MMM MMM MMMM MMMM MMM MMMM MMM MMM MM MMM MMM MMM MMM MMM

III III III III

KKK KKK KKK KKK KKKKK KKK KKK KKK KKK

RRRRRR OOOOOO RRR RRR OOO OOO RRRRRR OOO OOO RRR RRR OOOOOO

TTTTTTTTTTT TTTTTTTTTTT TTT TTT TTT TTT

III III III III

KKK KKK KKK KKK KKKKK KKK KKK KKK KKK

MikroTik RouterOS 3.30 (c) 1999-2009

http://www.mikrotik.com/

(10 messages not shown) jan/20/2002 08:43:24 system,error,critical router was rebooted without proper sh utdown jan/21/2002 08:47:33 system,error,critical router was rebooted without proper sh utdown jan/21/2002 08:49:42 system,error,critical router was rebooted without proper sh utdown jan/22/2002 09:29:00 system,error,critical router was rebooted without proper sh utdown jan/23/2002 08:41:35 system,error,critical router was rebooted without proper sh utdown jan/24/2002 08:42:10 system,error,critical router was rebooted without proper sh utdown jan/25/2002 08:46:07 system,error,critical router was rebooted without proper sh utdown jan/26/2002 08:41:48 system,error,critical router was rebooted without proper sh utdown [admin@IVAN] > export # sep/01/2011 10:51:05 by RouterOS 3.30 # software id = M3WJ-32PD # /interface ethernet set 0 arp=enabled auto-negotiation=yes cable-settings=default comment="" \ disable-running-check=yes disabled=no full-duplex=yes mac-address=\ 00:E0:7D:75:89:F3 mtu=1500 name=ADSL2 speed=100Mbps set 1 arp=enabled auto-negotiation=yes cable-settings=default comment="" \ disable-running-check=yes disabled=no full-duplex=yes mac-address=\ 00:D0:09:71:FF:87 mtu=1500 name=LAN speed=100Mbps set 2 arp=enabled auto-negotiation=yes cable-settings=default comment="" \ disable-running-check=yes disabled=no full-duplex=yes mac-address=\ 00:E0:7D:A8:43:98 mtu=1500 name=ADSL1 speed=100Mbps /interface wireless security-profiles set default authentication-types="" eap-methods=passthrough group-ciphers="" \ group-key-update=5m interim-update=0s management-protection=disabled \ management-protection-key="" mode=none name=default \ radius-eap-accounting=no radius-mac-accounting=no \ radius-mac-authentication=no radius-mac-caching=disabled \

radius-mac-format=XX:XX:XX:XX:XX:XX radius-mac-mode=as-username \ static-algo-0=none static-algo-1=none static-algo-2=none static-algo-3=\ none static-key-0="" static-key-1="" static-key-2="" static-key-3="" \ static-sta-private-algo=none static-sta-private-key="" \ static-transmit-key=key-0 supplicant-identity=MikroTik tls-certificate=\ none tls-mode=no-certificates unicast-ciphers="" wpa-pre-shared-key="" \ wpa2-pre-shared-key="" /ip hotspot profile set default dns-name="" hotspot-address=0.0.0.0 html-directory=hotspot \ http-cookie-lifetime=3d http-proxy=0.0.0.0:0 login-by=cookie,http-chap \ name=default rate-limit="" smtp-server=0.0.0.0 split-user-domain=no \ use-radius=no /ip hotspot user profile set default idle-timeout=none keepalive-timeout=2m name=default shared-users=\ 1 status-autorefresh=1m transparent-proxy=no /ip ipsec proposal set default auth-algorithms=sha1 disabled=no enc-algorithms=3des lifetime=30m \ name=default pfs-group=modp1024 /ip pool add name=dhcp_pool1 ranges=10.10.10.30-10.10.10.40 /ip dhcp-server add address-pool=dhcp_pool1 authoritative=after-2sec-delay bootp-support=\ static disabled=no interface=LAN lease-time=3d name=dhcp1 /port set 0 baud-rate=9600 data-bits=8 flow-control=hardware name=serial0 parity=\ none stop-bits=1 /ppp profile set default change-tcp-mss=yes comment="" name=default only-one=default \ use-compression=default use-encryption=default use-vj-compression=default set default-encryption change-tcp-mss=yes comment="" name=default-encryption \ only-one=default use-compression=default use-encryption=yes \ use-vj-compression=default /queue tree add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \ max-limit=10M name=DOWNLOAD parent=global-in priority=1 add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \ max-limit=800k name=UPLOAD parent=global-out priority=1 /queue type set default kind=pfifo name=default pfifo-limit=50 set ethernet-default kind=pfifo name=ethernet-default pfifo-limit=50 set wireless-default kind=sfq name=wireless-default sfq-allot=1514 \ sfq-perturb=5 set synchronous-default kind=red name=synchronous-default red-avg-packet=1000 \ red-burst=20 red-limit=60 red-max-threshold=50 red-min-threshold=10 set hotspot-default kind=sfq name=hotspot-default sfq-allot=1514 sfq-perturb=\ 5 set default-small kind=pfifo name=default-small pfifo-limit=10 /queue simple add burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s comment="" \ direction=both disabled=no dst-address=0.0.0.0/0 interface=all limit-at=\ 0/0 max-limit=128k/256k name=pc1 parent=none priority=8 queue=\ default-small/default-small target-addresses=10.10.10.101/32 total-queue=\ default-small add burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s comment="" \ direction=both disabled=no dst-address=0.0.0.0/0 interface=all limit-at=\ 0/0 max-limit=128k/512k name=pc2 parent=none priority=8 queue=\ default-small/default-small target-addresses=10.10.10.2/32 total-queue=\ default-small add burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s comment="" \ direction=both disabled=no dst-address=0.0.0.0/0 interface=all limit-at=\

add

add

add

add

add

add

add

add

add

add

add

add

0/0 max-limit=128k/512k name=PC3 parent=none priority=8 queue=\ default-small/default-small target-addresses=10.10.10.3/32 total-queue=\ default-small burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s comment="" \ direction=both disabled=no dst-address=0.0.0.0/0 interface=all limit-at=\ 0/0 max-limit=128k/512k name=PC4 parent=none priority=8 queue=\ default-small/default-small target-addresses=10.10.10.4/32 total-queue=\ default-small burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s comment="" \ direction=both disabled=no dst-address=0.0.0.0/0 interface=all limit-at=\ 0/0 max-limit=128k/512k name=PC5 parent=none priority=8 queue=\ default-small/default-small target-addresses=10.10.10.5/32 total-queue=\ default-small burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s comment="" \ direction=both disabled=no dst-address=0.0.0.0/0 interface=all limit-at=\ 0/0 max-limit=128k/512k name=PC6 parent=none priority=8 queue=\ default-small/default-small target-addresses=10.10.10.6/32 total-queue=\ default-small burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s comment="" \ direction=both disabled=no dst-address=0.0.0.0/0 interface=all limit-at=\ 0/0 max-limit=128k/512k name=PC7 parent=none priority=8 queue=\ default-small/default-small target-addresses=10.10.10.7/32 total-queue=\ default-small burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s comment="" \ direction=both disabled=no dst-address=0.0.0.0/0 interface=all limit-at=\ 0/0 max-limit=128k/512k name=PC8 parent=none priority=8 queue=\ default-small/default-small target-addresses=10.10.10.8/32 total-queue=\ default-small burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s comment="" \ direction=both disabled=no dst-address=0.0.0.0/0 interface=all limit-at=\ 0/0 max-limit=128k/512k name=PC9 parent=none priority=8 queue=\ default-small/default-small target-addresses=10.10.10.9/32 total-queue=\ default-small burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s comment="" \ direction=both disabled=no dst-address=0.0.0.0/0 interface=all limit-at=\ 0/0 max-limit=128k/512k name=PC10 parent=none priority=8 queue=\ default-small/default-small target-addresses=10.10.10.10/32 total-queue=\ default-small burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s comment="" \ direction=both disabled=no dst-address=0.0.0.0/0 interface=all limit-at=\ 0/0 max-limit=128k/512k name=PC11 parent=none priority=8 queue=\ default-small/default-small target-addresses=10.10.10.11/32 total-queue=\ default-small burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s comment="" \ direction=both disabled=no dst-address=0.0.0.0/0 interface=all limit-at=\ 0/0 max-limit=128k/512k name=PC12 parent=none priority=8 queue=\ default-small/default-small target-addresses=10.10.10.12/32 total-queue=\ default-small burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s comment="" \ direction=both disabled=no dst-address=0.0.0.0/0 interface=all limit-at=\ 0/0 max-limit=128k/512k name=PC13 parent=none priority=8 queue=\ default-small/default-small target-addresses=10.10.10.13/32 total-queue=\ default-small burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s comment="" \ direction=both disabled=no dst-address=0.0.0.0/0 interface=all limit-at=\ 0/0 max-limit=128k/512k name=PC14 parent=none priority=8 queue=\ default-small/default-small target-addresses=10.10.10.14/32 total-queue=\ default-small burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s comment="" \ direction=both disabled=no dst-address=0.0.0.0/0 interface=all limit-at=\

add

add

add

add

add

add

add

add

add

add

add

add

0/0 max-limit=128k/512k name=PC15 parent=none priority=8 queue=\ default-small/default-small target-addresses=10.10.10.15/32 total-queue=\ default-small burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s comment="" \ direction=both disabled=no dst-address=0.0.0.0/0 interface=all limit-at=\ 0/0 max-limit=128k/512k name=PC16 parent=none priority=8 queue=\ default-small/default-small target-addresses=10.10.10.16/32 total-queue=\ default-small burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s comment="" \ direction=both disabled=no dst-address=0.0.0.0/0 interface=all limit-at=\ 0/0 max-limit=128k/512k name=PC17 parent=none priority=8 queue=\ default-small/default-small target-addresses=10.10.10.17/32 total-queue=\ default-small burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s comment="" \ direction=both disabled=no dst-address=0.0.0.0/0 interface=all limit-at=\ 0/0 max-limit=128k/512k name=PC18 parent=none priority=8 queue=\ default-small/default-small target-addresses=10.10.10.18/32 total-queue=\ default-small burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s comment="" \ direction=both disabled=no dst-address=0.0.0.0/0 interface=all limit-at=\ 0/0 max-limit=128k/512k name=PC19 parent=none priority=8 queue=\ default-small/default-small target-addresses=10.10.10.19/32 total-queue=\ default-small burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s comment="" \ direction=both disabled=no dst-address=0.0.0.0/0 interface=all limit-at=\ 0/0 max-limit=128k/512k name=PC20 parent=none priority=8 queue=\ default-small/default-small target-addresses=10.10.10.20/32 total-queue=\ default-small burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s comment="" \ direction=both disabled=no dst-address=0.0.0.0/0 interface=all limit-at=\ 0/0 max-limit=128k/512k name=visitante01 parent=none priority=8 queue=\ default-small/default-small target-addresses=10.10.10.30/32 total-queue=\ default-small burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s comment="" \ direction=both disabled=no dst-address=0.0.0.0/0 interface=all limit-at=\ 0/0 max-limit=128k/512k name=visitante02 parent=none priority=8 queue=\ default-small/default-small target-addresses=10.10.10.31/32 total-queue=\ default-small burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s comment="" \ direction=both disabled=no dst-address=0.0.0.0/0 interface=all limit-at=\ 0/0 max-limit=128k/512k name=visitante03 parent=none priority=8 queue=\ default-small/default-small target-addresses=10.10.10.32/32 total-queue=\ default-small burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s comment="" \ direction=both disabled=no dst-address=0.0.0.0/0 interface=all limit-at=\ 0/0 max-limit=128k/512k name=visitante04 parent=none priority=8 queue=\ default-small/default-small target-addresses=10.10.10.33/32 total-queue=\ default-small burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s comment="" \ direction=both disabled=no dst-address=0.0.0.0/0 interface=all limit-at=\ 0/0 max-limit=128k/512k name=visitante05 parent=none priority=8 queue=\ default-small/default-small target-addresses=10.10.10.34/32 total-queue=\ default-small burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s comment="" \ direction=both disabled=no dst-address=0.0.0.0/0 interface=all limit-at=\ 0/0 max-limit=128k/512k name=visitante06 parent=none priority=8 queue=\ default-small/default-small target-addresses=10.10.10.35/32 total-queue=\ default-small burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s comment="" \ direction=both disabled=no dst-address=0.0.0.0/0 interface=all limit-at=\

0/0 max-limit=128k/512k name=visitante07 parent=none priority=8 queue=\ default-small/default-small target-addresses=10.10.10.36/32 total-queue=\ default-small add burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s comment="" \ direction=both disabled=no dst-address=0.0.0.0/0 interface=all limit-at=\ 0/0 max-limit=128k/512k name=visitante08 parent=none priority=8 queue=\ default-small/default-small target-addresses=10.10.10.37/32 total-queue=\ default-small add burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s comment="" \ direction=both disabled=no dst-address=0.0.0.0/0 interface=all limit-at=\ 0/0 max-limit=128k/512k name=visitante09 parent=none priority=8 queue=\ default-small/default-small target-addresses=10.10.10.38/32 total-queue=\ default-small add burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s comment="" \ direction=both disabled=no dst-address=0.0.0.0/0 interface=all limit-at=\ 0/0 max-limit=128k/512k name=visitante10 parent=none priority=8 queue=\ default-small/default-small target-addresses=10.10.10.39/32 total-queue=\ default-small add burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s comment="" \ direction=both disabled=no dst-address=0.0.0.0/0 interface=all limit-at=\ 0/0 max-limit=128k/512k name=visitante11 parent=none priority=8 queue=\ default-small/default-small target-addresses=10.10.10.40/32 total-queue=\ default-small add burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s comment="" \ direction=both disabled=no dst-address=0.0.0.0/0 interface=all limit-at=\ 0/0 max-limit=512k/1M name=servidor parent=none priority=8 queue=\ default-small/default-small target-addresses=10.10.10.207/32 total-queue=\ default-small add burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s comment="" \ direction=both disabled=no dst-address=0.0.0.0/0 interface=all limit-at=\ 0/0 max-limit=256k/512k name=servidor1 parent=none priority=8 queue=\ default-small/default-small target-addresses=10.10.10.25/32 total-queue=\ default-small /queue tree add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \ max-limit=0 name=www_down packet-mark=www_in parent=DOWNLOAD priority=1 \ queue=default add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \ max-limit=0 name=www_up packet-mark=www_out parent=UPLOAD priority=1 \ queue=default add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \ max-limit=0 name=dns_down packet-mark=dns_in parent=global-in priority=1 \ queue=default add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \ max-limit=0 name=dns_up packet-mark=dns_out parent=global-out priority=1 \ queue=default add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \ max-limit=0 name=winbox_down packet-mark=winbox_in parent=global-in \ priority=1 queue=default add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=0 \ max-limit=0 name=winbox_up packet-mark=winbox_out parent=global-out \ priority=1 queue=default add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=64k \ max-limit=128k name=pop3_down packet-mark=pop3_in parent=DOWNLOAD \ priority=1 queue=default add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=64k \ max-limit=128k name=pop3_up packet-mark=pop3_out parent=UPLOAD priority=1 \ queue=default add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=64k \ max-limit=200k name=smtp_down packet-mark=smtp_in parent=DOWNLOAD \

priority=2 queue=default add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=64k \ max-limit=200k name=smtp_up packet-mark=smtp_out parent=UPLOAD priority=2 \ queue=default add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=100k \ max-limit=256k name=p2p_down packet-mark=p2p_in parent=DOWNLOAD priority=\ 8 queue=default add burst-limit=0 burst-threshold=0 burst-time=0s disabled=no limit-at=100k \ max-limit=256k name=p2p_up packet-mark=p2p_out parent=UPLOAD priority=8 \ queue=default /routing bgp instance set default as=65530 client-to-client-reflection=yes comment="" disabled=no \ ignore-as-path-len=no name=default out-filter="" redistribute-connected=\ no redistribute-ospf=no redistribute-other-bgp=no redistribute-rip=no \ redistribute-static=no router-id=0.0.0.0 /routing ospf area set backbone area-id=0.0.0.0 authentication=none disabled=no name=backbone \ type=default /snmp set contact="" enabled=no engine-boots=0 engine-id="" location="" \ time-window=15 trap-sink=0.0.0.0 trap-version=1 /snmp community set public address=0.0.0.0/0 authentication-password="" \ authentication-protocol=MD5 encryption-password="" encryption-protocol=\ DES name=public read-access=yes security=none write-access=no /system logging action set memory memory-lines=100 memory-stop-on-full=no name=memory target=memory set disk disk-file-count=2 disk-file-name=log disk-lines-per-file=100 \ disk-stop-on-full=no name=disk target=disk set echo name=echo remember=yes target=echo set remote bsd-syslog=no name=remote remote=0.0.0.0:514 src-address=0.0.0.0 \ syslog-facility=daemon syslog-severity=auto target=remote /user group add comment="" name=read policy="local,telnet,ssh,reboot,read,test,winbox,pass\ word,web,sniff,sensitive,!ftp,!write,!policy" add comment="" name=write policy="local,telnet,ssh,reboot,read,write,test,winb\ ox,password,web,sniff,sensitive,!ftp,!policy" add comment="" name=full policy="local,telnet,ssh,ftp,reboot,read,write,policy\ ,test,winbox,password,web,sniff,sensitive" /interface bridge settings set use-ip-firewall=no use-ip-firewall-for-pppoe=no use-ip-firewall-for-vlan=\ no /interface ethernet mirror set /interface l2tp-server server set authentication=pap,chap,mschap1,mschap2 default-profile=\ default-encryption enabled=no max-mru=1460 max-mtu=1460 mrru=disabled /interface ovpn-server server set auth=sha1,md5 certificate=none cipher=blowfish128,aes128 default-profile=\ default enabled=no keepalive-timeout=60 mac-address=FE:72:B2:57:64:53 \ max-mtu=1500 mode=ip netmask=24 port=1194 require-client-certificate=no /interface pptp-server server set authentication=mschap1,mschap2 default-profile=default-encryption \ enabled=no keepalive-timeout=30 max-mru=1460 max-mtu=1460 mrru=disabled /interface wireless align set active-mode=yes audio-max=-20 audio-min=-100 audio-monitor=\ 00:00:00:00:00:00 filter-mac=00:00:00:00:00:00 frame-size=300 \ frames-per-second=25 receive-all=no ssid-all=no /interface wireless sniffer set channel-time=200ms file-limit=10 file-name="" memory-limit=10 \

multiple-channels=no only-headers=no receive-errors=no streaming-enabled=\ no streaming-max-rate=0 streaming-server=0.0.0.0 /interface wireless snooper set channel-time=200ms multiple-channels=yes receive-errors=no /ip accounting set account-local-traffic=no enabled=no threshold=256 /ip accounting web-access set accessible-via-web=no address=0.0.0.0/0 /ip address add address=10.10.10.1/24 broadcast=10.10.10.255 comment="" disabled=no \ interface=LAN network=10.10.10.0 add address=172.16.0.5/24 broadcast=172.16.0.255 comment="" disabled=no \ interface=ADSL2 network=172.16.0.0 add address=192.168.1.5/24 broadcast=192.168.1.255 comment="" disabled=no \ interface=ADSL1 network=192.168.1.0 /ip dhcp-server config set store-leases-disk=5m /ip dhcp-server network add address=10.10.10.0/24 comment="" gateway=10.10.10.1 /ip dns set allow-remote-requests=yes cache-max-ttl=1w cache-size=2048KiB \ max-udp-packet-size=512 primary-dns=192.168.1.254 secondary-dns=\ 172.16.0.1 /ip firewall connection tracking set enabled=yes generic-timeout=10m icmp-timeout=10s tcp-close-timeout=10s \ tcp-close-wait-timeout=10s tcp-established-timeout=1d \ tcp-fin-wait-timeout=10s tcp-last-ack-timeout=10s \ tcp-syn-received-timeout=5s tcp-syn-sent-timeout=5s tcp-syncookie=no \ tcp-time-wait-timeout=10s udp-stream-timeout=3m udp-timeout=10s /ip firewall filter add action=drop chain=forward comment="Drop Blaster Worm" disabled=no \ dst-port=445 protocol=tcp add action=drop chain=forward comment="Drop Blaster Worm" disabled=no \ dst-port=445 protocol=udp add action=drop chain=forward comment=________ disabled=no dst-port=593 \ protocol=tcp add action=drop chain=forward comment=________ disabled=no dst-port=1024-1030 \ protocol=tcp add action=drop chain=forward comment="Drop MyDoom" disabled=no dst-port=1080 \ protocol=tcp add action=drop chain=forward comment=________ disabled=no dst-port=1214 \ protocol=tcp add action=drop chain=forward comment="ndm requester" disabled=no dst-port=\ 1363 protocol=tcp add action=drop chain=forward comment="ndm server" disabled=no dst-port=1364 \ protocol=tcp add action=drop chain=forward comment="screen cast" disabled=no dst-port=1368 \ protocol=tcp add action=drop chain=forward comment=hromgrafx disabled=no dst-port=1373 \ protocol=tcp add action=drop chain=forward comment=cichlid disabled=no dst-port=1377 \ protocol=tcp add action=drop chain=forward comment=Worm disabled=no dst-port=1433-1434 \ protocol=tcp add action=drop chain=forward comment="Drop Beagle" disabled=no dst-port=2535 \ protocol=tcp add action=drop chain=forward comment="Bagle Virus" disabled=no dst-port=2745 \ protocol=tcp add action=drop chain=forward comment="Drop Dumaru.Y" disabled=no dst-port=\ 2283 protocol=tcp

add action=drop chain=forward comment="Drop Beagle.C-K" disabled=no dst-port=\ 2745 protocol=tcp add action=drop chain=forward comment="Drop MyDoom" disabled=no dst-port=\ 3127-3128 protocol=tcp add action=drop chain=forward comment="Drop Backdoor OptixPro" disabled=no \ dst-port=3410 protocol=tcp add action=drop chain=forward comment=Worm disabled=no dst-port=4444 \ protocol=tcp add action=drop chain=forward comment=Worm disabled=no dst-port=4444 \ protocol=udp add action=drop chain=forward comment="Drop Sasser" disabled=no dst-port=5554 \ protocol=tcp add action=drop chain=forward comment="Drop Beagle.B" disabled=no dst-port=\ 8866 protocol=tcp add action=drop chain=forward comment="Drop Dabber.A-B" disabled=no dst-port=\ 9898 protocol=tcp add action=drop chain=forward comment="Drop Dumaru.Y" disabled=no dst-port=\ 10000 protocol=tcp add action=drop chain=forward comment="Drop MyDoom.B" disabled=no dst-port=\ 10080 protocol=tcp add action=drop chain=forward comment="Drop NetBus" disabled=no dst-port=\ 12345 protocol=tcp add action=drop chain=forward comment="Drop Kuang2" disabled=no dst-port=\ 17300 protocol=tcp add action=drop chain=forward comment="Drop SubSeven" disabled=no dst-port=\ 27374 protocol=tcp add action=drop chain=forward comment="Virus Blaster - Worm" disabled=no \ dst-port=135-139 protocol=tcp add action=drop chain=forward comment="Drop Messenger Worm" disabled=no \ dst-port=135-139 protocol=udp add action=drop chain=input comment="Drop Blaster Worm" disabled=no dst-port=\ 445 protocol=tcp add action=drop chain=input comment="Drop Blaster Worm" disabled=no dst-port=\ 445 protocol=udp add action=drop chain=input comment=________ disabled=no dst-port=593 \ protocol=tcp add action=drop chain=input comment=________ disabled=no dst-port=1024-1030 \ protocol=tcp add action=drop chain=input comment="Drop MyDoom" disabled=no dst-port=1080 \ protocol=tcp add action=drop chain=input comment=________ disabled=no dst-port=1214 \ protocol=tcp add action=drop chain=input comment="ndm requester" disabled=no dst-port=1363 \ protocol=tcp add action=drop chain=input comment="ndm server" disabled=no dst-port=1364 \ protocol=tcp add action=drop chain=input comment="screen cast" disabled=no dst-port=1368 \ protocol=tcp add action=drop chain=input comment=hromgrafx disabled=no dst-port=1373 \ protocol=tcp add action=drop chain=input comment=cichlid disabled=no dst-port=1377 \ protocol=tcp add action=drop chain=input comment=Worm disabled=no dst-port=1433-1434 \ protocol=tcp add action=drop chain=input comment="Drop Beagle" disabled=no dst-port=2535 \ protocol=tcp add action=drop chain=input comment="Bagle Virus" disabled=no dst-port=2745 \ protocol=tcp add action=drop chain=input comment="Drop Dumaru.Y" disabled=no dst-port=2283 \ protocol=tcp

add action=drop chain=input comment="Drop Beagle.C-K" disabled=no dst-port=\ 2745 protocol=tcp add action=drop chain=input comment="Drop MyDoom" disabled=no dst-port=\ 3127-3128 protocol=tcp add action=drop chain=input comment="Drop Backdoor OptixPro" disabled=no \ dst-port=3410 protocol=tcp add action=drop chain=input comment=Worm disabled=no dst-port=4444 protocol=\ tcp add action=drop chain=input comment=Worm disabled=no dst-port=4444 protocol=\ udp add action=drop chain=input comment="Drop Sasser" disabled=no dst-port=5554 \ protocol=tcp add action=drop chain=input comment="Drop Beagle.B" disabled=no dst-port=8866 \ protocol=tcp add action=drop chain=input comment="Drop Dabber.A-B" disabled=no dst-port=\ 9898 protocol=tcp add action=drop chain=input comment="Drop Dumaru.Y" disabled=no dst-port=\ 10000 protocol=tcp add action=drop chain=input comment="Drop MyDoom.B" disabled=no dst-port=\ 10080 protocol=tcp add action=drop chain=input comment="Drop NetBus" disabled=no dst-port=12345 \ protocol=tcp add action=drop chain=input comment="Drop Kuang2" disabled=no dst-port=17300 \ protocol=tcp add action=drop chain=input comment="Drop SubSeven" disabled=no dst-port=\ 27374 protocol=tcp add action=drop chain=input comment="Virus Blaster - Worm" disabled=no \ dst-port=135-139 protocol=tcp add action=drop chain=input comment="Drop Messenger Worm" disabled=no \ dst-port=135-139 protocol=udp /ip firewall mangle add action=mark-connection chain=input comment="" disabled=no in-interface=\ ADSL1 new-connection-mark=ADSL1_conn passthrough=yes add action=mark-connection chain=input comment="" disabled=no in-interface=\ ADSL2 new-connection-mark=ADSL2_conn passthrough=yes add action=mark-routing chain=output comment="" connection-mark=ADSL1_conn \ disabled=no new-routing-mark=to_ADSL1 passthrough=yes add action=mark-routing chain=output comment="" connection-mark=ADSL2_conn \ disabled=no new-routing-mark=to_ADSL2 passthrough=yes add action=accept chain=prerouting comment="" disabled=no dst-address=\ 172.16.0.0/24 in-interface=LAN add action=accept chain=prerouting comment="" disabled=no dst-address=\ 192.168.1.0/24 in-interface=LAN add action=mark-connection chain=prerouting comment="" disabled=no \ dst-address-type=!local in-interface=LAN new-connection-mark=ADSL1_conn \ passthrough=yes per-connection-classifier=both-addresses:2/0 add action=mark-connection chain=prerouting comment="" disabled=no \ dst-address-type=!local in-interface=LAN new-connection-mark=ADSL2_conn \ passthrough=yes per-connection-classifier=both-addresses:2/1 add action=mark-routing chain=prerouting comment="" connection-mark=\ ADSL1_conn disabled=no in-interface=LAN new-routing-mark=to_ADSL1 \ passthrough=yes add action=mark-routing chain=prerouting comment="" connection-mark=\ ADSL2_conn disabled=no in-interface=LAN new-routing-mark=to_ADSL2 \ passthrough=yes add action=mark-packet chain=prerouting comment="Marcados de Paquetes WWW" \ disabled=no new-packet-mark=www_in passthrough=yes protocol=tcp src-port=\ 80 add action=mark-packet chain=postrouting comment="" disabled=no dst-port=80 \ new-packet-mark=www_out passthrough=yes protocol=tcp

add action=mark-packet chain=prerouting comment="Marcados de Paquetes DNS" \ disabled=no new-packet-mark=dns_in passthrough=yes protocol=tcp src-port=\ 53 add action=mark-packet chain=postrouting comment="" disabled=no dst-port=53 \ new-packet-mark=dns_out passthrough=yes protocol=tcp add action=mark-packet chain=prerouting comment="" disabled=no \ new-packet-mark=dns_udp_in passthrough=yes protocol=udp src-port=53 add action=mark-packet chain=postrouting comment="" disabled=no dst-port=53 \ new-packet-mark=dns_udp_out passthrough=yes protocol=udp add action=mark-packet chain=prerouting comment="Marcados de Paquetes POP3" \ disabled=no new-packet-mark=pop3_in passthrough=yes protocol=tcp \ src-port=110 add action=mark-packet chain=postrouting comment="" disabled=no dst-port=110 \ new-packet-mark=pop3_out passthrough=yes protocol=tcp add action=mark-packet chain=prerouting comment="Marcados de Paquetes SMTP" \ disabled=no new-packet-mark=smtp_in passthrough=yes protocol=tcp \ src-port=25 add action=mark-packet chain=postrouting comment="" disabled=no dst-port=25 \ new-packet-mark=smtp_out passthrough=yes protocol=tcp add action=mark-packet chain=prerouting comment="Marcados de Paquetes WIMBOX" \ disabled=no dst-port=8291 new-packet-mark=winbox_in passthrough=yes \ protocol=tcp add action=mark-packet chain=postrouting comment="" disabled=no \ new-packet-mark=winbox_out passthrough=yes protocol=tcp src-port=8291 add action=mark-packet chain=prerouting comment="Marcados de Paquetes P2P" \ disabled=no new-packet-mark=p2p_in p2p=all-p2p passthrough=yes add action=mark-packet chain=postrouting comment="" disabled=no \ new-packet-mark=p2p_out p2p=all-p2p passthrough=yes /ip firewall nat add action=masquerade chain=srcnat comment="" disabled=no out-interface=ADSL1 add action=masquerade chain=srcnat comment="" disabled=no out-interface=ADSL2 /ip firewall service-port set ftp disabled=no ports=21 set tftp disabled=no ports=69 set irc disabled=no ports=6667 set h323 disabled=no set sip disabled=no ports=5060,5061 set pptp disabled=no /ip hotspot service-port set ftp disabled=no ports=21 /ip neighbor discovery set ADSL2 discover=yes set LAN discover=yes set ADSL1 discover=yes /ip proxy set always-from-cache=no cache-administrator=webmaster cache-hit-dscp=4 \ cache-on-disk=no enabled=no max-cache-size=none max-client-connections=\ 600 max-fresh-time=3d max-server-connections=600 parent-proxy=0.0.0.0 \ parent-proxy-port=0 port=8080 serialize-connections=no src-address=\ 0.0.0.0 /ip route add check-gateway=ping disabled=no distance=1 dst-address=0.0.0.0/0 gateway=\ 192.168.1.254 routing-mark=to_ADSL2 scope=30 target-scope=10 add check-gateway=ping disabled=no distance=1 dst-address=0.0.0.0/0 gateway=\ 172.16.0.1 scope=30 target-scope=10 add check-gateway=ping disabled=no distance=1 dst-address=0.0.0.0/0 gateway=\ 172.16.0.1 routing-mark=to_ADSL1 scope=30 target-scope=10 add check-gateway=ping disabled=no distance=2 dst-address=0.0.0.0/0 gateway=\ 192.168.1.254 scope=30 target-scope=10 /ip service

set set set set set set set /ip set /ip set

telnet address=0.0.0.0/0 disabled=no port=23 ftp address=0.0.0.0/0 disabled=no port=21 www address=0.0.0.0/0 disabled=no port=80 ssh address=0.0.0.0/0 disabled=no port=22 www-ssl address=0.0.0.0/0 certificate=none disabled=yes port=443 api address=0.0.0.0/0 disabled=yes port=8728 winbox address=0.0.0.0/0 disabled=no port=8291 socks connection-idle-timeout=2m enabled=no max-connections=200 port=1080 traffic-flow active-flow-timeout=30m cache-entries=4k enabled=no \ inactive-flow-timeout=15s interfaces=all /ip upnp set allow-disable-external-interface=yes enabled=no show-dummy-rule=yes /ipv6 nd add advertise-dns=no advertise-mac-address=yes disabled=no hop-limit=\ unspecified interface=all managed-address-configuration=no mtu=\ unspecified other-configuration=no ra-delay=3s ra-interval=3m20s-10m \ ra-lifetime=30m reachable-time=unspecified retransmit-interval=\ unspecified /ipv6 nd prefix default set autoconfig=yes on-link=yes preferred-lifetime=1w valid-lifetime=4w2d /ppp aaa set accounting=yes interim-update=0s use-radius=no /queue interface set ADSL2 queue=ethernet-default set LAN queue=ethernet-default set ADSL1 queue=ethernet-default /radius incoming set accept=no port=3799 /routing igmp-proxy set query-interval=2m5s query-response-interval=10s quick-leave=no /routing mme set bidirectional-timeout=2 gateway-class=none gateway-keepalive=1m \ gateway-selection=no-gateway origination-interval=5s preferred-gateway=\ 0.0.0.0 timeout=1m ttl=50 /routing ospf set distribute-default=never metric-bgp=20 metric-connected=20 \ metric-default=1 metric-rip=20 metric-static=20 mpls-te-area=unspecified \ mpls-te-router-id=unspecified redistribute-bgp=no redistribute-connected=\ no redistribute-rip=no redistribute-static=no router-id=0.0.0.0 /routing pim set switch-to-spt=no switch-to-spt-bytes=0 switch-to-spt-interval=0s /routing rip set distribute-default=never garbage-timer=2m metric-bgp=1 metric-connected=1 \ metric-default=1 metric-ospf=1 metric-static=1 redistribute-bgp=no \ redistribute-connected=no redistribute-ospf=no redistribute-static=no \ timeout-timer=3m update-timer=30s /routing ripng set distribute-default=never garbage-timer=2m metric-bgp=1 metric-connected=1 \ metric-default=1 metric-ospf=1 metric-static=1 redistribute-bgp=no \ redistribute-connected=no redistribute-ospf=no redistribute-static=no \ timeout-timer=3m update-timer=30s /store add comment="" disabled=no disk=primary-master name=user-manager1 type=\ user-manager add comment="" disabled=no disk=primary-master name=web-proxy1 type=web-proxy /system clock set time-zone-name=America/Mexico_City /system clock manual

set dst-delta=+00:00 dst-end="jan/01/1970 00:00:00" dst-start=\ "jan/01/1970 00:00:00" time-zone=+00:00 /system console add disabled=no port=serial0 term=vt102 set [ find vcno=1 ] disabled=no term=linux set [ find vcno=2 ] disabled=no term=linux set [ find vcno=3 ] disabled=no term=linux set [ find vcno=4 ] disabled=no term=linux set [ find vcno=5 ] disabled=no term=linux set [ find vcno=6 ] disabled=no term=linux set [ find vcno=7 ] disabled=no term=linux set [ find vcno=8 ] disabled=no term=linux /system console screen set line-count=25 /system gps set enabled=no set-system-time=yes /system hardware set multi-cpu=yes /system health set state-after-reboot=enabled /system identity set name=IVAN /system lcd set contrast=0 enabled=no port=parallel type=24x4 /system lcd page set time disabled=yes display-time=5s set resources disabled=yes display-time=5s set uptime disabled=yes display-time=5s set packets disabled=yes display-time=5s set bits disabled=yes display-time=5s set version disabled=yes display-time=5s set LAN disabled=yes display-time=5s set ADSL1 disabled=yes display-time=5s set ADSL2 disabled=yes display-time=5s /system logging add action=memory disabled=no prefix="" topics=info add action=memory disabled=no prefix="" topics=error add action=memory disabled=no prefix="" topics=warning add action=echo disabled=no prefix="" topics=critical /system note set note="" show-at-login=yes /system ntp client set enabled=yes mode=unicast primary-ntp=200.189.40.8 secondary-ntp=\ 200.59.8.234 /system ntp server set broadcast=no enabled=no manycast=yes multicast=no /system routerboard bios set /system upgrade mirror set check-interval=1d enabled=no primary-server=0.0.0.0 secondary-server=\ 0.0.0.0 user="" /system watchdog set auto-send-supout=no automatic-supout=yes no-ping-delay=5m watch-address=\ none watchdog-timer=yes /tool bandwidth-server set allocate-udp-ports-from=2000 authenticate=yes enabled=yes max-sessions=\ 100 /tool e-mail set from=<> password="" server=0.0.0.0:25 username="" /tool graphing

set page-refresh=300 store-every=5min /tool graphing interface add allow-address=0.0.0.0/0 disabled=no interface=all store-on-disk=yes /tool graphing queue add allow-address=0.0.0.0/0 allow-target=yes disabled=no simple-queue=all \ store-on-disk=yes /tool graphing resource add allow-address=0.0.0.0/0 disabled=no store-on-disk=yes /tool mac-server add disabled=no interface=all /tool mac-server ping set enabled=yes /tool sms set allowed-number="" channel=0 keep-max-sms=0 receive-enabled=no secret="" /tool sniffer set file-limit=10 file-name="" filter-address1=0.0.0.0/0:0-65535 \ filter-address2=0.0.0.0/0:0-65535 filter-protocol=ip-only filter-stream=\ yes interface=all memory-limit=10 only-headers=no streaming-enabled=no \ streaming-server=0.0.0.0 /tool user-manager customer add comment="" disabled=no login=admin parent=admin password="" \ paypal-accept-pending=no paypal-allowed=no paypal-secure-response=no \ permissions=owner signup-allowed=no subscriber=admin time-zone=+00:00 /user aaa set accounting=yes default-group=read interim-update=0s use-radius=no [admin@IVAN] >