mangle.txt for mikrotik

SUBMITTED BY: Guest

DATE: Dec. 7, 2013, 5:21 p.m.

FORMAT: Text only

SIZE: 17.3 kB

Raw Download

HITS: 823

Report
  1. / ip firewall mangle
  2. add chain=prerouting protocol=tcp src-port=0-1024 action=mark-packet new-packet-mark=2 passthrough=yes comment="IMPORTANT SERVICES PORTS TCP+UDP" disabled=no
  3. add chain=prerouting protocol=tcp dst-port=0-1024 action=mark-packet new-packet-mark=2 passthrough=yes comment="" disabled=no
  4. add chain=prerouting protocol=udp src-port=0-1024 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  5. add chain=prerouting protocol=udp dst-port=0-1024 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  6. add chain=prerouting protocol=tcp src-port=4000-4017 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  7. add chain=prerouting protocol=tcp dst-port=4000-4017 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  8. add chain=prerouting protocol=udp src-port=4000-4017 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  9. add chain=prerouting protocol=udp dst-port=4000-4017 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  10. add chain=prerouting protocol=tcp src-port=10000-10020 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  11. add chain=prerouting protocol=tcp dst-port=10000-10020 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  12. add chain=prerouting protocol=icmp action=mark-packet new-packet-mark=2 passthrough=yes comment="ICMP" disabled=no
  13. add chain=prerouting protocol=gre action=mark-packet new-packet-mark=3 passthrough=yes comment="TUNNELING" disabled=no
  14. add chain=prerouting protocol=ipip action=mark-packet new-packet-mark=3 passthrough=yes comment="" disabled=no
  15. add chain=prerouting connection-type=pptp action=mark-packet new-packet-mark=3 passthrough=yes comment="TUNNELING - pptp" disabled=no
  16. add chain=prerouting connection-type=gre action=mark-packet new-packet-mark=3 passthrough=yes comment="TUNNELING - gre" disabled=no
  17. add chain=prerouting protocol=tcp src-port=53 action=mark-packet new-packet-mark=2 passthrough=yes comment="DNS TCP" disabled=no
  18. add chain=prerouting protocol=tcp dst-port=53 action=mark-packet new-packet-mark=2 passthrough=yes comment="" disabled=no
  19. add chain=prerouting protocol=udp src-port=123 action=mark-packet new-packet-mark=2 passthrough=yes comment="NTP UDP" disabled=no
  20. add chain=prerouting protocol=udp dst-port=123 action=mark-packet new-packet-mark=2 passthrough=yes comment="" disabled=no
  21. add chain=prerouting p2p=all-p2p action=mark-connection new-connection-mark=p2p-connection passthrough=yes comment="P2P" disabled=no
  22. add chain=prerouting connection-mark=p2p-connection action=mark-packet new-packet-mark=4 passthrough=yes comment="" disabled=no
  23. add chain=prerouting protocol=udp src-port=1200 action=mark-packet new-packet-mark=1 passthrough=yes comment="GAMES - Counterstrike" disabled=no
  24. add chain=prerouting protocol=udp dst-port=1200 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  25. add chain=prerouting protocol=udp src-port=27000-27015 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  26. add chain=prerouting protocol=udp dst-port=27000-27015 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  27. add chain=prerouting protocol=tcp src-port=27030-27039 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  28. add chain=prerouting protocol=tcp dst-port=27030-27039 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  29. add chain=prerouting protocol=udp src-port=20500 action=mark-packet new-packet-mark=1 passthrough=yes comment="GAMES - COD2" disabled=no
  30. add chain=prerouting protocol=udp dst-port=20500 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  31. add chain=prerouting protocol=udp src-port=20510 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  32. add chain=prerouting protocol=udp dst-port=20510 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  33. add chain=prerouting protocol=tcp src-port=28960 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  34. add chain=prerouting protocol=tcp dst-port=28960 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  35. add chain=prerouting protocol=udp src-port=28960 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  36. add chain=prerouting protocol=udp dst-port=28960 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  37. add chain=prerouting protocol=udp src-port=6112-6119 action=mark-packet new-packet-mark=1 passthrough=yes comment="GAMES - Warcraft III" disabled=no
  38. add chain=prerouting protocol=udp dst-port=6112-6119 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  39. add chain=prerouting protocol=tcp src-port=6112 action=mark-packet new-packet-mark=1 passthrough=yes comment="GAMES - World Of Warcraft" disabled=no
  40. add chain=prerouting protocol=tcp dst-port=6112 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  41. add chain=prerouting protocol=tcp src-port=6881-6999 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  42. add chain=prerouting protocol=tcp dst-port=6881-6999 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  43. add chain=prerouting protocol=udp src-port=1500-4999 action=mark-packet new-packet-mark=1 passthrough=yes comment="GAMES - Battlefield 2" disabled=no
  44. add chain=prerouting protocol=udp dst-port=1500-4999 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  45. add chain=prerouting protocol=tcp src-port=3724 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  46. add chain=prerouting protocol=tcp dst-port=3724 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  47. add chain=prerouting protocol=tcp src-port=4711 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  48. add chain=prerouting protocol=tcp dst-port=4711 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  49. add chain=prerouting protocol=udp src-port=16567 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  50. add chain=prerouting protocol=udp dst-port=16567 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  51. add chain=prerouting protocol=udp src-port=27900 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  52. add chain=prerouting protocol=udp dst-port=27900 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  53. add chain=prerouting protocol=tcp src-port=27901 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  54. add chain=prerouting protocol=tcp dst-port=27901 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  55. add chain=prerouting protocol=tcp src-port=28910 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  56. add chain=prerouting protocol=tcp dst-port=28910 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  57. add chain=prerouting protocol=udp src-port=29900 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  58. add chain=prerouting protocol=udp dst-port=29900 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  59. add chain=prerouting protocol=tcp src-port=29900-29901 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  60. add chain=prerouting protocol=tcp dst-port=29900-29901 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  61. add chain=prerouting protocol=udp src-port=55123-55125 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  62. add chain=prerouting protocol=udp dst-port=55123-55125 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  63. add chain=prerouting connection-type=ftp action=mark-packet new-packet-mark=3 passthrough=yes comment="FTP" disabled=no
  64. add chain=prerouting protocol=tcp src-port=20-21 action=mark-packet new-packet-mark=3 passthrough=yes comment="" disabled=no
  65. add chain=prerouting protocol=tcp dst-port=20-21 action=mark-packet new-packet-mark=3 passthrough=yes comment="" disabled=no
  66. add chain=prerouting protocol=tcp src-port=69 action=mark-packet new-packet-mark=3 passthrough=yes comment="TFTP" disabled=no
  67. add chain=prerouting protocol=tcp dst-port=69 action=mark-packet new-packet-mark=3 passthrough=yes comment="" disabled=no
  68. add chain=prerouting protocol=tcp src-port=115 action=mark-packet new-packet-mark=3 passthrough=yes comment="SFTP" disabled=no
  69. add chain=prerouting protocol=tcp dst-port=115 action=mark-packet new-packet-mark=3 passthrough=yes comment="" disabled=no
  70. add chain=prerouting protocol=udp src-port=115 action=mark-packet new-packet-mark=3 passthrough=yes comment="" disabled=no
  71. add chain=prerouting protocol=udp dst-port=115 action=mark-packet new-packet-mark=3 passthrough=yes comment="" disabled=no
  72. add chain=prerouting protocol=udp src-port=137-139 action=mark-packet new-packet-mark=3 passthrough=yes comment="Windows NetBIOS" disabled=no
  73. add chain=prerouting protocol=udp dst-port=137-139 action=mark-packet new-packet-mark=3 passthrough=yes comment="" disabled=no
  74. add chain=prerouting protocol=tcp src-port=149 action=mark-packet new-packet-mark=4 passthrough=yes comment="" disabled=no
  75. add chain=prerouting protocol=tcp dst-port=149 action=mark-packet new-packet-mark=4 passthrough=yes comment="" disabled=no
  76. add chain=prerouting protocol=tcp src-port=445 action=mark-packet new-packet-mark=4 passthrough=yes comment="" disabled=no
  77. add chain=prerouting protocol=tcp dst-port=445 action=mark-packet new-packet-mark=4 passthrough=yes comment="" disabled=no
  78. add chain=prerouting protocol=tcp src-port=3128 action=mark-packet new-packet-mark=3 passthrough=yes comment="PROXY Client" disabled=no
  79. add chain=prerouting protocol=tcp dst-port=3128 action=mark-packet new-packet-mark=3 passthrough=yes comment="" disabled=no
  80. add chain=prerouting protocol=tcp src-port=3130 action=mark-packet new-packet-mark=2 passthrough=yes comment="PROXY - s2s" disabled=no
  81. add chain=prerouting protocol=tcp dst-port=3130 action=mark-packet new-packet-mark=2 passthrough=yes comment="" disabled=no
  82. add chain=prerouting protocol=tcp src-port=8080 action=mark-packet new-packet-mark=3 passthrough=yes comment="PROXY Client" disabled=no
  83. add chain=prerouting protocol=tcp dst-port=8080 action=mark-packet new-packet-mark=3 passthrough=yes comment="" disabled=no
  84. add chain=prerouting protocol=tcp src-port=80 action=mark-packet new-packet-mark=3 passthrough=yes comment="HTTP" disabled=no
  85. add chain=prerouting protocol=tcp dst-port=80 action=mark-packet new-packet-mark=3 passthrough=yes comment="" disabled=no
  86. add chain=prerouting protocol=tcp src-port=443 action=mark-packet new-packet-mark=3 passthrough=yes comment="HTTPS" disabled=no
  87. add chain=prerouting protocol=tcp dst-port=443 action=mark-packet new-packet-mark=3 passthrough=yes comment="" disabled=no
  88. add chain=prerouting protocol=tcp src-port=25 action=mark-packet new-packet-mark=2 passthrough=yes comment="SMTP - POP - IMAP" disabled=no
  89. add chain=prerouting protocol=tcp dst-port=25 action=mark-packet new-packet-mark=2 passthrough=yes comment="" disabled=no
  90. add chain=prerouting protocol=tcp src-port=110 action=mark-packet new-packet-mark=2 passthrough=yes comment="" disabled=no
  91. add chain=prerouting protocol=tcp dst-port=110 action=mark-packet new-packet-mark=2 passthrough=yes comment="" disabled=no
  92. add chain=prerouting protocol=tcp src-port=143 action=mark-packet new-packet-mark=2 passthrough=yes comment="" disabled=no
  93. add chain=prerouting protocol=tcp dst-port=143 action=mark-packet new-packet-mark=2 passthrough=yes comment="" disabled=no
  94. add chain=prerouting protocol=tcp src-port=22 action=mark-packet new-packet-mark=2 passthrough=yes comment="SSH" disabled=no
  95. add chain=prerouting protocol=tcp dst-port=22 action=mark-packet new-packet-mark=2 passthrough=yes comment="" disabled=no
  96. add chain=prerouting protocol=tcp src-port=23 action=mark-packet new-packet-mark=2 passthrough=yes comment="TELNET" disabled=no
  97. add chain=prerouting protocol=tcp dst-port=23 action=mark-packet new-packet-mark=2 passthrough=yes comment="" disabled=no
  98. add chain=prerouting protocol=tcp src-port=161 action=mark-packet new-packet-mark=1 passthrough=yes comment="SNMP TCP" disabled=no
  99. add chain=prerouting protocol=tcp dst-port=161 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  100. add chain=prerouting protocol=tcp src-port=873 action=mark-packet new-packet-mark=3 passthrough=yes comment="RSYNC" disabled=no
  101. add chain=prerouting protocol=tcp dst-port=873 action=mark-packet new-packet-mark=3 passthrough=yes comment="" disabled=no
  102. add chain=prerouting protocol=tcp src-port=3389 action=mark-packet new-packet-mark=2 passthrough=yes comment="REMOTE DESKTOP" disabled=no
  103. add chain=prerouting protocol=tcp dst-port=3389 action=mark-packet new-packet-mark=2 passthrough=yes comment="" disabled=no
  104. add chain=prerouting protocol=tcp src-port=5800-5809 action=mark-packet new-packet-mark=2 passthrough=yes comment="VNC" disabled=no
  105. add chain=prerouting protocol=tcp dst-port=5800-5809 action=mark-packet new-packet-mark=2 passthrough=yes comment="" disabled=no
  106. add chain=prerouting protocol=tcp src-port=5900-5909 action=mark-packet new-packet-mark=2 passthrough=yes comment="" disabled=no
  107. add chain=prerouting protocol=tcp dst-port=5900-5909 action=mark-packet new-packet-mark=2 passthrough=yes comment="" disabled=no
  108. add chain=prerouting protocol=tcp src-port=8291 action=mark-packet new-packet-mark=2 passthrough=yes comment="WinBox" disabled=no
  109. add chain=prerouting protocol=tcp dst-port=8291 action=mark-packet new-packet-mark=2 passthrough=yes comment="" disabled=no
  110. add chain=prerouting protocol=tcp src-port=2601-2611 action=mark-packet new-packet-mark=2 passthrough=yes comment="Zebra Vtysh Daemons" disabled=no
  111. add chain=prerouting protocol=tcp dst-port=2601-2611 action=mark-packet new-packet-mark=2 passthrough=yes comment="" disabled=no
  112. add chain=prerouting protocol=tcp src-port=179 action=mark-packet new-packet-mark=1 passthrough=yes comment="BGP" disabled=no
  113. add chain=prerouting protocol=tcp dst-port=179 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  114. add chain=prerouting protocol=tcp src-port=698 action=mark-packet new-packet-mark=2 passthrough=yes comment="OLSR" disabled=no
  115. add chain=prerouting protocol=tcp dst-port=698 action=mark-packet new-packet-mark=2 passthrough=yes comment="" disabled=no
  116. add chain=prerouting protocol=udp src-port=698 action=mark-packet new-packet-mark=2 passthrough=yes comment="" disabled=no
  117. add chain=prerouting protocol=udp dst-port=698 action=mark-packet new-packet-mark=2 passthrough=yes comment="" disabled=no
  118. add chain=prerouting protocol=tcp src-port=6666-7000 action=mark-packet new-packet-mark=2 passthrough=yes comment="IRC" disabled=no
  119. add chain=prerouting protocol=tcp dst-port=6666-7000 action=mark-packet new-packet-mark=2 passthrough=yes comment="" disabled=no
  120. add chain=prerouting connection-type=irc action=mark-packet new-packet-mark=2 passthrough=yes comment="" disabled=no
  121. add chain=prerouting protocol=udp src-port=8767 action=mark-packet new-packet-mark=1 passthrough=yes comment="TEAMSPEAK" disabled=no
  122. add chain=prerouting protocol=udp dst-port=8767 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  123. add chain=prerouting connection-type=h323 action=mark-packet new-packet-mark=1 passthrough=yes comment="Voip H323" disabled=no
  124. add chain=prerouting protocol=udp src-port=5059-5062 action=mark-packet new-packet-mark=1 passthrough=yes comment="VoIP CONNECT" disabled=no
  125. add chain=prerouting protocol=udp dst-port=5059-5062 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  126. add chain=prerouting protocol=udp src-port=10000-20000 action=mark-packet new-packet-mark=1 passthrough=yes comment="VoIP RTP" disabled=no
  127. add chain=prerouting protocol=udp dst-port=10000-20000 action=mark-packet new-packet-mark=1 passthrough=yes comment="" disabled=no
  128. add chain=prerouting protocol=tcp src-port=8000-8002 action=mark-packet new-packet-mark=2 passthrough=yes comment="SHOUTCAST" disabled=no
  129. add chain=prerouting protocol=tcp dst-port=8000-8002 action=mark-packet new-packet-mark=2 passthrough=yes comment="" disabled=no
  130. add chain=prerouting connection-type=mms action=mark-packet new-packet-mark=3 passthrough=yes comment="Video mms://" disabled=yes
comments powered by Disqus