ROS脚本大全通用CentOS教程.docx
- 文档编号:4001114
- 上传时间:2023-05-06
- 格式:DOCX
- 页数:5
- 大小:15.15KB
ROS脚本大全通用CentOS教程.docx
《ROS脚本大全通用CentOS教程.docx》由会员分享,可在线阅读,更多相关《ROS脚本大全通用CentOS教程.docx(5页珍藏版)》请在冰点文库上搜索。
ROS脚本大全通用CentOS教程
ROS脚本大全(通用)–CentOS教程
ROS脚本大全(通用)
一:
限速脚本
:
forwbszfrom1to254do={/queuesimpleaddname=(wbsz.$wbsz)dst-address=(192.168.0..$wbsz)limit-at=1024K/1024Kmax-limit=1024K/1024K}
二:
限制每台机最大线程数
:
forwbszfrom1to254do={/ipfirewallfilteraddchain=forwardsrc-address=(192.168.0..$wbsz)protocol=tcpconnection-limit=50,32action=drop}
三:
端口映射
ipfirewallnataddchain=dstnatdst-address=(202.96.134.134)protocol=tcpdst-port=80to-addresses=(192.168.0.1)to-ports=80action=dst-nat
四:
封端口号
/ipfirewallfilter
adchforwardprtcpdst-po8000actdropcomment=”BlockadeQQ”
五:
更变telnet服务端口
/ipservicesettelnetport=23
六:
更变SSH管理服务端口
/ipservicesetsshport=22
七:
更变www服务端口号
/ipservicesetwwwport=80
八:
更变FTP服务端口号
/ipservicesetftpport=21
九:
增加本ROS管理用户
/useraddname=wbszpassword=admingroup=full
十:
删除限速脚本
:
forwbszfrom1to254do={/queuesimpleremove(wbsz.$wbsz)}
十一:
封IP脚步本
/ipfirewallfilter
addchain=forwarddst-address=58.60.13.38/32action=dropcomment=”BlockadeQQ”
十二:
禁P2P脚本
/ipfirewallfilter
addchain=forwardsrc-address=192.168.0.0/24p2p=all-p2paction=dropcomment=”NoP2P”
十三:
限制每台机最大的TCP线程数(线程数=60)
/ipfirewallfilter
addchain=forwardprotocol=tcpconnection-limit=60,32action=drop\
disabled=no
十四:
一次性绑定所有在线机器MAC
:
foreachwbszin=[/iparpfinddynamic=yes]do=[/iparpaddcopy-from=$wbsz]
十五:
解除所以绑定的MAC
:
foreachwbszin[/iparpfind]do={/iparpremove$wbsz}
十六:
禁Ping
/ipfirewallfilter
addchain=outputprotocol=icmpaction=dropcomment=”NoPing”
十七:
禁电驴
/ipfirewallfilter
addchain=forwardprotocol=tcpdst-port=4661-4662action=dropcomment=”NoEmule”
addchain=forwardprotocol=tcpdst-port=4242action=drop
addchain=forwarddst-address=62.241.53.15action=drop
十八:
禁PPLIVE
/ipfirewallfilter
addchain=forwardprotocol=tcpdst-port=8008action=dropcomment=”NoPPliveTV”
addchain=forwardprotocol=udpdst-port=4004action=drop
addchain=forwarddst-address=218.108.237.11action=drop
十九:
禁QQ直播
/ipfirewallfilter
addchain=forwardprotocol=udpdst-port=13000-14000action=dropcomment=”NoQQLive”
二十:
禁比特精灵
/ipfirewallfilter
addchain=forwardprotocol=tcpdst-port=16881action=dropcomment=”NoBitSpirit”
二十一:
禁QQ聊天(一般公司才需要)
/ipfirewallfilter
addchain=forwardsrc-address=10.5.6.7/32action=acceptcomment=”NoTencentQQ”
adchforwardprtcpdst-po8000actdrop
adchforwardprudpdst-po8000actdrop
adchforwardprudpdst-po8000actdrop
addchain=forwarddst-address=61.144.238.0/24action=drop
addchain=forwarddst-address=61.152.100.0/24action=drop
addchain=forwarddst-address=61.141.194.0/24action=drop
addchain=forwarddst-address=202.96.170.163/32action=drop
addchain=forwarddst-address=202.104.129.0/24action=drop
addchain=forwarddst-address=202.104.193.20/32action=drop
addchain=forwarddst-address=202.104.193.11/32action=drop
addchain=forwarddst-address=202.104.193.12/32action=drop
addchain=forwarddst-address=218.17.209.23/32action=drop
addchain=forwarddst-address=218.18.95.153/32action=drop
addchain=forwarddst-address=218.18.95.165/32action=drop
addchain=forwarddst-address=218.18.95.220/32action=drop
addchain=forwarddst-address=218.85.138.70/32action=drop
addchain=forwarddst-address=219.133.38.0/24action=drop
addchain=forwarddst-address=219.133.49.0/24action=drop
addchain=forwarddst-address=220.133.40.0/24action=drop
addchain=forwardcontent=sz.tencentaction=reject
addchain=forwardcontent=sz2.tencentaction=reject
addchain=forwardcontent=sz3.tencentaction=reject
addchain=forwardcontent=sz4.tencentaction=reject
addchain=forwardcontent=sz5.tencentaction=reject
addchain=forwardcontent=sz6.tencentaction=reject
addchain=forwardcontent=sz7.tencentaction=reject
addchain=forwardcontent=sz8.tencentaction=rejec
addchain=forwardcontent=sz9.tencentaction=rejec
addchain=forwardcontent=tcpconn.tencentaction=reject
addchain=forwardcontent=tcpconn2.tencentaction=reject
addchain=forwardcontent=tcpconn3.tencentaction=reject
addchain=forwardcontent=tcpconn4.tencentaction=reject
addchain=forwardcontent=tcpconn5.tencentaction=reject
addchain=forwardcontent=tcpconn6.tencentaction=reject
addchain=forwardcontent=tcpconn7.tencentaction=reject
addchain=forwardcontent=tcpconn8.tencentaction=reject
addchain=forwardcontent=qqaction=reject
addchain=forwardcontent=www.qqaction=reject
二十二:
防止灰鸽子入浸
/ipfirewallfilter
addchain=forwardprotocol=tcpdst-port=1999action=dropcomment=”Backdoor.GrayBird.ad”
addchain=forwarddst-address=80.190.240.125action=drop
addchain=forwarddst-address=203.209.245.168action=drop
addchain=forwarddst-address=210.192.122.106action=drop
addchain=forwarddst-address=218.30.88.43action=drop
addchain=forwarddst-address=219.238.233.110action=drop
addchain=forwarddst-address=222.186.8.88action=drop
addchain=forwarddst-address=124.42.125.37action=drop
addchain=forwarddst-address=210.192.122.107action=drop
addchain=forwarddst-address=61.147.118.198action=drop
addchain=forwarddst-address=219.238.233.11action=drop
二十三:
防三波
/ipfirewallfilter
addchain=forwardprotocol=tcpdst-port=135-139action=dropcomment=”No3B”
以上脚本使用说明:
用winbox.exe登陆找到System—Script–点击+将对应脚本复制其中后,点击RunScript即脚本安装成功!
- 配套讲稿:
如PPT文件的首页显示word图标,表示该PPT已包含配套word讲稿。双击word图标可打开word文档。
- 特殊限制:
部分文档作品中含有的国旗、国徽等图片,仅作为作品整体效果示例展示,禁止商用。设计者仅对作品中独创性部分享有著作权。
- 关 键 词:
- ROS脚本大全通用 CentOS教程 ROS 脚本 大全 通用 CentOS 教程