MMM MMM KKK TTTTTTTTTTT KKK

MMMM MMMM KKK TTTTTTTTTTT KKK

MMM MMMM MMM III KKK KKK RRRRRR OOOOOO TTT III KKK KKK
MMM MM MMM III KKKKK RRR RRR OOO OOO TTT III KKKKK
MMM MMM III KKK KKK RRRRRR OOO OOO TTT III KKK KKK
MMM MMM III KKK KKK RRR RRR OOOOOO TTT III KKK KKK

MikroTik RouterOS 6.39.2 (c) 1999-2017 http://www.mikrotik.com/

[?] Gives the list of available commands

command [?] Gives help on the command and list of arguments

[Tab] Completes the command/word. If the input is ambiguous,

a second [Tab] gives possible options

/ Move up to base level

.. Move up one level
/command Use command at the base level
!!!!! DEFAULT ADMIN ACCOUNT HAD NO PASSWORD AND DEVICE WAS HACKED! Account au...
[diresa@DAGS] > ip firewall export
# jan/27/2019 19:07:05 by RouterOS 6.39.2
# software id = P4PZ-IKEF
#
/ip firewall layer7-protocol
add name=block-update-ms regexp=".(stats|ntservicepack|update|download|
windowsupdate|v\
4.windowsupdate).(microsoft|windowsupdate)"
add name=block-update-msw regexp=".(wustat|ws|v4.windowsupdate.microsoft|
windowsupdate\
.microsoft).(nsatc|windows|microsoft)"
add name=Facebook regexp="^.+(facebook.com).*\$"
add name=Youtube regexp="^.+(youtube.com).*\$"
add name=Twitter regexp="^.+(twitter.com).*\$"
add name=Instagram regexp="^.+(instagram.com).*\$"
add name=IDM regexp="get /.*(user-agent: mozilla/4.0|range: bytes=)"
add name=Netflix regexp="^.+(netflix.com).*\$"
add name="Google docs" regexp="^.+(docs.google.com).*\$"
add name=Sendspace regexp="^.+(sendspace.com).*\$"
/ip firewall address-list
add address=192.168.10.0/24 list="Usuarios 10"
add address=192.168.10.5-192.168.10.10 list="SuperAdmin 10.X"
add address=192.168.8.0/24 list="Usuarios 8"
add address=192.168.8.2-192.168.8.12 list="SuperAdmin 8.X"
add address=192.168.10.201 list=DIREMID
add address=192.168.10.202 list=DIREMID02
add address=192.168.77.0/24 list="Usuarios 77"
add address=192.168.15.0/24 list="Usuarios 15"
add address=192.168.15.7-192.168.15.10 list="SuperAdmin 15.X"
add address=192.168.8.90 list=delia
add address=192.168.8.72 list=Martin
add address=192.168.8.240 list=SIAF
add address=192.168.77.5-192.168.77.7 list="SuperAdmin 77.X"
add address=192.168.8.123 list=jaime
add address=192.168.15.8 list=Willy
add address=192.168.15.2 list=Solisbango
add address=192.168.8.3 list=Libio
add address=192.168.15.22 list=Abner
add address=192.168.15.45 list=Vanessa
add address=192.168.9.0/24 list="Usuarios 9.X"
add address=192.168.9.129 list=Procesos0
add address=192.168.9.40 list=Procesos1
add address=192.168.9.29 list=Procesos2
add address=192.168.15.31 list=EdelyOCI
add address=192.168.15.246 list=JaimeP
/ip firewall filter
add action=drop chain=forward comment="WU Block" layer7-protocol=block-update-msw
add action=drop chain=forward layer7-protocol=block-update-ms
add action=drop chain=forward comment="IDM Block" disabled=yes layer7-protocol=IDM
add action=drop chain=forward comment="Netflix Block" disabled=yes layer7-
protocol=\
Netflix time=7h-17h30m,mon,tue,wed,thu,fri,sat
add action=accept chain=forward comment="Google docs" disabled=yes layer7-
protocol=\
"Google docs"
add action=accept chain=forward comment="SU FB 13.X" disabled=yes layer7-protocol=\
Facebook src-address-list="SuperAdmin 15.X"
add action=accept chain=forward comment="Willy FB 13.X" layer7-protocol=Facebook \
src-address-list=Willy
add action=accept chain=forward comment="SU YT 13.X" layer7-protocol=Youtube \
src-address-list="SuperAdmin 15.X"
add action=accept chain=forward comment="SU YT 8.X" disabled=yes layer7-protocol=\
Youtube src-address-list="SuperAdmin 8.X"
add action=accept chain=forward comment=Parrilla disabled=yes layer7-protocol=\
Facebook src-address-list=Parrilla
add action=accept chain=forward comment=Martin layer7-protocol=Facebook \
src-address-list=Martin
add action=accept chain=forward comment=Solisbango layer7-protocol=Facebook \
src-address-list=Solisbango
add action=accept chain=forward comment="Martin YT" layer7-protocol=Youtube \
src-address-list=Martin
add action=accept chain=forward comment="SU FB 8.X" disabled=yes layer7-protocol=\
Facebook src-address-list="SuperAdmin 8.X"
# inactive time
add action=drop chain=forward comment="FB Block 8.X" layer7-protocol=Facebook \
src-address-list="Usuarios 8" time=7h-17h30m,mon,tue,wed,thu,fri,sat
add action=drop chain=forward comment="YT Block 8.X" disabled=yes layer7-protocol=\
Youtube src-address-list="Usuarios 8" time=7h-17h30m,mon,tue,wed,thu,fri,sat
# inactive time
add action=drop chain=forward comment="YT Block 9.X" layer7-protocol=Youtube \
src-address-list="Usuarios 9.X" time=7h-17h30m,mon,tue,wed,thu,fri,sat
add action=drop chain=forward comment="FB Block 9.X" disabled=yes layer7-protocol=\
Facebook src-address-list="Usuarios 9.X" time=7h-17h30m,mon,tue,wed,thu,fri,sat
# inactive time
add action=drop chain=forward comment="YT Block 10.X" layer7-protocol=Youtube \
src-address-list="Usuarios 10" time=7h-17h30m,mon,tue,wed,thu,fri,sat
# inactive time
add action=drop chain=forward comment="FB Block 10.X" layer7-protocol=Facebook \
src-address-list="Usuarios 10" time=7h-17h30m,mon,tue,wed,thu,fri,sat
add action=drop chain=forward comment="YT Block 13.X" disabled=yes layer7-
protocol=\
Youtube src-address-list="Usuarios 15" time=7h-17h30m,mon,tue,wed,thu,fri,sat
add action=drop chain=forward comment="FB Block 13.X" disabled=yes layer7-
protocol=\
Facebook src-address-list="Usuarios 15" time=7h-17h30m,mon,tue,wed,thu,fri,sat
# inactive time
add action=accept chain=forward comment="YT Block 77.X" layer7-protocol=Youtube \
src-address-list="SuperAdmin 77.X" time=7h-17h30m,mon,tue,wed,thu,fri,sat
# inactive time
add action=drop chain=forward comment="YT Block 77.X" layer7-protocol=Youtube \
src-address-list="Usuarios 77" time=7h-17h30m,mon,tue,wed,thu,fri,sat
# inactive time
add action=accept chain=forward comment="FB Block 77.X" layer7-protocol=Facebook \
src-address-list="SuperAdmin 77.X" time=7h-17h30m,mon,tue,wed,thu,fri,sat
# inactive time
add action=drop chain=forward comment="FB Block 77.X" layer7-protocol=Facebook \
src-address-list="Usuarios 77" time=7h-17h30m,mon,tue,wed,thu,fri,sat
/ip firewall mangle
add action=mark-routing chain=prerouting comment=LAN2WAN3 disabled=yes \
new-routing-mark=LAN2WAN3 passthrough=yes src-address=192.168.9.0/24
add action=mark-routing chain=prerouting comment=LAN2WAN2 new-routing-mark=LAN2WAN2
\
passthrough=yes src-address=192.168.15.0/26
add action=mark-routing chain=prerouting comment=LAN2WAN1 new-routing-mark=LAN2WAN1
\
passthrough=yes src-address=192.168.8.0/24
add action=mark-routing chain=prerouting comment=LAN2WAN1 new-routing-mark=LAN3WAN1
\
passthrough=yes src-address=192.168.10.0/24
add action=mark-routing chain=prerouting comment=LAN2WAN2 new-routing-mark=LAN4WAN2
\
passthrough=yes src-address=192.168.77.0/24
add action=mark-connection chain=prerouting comment="ICMP (ping)" \
new-connection-mark=ICMP_C passthrough=yes protocol=icmp
add action=mark-packet chain=prerouting connection-mark=ICMP_C new-packet-mark=ICMP
\
passthrough=no
add action=mark-connection chain=prerouting comment=DNS dst-port=53 \
new-connection-mark=DNS_C passthrough=yes protocol=udp
add action=mark-packet chain=prerouting connection-mark=DNS_C new-packet-mark=DNS \
passthrough=no
add action=mark-connection chain=prerouting comment=Whatsapp dst-port=\
5222,5223,5228,5242 new-connection-mark=Whatsapp_C passthrough=yes protocol=tcp
add action=mark-packet chain=prerouting connection-mark=Whatsapp_C new-packet-
mark=\
Whatsapp passthrough=no
add action=mark-connection chain=prerouting comment=Facebook content=facebook.com \
new-connection-mark=Facebook_C passthrough=yes
add action=mark-packet chain=prerouting connection-mark=Facebook_C new-packet-
mark=\
Facebook passthrough=no
add action=mark-connection chain=prerouting comment=Netflix content=netflix \
new-connection-mark=Netflix_C passthrough=yes
add action=mark-packet chain=prerouting connection-mark=Netflix_C new-packet-mark=\
Nerflix passthrough=no
add action=mark-connection chain=prerouting comment=Youtube content=youtube.com \
new-connection-mark=Youtube_C passthrough=yes
add action=mark-packet chain=prerouting connection-mark=Youtube_C new-packet-mark=\
 Youtube passthrough=no
add action=mark-connection chain=prerouting comment=Yahoo content=yahoo.com \
new-connection-mark=Yahoo_C passthrough=yes
add action=mark-packet chain=prerouting connection-mark=Yahoo_C new-packet-
mark=Yahoo \
passthrough=no
add action=mark-connection chain=prerouting comment=Hotmail
content=outlook.live.com \
new-connection-mark=Hotmail_C passthrough=yes
add action=mark-packet chain=prerouting connection-mark=Hotmail_C new-packet-mark=\
Hotmail passthrough=no
add action=mark-connection chain=prerouting comment=MINSA content=minsa.gob.pe \
new-connection-mark=HISMINSA_C passthrough=yes
add action=mark-packet chain=prerouting connection-mark=HISMINSA_C new-packet-
mark=\
Hotmail passthrough=no
add action=mark-connection chain=prerouting comment=SINADEF content=\
portalrcm.reniec.gob.pe/hechosvitales/ new-connection-mark=SINADEF_C
passthrough=\
yes
add action=mark-packet chain=prerouting connection-mark=SINADEF_C new-packet-mark=\
Hotmail passthrough=no
add action=mark-connection chain=prerouting comment=HTTP dst-port=80 \
new-connection-mark=HTTP_C passthrough=yes protocol=tcp
add action=mark-packet chain=prerouting connection-mark=HTTP_C new-packet-mark=HTTP
\
passthrough=no
add action=mark-connection chain=prerouting comment=HTTPS dst-port=443 \
new-connection-mark=HTTPS_C passthrough=yes protocol=tcp
add action=mark-packet chain=prerouting connection-mark=HTTPS_C new-packet-
mark=HTTPS \
passthrough=no
add action=mark-connection chain=prerouting comment=Others new-connection-mark=\
Others_C passthrough=yes
add action=mark-packet chain=prerouting connection-mark=Others_C new-packet-mark=\
Others passthrough=no
/ip firewall nat
add action=masquerade chain=srcnat comment="Internet Mask 01" out-interface=\
"WAN ether1"
add action=masquerade chain=srcnat comment="Internet Mask 02" out-interface=\
"WAN ether2"
add action=masquerade chain=srcnat comment="Internet Mask 03" disabled=yes \
out-interface="WAN ether3"
add action=dst-nat chain=dstnat comment="DNS Redirect" disabled=yes dst-port=53 \
protocol=udp to-addresses=199.85.127.30 to-ports=53
add action=dst-nat chain=dstnat comment="DNS Redirect 2" dst-port=53 protocol=udp \
to-addresses=156.154.70.4 to-ports=53
add action=dst-nat chain=dstnat comment="DNS Redirect 3 Sendspace enabled"
disabled=\
yes dst-port=53 protocol=udp to-addresses=156.154.70.3 to-ports=53
add action=redirect chain=dstnat comment=WebProxy disabled=yes dst-port=80
protocol=\
tcp to-ports=8080
[diresa@DAGS] >