Scribd
Upload
58 views8 pages

Firewall Rules for TCP Port Management

The document outlines firewall rules for managing TCP traffic on ports 22, 80, and 8291. It includes actions to drop connections from a specified address list and to dynamically add new source addresses to various address lists based on their connection state. The address lists have defined timeouts for entries, enhancing security by controlling access over time.

Uploaded by

Nguyễn Văn Cường
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
58 views8 pages

Firewall Rules for TCP Port Management

The document outlines firewall rules for managing TCP traffic on ports 22, 80, and 8291. It includes actions to drop connections from a specified address list and to dynamically add new source addresses to various address lists based on their connection state. The address lists have defined timeouts for entries, enhancing security by controlling access over time.

Uploaded by

Nguyễn Văn Cường
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd

/ip firewall

fi

add chain=input protocol=tcp dst-port=22,80,8291 src-address-list=Danh_Sach_Chan


action=drop

add chain=input protocol=tcp dst-port=22,80,8291 connection-state=new src-address-


list=Lan_3 action=add-src-to-address-list address-list=Danh_Sach_Chan address-list-
timeout=10d

add chain=input protocol=tcp dst-port=22,80,8291 connection-state=new src-address-


list=Lan_2 action=add-src-to-address-list address-list=Lan_3 address-list-timeout=1m

add chain=input protocol=tcp dst-port=22,80,8291 connection-state=new src-address-


list=Lan_1 action=add-src-to-address-list address-list=Lan_2 address-list-timeout=1m

add chain=input protocol=tcp dst-port=22,80,8291 connection-state=new action=add-src-


to- address-list address-list=Lan_1 address-list-timeout=1m
MVN CO.,
LTD

2
3
4
5
6
7
8

You might also like