VNetLab

Monthly Archive: June 2020

0

Mikrotik

Youtube and youtube apps block using Mikrotik

#Youtube#block#using#mikrotik /ip firewall layer7-protocol add name=YT regexp=”^.+(youtube|m.youtube.com|youtu.be|ytimg.com|www.youtube.com|s.ytimg.com|ytimg.l.google.com|youtube.l.google.com|i.google.com|googlevideo.com).*\$” now we allow ip 192.168.10.100 for access youtube / ip firewall address-list add address=192.168.10.100 list=YT-ALLOW / ip firewall filter add action=drop chain=forward layer7-protocol=YT src-address=192.168.10.0/24 src-address-list=!YT-ALLOW

0

Mikrotik

Facebook and Facebook Apps block using Mikrotik

#Mikrotik#Facebook#Facebook Apps#Block#Allow 1or 2 user /ip firewall layer7-protocol add name=FB regexp=”^.+(facebook|m.facebook.com|face.book|ftimg.com|www.facebook.com|s.ftimg.com|facebook.com|blog.facebook.com|apps.facebook.com|login.facebook.com|m.facebook.com|mobile.facebook.com|touch.facebook.com|0.facebook.com).*\$” now we will allow 192.168.10.100 ip for access facebook / ip firewall address-list add address=192.168.10.100 list=FB-ALLOW / ip firewall filter add action=drop chain=forward...

0

Mikrotik / Network Administration

Mikrotik Bridge vlan tagged untagged

#Mikrotik#Bridge#vlan#tagged#untagged /interface ethernet set [ find default-name=ether3 ] comment=”Vlan-200″ set [ find default-name=ether4 ] comment=”Vlan-200″ set [ find default-name=ether5 ] comment=”Vlan-200″ /interface vlan add comment=”Vlan-200″ interface=BRIDGE-TEST name=Vlan-200 vlan-id=200 add comment=”Vlan-100″ interface=BRIDGE-TEST name=Vlan-100 vlan-id=100 add...

0

Juniper / Network Administration

Juniper User Privilage

#Juniper#user#privilage set system login class operator-local permissions view-configuration set system login class operator-local allow-commands show set system login user support class operator-local authentication plain-text-password New password:support@312 Retype new password:support@312

0

Mikrotik

Mikrotik bandwidth scheduler

#Mikrotik#Bandwidth#Scheduler /queue simple add comment=CAT1 max-limit=1024k/1024k name=CAT1 target=192.168.1.51/32 add comment=CAT3 disabled=yes max-limit=1024k/1024k name=CAT3 target=\ 192.168.1.50/32 /system scheduler add interval=1d name=Day on-event=”/queue simple\r\ \nset [find comment=Freedom1] max-limit=1024000/1024000\r\ \nset [find comment=Freedom2] max-limit=2048000/2048000\r\ \nset [find comment=Freedom3] max-limit=3072000/3072000\r\...

0

Mikrotik

Mikrotik CPU usages monitor and email

#Mikrotik#CPu#usages#Monitor#and#email /tool e-mail set address=202.53.190.4 from=poptraffic@test.com user=poptraffic@test.com /system script add comment=”Send Email When CPU Goes 20%” dont-require-permissions=no name=cpu owner=noc policy=ftp,reboot,read,write,policy,test,password,sniff,sensitive \ source=”:global sub1 ([/system identity get name])\r\ \n:global sub2 ([/system clock get time])\r\ \n:global...

0

Mikrotik

Windows update off from Mikrotik

#Mikrotik#Windows#Update#block /ip firewall raw add chain=prerouting action=drop content=update.microsoft.com comment=”DROP Windows Update” add chain=prerouting action=drop content=download.microsoft.com add chain=prerouting action=drop content=download.windowsupdate.com add chain=prerouting action=drop content=windowsupdate.com add chain=prerouting action=drop content=wustat.windows.com add chain=prerouting action=drop content=ntservicepack.microsoft.com add chain=prerouting action=drop...

0

Mikrotik

Mikrotik MSS size Manipulation

#Mikrotik#MSS#Size#Manipulation ip firewall mangle add action=change-mss chain=forward new-mss=1300 out-interface=ether2 passthrough=no protocol=tcp tcp-flags=syn

0

Mikrotik

Mikrotik Load Balance NTH vs PCC

NTH vs PCC(per connection) PCC will use multi wan for single user and can remember packet flow NTH use single wan for single user Per Connection Load Balancing (nth) Per address-pair Load Balancing (ECMP,...

0

Mikrotik

Email Spammer protection from Mikrotik

#Email#Spamming#SMTP#Protection#From#Mikrotik /ip firewall filter add action=drop chain=forward comment=”BLOCK SPAMMERS OR INFECTED USERS” dst-port=25,26,465,587 protocol=tcp src-address-list=spammer add action=add-src-to-address-list address-list=spammer address-list-timeout=1d chain=forward comment=”Detect and add-list SMTP virus or spammers” connection-limit=30,32 dst-port=25,26,465,587 limit=2,1:packet protocol=tcp connection-limit=30,32 [30 connection...