?.\?.\?.\?\\x67|\\x68.\?.\?.\?.\?.\?.\?.\?.\?\\x68|\\x69.\?.\?.\?.\?.\?\
34 .\?.\?.\?\\x69|\\x6a.\?.\?.\?.\?.\?.\?.\?.\?\\x6a|\\x6b.\?.\?.\?.\?.\?.\?.\?.\?\\x6b|\\x6c.\?.\?.\?.\?.\?.\?.\?.\?\\x6c|\\x6d.\?.\?.\?.\
35 \?.\?.\?.\?.\?\\x6d|\\x6e.\?.\?.\?.\?.\?.\?.\?.\?\\x6e|\\x6f.\?.\?.\?.\?.\?.\?.\?.\?\\x6f|\\x70.\?.\?.\?.\?.\?.\?.\?.\?\\x70|\\x71.\?.\?\
36 .\?.\?.\?.\?.\?.\?\\x71|\\x72.\?.\?.\?.\?.\?.\?.\?.\?\\x72|\\x73.\?.\?.\?.\?.\?.\?.\?.\?\\x73|\\x74.\?.\?.\?.\?.\?.\?.\?.\?\\x74|\\x75.\
37 \?.\?.\?.\?.\?.\?.\?.\?\\x75|\\x76.\?.\?.\?.\?.\?.\?.\?.\?\\x76|\\x77.\?.\?.\?.\?.\?.\?.\?.\?\\x77|\\x78.\?.\?.\?.\?.\?.\?.\?.\?\\x78|\\\
38 x79.\?.\?.\?.\?.\?.\?.\?.\?\\x79|\\x7a.\?.\?.\?.\?.\?.\?.\?.\?\\x7a|\\{.\?.\?.\?.\?.\?.\?.\?.\?\\{|\\|.\?.\?.\?.\?.\?.\?.\?.\?\\||\\}.\?\
39 .\?.\?.\?.\?.\?.\?.\?\\}|\\x7e.\?.\?.\?.\?.\?.\?.\?.\?\\x7e|\\x7f.\?.\?.\?.\?.\?.\?.\?.\?\\x7f|\\x80.\?.\?.\?.\?.\?.\?.\?.\?\\x80|\\x81.\
40 \?.\?.\?.\?.\?.\?.\?.\?\\x81|\\x82.\?.\?.\?.\?.\?.\?.\?.\?\\x82|\\x83.\?.\?.\?.\?.\?.\?.\?.\?\\x83|\\x84.\?.\?.\?.\?.\?.\?.\?.\?\\x84|\\\
41 x85.\?.\?.\?.\?.\?.\?.\?.\?\\x85|\\x86.\?.\?.\?.\?.\?.\?.\?.\?\\x86|\\x87.\?.\?.\?.\?.\?.\?.\?.\?\\x87|\\x88.\?.\?.\?.\?.\?.\?.\?.\?\\x8\
42 8|\\x89.\?.\?.\?.\?.\?.\?.\?.\?\\x89|\\x8a.\?.\?.\?.\?.\?.\?.\?.\?\\x8a|\\x8b.\?.\?.\?.\?.\?.\?.\?.\?\\x8b|\\x8c.\?.\?.\?.\?.\?.\?.\?.\?\
43 \\x8c|\\x8d.\?.\?.\?.\?.\?.\?.\?.\?\\x8d|\\x8e.\?.\?.\?.\?.\?.\?.\?.\?\\x8e|\\x8f.\?.\?.\?.\?.\?.\?.\?.\?\\x8f|\\x90.\?.\?.\?.\?.\?.\?.\
44 \?.\?\\x90|\\x91.\?.\?.\?.\?.\?.\?.\?.\?\\x91|\\x92.\?.\?.\?.\?.\?.\?.\?.\?\\x92|\\x93.\?.\?.\?.\?.\?.\?.\?.\?\\x93|\\x94.\?.\?.\?.\?.\?\
45 .\?.\?.\?\\x94|\\x95.\?.\?.\?.\?.\?.\?.\?.\?\\x95|\\x96.\?.\?.\?.\?.\?.\?.\?.\?\\x96|\\x97.\?.\?.\?.\?.\?.\?.\?.\?\\x97|\\x98.\?.\?.\?.\
46 \?.\?.\?.\?.\?\\x98|\\x99.\?.\?.\?.\?.\?.\?.\?.\?\\x99|\\x9a.\?.\?.\?.\?.\?.\?.\?.\?\\x9a|\\x9b.\?.\?.\?.\?.\?.\?.\?.\?\\x9b|\\x9c.\?.\?\
47 .\?.\?.\?.\?.\?.\?\\x9c|\\x9d.\?.\?.\?.\?.\?.\?.\?.\?\\x9d|\\x9e.\?.\?.\?.\?.\?.\?.\?.\?\\x9e|\\x9f.\?.\?.\?.\?.\?.\?.\?.\?\\x9f|\\xa0.\
48 \?.\?.\?.\?.\?.\?.\?.\?\\xa0|\\xa1.\?.\?.\?.\?.\?.\?.\?.\?\\xa1|\\xa2.\?.\?.\?.\?.\?.\?.\?.\?\\xa2|\\xa3.\?.\?.\?.\?.\?.\?.\?.\?\\xa3|\\\
49 xa4.\?.\?.\?.\?.\?.\?.\?.\?\\xa4|\\xa5.\?.\?.\?.\?.\?.\?.\?.\?\\xa5|\\xa6.\?.\?.\?.\?.\?.\?.\?.\?\\xa6|\\xa7.\?.\?.\?.\?.\?.\?.\?.\?\\xa\
50 7|\\xa8.\?.\?.\?.\?.\?.\?.\?.\?\\xa8|\\xa9.\?.\?.\?.\?.\?.\?.\?.\?\\xa9|\\xaa.\?.\?.\?.\?.\?.\?.\?.\?\\xaa|\\xab.\?.\?.\?.\?.\?.\?.\?.\?\
51 \\xab|\\xac.\?.\?.\?.\?.\?.\?.\?.\?\\xac|\\xad.\?.\?.\?.\?.\?.\?.\?.\?\\xad|\\xae.\?.\?.\?.\?.\?.\?.\?.\?\\xae|\\xaf.\?.\?.\?.\?.\?.\?.\
52 \?.\?\\xaf|\\xb0.\?.\?.\?.\?.\?.\?.\?.\?\\xb0|\\xb1.\?.\?.\?.\?.\?.\?.\?.\?\\xb1|\\xb2.\?.\?.\?.\?.\?.\?.\?.\?\\xb2|\\xb3.\?.\?.\?.\?.\?\
53 .\?.\?.\?\\xb3|\\xb4.\?.\?.\?.\?.\?.\?.\?.\?\\xb4|\\xb5.\?.\?.\?.\?.\?.\?.\?.\?\\xb5|\\xb6.\?.\?.\?.\?.\?.\?.\?.\?\\xb6|\\xb7.\?.\?.\?.\
54 \?.\?.\?.\?.\?\\xb7|\\xb8.\?.\?.\?.\?.\?.\?.\?.\?\\xb8|\\xb9.\?.\?.\?.\?.\?.\?.\?.\?\\xb9|\\xba.\?.\?.\?.\?.\?.\?.\?.\?\\xba|\\xbb.\?.\?\
55 .\?.\?.\?.\?.\?.\?\\xbb|\\xbc.\?.\?.\?.\?.\?.\?.\?.\?\\xbc|\\xbd.\?.\?.\?.\?.\?.\?.\?.\?\\xbd|\\xbe.\?.\?.\?.\?.\?.\?.\?.\?\\xbe|\\xbf.\
56 \?.\?.\?.\?.\?.\?.\?.\?\\xbf|\\xc0.\?.\?.\?.\?.\?.\?.\?.\?\\xc0|\\xc1.\?.\?.\?.\?.\?.\?.\?.\?\\xc1|\\xc2.\?.\?.\?.\?.\?.\?.\?.\?\\xc2|\\\
57 xc3.\?.\?.\?.\?.\?.\?.\?.\?\\xc3|\\xc4.\?.\?.\?.\?.\?.\?.\?.\?\\xc4|\\xc5.\?.\?.\?.\?.\?.\?.\?.\?\\xc5|\\xc6.\?.\?.\?.\?.\?.\?.\?.\?\\xc\
58 6|\\xc7.\?.\?.\?.\?.\?.\?.\?.\?\\xc7|\\xc8.\?.\?.\?.\?.\?.\?.\?.\?\\xc8|\\xc9.\?.\?.\?.\?.\?.\?.\?.\?\\xc9|\\xca.\?.\?.\?.\?.\?.\?.\?.\?\
59 \\xca|\\xcb.\?.\?.\?.\?.\?.\?.\?.\?\\xcb|\\xcc.\?.\?.\?.\?.\?.\?.\?.\?\\xcc|\\xcd.\?.\?.\?.\?.\?.\?.\?.\?\\xcd|\\xce.\?.\?.\?.\?.\?.\?.\
60 \?.\?\\xce|\\xcf.\?.\?.\?.\?.\?.\?.\?.\?\\xcf|\\xd0.\?.\?.\?.\?.\?.\?.\?.\?\\xd0|\\xd1.\?.\?.\?.\?.\?.\?.\?.\?\\xd1|\\xd2.\?.\?.\?.\?.\?\
61 .\?.\?.\?\\xd2|\\xd3.\?.\?.\?.\?.\?.\?.\?.\?\\xd3|\\xd4.\?.\?.\?.\?.\?.\?.\?.\?\\xd4|\\xd5.\?.\?.\?.\?.\?.\?.\?.\?\\xd5|\\xd6.\?.\?.\?.\
62 \?.\?.\?.\?.\?\\xd6|\\xd7.\?.\?.\?.\?.\?.\?.\?.\?\\xd7|\\xd8.\?.\?.\?.\?.\?.\?.\?.\?\\xd8|\\xd9.\?.\?.\?.\?.\?.\?.\?.\?\\xd9|\\xda.\?.\?\
63 .\?.\?.\?.\?.\?.\?\\xda|\\xdb.\?.\?.\?.\?.\?.\?.\?.\?\\xdb|\\xdc.\?.\?.\?.\?.\?.\?.\?.\?\\xdc|\\xdd.\?.\?.\?.\?.\?.\?.\?.\?\\xdd|\\xde.\
64 \?.\?.\?.\?.\?.\?.\?.\?\\xde|\\xdf.\?.\?.\?.\?.\?.\?.\?.\?\\xdf|\\xe0.\?.\?.\?.\?.\?.\?.\?.\?\\xe0|\\xe1.\?.\?.\?.\?.\?.\?.\?.\?\\xe1|\\\
65 xe2.\?.\?.\?.\?.\?.\?.\?.\?\\xe2|\\xe3.\?.\?.\?.\?.\?.\?.\?.\?\\xe3|\\xe4.\?.\?.\?.\?.\?.\?.\?.\?\\xe4|\\xe5.\?.\?.\?.\?.\?.\?.\?.\?\\xe\
66 5|\\xe6.\?.\?.\?.\?.\?.\?.\?.\?\\xe6|\\xe7.\?.\?.\?.\?.\?.\?.\?.\?\\xe7|\\xe8.\?.\?.\?.\?.\?.\?.\?.\?\\xe8|\\xe9.\?.\?.\?.\?.\?.\?.\?.\?\
67 \\xe9|\\xea.\?.\?.\?.\?.\?.\?.\?.\?\\xea|\\xeb.\?.\?.\?.\?.\?.\?.\?.\?\\xeb|\\xec.\?.\?.\?.\?.\?.\?.\?.\?\\xec|\\xed.\?.\?.\?.\?.\?.\?.\
68 \?.\?\\xed|\\xee.\?.\?.\?.\?.\?.\?.\?.\?\\xee|\\xef.\?.\?.\?.\?.\?.\?.\?.\?\\xef|\\xf0.\?.\?.\?.\?.\?.\?.\?.\?\\xf0|\\xf1.\?.\?.\?.\?.\?\
69 .\?.\?.\?\\xf1|\\xf2.\?.\?.\?.\?.\?.\?.\?.\?\\xf2|\\xf3.\?.\?.\?.\?.\?.\?.\?.\?\\xf3|\\xf4.\?.\?.\?.\?.\?.\?.\?.\?\\xf4|\\xf5.\?.\?.\?.\
70 \?.\?.\?.\?.\?\\xf5|\\xf6.\?.\?.\?.\?.\?.\?.\?.\?\\xf6|\\xf7.\?.\?.\?.\?.\?.\?.\?.\?\\xf7|\\xf8.\?.\?.\?.\?.\?.\?.\?.\?\\xf8|\\xf9.\?.\?\
71 .\?.\?.\?.\?.\?.\?\\xf9|\\xfa.\?.\?.\?.\?.\?.\?.\?.\?\\xfa|\\xfb.\?.\?.\?.\?.\?.\?.\?.\?\\xfb|\\xfc.\?.\?.\?.\?.\?.\?.\?.\?\\xfc|\\xfd.\
72 \?.\?.\?.\?.\?.\?.\?.\?\\xfd|\\xfe.\?.\?.\?.\?.\?.\?.\?.\?\\xfe|\\xff.\?.\?.\?.\?.\?.\?.\?.\?\\xff)"
73add comment="" name=AIM regexp="^(\\*[\\x01\\x02].*\\x03\\x0b|\\*\\x01.\?.\?.\?.\?\\x01)|flapon|toc_signon.*0x"
74add comment="" name=ICQ regexp="^(\\*[\\x01\\x02].*\\x03\\x0b|\\*\\x01.\?.\?.\?.\?\\x01)|flapon|toc_signon.*0x"
75add comment="" name=IRC regexp=\
76 "^(nick[\\x09-\\x0d -~]*user[\\x09-\\x0d -~]*:|user[\\x09-\\x0d -~]*:[\\x02-\\x0d -~]*nick[\\x09-\\x0d -~]*\\x0d\\x0a)"
77add comment="" name=edonkey regexp="^[\\C5\\D4\\E3-\\E5].\\\?.\\\?.\\\?.\\\?([\\01\\02\\05\\14\\15\\16\\18\\19\\1A\\1B\\1C !234568@ABCFGHIJK\
78 LMNOPQRSTUVWX[`\\81\\82\\90\\91\\93\\96\\97\\98\\99\\9A\\9B\\9C\\9E\\A0\\A1\\A2\\A3\\A4]|Y................\\\?[ -~]|\\96....\\\$)"
79add comment="" name=rdp regexp=rdpdr.*cliprdr.*rdpsnd
80add comment="" name=bittorrent regexp="^(\13bittorrent protocol|azver\01\$|get/scrape\\\?info_hash=)|d1:ad2:id20:|\08'7P\\)[RP]"
81add comment="" name=h323 regexp="^\\03..\\\?\\08...\\\?.\\\?.\\\?.\\\?.\\\?.\\\?.\\\?.\\\?.\\\?.\\\?.\\\?.\\\?.\\\?.\\\?.\\\?\\05"
82add comment="" name=SIP regexp="^(invite|register|cancel|message|subscribe|notify) sip[\\x09-\\x0d -~]*sip/[0-2]\\.[0-9]"
83add comment="" name=netbios regexp="\\x81.\?.\?.[A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A\
84 -P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P]\r\
85 \n"
86add comment="" name="\B5TP" regexp="\\x7F\\xFF\\xFF\\xFF\\xAB"
87/ip firewall address-list
88add address=92.46.32.239 comment=BlockHost disabled=no list=block
89add address=64.12.0.0/16 comment="" disabled=no list=icq
90add address=205.188.0.0/16 comment="" disabled=no list=icq
91add address=10.0.0.0/8 comment="" disabled=no list=local
92add address=172.16.0.0/12 comment="" disabled=no list=local
93add address=192.168.0.0/16 comment="" disabled=no list=local
94add address=10.10.101.0/24 comment="" disabled=no list=myPPTP
95add address=10.10.10.1 comment="" disabled=no list=allow-local-internet
96add address=81.19.64.0/19 comment="" disabled=no list=icq
97add address=192.168.0.6 comment="" disabled=no list=myrdp
98add address=1.1.1.1 comment=Primer disabled=no list=users-l3
99add address=194.67.23.0/24 comment="" disabled=no list=magent
100add address=194.168.55.0/24 comment="" disabled=no list=magent
101add address=194.67.57.0/24 comment="" disabled=no list=magent
102add address=89.108.86.213 comment="" disabled=no list=block
103add address=212.154.208.68 comment="" disabled=no list=noproxy
104add address=192.168.0.0/16 comment="" disabled=no list=noproxy
105add address=172.16.0.0/12 comment="" disabled=no list=noproxy
106add address=10.0.0.0/8 comment="" disabled=no list=noproxy
107add address=1.1.1.1 comment=Primer disabled=no list=admin
108add address=212.53.40.40 comment="" disabled=no list=noproxy
109add address=172.16.0.4 comment="" disabled=no list=noproxy
110add address=78.47.166.7 comment="" disabled=no list=mySitelist
111add address=212.13.134.97 comment="" disabled=no list=noproxy
112add address=94.100.182.0/24 comment="" disabled=no list=magent
113add address=94.100.189.0/24 comment="" disabled=no list=magent
114add address=94.100.179.0/24 comment="" disabled=no list=magent
115add address=94.100.181.0/24 comment="" disabled=no list=magent
116add address=1.1.1.1 comment=Primer disabled=no list=users-l4
117add address=1.1.1.1 comment=Primer disabled=no list=users-l6
118add address=195.82.146.114 comment=rutraxker disabled=no list=block
119add address=88.204.214.123 comment="" disabled=no list=mySitelist
120add address=92.46.156.172 comment="" disabled=no list=block
121add address=92.46.32.241 comment="" disabled=no list=block
122add address=192.168.0.1 comment="" disabled=no list=myVNC
123add address=78.109.156.35 comment="" disabled=no list=mySitelist
124add address=192.168.0.4 comment="" disabled=no list=noproxy
125add address=1.1.1.1 comment=Primer disabled=no list=users-icq
126add address=79.125.11.24 comment="" disabled=no list=block
127add address=78.109.156.34 comment="" disabled=no list=noproxy
128add address=78.109.156.35 comment="" disabled=no list=noproxy
129add address=212.13.134.99 comment="" disabled=no list=noproxy
130add address=78.109.157.11 comment="" disabled=no list=mySitelist
131add address=131.107.115.48 comment="" disabled=no list=noproxy
132add address=1.1.1.1 comment=Primer disabled=no list=users-l2
133add address=88.198.62.104 comment="" disabled=no list=mySitelist
134add address=11.11.11.11 comment="" disabled=no list=NOspammer
135add address=11.11.11.11 comment="" disabled=no list=NOvirus
136add address=1.1.1.1 comment=Primer disabled=no list=users-l1
137add address=1.1.1.1 comment="Dostup po vremeni" disabled=no list=times
138add address=1.1.1.1 comment=Primer disabled=no list=users-skype
139add address=1.1.1.1 comment=AvtografServer disabled=no list=aftograf
140add address=88.204.214.125 comment="" disabled=no list=mySitelist
141add address=10.10.10.216 comment="LinuxHA Nexren trogati eto Cluster" disabled=no list=admin
142add address=10.10.10.1 comment=DC disabled=no list=admin
143add address=88.204.214.124 comment="" disabled=no list=noproxy
144add address=1.1.1.1 comment="" disabled=no list=pornuxa
145add address=1.1.1.1 comment=Primer disabled=no list=users-l5
146add address=1.1.1.1 comment="Nalog Primer" disabled=no list=atprnalog
147add address=178.217.210.21 comment="" disabled=no list=block
148add address=178.208.80.0/24 comment="" disabled=no list=block
149add address=178.217.208.0/21 comment="" disabled=no list=block
150add address=1.1.1.1 comment=Primer disabled=no list=users-magent
151add address=195.49.213.48 comment="" disabled=no list=block
152add address=88.208.23.56 comment="" disabled=no list=block
153add address=88.85.74.71 comment="" disabled=no list=block
154add address=88.85.74.8 comment="" disabled=no list=block
155add address=78.140.135.46 comment="" disabled=no list=block
156add address=78.140.176.197 comment="" disabled=no list=block
157add address=212.113.32.72 comment="" disabled=no list=block
158add address=41.0.0.0/8 comment="" disabled=no list=block
159add address=118.0.0.0/8 comment="" disabled=no list=block
160add address=114.0.0.0/8 comment="" disabled=no list=block
161add address=60.0.0.0/8 comment="" disabled=no list=block
162add address=190.0.0.0/8 comment="" disabled=no list=block
163add address=10.10.10.0/24 comment="" disabled=no list=accessport
164add address=186.0.0.0/8 comment="" disabled=no list=block
165add address=205.128.68.126 comment="" disabled=no list=block
166add address=212.154.168.5 comment="" disabled=no list=mySitelist
167add address=89.218.84.156 comment="" disabled=no list=mySitelist
168add address=89.154.84.157 comment="" disabled=no list=mySitelist
169add address=82.200.162.183 comment="" disabled=no list=mySitelist
170add address=212.19.135.83 comment="" disabled=no list=mySitelist
171add address=95.56.239.12 comment="" disabled=no list=mySitelist
172add address=89.218.84.155 comment="" disabled=no list=mySitelist
173add address=11.11.11.11 comment="" disabled=no list=NOhacker
174add address=212.154.165.148 comment="" disabled=no list=mySitelist
175add address=5.57.220.70 comment="" disabled=no list=block
176add address=212.154.165.148 comment="" disabled=no list=mySitelist
177add address=92.46.124.172 comment="" disabled=no list=mySitelist
178add address=92.46.124.171 comment="" disabled=no list=mySitelist
179add address=121.241.141.0/24 comment="" disabled=no list=block
180add address=89.218.84.157 comment="" disabled=no list=mySitelist
181add address=204.12.215.0/24 comment="" disabled=no list=block
182add address=211.198.64.0/24 comment="" disabled=no list=block
183add address=212.154.208.245 comment="" disabled=no list=mySitelist
184add address=94.100.184.40 comment="Moi MIR" disabled=yes list=block
185add address=173.212.254.124 comment="" disabled=no list=block
186add address=82.200.164.8 comment="" disabled=no list=mySitelist
187add address=93.185.79.150 comment="" disabled=no list=mySitelist
188add address=82.200.162.76 comment="" disabled=no list=mySitelist
189add address=88.204.164.161 comment="" disabled=no list=mySitelist
190add address=188.93.63.51 comment="" disabled=no list=block
191add address=212.154.165.149 comment="" disabled=no list=mySitelist
192add address=192.168.9.0/24 comment="" disabled=no list=mylocal
193add address=173.254.22.21 comment="" disabled=no list=noproxy
194add address=192.168.255.2 comment="" disabled=no list=router
195add address=192.168.255.0/24 comment="" disabled=no list=mylocal
196add address=10.10.10.0/23 comment="" disabled=no list=mylocal
197add address=10.10.220.0/24 comment="" disabled=no list=mylocal
198add address=10.10.10.0/24 comment="" disabled=no list=noproxy
199add address=10.10.10.26 comment="Amanjol Ork otdel" disabled=no list=users-l2
200add address=10.10.10.113 comment="" disabled=no list=users-l2
201add address=10.10.10.120 comment=neizvestniy disabled=no list=users-l2
202add address=10.10.10.162 comment=neizvestniy disabled=no list=users-l2
203add address=10.10.10.42 comment="" disabled=no list=users-l2
204add address=10.10.10.46 comment="" disabled=no list=users-l2
205add address=10.10.10.67 comment="" disabled=no list=users-l2
206add address=10.10.10.82 comment=neizvestniy disabled=no list=users-l2
207add address=10.10.10.74 comment="Akdauletova Maral" disabled=no list=users-l2
208add address=10.10.10.86 comment=PRIEM-1 disabled=no list=users-l2
209add address=10.10.10.89 comment="" disabled=no list=users-l2
210add address=10.10.10.90 comment=vremenny disabled=no list=users-l2
211add address=10.10.10.104 comment="" disabled=no list=users-l2
212add address=10.10.10.111 comment=neizvestniy disabled=no list=users-l2
213add address=10.10.10.117 comment="" disabled=no list=users-l2
214add address=10.10.10.126 comment="" disabled=no list=users-l2
215add address=10.10.10.140 comment="" disabled=no list=users-l2
216add address=10.10.10.142 comment="" disabled=no list=users-l2
217add address=10.10.10.144 comment=neizvestniy disabled=no list=users-l2
218add address=10.10.10.148 comment="" disabled=no list=users-l2
219add address=10.10.10.154 comment="" disabled=no list=users-l2
220add address=10.10.10.156 comment="" disabled=no list=users-l2
221add address=10.10.10.161 comment="" disabled=no list=users-l2
222add address=10.10.10.166 comment="Asanbaeva Aida" disabled=no list=users-l2
223add address=10.10.10.167 comment="" disabled=no list=users-l2
224add address=10.10.10.172 comment="" disabled=no list=users-l2
225add address=10.10.10.180 comment=Begman disabled=no list=users-l2
226add address=10.10.10.181 comment="Shamenov B vremenniy" disabled=no list=users-l2
227add address=10.10.10.186 comment="" disabled=no list=users-l2
228add address=10.10.10.193 comment="" disabled=no list=users-l2
229add address=10.10.10.202 comment="" disabled=no list=users-l2
230add address=10.10.10.206 comment="" disabled=no list=users-l2
231add address=10.10.10.208 comment="" disabled=no list=users-l2
232add address=10.10.10.225 comment="" disabled=no list=users-l2
233add address=10.10.10.200 comment=Galym disabled=no list=admin
234add address=10.10.10.171 comment=neizvestniy disabled=no list=users-l2
235add address=10.10.10.85 comment=Neizvestniy disabled=no list=users-l2
236add address=10.10.10.205 comment="" disabled=no list=users-l2
237add address=10.10.10.229 comment="" disabled=no list=users-l2
238add address=10.10.10.138 comment="Minbaeva Laura" disabled=no list=users-l2
239add address=10.10.101.2 comment=Vitya disabled=no list=admin
240add address=10.10.101.3 comment="" disabled=no list=admin
241add address=10.10.10.164 comment=Malika disabled=no list=admin
242add address=10.10.10.61 comment=Neizvestniy disabled=no list=users-l2
243add address=10.10.10.177 comment="Nalog Shirin" disabled=yes list=atprnalog
244add address=10.10.10.158 comment=neizvestniy disabled=no list=users-l2
245add address=10.10.10.40 comment="Erzhan INF" disabled=no list=admin
246add address=10.10.10.33 comment="Kanat Inf" disabled=no list=admin
247add address=10.10.10.78 comment="shamenov b" disabled=no list=users-l2
248add address=10.10.10.149 comment="Zhaisanbaev " disabled=no list=admin
249add address=10.10.10.176 comment="Kazbekova Moldir" disabled=no list=users-l2
250add address=88.204.214.122 comment="" disabled=no list=admin
251add address=192.168.0.133 comment="" disabled=no list=admin
252add address=10.245.12.106 comment="" disabled=no list=noproxy
253add address=10.245.12.43 comment="" disabled=no list=noproxy
254add address=89.218.122.202 comment="" disabled=no list=routeIP
255add address=92.46.237.214 comment="" disabled=no list=routeIP
256add address=192.168.240.0/24 comment="" disabled=no list=mylocal
257add address=10.10.10.103 comment=neizvestniy disabled=no list=users-l2
258add address=10.10.10.159 comment="SHalkar NIT-1" disabled=no list=users-l2
259add address=10.232.12.151 comment="" disabled=no list=noproxy
260add address=10.245.12.0/24 comment="" disabled=yes list=mylocal
261add address=10.239.7.0/24 comment="" disabled=yes list=mylocal
262add address=10.10.10.7 comment=NGINX disabled=no list=admin
263add address=10.10.10.134 comment="Gauhar priem" disabled=no list=users-l2
264add address=10.10.10.53 comment="Baitiles Erzhan" disabled=no list=users-l2
265add address=10.10.10.183 comment="Talant pomoshnik" disabled=no list=admin
266add address=10.10.10.99 comment=neizvesniy disabled=no list=users-l2
267add address=10.10.10.94 comment="Uranhaev Nurlan" disabled=no list=admin
268add address=10.10.10.198 comment="\CC\E0\ED\E0\EC\E1\E0\E5\E2 \F2\EE\EB\F1\F2\FB\E9" disabled=no list=users-l2
269add address=10.10.10.143 comment="Nurtaev Rzakul" disabled=no list=admin
270add address=10.10.10.177 comment="Nalog Shirin" disabled=no list=users-l2
271add address=10.10.10.147 comment="\CA\E0\E4\F0 \F2\EE\EB\F1\F2\FB\E9" disabled=no list=users-l2
272add address=10.10.10.105 comment="\CD\F3\F0\E1\E0\ED\F3 \EA\E0\ED\F6" disabled=no list=users-l2
273add address=10.10.10.110 comment="\D1\F3\EB\E5\E9\EC\E5\ED\EE\E2 \CD\F3\F0\E6\E0\ED" disabled=no list=users-l2
274add address=10.10.10.36 comment="\CD\F3\F0\EB\E0\ED Bahtiyarov" disabled=no list=admin
275add address=10.10.10.192 comment="aigul amanzholova" disabled=no list=users-l2
276add address=178.214.160.0/19 comment="" disabled=no list=admin
277add address=92.46.237.215 comment="" disabled=yes list=routeIP2
278add address=92.46.234.46 comment="" disabled=yes list=block
279add address=195.222.124.126 comment="" disabled=no list=admin
280add address=10.10.10.133 comment="" disabled=no list=users-l2
281add address=10.10.10.191 comment="Bakirov Erlan" disabled=no list=users-l2
282add address=92.46.237.216 comment="" disabled=yes list=routeIP2
283add address=10.10.10.224 comment="\C0\E1\E8\E5\E2\E0 \CC\EE\EB\E4\E8\F0" disabled=no list=users-l2
284add address=10.10.10.207 comment=neizvestniy disabled=no list=users-l2
285add address=10.10.10.210 comment=neizvestniy disabled=no list=users-l2
286add address=10.10.10.169 comment="\C6\E0\F5\E0\ED\EE\E2 \C1\E0\F5\FB\F2" disabled=no list=admin
287add address=10.10.10.45 comment="esirkepbaev nurlan" disabled=no list=users-l2
288add address=10.10.10.79 comment=Idirisov disabled=no list=users-l2
289add address=10.10.10.115 comment="Saimagambetova Ainur" disabled=no list=users-l2
290add address=10.10.10.236 comment="\EA\E0\E4\F0" disabled=no list=users-l2
291add address=10.10.10.174 comment=neizvestniy disabled=no list=users-l2
292add address=10.10.10.139 comment=Shalkar disabled=no list=users-l2
293add address=10.10.10.95 comment=Erlanbek disabled=no list=users-l2
294add address=10.10.10.30 comment="" disabled=no list=users-l2
295add address=10.10.10.29 comment="" disabled=no list=users-l2
296add address=94.100.184.0/24 comment="" disabled=yes list=magent
297add address=94.100.188.0/24 comment="" disabled=no list=magent
298add address=94.100.187.82 comment="" disabled=no list=magent
299add address=10.10.10.91 comment="\D0\E8\ED\E0\F2 215 \EA\E0\E1" disabled=no list=users-l2
300add address=10.10.10.108 comment=neizvestniy disabled=no list=users-l2
301add address=10.10.10.37 comment="Certex - 2" disabled=no list=admin
302add address=10.10.10.70 comment="Ahmetova Rahima" disabled=no list=users-l2
303add address=10.10.10.189 comment="Moldazheva Shirin" disabled=no list=users-l2
304add address=10.10.10.201 comment="\D1\E0\E9\EC\E0\E3\E0\ED\E1\E5\F2\EE\E2\E0 \C0\E9\ED\F3\F0\E0" disabled=no list=users-l2
305add address=10.10.10.81 comment="Sydykov Zhalgas" disabled=no list=users-l2
306add address=10.10.10.116 comment="Moldir Abieva" disabled=no list=users-l2
307add address=10.10.10.44 comment="\D1\E0\F3\EB\E5" disabled=no list=users-l2
308add address=10.10.10.109 comment="" disabled=no list=users-l2
309add address=10.10.10.62 comment=neizvestniy disabled=no list=users-l2
310add address=10.10.10.51 comment="" disabled=no list=users-l2
311add address=10.10.10.123 comment="" disabled=no list=users-l2
312add address=10.10.10.32 comment="" disabled=no list=users-l2
313add address=10.10.10.52 comment="" disabled=no list=users-l2
314add address=10.10.10.12 comment=TS1 disabled=no list=admin
315add address=10.10.10.18 comment="Vitya noudbook" disabled=no list=admin
316add address=10.10.10.114 comment=Erzhan disabled=no list=admin
317add address=10.10.10.47 comment=Pusirman disabled=no list=users-l2
318add address=10.10.10.193 comment="\CA\E0\EB\E0\EC\F1\E8\FF" disabled=no list=users-l2
319add address=10.10.10.21 comment="Moldir priemnaya" disabled=no list=users-l2
320add address=10.10.10.13 comment=TS-2 disabled=no list=users-l2
321add address=10.10.10.14 comment=TS3 disabled=no list=users-l2
322add address=10.10.10.15 comment=TS4 disabled=no list=users-l2
323add address=10.10.10.19 comment=ForThin disabled=yes list=admin
324add address=10.10.10.165 comment="Azamat Abylaev" disabled=no list=users-l2
325add address=10.10.10.168 comment="" disabled=no list=users-l2
326add address=10.10.10.179 comment=Lena disabled=no list=users-l2
327add address=10.10.10.159 comment="SHalkar NIT-1" disabled=no list=users-magent
328add address=10.10.10.96 comment="" disabled=no list=users-l2
329add address=10.10.10.28 comment=WSUS-SERVER disabled=no list=users-l4
330add address=10.10.10.195 comment=Kuri disabled=no list=admin
331add address=10.10.10.9 comment=OPENFIRE disabled=no list=admin
332add address=10.10.10.137 comment=ZOXON disabled=no list=users-l2
333add address=10.10.10.41 comment=VM2 disabled=no list=admin
334add address=10.10.10.160 comment=TS-2 disabled=no list=users-l2
335add address=10.10.10.73 comment=ZHarilkasinova disabled=no list=users-l2
336add address=10.10.221.0/24 comment="" disabled=no list=mylocal
337add address=10.10.10.77 comment=Baimbetov_G disabled=no list=users-l2
338add address=10.10.10.100 comment=neizvestniy disabled=no list=users-l2
339add address=10.10.10.75 comment=Ruslan disabled=no list=users-l2
340add address=10.10.10.83 comment="Umerbaeva Marzhan" disabled=no list=users-l2
341add address=10.10.10.68 comment="Nurimbetova Dana" disabled=no list=users-l2
342add address=10.10.10.69 comment="Esimkulova Aizhan" disabled=no list=users-l2
343add address=10.10.10.71 comment="Manambaev Nurlan" disabled=no list=admin
344add address=10.10.10.185 comment="Shamenov B" disabled=no list=admin
345add address=10.10.10.34 comment="Akzhigitova Indira" disabled=no list=admin
346add address=10.10.10.40 comment=Erzhan disabled=no list=admin
347add address=10.10.10.141 comment="Suleimenov Nurzhan" disabled=no list=users-l2
348add address=10.10.10.221 comment="LinuxHA Nexren trogati eto Cluster" disabled=no list=admin
349add address=10.10.10.218 comment="LinuxHA Nexren trogati eto Cluster" disabled=no list=admin
350add address=192.168.35.0/24 comment="" disabled=no list=mylocal
351add address=94.100.187.40 comment="" disabled=no list=magent
352add address=94.100.187.81 comment="" disabled=no list=magent
353add address=94.100.187.37 comment="" disabled=no list=magent
354add address=94.100.187.38 comment="" disabled=no list=magent
355add address=94.100.187.24 comment="" disabled=no list=magent
356add address=94.100.187.83 comment="" disabled=no list=magent
357add address=94.100.187.20 comment="" disabled=no list=magent
358add address=10.10.10.190 comment="Ablaev Azamat" disabled=no list=users-l2
359add address=10.10.11.71 comment="Ospanova Aliya" disabled=no list=admin
360add address=10.10.10.146 comment="Sultangerrev Rinat" disabled=no list=users-l2
361add address=10.10.10.25 comment="Kishkenbaeva Gulnar" disabled=no list=admin
362add address=10.10.10.132 comment=TS-2 disabled=no list=users-l2
363add address=10.10.10.169 comment="\C6\E0\F5\E0\ED\EE\E2 \C1\E0\F5\FB\F2" disabled=no list=users-skype
364add address=10.10.10.66 comment="Gulshat Maidankizi" disabled=no list=admin
365add address=10.10.10.118 comment="" disabled=no list=users-l2
366add address=10.10.10.135 comment="" disabled=no list=users-l2
367add address=10.10.10.170 comment=Zhanbota disabled=no list=users-l2
368add address=10.10.10.188 comment="Kazibekova M" disabled=no list=users-l2
369add address=10.10.10.131 comment="Shinar INF" disabled=no list=admin
370add address=10.10.10.31 comment="Abizova Madina" disabled=no list=users-l2
371add address=10.10.10.24 comment="" disabled=no list=users-l2
372add address=10.10.10.80 comment="Medeuova Ainur" disabled=no list=users-l2
373add address=10.10.10.152 comment=Pusurman disabled=no list=users-l2
374add address=10.10.10.50 comment="Myrzagalieva Altyn" disabled=no list=users-l2
375add address=10.10.10.187 comment="Daulbaeva Rahima" disabled=no list=users-l2
376add address=10.10.10.145 comment="Eszhanov Askar" disabled=no list=admin
377add address=10.10.10.184 comment="Nisanbaeva Aliya" disabled=no list=users-l2
378add address=10.10.10.151 comment="Saparbekova Moldir" disabled=no list=users-l2
379add address=10.10.10.189 comment="Moldazheva Shirin" disabled=no list=atprnalog
380add address=10.10.10.197 comment="inf otdel" disabled=no list=users-l2
381add address=94.100.187.31 comment="" disabled=no list=magent
382add address=10.10.10.33 comment="Kanat Inf" disabled=no list=admin
383add address=10.10.11.38 comment=vremenniy disabled=no list=users-l2
384add address=10.10.11.37 comment=vremenniy disabled=no list=users-l2
385add address=10.10.10.230 comment=TS-2 disabled=no list=users-l2
386add address=10.10.10.166 comment="Asanbaeva Aida" disabled=no list=users-magent
387add address=10.10.11.64 comment=AKIM disabled=no list=admin
388add address=10.10.11.73 comment="Aza inf" disabled=no list=admin
389add address=94.100.187.28 comment="" disabled=no list=magent
390add address=94.100.187.25 comment="" disabled=no list=magent
391add address=94.100.187.27 comment="" disabled=no list=magent
392add address=217.69.138.93 comment="" disabled=no list=magent
393add address=94.100.186.146 comment="" disabled=no list=magent
394add address=94.100.187.29 comment="" disabled=no list=magent
395add address=94.100.187.26 comment="" disabled=no list=magent
396add address=217.69.138.94 comment="" disabled=no list=magent
397add address=217.69.138.95 comment="" disabled=no list=magent
398add address=10.10.11.85 comment=Iskakov disabled=no list=admin
399add address=10.10.10.53 comment="Baitiles Erzhan" disabled=no list=users-magent
400add address=10.10.10.6 comment=DC disabled=no list=admin
401add address=10.10.11.103 comment="Zhagipbaev Talgat" disabled=no list=admin
402add address=10.10.11.105 comment="Abdimazhitov Askarbek" disabled=no list=admin
403add address=10.10.11.72 comment="Aliya inf" disabled=no list=admin
404add address=94.100.0.0/16 comment=sos disabled=yes list=block
405add address=217.69.0.0/16 comment="" disabled=yes list=block
406add address=194.186.0.0/16 comment="" disabled=yes list=block
407add address=10.10.11.141 comment="Wifi modem" disabled=no list=admin
408/ip firewall connection tracking
409set enabled=yes generic-timeout=10m icmp-timeout=10s tcp-close-timeout=10s tcp-close-wait-timeout=10s tcp-established-timeout=1d \
410 tcp-fin-wait-timeout=10s tcp-last-ack-timeout=10s tcp-syn-received-timeout=5s tcp-syn-sent-timeout=5s tcp-syncookie=no \
411 tcp-time-wait-timeout=10s udp-stream-timeout=3m udp-timeout=10s
412/ip firewall filter
413add action=accept chain=forward comment="" disabled=yes dst-address=192.168.0.8 dst-port=5269 protocol=tcp
414add action=drop chain=input comment="Drop block addrresses" disabled=no src-address-list=block
415add action=drop chain=input comment="Drop invalid connection packets" connection-state=invalid disabled=no
416add action=accept chain=input comment="Allow established connections" connection-state=established disabled=no
417add action=accept chain=input comment="Allow related connections" connection-state=related disabled=no
418add action=accept chain=input comment="Allow ICMP Ping" disabled=no protocol=icmp
419add action=accept chain=input comment="full access for admins" disabled=no src-address-list=admin
420add action=accept chain=output comment="full access for admins" disabled=no dst-address-list=admin
421add action=accept chain=input comment="input to reverse proxy" disabled=yes protocol=tcp src-port=80
422add action=accept chain=input comment="VPN Server" disabled=no protocol=gre
423add action=accept chain=input comment="" disabled=no dst-port=1723 protocol=tcp
424add action=accept chain=input comment=DNS disabled=no dst-port=53 protocol=udp
425add action=accept chain=input comment="" disabled=no dst-port=53 protocol=tcp
426add action=accept chain=input comment="Web proxy 2" disabled=no dst-port=8080 protocol=tcp src-address-list=users-l1
427add action=accept chain=input comment="" disabled=no dst-port=8080 protocol=tcp src-address-list=users-l2
428add action=accept chain=input comment="" disabled=no dst-port=8080 protocol=tcp src-address-list=myPPTP
429add action=accept chain=input comment=NTP disabled=no dst-port=123 protocol=udp
430add action=accept chain=input comment=BGP disabled=no dst-port=179 protocol=tcp src-address-list=router
431add action=drop chain=input comment="All other inputs drop" disabled=no
432add action=accept chain=input comment="CA_CORAL OUT" disabled=yes dst-port=5060 protocol=udp
433add action=accept chain=input comment="" disabled=yes protocol=udp src-port=5060
434add action=drop chain=forward comment="Drop Block IP" disabled=no src-address-list=block
435add action=drop chain=forward comment="Drop invalid connection packets" connection-state=invalid disabled=no
436add action=drop chain=forward comment="uTP uTorrent " disabled=no layer7-protocol="\B5TP"
437add action=drop chain=forward comment="" disabled=no layer7-protocol=bittorrent
438add action=accept chain=forward comment="Allow established connections" connection-state=established disabled=no
439add action=accept chain=forward comment="Allow related connections" connection-state=related disabled=no
440add action=accept chain=forward comment="Allow ICMP Ping" disabled=no protocol=icmp
441add action=accept chain=forward comment="Allow UDP" disabled=no dst-port=30000-65535 protocol=udp
442add action=accept chain=forward comment="Allow all for admin" disabled=no dst-address-list=admin
443add action=accept chain=forward comment="" disabled=no src-address-list=admin
444add action=accept chain=forward comment=Update_AFTOGRAF disabled=no dst-port=2225-2228 protocol=tcp src-address-list=aftograf
445add action=accept chain=forward comment="" disabled=no dst-address-list=aftograf protocol=tcp src-port=2225-2228
446add action=accept chain=forward comment=Update_SONO disabled=no dst-port=9100,9101,9993 protocol=tcp src-address-list=atprnalog
447add action=accept chain=forward comment="" disabled=no dst-address-list=atprnalog protocol=tcp src-port=9100,9101,9993
448add action=accept chain=forward comment="allow NO Hacker" disabled=yes dst-port=3389 protocol=tcp src-address-list=NOhacker
449add action=drop chain=forward comment="Block for hacker" disabled=yes dst-port=3389 protocol=tcp src-address-list=hacker
450add action=add-src-to-address-list address-list=hacker address-list-timeout=2d chain=forward comment="Hacker detector" connection-limit=\
451 2,32 disabled=yes dst-port=3389 protocol=tcp
452add action=accept chain=forward comment="allow NO VIRUS" disabled=yes dst-port=139 protocol=tcp src-address-list=NOvirus
453add action=drop chain=forward comment="Block for worm virus" disabled=yes src-address-list=viruses
454add action=accept chain=forward comment="" disabled=yes dst-port=445 protocol=tcp src-address-list=NOvirus
455add action=add-src-to-address-list address-list=viruses address-list-timeout=2d chain=forward comment="NetBiosSSN detector" \
456 connection-limit=10,32 disabled=yes dst-port=139 protocol=tcp
457add action=add-src-to-address-list address-list=viruses address-list-timeout=2d chain=forward comment="" connection-limit=10,32 disabled=\
458 yes dst-port=445 protocol=tcp
459add action=jump chain=forward comment="RDP Limit" disabled=no dst-port=3389 jump-target=forward_rdp_limit protocol=tcp
460add action=jump chain=forward comment="Dostup po vremeni" disabled=no jump-target=forward_time src-address-list=times
461add action=jump chain=forward comment="MAIL.RU AGENT Connection" disabled=no jump-target=forward_magent src-address-list=users-magent
462add action=jump chain=forward comment="ICQ (AIM) Connection" disabled=no jump-target=forward_icq src-address-list=users-icq
463add action=jump chain=forward comment="Skype Connection" disabled=no jump-target=forward_skype src-address-list=users-skype
464add action=jump chain=forward comment="Forwar local users L1 to internet (full access)" disabled=no jump-target=forward_usersl1 \
465 src-address-list=users-l1
466add action=jump chain=forward comment="Forwar local users L2 to internet (DHCP: web-control, mail)" disabled=no jump-target=forward_usersl2 \
467 src-address-list=users-l2
468add action=jump chain=forward comment="Forwar local users L3 to internet (ctatik: asterisk, mail, web(-control\?))" disabled=no \
469 jump-target=forward_usersl3 src-address-list=users-l3
470add action=jump chain=forward comment="Forwar local users L4 to internet (full access for usersL4)" disabled=no jump-target=forward_usersl4 \
471 src-address-list=users-l4
472add action=jump chain=forward comment="Forwar local users L5 to sitelist internet" disabled=no jump-target=forward_usersl5 \
473 src-address-list=users-l5
474add action=jump chain=forward comment="Forwar local users L6 onli inet" disabled=no jump-target=forward_usersl6 src-address-list=users-l6
475add action=jump chain=forward comment="Forwar pptpl to internet" disabled=no jump-target=forward_pptp src-address-list=myPPTP
476add action=accept chain=forward comment="Access local to local" disabled=no dst-address-list=mylocal src-address-list=mylocal
477add action=accept chain=forward comment="Access internet to local" disabled=no dst-address-list=mylocal src-address-list=!myPPTP
478add action=accept chain=forward comment="Access internet to PPTP" disabled=no dst-address-list=myPPTP src-address-list=!mylocal
479add action=log chain=forward comment="" disabled=yes log-prefix=""
480add action=drop chain=forward comment="All other forwards drop" disabled=no
481add action=drop chain=forward_time comment="" disabled=no time=18h-1d,mon,tue,wed,thu,fri
482add action=drop chain=forward_time comment="" disabled=no time=0s-8h,mon,tue,wed,thu,fri
483add action=drop chain=forward_time comment="" disabled=no time=0s-1d,sun,sat
484add action=return chain=forward_time comment="" disabled=no time=0s-1d,sun,sat
485add action=jump chain=forward_usersl1 comment=full disabled=no jump-target=forward_full
486add action=return chain=forward_usersl1 comment="" disabled=no
487add action=jump chain=forward_usersl2 comment="Pizdec agentu" disabled=yes jump-target=noforward_magent
488add action=jump chain=forward_usersl2 comment=skype disabled=yes jump-target=forward_skype
489add action=jump chain=forward_usersl2 comment=icq disabled=yes jump-target=forward_icq
490add action=jump chain=forward_usersl2 comment=web disabled=no jump-target=forward_web
491add action=jump chain=forward_usersl2 comment=mail disabled=no jump-target=forward_mail
492add action=jump chain=forward_usersl2 comment=Asterisk disabled=no jump-target=forward_asterisk
493add action=return chain=forward_usersl2 comment="" disabled=no
494add action=jump chain=forward_usersl3 comment=skype disabled=yes jump-target=forward_skype
495add action=jump chain=forward_usersl3 comment=icq disabled=yes jump-target=forward_icq
496add action=jump chain=forward_usersl3 comment=mail disabled=no jump-target=forward_mail
497add action=jump chain=forward_usersl3 comment=asterisk disabled=no jump-target=forward_asterisk
498add action=jump chain=forward_usersl3 comment=Radmin disabled=no jump-target=forward_my_radmin
499add action=return chain=forward_usersl3 comment="" disabled=no
500add action=jump chain=forward_usersl4 comment="" disabled=no jump-target=forward_full
501add action=return chain=forward_usersl4 comment="" disabled=no
502add action=jump chain=forward_usersl5 comment="" disabled=no jump-target=forward_full
503add action=return chain=forward_usersl5 comment="" disabled=no
504add action=jump chain=forward_usersl6 comment="" disabled=no jump-target=forward_full
505add action=return chain=forward_usersl6 comment="" disabled=no
506add action=jump chain=forward_usersl6 comment="" disabled=no jump-target=forward_web
507add action=return chain=forward_usersl6 comment="" disabled=no
508add action=jump chain=forward_pptp comment=skype disabled=no jump-target=forward_skype
509add action=jump chain=forward_pptp comment=icq disabled=no jump-target=forward_icq
510add action=jump chain=forward_pptp comment=Asterisk disabled=no jump-target=forward_asterisk
511add action=jump chain=forward_pptp comment=rdp disabled=no jump-target=forward_my_rdp src-address-list=myPPTP
512add action=jump chain=forward_pptp comment=vnc disabled=no jump-target=forward_my_vnc src-address-list=myPPTP
513add action=jump chain=forward_pptp comment="local full" disabled=no jump-target=forward_local src-address-list=myPPTP
514add action=return chain=forward_pptp comment="" disabled=no
515add action=accept chain=forward_magent comment="" disabled=no dst-address-list=magent dst-port=443 protocol=tcp
516add action=accept chain=forward_magent comment="" disabled=no dst-address-list=magent dst-port=2041 protocol=tcp
517add action=accept chain=forward_magent comment="" disabled=no dst-address-list=magent dst-port=2042 protocol=tcp
518add action=return chain=forward_magent comment="" disabled=no
519add action=accept chain=forward_icq comment="" disabled=no layer7-protocol=ICQ
520add action=accept chain=forward_icq comment="" disabled=no dst-address-list=icq dst-port=5190 protocol=tcp
521add action=accept chain=forward_icq comment="" disabled=no dst-address-list=icq dst-port=443 protocol=tcp
522add action=return chain=forward_icq comment="" disabled=no
523add action=accept chain=forward_skype comment="" disabled=no layer7-protocol=Skype
524add action=accept chain=forward_skype comment="" disabled=no layer7-protocol=Skype-to-Phone
525add action=accept chain=forward_skype comment="SKYPE Connection" disabled=yes dst-port=1024-65535 protocol=tcp
526add action=accept chain=forward_skype comment="" disabled=yes dst-port=1024-65535 protocol=udp
527add action=return chain=forward_skype comment="" disabled=no
528add action=accept chain=forward_mail comment="allow NO SPAM" disabled=no dst-port=25 protocol=tcp src-address-list=NOspammer
529add action=drop chain=forward_mail comment="Block for spammer" disabled=no dst-port=25 protocol=tcp src-address-list=spammer
530add action=add-src-to-address-list address-list=spammer address-list-timeout=2d chain=forward_mail comment="SPAM detector" \
531 connection-limit=10,32 disabled=no dst-port=25 protocol=tcp
532add action=accept chain=forward_mail comment="MAIL Connection" disabled=no dst-port=25 protocol=tcp
533add action=accept chain=forward_mail comment="" disabled=no dst-port=110 protocol=tcp
534add action=accept chain=forward_mail comment="" disabled=no dst-port=143 protocol=tcp
535add action=accept chain=forward_mail comment="" disabled=no dst-port=465 protocol=tcp
536add action=accept chain=forward_mail comment="" disabled=no dst-port=585 protocol=tcp
537add action=accept chain=forward_mail comment="" disabled=no dst-port=993 protocol=tcp
538add action=accept chain=forward_mail comment="" disabled=no dst-port=995 protocol=tcp
539add action=return chain=forward_mail comment="" disabled=no
540add action=accept chain=forward_my_rdp comment="access to my RDP" disabled=no dst-address-list=myrdp dst-port=3389 protocol=tcp
541add action=return chain=forward_my_rdp comment="" disabled=no
542add action=accept chain=forward_my_vnc comment="access to my VNC" disabled=no dst-address-list=myVNC dst-port=5900 protocol=tcp
543add action=return chain=forward_my_vnc comment="" disabled=no
544add action=accept chain=forward_my_radmin comment=Radmin disabled=no dst-port=4899 protocol=tcp
545add action=return chain=forward_my_radmin comment="" disabled=no
546add action=accept chain=forward_asterisk comment="ASTERISK Connection" disabled=no dst-port=2727 protocol=udp
547add action=accept chain=forward_asterisk comment="" disabled=no dst-port=2427 protocol=udp
548add action=accept chain=forward_asterisk comment="" disabled=no dst-port=4569 protocol=udp
549add action=accept chain=forward_asterisk comment="" disabled=no dst-port=5060 protocol=udp
550add action=accept chain=forward_asterisk comment="" disabled=no dst-port=5061 protocol=udp
551add action=accept chain=forward_asterisk comment="" disabled=no dst-port=5036 protocol=udp
552add action=accept chain=forward_asterisk comment="" disabled=no dst-port=10000-20000 protocol=udp
553add action=return chain=forward_asterisk comment="" disabled=no
554add action=accept chain=forward_web comment="WEB only Connection" disabled=no dst-port=80 protocol=tcp
555add action=accept chain=forward_web comment="" disabled=no dst-address-list=!magent dst-port=443 protocol=tcp
556add action=return chain=forward_web comment="" disabled=no
557add action=accept chain=forward_local comment="local FULL Connection" disabled=no dst-address-list=mylocal
558add action=accept chain=forward_local comment="" disabled=no src-address-list=mylocal
559add action=return chain=forward_local comment="" disabled=no
560add action=accept chain=forward_full comment="INTERNET FULL Connection" disabled=no
561add action=return chain=forward_full comment="" disabled=no
562add action=drop chain=forward_rdp_limit comment=RDPBlock connection-limit=1,32 disabled=no dst-address=192.168.50.1 protocol=tcp tcp-flags=\
563 syn
564add action=drop chain=forward_rdp_limit comment="" connection-limit=1,32 disabled=no dst-address=192.168.0.6 protocol=tcp tcp-flags=syn
565add action=return chain=forward_rdp_limit comment="" disabled=no
566add action=drop chain=forward comment="RDP TCP Connection Limits" connection-limit=1,32 disabled=yes dst-address=192.168.50.1 dst-port=3389 \
567 protocol=tcp tcp-flags=syn
568add action=drop chain=forward comment="" connection-limit=1,32 disabled=yes dst-address=192.168.0.6 dst-port=3389 protocol=tcp tcp-flags=\
569 syn
570/ip firewall mangle
571add action=mark-connection chain=prerouting comment=1ForISP disabled=yes dst-address-list=!local new-connection-mark=users-ch1 passthrough=\
572 yes src-address-list=users-ch1
573add action=mark-routing chain=prerouting comment="" disabled=yes dst-address-list=!local new-routing-mark=users-ch1 passthrough=no \
574 src-address-list=users-ch1
575add action=mark-connection chain=prerouting comment="2 ForISP" disabled=yes dst-address-list=!local new-connection-mark=users-ch2 \
576 passthrough=yes src-address-list=users-ch2
577add action=mark-routing chain=prerouting comment="" disabled=yes dst-address-list=!local new-routing-mark=users-ch2 passthrough=no \
578 src-address-list=users-ch2
579add action=mark-connection chain=forward comment=winbox-up disabled=no dst-port=8291 new-connection-mark=winbox-up passthrough=yes \
580 protocol=tcp
581add action=mark-packet chain=forward comment="" connection-mark=winbox-up disabled=no new-packet-mark=winbox-up-pack passthrough=yes
582add action=mark-connection chain=forward comment=winbox-down disabled=no new-connection-mark=winbox-down passthrough=yes protocol=tcp \
583 src-port=8291
584add action=mark-packet chain=forward comment="" connection-mark=winbox-down disabled=no new-packet-mark=winbox-down-pack passthrough=yes
585add action=mark-connection chain=prerouting comment="Chanel2 for userL4" disabled=no dst-address-list=!mylocal new-connection-mark=\
586 chanel-userl4 passthrough=yes src-address-list=users-l4
587add action=mark-packet chain=prerouting comment="" connection-mark=chanel-userl4 disabled=yes new-packet-mark=chanel-userl4 passthrough=yes
588add action=mark-routing chain=prerouting comment="" disabled=yes new-routing-mark=chanel-userl4 packet-mark=chanel-userl4 passthrough=no
589add action=mark-routing chain=prerouting comment="" disabled=no dst-address-list=!mylocal new-routing-mark=chanel-userl4 passthrough=no \
590 src-address-list=users-l4
591add action=mark-connection chain=forward comment=ADMIN_net-up disabled=no dst-address-list=!local new-connection-mark=admin-net-up \
592 passthrough=yes src-address-list=admin
593add action=mark-packet chain=forward comment="" connection-mark=admin-net-up disabled=no new-packet-mark=admin-net-up passthrough=yes
594add action=mark-connection chain=forward comment=ADMIN_net-down disabled=no dst-address-list=admin new-connection-mark=admin-net-down \
595 passthrough=yes src-address-list=!local
596add action=mark-packet chain=forward comment="" connection-mark=admin-net-down disabled=no new-packet-mark=admin-net-down passthrough=yes
597add action=mark-connection chain=forward comment=Level1_net-up disabled=no new-connection-mark=level1-net-up passthrough=yes \
598 src-address-list=users-l1
599add action=mark-packet chain=forward comment="" connection-mark=level1-net-up disabled=no new-packet-mark=level1-net-up passthrough=yes
600add action=mark-connection chain=forward comment=Level1_net-down disabled=no dst-address-list=users-l1 new-connection-mark=level1-net-down \
601 passthrough=yes
602add action=mark-packet chain=forward comment="" connection-mark=level1-net-down disabled=no new-packet-mark=level1-net-down passthrough=yes
603add action=mark-connection chain=forward comment=Level2_net-up disabled=no new-connection-mark=level2-net-up passthrough=yes \
604 src-address-list=users-l2
605add action=mark-packet chain=forward comment="" connection-mark=level2-net-up disabled=no new-packet-mark=level2-net-up passthrough=yes
606add action=mark-connection chain=forward comment=Level2_net-down disabled=no dst-address-list=users-l2 new-connection-mark=level2-net-down \
607 passthrough=yes
608add action=mark-packet chain=forward comment="" connection-mark=level2-net-down disabled=no new-packet-mark=level2-net-down passthrough=yes
609add action=mark-connection chain=forward comment=CA_Agent disabled=no dst-port=2427 new-connection-mark=CA_agent passthrough=yes protocol=\
610 udp
611add action=mark-packet chain=forward comment="" connection-mark=CA_agent disabled=no new-packet-mark=CA passthrough=yes
612add action=mark-routing chain=prerouting comment="" disabled=no dst-address-list=!mylocal new-routing-mark=CA packet-mark=CA passthrough=\
613 yes
614add action=mark-connection chain=forward comment=IP_tel_media disabled=no dst-port=16400 new-connection-mark=IP_media passthrough=yes \
615 protocol=udp
616add action=mark-packet chain=forward comment="" connection-mark=IP_media disabled=no new-packet-mark=IPM passthrough=yes
617add action=mark-routing chain=prerouting comment="" disabled=no dst-address-list=!mylocal new-routing-mark=IPM packet-mark=IPM passthrough=\
618 yes
619add action=mark-connection chain=forward comment="DNS Qwery" disabled=no dst-port=53 new-connection-mark=DNS_qwery passthrough=yes \
620 protocol=udp
621add action=mark-packet chain=forward comment="" connection-mark=DNS_qwery disabled=no new-packet-mark=DNS passthrough=yes
622add action=mark-connection chain=forward comment=Asterisk disabled=no dst-port=5060 new-connection-mark=Aster_con passthrough=yes protocol=\
623 udp
624add action=mark-packet chain=forward comment="" connection-mark=Aster_con disabled=no new-packet-mark=Asterisk passthrough=no
625add action=mark-connection chain=forward comment=Terminal disabled=no dst-port=3389 new-connection-mark=RDP_user passthrough=yes protocol=\
626 tcp
627add action=mark-packet chain=forward comment="" connection-mark=RDP_user disabled=no new-packet-mark=RDP passthrough=yes
628add action=mark-connection chain=forward comment=RADMIN disabled=no dst-port=4567 new-connection-mark=RADMIN_user passthrough=yes protocol=\
629 tcp
630add action=mark-connection chain=forward comment="" disabled=no dst-port=4899 new-connection-mark=RADMIN_user passthrough=yes protocol=tcp
631add action=mark-packet chain=forward comment="" connection-mark=RADMIN_user disabled=no new-packet-mark=RADMIN passthrough=yes
632add action=mark-connection chain=forward comment="Mail RU AGENT" disabled=no dst-port=2041-2042 new-connection-mark=m_agent passthrough=yes \
633 protocol=tcp
634add action=mark-packet chain=forward comment="" connection-mark=m_agent disabled=no new-packet-mark=MAGENT passthrough=yes
635add action=mark-connection chain=forward comment="Open fire Spark" disabled=no dst-port=5222 new-connection-mark=Spark passthrough=yes \
636 protocol=tcp
637add action=mark-connection chain=forward comment="" disabled=no dst-port=5222 new-connection-mark=Spark passthrough=yes protocol=udp
638add action=mark-packet chain=forward comment="" connection-mark=Spark disabled=no new-packet-mark=Spark passthrough=yes
639add action=mark-connection chain=forward comment=Torrent disabled=no layer7-protocol=bittorrent new-connection-mark="\B5TP" passthrough=yes
640add action=mark-packet chain=forward comment="" connection-mark="\B5TP" disabled=no new-packet-mark="\B5TP" passthrough=yes
641/ip firewall nat
642add action=dst-nat chain=dstnat comment=NGINX_Revers_proxy disabled=yes dst-address=89.218.122.202 dst-address-list=routeIP dst-port=80 \
643 protocol=tcp to-addresses=10.10.10.6 to-ports=80
644add action=dst-nat chain=dstnat comment="NGINX E-KYZYLORDA" disabled=no dst-address=92.46.237.194 dst-port=80 protocol=tcp to-addresses=\
645 10.10.10.220 to-ports=80
646add action=dst-nat chain=dstnat comment="" disabled=yes dst-address=92.46.237.194 dst-port=989-990 protocol=tcp to-addresses=10.10.10.8 \
647 to-ports=989-990
648add action=dst-nat chain=dstnat comment="Reverse ispmanager" disabled=yes dst-address-list=routeIP2 dst-port=80 protocol=tcp to-addresses=\
649 10.10.10.168 to-ports=80
650add action=dst-nat chain=dstnat comment="" disabled=yes dst-address-list=routeIP2 dst-port=443 protocol=tcp to-addresses=10.10.10.168 \
651 to-ports=443
652add action=dst-nat chain=dstnat comment="" disabled=yes dst-address-list=routeIP2 dst-port=53 protocol=udp to-addresses=10.10.10.168 \
653 to-ports=53
654add action=dst-nat chain=dstnat comment="" disabled=yes dst-address-list=routeIP2 dst-port=110 protocol=tcp to-addresses=10.10.10.168 \
655 to-ports=110
656add action=dst-nat chain=dstnat comment="" disabled=yes dst-address-list=routeIP2 dst-port=143 protocol=tcp to-addresses=10.10.10.168 \
657 to-ports=143
658add action=dst-nat chain=dstnat comment="" disabled=yes dst-address-list=routeIP2 dst-port=25 protocol=tcp to-addresses=10.10.10.168 \
659 to-ports=25
660add action=dst-nat chain=dstnat comment="" disabled=yes dst-address-list=routeIP2 dst-port=22 protocol=tcp to-addresses=10.10.10.168 \
661 to-ports=22
662add action=dst-nat chain=dstnat comment="" disabled=yes dst-address-list=routeIP2 dst-port=21 protocol=tcp to-addresses=10.10.10.168 \
663 to-ports=21
664add action=src-nat chain=srcnat comment=ISPmanager disabled=yes protocol=tcp src-address=10.10.10.168 to-addresses=92.46.237.215
665add action=src-nat chain=srcnat comment="" disabled=yes protocol=udp src-address=10.10.10.168 to-addresses=92.46.237.215
666add action=dst-nat chain=dstnat comment="" disabled=yes dst-address=92.46.237.215 protocol=tcp to-addresses=10.10.10.168
667add action=dst-nat chain=dstnat comment="" disabled=yes dst-address=92.46.237.215 protocol=udp to-addresses=10.10.10.168
668add action=dst-nat chain=dstnat comment=ReverseProxy disabled=yes dst-address-list=routeIP dst-port=80 protocol=tcp to-addresses=\
669 192.168.240.2 to-ports=8080
670add action=redirect chain=dstnat comment="PPTP 2 web-proxy" disabled=no dst-address-list=!noproxy dst-port=80-83 protocol=tcp \
671 src-address-list=myPPTP to-ports=8080
672add action=redirect chain=dstnat comment="" disabled=no dst-address-list=!noproxy dst-port=8080-8083 protocol=tcp src-address-list=myPPTP \
673 to-ports=8080
674add action=redirect chain=dstnat comment="" disabled=no dst-address-list=!noproxy dst-port=3128 protocol=tcp src-address-list=myPPTP \
675 to-ports=8080
676add action=jump chain=dstnat comment="For group l1 l2 l3 l4 l5" disabled=no jump-target=UL1 src-address-list=users-l1
677add action=jump chain=UL1 comment="" disabled=no jump-target=proxy
678add action=return chain=UL1 comment="" disabled=no
679add action=jump chain=dstnat comment="" disabled=no jump-target=UL2 src-address-list=users-l2
680add action=jump chain=UL2 comment="" disabled=no jump-target=proxy
681add action=return chain=UL2 comment="" disabled=no
682add action=jump chain=dstnat comment="" disabled=no jump-target=UL3 src-address-list=users-l3
683add action=jump chain=UL3 comment="" disabled=no jump-target=proxy
684add action=return chain=UL3 comment="" disabled=no
685add action=jump chain=dstnat comment="" disabled=yes jump-target=UL4 src-address-list=users-l4
686add action=jump chain=UL4 comment="" disabled=yes jump-target=proxy
687add action=return chain=UL4 comment="" disabled=yes
688add action=jump chain=dstnat comment="" disabled=yes jump-target=UL5 src-address-list=users-l5
689add action=jump chain=UL5 comment="" disabled=yes jump-target=proxy
690add action=return chain=UL5 comment="" disabled=yes
691add action=jump chain=dstnat comment="" disabled=no jump-target=UL6 src-address-list=users-l6
692add action=jump chain=UL6 comment="" disabled=no jump-target=proxy
693add action=return chain=UL6 comment="" disabled=no
694add action=redirect chain=proxy comment="local 2 web-proxy" disabled=no dst-address-list=!noproxy dst-port=80-83 protocol=tcp to-ports=8080
695add action=redirect chain=proxy comment="" disabled=no dst-address-list=!noproxy dst-port=8080-8083 protocol=tcp to-ports=8080
696add action=redirect chain=proxy comment="" disabled=no dst-address-list=!noproxy dst-port=3128 protocol=tcp to-ports=8080
697add action=return chain=proxy comment="" disabled=no
698add action=redirect chain=dstnat comment="local 2 web-proxy" disabled=yes dst-address-list=!noproxy dst-port=80-83 protocol=tcp \
699 src-address-list=mylocal to-ports=8080
700add action=redirect chain=dstnat comment="" disabled=yes dst-address-list=!noproxy dst-port=8080-8083 protocol=tcp src-address-list=mylocal \
701 to-ports=8080
702add action=redirect chain=dstnat comment="" disabled=yes dst-address-list=!noproxy dst-port=3128 protocol=tcp src-address-list=mylocal \
703 to-ports=8080
704add action=dst-nat chain=dstnat comment=Asterisk disabled=no dst-address=89.218.122.202 dst-port=5060 protocol=udp src-address-list=\
705 !mylocal to-addresses=10.10.10.11 to-ports=5060
706add action=dst-nat chain=dstnat comment="OpenFire Spark" disabled=yes dst-address=88.204.214.122 dst-port=5222 protocol=tcp to-addresses=\
707 192.168.0.8 to-ports=5222
708add action=dst-nat chain=dstnat comment="OpenFire Spark" disabled=yes dst-address=88.204.214.122 dst-port=9090 protocol=tcp to-addresses=\
709 192.168.0.12 to-ports=9090
710add action=dst-nat chain=dstnat comment=Saiman disabled=yes dst-address=88.204.214.122 dst-port=2222 protocol=tcp to-addresses=192.168.0.71 \
711 to-ports=2222
712add action=dst-nat chain=dstnat comment=AvtografServer disabled=yes dst-address=88.204.214.122 dst-port=2225-2226 protocol=tcp \
713 to-addresses=192.168.0.179 to-ports=2225-2226
714add action=dst-nat chain=dstnat comment=CINT_MAIL disabled=yes dst-address=88.204.214.122 dst-port=25 protocol=tcp to-addresses=\
715 192.168.0.10 to-ports=25
716add action=dst-nat chain=dstnat comment="" disabled=yes dst-address=88.204.214.122 dst-port=110 protocol=tcp to-addresses=192.168.0.10 \
717 to-ports=110
718add action=dst-nat chain=dstnat comment="TEMP VNC" disabled=yes dst-address=88.204.214.122 dst-port=5900 protocol=tcp to-addresses=\
719 192.168.0.235 to-ports=5900
720add action=dst-nat chain=dstnat comment="Lotus Server" disabled=yes dst-address=88.204.214.122 dst-port=1352 protocol=tcp to-addresses=\
721 192.168.0.3 to-ports=1352
722add action=dst-nat chain=dstnat comment=RDP disabled=yes dst-address=89.218.122.202 dst-port=3389 protocol=tcp to-addresses=10.10.10.25 \
723 to-ports=3389
724add action=dst-nat chain=dstnat comment="Radmin for LogyCom" disabled=yes dst-address=89.218.122.202 dst-port=3389 protocol=tcp \
725 to-addresses=10.10.10.8 to-ports=3389
726add action=dst-nat chain=dstnat comment="Radmin for LogyCom" disabled=no dst-address=89.218.122.202 dst-port=4899 protocol=tcp \
727 to-addresses=10.10.10.8 to-ports=4899
728add action=dst-nat chain=dstnat comment="Radmin for LogyCom" disabled=no dst-address=89.218.122.202 dst-port=4897 protocol=tcp \
729 to-addresses=10.10.10.222 to-ports=4897
730add action=dst-nat chain=dstnat comment="Radmin for Leo" disabled=yes dst-address=88.204.214.122 dst-port=4567 protocol=tcp to-addresses=\
731 192.168.1.12 to-ports=4567
732add action=masquerade chain=srcnat comment=IPSec disabled=yes dst-address=192.168.35.0/24 out-interface=ether1 src-address=192.168.0.0/24
733add action=masquerade chain=srcnat comment="NAT l4 user to ether3 modem" disabled=no dst-address-list=!local src-address-list=users-l4
734add action=masquerade chain=srcnat comment="NAT l6 user for zharyk" disabled=yes dst-address-list=!local src-address-list=users-l6
735add action=masquerade chain=srcnat comment="NAT PPTP to Internet" disabled=no dst-address-list=!local src-address-list=myPPTP
736add action=masquerade chain=srcnat comment="NAT local to Internet" disabled=no dst-address-list=!local src-address-list=mylocal
737add action=dst-nat chain=dstnat comment="TEMP VNC" disabled=yes dst-address=88.204.214.122 dst-port=5980 protocol=tcp to-addresses=\
738 192.168.0.235 to-ports=80
739add action=dst-nat chain=dstnat comment="TEMP VNC" disabled=yes dst-address=88.204.214.122 dst-port=623 protocol=udp to-addresses=\
740 192.168.0.235 to-ports=623
741add action=dst-nat chain=dstnat comment="" disabled=yes dst-address=88.204.214.122 dst-port=2880 protocol=tcp to-addresses=10.10.10.2 \
742 to-ports=8080
743add action=dst-nat chain=dstnat comment="" disabled=yes dst-address=88.204.214.122 dst-port=2880 protocol=tcp to-addresses=10.10.10.2 \
744 to-ports=51003
745add action=dst-nat chain=dstnat comment="temp remote winbox for reverse proxy" disabled=yes dst-port=8295 protocol=tcp to-addresses=\
746 192.168.240.2 to-ports=8291
747add action=dst-nat chain=dstnat comment=Vremenni disabled=yes dst-address=89.218.122.202 dst-port=4899 protocol=tcp to-addresses=10.10.10.4 \
748 to-ports=4899
749/ip firewall service-port
750set ftp disabled=no ports=21
751set tftp disabled=no ports=69
752set irc disabled=no ports=6667
753set h323 disabled=no
754set sip disabled=no ports=5060,5061
755set pptp disabled=no