ROS对接VLAN交换机多线设置,可用于多线拔号,里面超多脚本

# oct/16/2011 08:49:03 by RouterOS 3.30 # software id = 4NFS-WNWC #

#我的QQ307237303 #以下为网卡设置 /interface ethernet

set 0 arp=enabled auto-negotiation=yes cable-settings=default comment=\ disable-running-check=yes disabled=no full-duplex=yes mac-address=\\ 00:07:E9:0E:A3:1C mtu=1500 name=LAN speed=100Mbps

set 1 arp=enabled auto-negotiation=yes cable-settings=default comment=\ disable-running-check=yes disabled=no full-duplex=yes mac-address=\\ 00:10:DC:D4:6D:18 mtu=1500 name=WAN_KONG speed=100Mbps set 2 arp=enabled auto-negotiation=yes cable-settings=default comment=\ disable-running-check=yes disabled=no full-duplex=yes mac-address=\\ 00:07:E9:0E:A3:0A mtu=1500 name=WAN speed=100Mbps /interface bridge

add admin-mac=00:90:27:74:FF:A3 ageing-time=5m arp=enabled auto-mac=no \\

comment=\ mtu=1500 name=bridge2 priority=0x8000 protocol-mode=none \\ transmit-hold-count=6

add admin-mac=00:90:27:74:FF:A4 ageing-time=5m arp=enabled auto-mac=no \\

comment=\ mtu=1500 name=bridge3 priority=0x8000 protocol-mode=none \\ transmit-hold-count=6

add admin-mac=00:90:27:74:FF:A5 ageing-time=5m arp=enabled auto-mac=no \\

comment=\ mtu=1500 name=bridge5 priority=0x8000 protocol-mode=none \\ transmit-hold-count=6

add admin-mac=00:90:27:74:FF:A6 ageing-time=5m arp=enabled auto-mac=no \\

comment=\ name=bridge6 priority=0x8000 protocol-mode=none transmit-hold-count=6 add admin-mac=00:90:27:74:FF:A7 ageing-time=5m arp=enabled auto-mac=no \\

comment=\ name=bridge7 priority=0x8000 protocol-mode=none transmit-hold-count=6 add admin-mac=00:90:27:74:FF:A8 ageing-time=5m arp=enabled auto-mac=no \\

comment=\ name=bridge8 priority=0x8000 protocol-mode=none transmit-hold-count=6 add admin-mac=00:91:27:74:FF:A5 ageing-time=5m arp=enabled auto-mac=no \\

comment=\ mtu=1500 name=bridge4 priority=0x8000 protocol-mode=none \\ transmit-hold-count=6

add admin-mac=00:90:27:74:FF:A2 ageing-time=5m arp=enabled auto-mac=no \\

comment=\ mtu=1500 name=bridge1 priority=0x8000 protocol-mode=none \\ transmit-hold-count=6

add admin-mac=00:90:27:74:FF:A9 ageing-time=5m arp=enabled auto-mac=no \\

comment=\ name=bridge9 priority=0x8000 protocol-mode=none transmit-hold-count=6 add admin-mac=00:90:27:74:F1:A9 ageing-time=5m arp=enabled auto-mac=no \\

comment=\ mtu=1500 name=bridge10 priority=0x8000 protocol-mode=none \\

transmit-hold-count=6 #以下为VLAN设置 /interface vlan

add arp=enabled comment=\AN mtu=1500 name=vlan2 \\ use-service-tag=no vlan-id=2

add arp=enabled comment=\AN mtu=1500 name=vlan3 \\ use-service-tag=no vlan-id=3

add arp=enabled comment=\AN mtu=1500 name=vlan5 \\ use-service-tag=no vlan-id=5

add arp=enabled comment=\AN mtu=1500 name=vlan6 \\ use-service-tag=no vlan-id=6

add arp=enabled comment=\AN mtu=1500 name=vlan7 \\ use-service-tag=no vlan-id=7

add arp=enabled comment=\AN mtu=1500 name=vlan8 \\ use-service-tag=no vlan-id=8

add arp=enabled comment=\AN mtu=1500 name=vlan1 \\ use-service-tag=no vlan-id=1

add arp=enabled comment=\AN mtu=1500 name=vlan9 \\ use-service-tag=no vlan-id=9

add arp=enabled comment=\AN mtu=1500 name=\\ vlan10 use-service-tag=no vlan-id=10

add arp=enabled comment=\AN mtu=1500 name=vlan4 \\ use-service-tag=no vlan-id=4 #以下为ROS默认设置

/interface wireless security-profiles

set default authentication-types=\ group-key-update=5m interim-update=0s mode=none name=default \\ radius-eap-accounting=no radius-mac-accounting=no \\

radius-mac-authentication=no radius-mac-caching=disabled \\

radius-mac-format=XX:XX:XX:XX:XX:XX radius-mac-mode=as-username \\ static-algo-0=none static-algo-1=none static-algo-2=none static-algo-3=\\ none static-key-0=\ static-sta-private-algo=none static-sta-private-key=\

static-transmit-key=key-0 supplicant-identity=MikroTik tls-certificate=\\ none tls-mode=no-certificates unicast-ciphers=\ wpa2-pre-shared-key=\#以下为L7脚本设置 /ip firewall layer7-protocol

add comment=\ \ \\n\

add comment=\ \add comment=\

\

add comment=\add comment=\

\

add comment=\add comment=\

add comment=\

add comment=\add comment=\

\add comment=\

\add comment=\add comment=\add comment=\

add comment=\ \\?.\\?\\\\xD3|^get.+\\\\video.\\?\\\\qq.+\\\\mp4)\

add comment=\ \\\\x06\\\\x19\\\\x1A\\\\x5F\\\\x1B\\\\x6F\\\\xAE\\\\xE1|^get.+\\\\mp4.\\?\\\\key.+\\\\pplive)\add comment=\

\

add comment=\

\\15\\16\\18\\19\\1A\\1B\\1C !234568@ABCFGHIJKLMNOPQRSTUVWX[`\\81\\82\\90\\91\\93\\96\\ \\97\\98\\99\\9A\\9B\\9C\\9E\\A0\\A1\\A2\\A3\\A4]|Y................\\?[ -~]|\\96....\\$)\

add comment=\ get /queue_register\\\\.cgi\\\\\\?|^get /getupdowninfo\\\\.cgi\\\\\\?\add comment=\

\\nFilename|^\\01.\\?.\\?.\\?(Q:\\\\+|Q2:)|^\\10[\\14-\\16]\\10[\\15-\\17].\\?.\\?.\\?.\\?\\ \\$\

add comment=\

add comment=\ /[012]\\\\.[0-9]\\r\\

\\n|get /uri-res/n2r\\\\\\?urn:sha1:|get /.*user-agent: (gtk-gnutella|bearshar\\ e|mactella|gnucleus|gnotella|limewire|imesh)|get /.*content-type: applicat\\ ion/x-gnutella-packets|giv [0-9]*:[0-9a-f]*/|queue [0-9a-f]* [1-9][0-9]\\?[\\ 0-9]\\?\\\\.[1-9][0-9]\\?[0-9]\\?\\\\.[1-9][0-9]\\?[0-9]\\?\\\\.[1-9][0-9]\\?[0-9]\\?:[\\ 1-9][0-9]\\?[0-9]\\?[0-9]\\?|gnutella.*content-type: application/x-gnutella|.\\ ..................\\?lime)\

add comment=\ \\n\

add comment=\add comment=\

\

add comment=\ ][a-z0-9][\\01-\\?a-z]*[\\02-\\06][a-z][a-z][fglmoprstuvz]\\?[aeop]\\?(um)\\?[\\01\\ -\\10\\1C][\\01\\03\\04\\FF]\

add comment=\add comment=\ \\n\\01....\\1F\\9E\

add comment=\add comment=\

add comment=\add comment=\ \\n\

add comment=\add comment=\add comment=\

\

add comment=\ \\r -~]*(connection:|content-type:|content-length:|date:)|post [\\t-\\r -~]* \\ http/[01]\\\\.[019]\

add comment=\

\add comment=\add comment=\

add comment=\add comment=\ \\n.[\\01\\02\\03][\\01-\\

\\n -~]*|[\\03\\04][!-~]+[\\t-\\r]+[a-z][\\t-\\r -~]*|\\05[!-~]+[\\t-\\r]+([a-z][!-~\\ ]*[\\t-\\r]+[1-9][0-9]\\?[0-9]\\?|root[\\t-\\r]+[!-~]+).*)\\ \\n\\$\

add comment=\ \ \\nEnd(Public|AES)Key\\ \\n\\$\

add comment=\add comment=\

\

add comment=\ \\_/scrape\\\\\\?info_hash=)|d1:ad2:id20:|\\08'7P\\\\)[RP]\

add comment=\add comment=\

\

add comment=\

add comment=\ -P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][\\ A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P]\\ [A-P][A-P][A-P][A-P]\

add comment=\add comment=\

add comment=\add comment=\add comment=\add comment=\add comment=\

\

add comment=\add comment=\ ]*ssdp:(alive|byebye)|^m-search[\\t-\\r ]\\\\*[\\t-\\r ]http/1\\\\.1[\\t-\\r -~]*ssd\\ p:discover\

add comment=\add comment=\

add comment=\ |/.status[ -~]|/.network[ -~]*|/.files|/.hash=[0-9a-f]*/[ -~]*) http/1.1|u\\

ser-agent: kazaa|x-kazaa(-username|-network|-ip|-supernodeip|-xferid|-xfer\\ uid|tag)|^give [0-9][0-9][0-9][0-9][0-9][0-9][0-9][0-9]\\?[0-9]\\?[0-9]\\?\add comment=\add comment=\ \\n\

add comment=\

\add comment=\

add comment=\ \ \\nver msnftp\\r\\

\\nusr|method msnmsgr:)\

add comment=\

\

add comment=\ \\01\\?.*\\0B).*(thawte|equifax secure|rsa data security, inc|verisign, inc|g\\ te cybertrust root|entrust\\\\.net limited)\

add comment=\ .\\?.\\?.\\?.\\?.\\?.\\?[\\C6-\\FF])\

add comment=\

\add comment=\ \\n\\$\

add comment=\

\add comment=\add comment=\add comment=\

\add comment=\

\

add comment=\ \\t-\\r]*[1-9][0-9]\\?[0-9]\\?[0-9]\\?[0-9]\\?(\\r\\ \\n|[\\r\\ \\n])\\?\\$\

add comment=\ \\n\\$\

add comment=\

\

add comment=\ \\01\\03].*\\05[\\01-\\08]\\?[\\01\\03]\

add comment=\add comment=\

add comment=\add comment=\

add comment=\ ]*cvr0\\r\\

\\n\\$|usr 1 [!-~]+ [0-9. ]+\\r\\ \\n\\$|ans 1 [!-~]+ [0-9. ]+\\r\\ \\n\\$\

add comment=\ ~]*:[\\02-\\r -~]*nick[\\t-\\r -~]*\\r\\ \\n)\

add comment=\ \\t[a-z0-9.]*\\\\.[a-z][a-z].\\?.\\?\\t[1-9]\

add comment=\

add comment=\ \\?\\02\\01.\\?\\02\\01.\\?0|\\A4\\06.+@\\04.\\?.\\?.\\?.\\?\\02\\01.\\?\\02\\01.\\?C)\add comment=\

\add comment=\add comment=\

add comment=\ \\?.\\?.\\?.\\?.\\?.\\?.\\?\\02|\\03.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\03|\\04.\\?.\\?.\\?.\\?.\\?.\\ \\?.\\?.\\?\\04|\\05.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\05|\\06.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\06|\\ \\07.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\07|\\08.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\08|\\t.\\?.\\?.\\?.\\ \\?.\\?.\\?.\\?.\\?\\t|\\

\\n.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\

\\n|\\0B.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\0B|\\0C.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\0C|\\r.\\?.\\?.\\ \\?.\\?.\\?.\\?.\\?.\\?\\r|\\0E.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\0E|\\0F.\\?.\\?.\\?.\\?.\\?.\\?.\\ \\?.\\?\\0F|\\10.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\10|\\11.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\11|\\12\\ .\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\12|\\13.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\13|\\14.\\?.\\?.\\?.\\?\\ .\\?.\\?.\\?.\\?\\14|\\15.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\15|\\16.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\ \\16|\\17.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\17|\\18.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\18|\\19.\\?.\\ \\?.\\?.\\?.\\?.\\?.\\?.\\?\\19|\\1A.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\1A|\\1B.\\?.\\?.\\?.\\?.\\?.\\ \\?.\\?.\\?\\1B|\\1C.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\1C|\\1D.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\1D|\\ \\1E.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\1E|\\1F.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\1F| .\\?.\\?.\\?.\\ \\?.\\?.\\?.\\?.\\? |!.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?!|\\\ \\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?#|\\\\\\$.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\\\\\$|%.\\?.\\?.\\?.\\?.\\?\\ .\\?.\\?.\\?%|&.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?&|'.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?'|\\\\(.\\?.\\?\\ .\\?.\\?.\\?.\\?.\\?.\\?\\\\(|\\\\).\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\\\)|\\\\*.\\?.\\?.\\?.\\?.\\?.\\?\\ .\\?.\\?\\\\*|\\\\+.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\\\+|,.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?,|-.\\?.\\ \\?.\\?.\\?.\\?.\\?.\\?.\\?-|\\\\..\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\\\.|/.\\?.\\?.\\?.\\?.\\?.\\?.\\ \\?.\\?/|0.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?0|1.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?1|2.\\?.\\?.\\?.\\?\\ .\\?.\\?.\\?.\\?2|3.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?3|4.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?4|5.\\?.\\ \\?.\\?.\\?.\\?.\\?.\\?.\\?5|6.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?6|7.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\ 7|8.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?8|9.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?9|:.\\?.\\?.\\?.\\?.\\?.\\ \\?.\\?.\\?:|;.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?;|<.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?<|=.\\?.\\?.\\?\\ .\\?.\\?.\\?.\\?.\\?=|>.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?>|\\\\\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\\\\\ \\?|@.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?@|A.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?A|B.\\?.\\?.\\?.\\?.\\?.\\ \\?.\\?.\\?B|C.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?C|D.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?D|E.\\?.\\?.\\?\\ .\\?.\\?.\\?.\\?.\\?E|F.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?F|G.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?G|H.\\ \\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?H|I.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?I|J.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\ .\\?J|K.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?K|L.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?L|M.\\?.\\?.\\?.\\?.\\ \\?.\\?.\\?.\\?M|N.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?N|O.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?O|P.\\?.\\?\\ .\\?.\\?.\\?.\\?.\\?.\\?P|Q.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?Q|R.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?R|\\ S.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?S|T.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?T|U.\\?.\\?.\\?.\\?.\\?.\\?.\\ \\?.\\?U|V.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?V|W.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?W|X.\\?.\\?.\\?.\\?\\ .\\?.\\?.\\?.\\?X|Y.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?Y|Z.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?Z|\\\\[.\\?\\ .\\?.\\?.\\?.\\?.\\?.\\?.\\?\\\\[|\\\\].\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\\\]|\\\\].\\?.\\?.\\?.\\?.\\?\\ .\\?.\\?.\\?\\\\]|\\\\^.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\\\^|_.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?_|`.\\ \\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?`|a.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?a|b.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\ .\\?b|c.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?c|d.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?d|e.\\?.\\?.\\?.\\?.\\ \\?.\\?.\\?.\\?e|f.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?f|g.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?g|h.\\?.\\?\\ .\\?.\\?.\\?.\\?.\\?.\\?h|i.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?i|j.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?j|\\ k.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?k|l.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?l|m.\\?.\\?.\\?.\\?.\\?.\\?.\\ \\?.\\?m|n.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?n|o.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?o|p.\\?.\\?.\\?.\\?\\

.\\?.\\?.\\?.\\?p|q.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?q|r.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?r|s.\\?.\\ \\?.\\?.\\?.\\?.\\?.\\?.\\?s|t.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?t|u.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\ u|v.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?v|w.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?w|x.\\?.\\?.\\?.\\?.\\?.\\ \\?.\\?.\\?x|y.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?y|z.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?z|\\\\{.\\?.\\?.\\ \\?.\\?.\\?.\\?.\\?.\\?\\\\{|\\\\|.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\\\||\\\\}.\\?.\\?.\\?.\\?.\\?.\\?.\\ \\?.\\?\\\\}|~.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?~|\\7F.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\7F|\\80.\\?.\\ \\?.\\?.\\?.\\?.\\?.\\?.\\?\\80|\\81.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\81|\\82.\\?.\\?.\\?.\\?.\\?.\\ \\?.\\?.\\?\\82|\\83.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\83|\\84.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\84|\\ \\85.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\85|\\86.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\86|\\87.\\?.\\?.\\?\\ .\\?.\\?.\\?.\\?.\\?\\87|\\88.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\88|\\89.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\ .\\?\\89|\\8A.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\8A|\\8B.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\8B|\\8C.\\ \\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\8C|\\8D.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\8D|\\8E.\\?.\\?.\\?.\\?.\\ \\?.\\?.\\?.\\?\\8E|\\8F.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\8F|\\90.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\ \\90|\\91.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\91|\\92.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\92|\\93.\\?.\\ \\?.\\?.\\?.\\?.\\?.\\?.\\?\\93|\\94.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\94|\\95.\\?.\\?.\\?.\\?.\\?.\\ \\?.\\?.\\?\\95|\\96.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\96|\\97.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\97|\\ \\98.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\98|\\99.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\99|\\9A.\\?.\\?.\\?\\ .\\?.\\?.\\?.\\?.\\?\\9A|\\9B.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\9B|\\9C.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\ .\\?\\9C|\\9D.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\9D|\\9E.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\9E|\\9F.\\ \\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\9F|\\A0.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\A0|\\A1.\\?.\\?.\\?.\\?.\\ \\?.\\?.\\?.\\?\\A1|\\A2.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\A2|\\A3.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\ \\A3|\\A4.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\A4|\\A5.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\A5|\\A6.\\?.\\ \\?.\\?.\\?.\\?.\\?.\\?.\\?\\A6|\\A7.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\A7|\\A8.\\?.\\?.\\?.\\?.\\?.\\ \\?.\\?.\\?\\A8|\\A9.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\A9|\\AA.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\AA|\\ \\AB.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\AB|\\AC.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\AC|\\AD.\\?.\\?.\\?\\ .\\?.\\?.\\?.\\?.\\?\\AD|\\AE.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\AE|\\AF.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\ .\\?\\AF|\\B0.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\B0|\\B1.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\B1|\\B2.\\ \\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\B2|\\B3.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\B3|\\B4.\\?.\\?.\\?.\\?.\\ \\?.\\?.\\?.\\?\\B4|\\B5.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\B5|\\B6.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\ \\B6|\\B7.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\B7|\\B8.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\B8|\\B9.\\?.\\ \\?.\\?.\\?.\\?.\\?.\\?.\\?\\B9|\\BA.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\BA|\\BB.\\?.\\?.\\?.\\?.\\?.\\ \\?.\\?.\\?\\BB|\\BC.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\BC|\\BD.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\BD|\\ \\BE.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\BE|\\BF.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\BF|\\C0.\\?.\\?.\\?\\ .\\?.\\?.\\?.\\?.\\?\\C0|\\C1.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\C1|\\C2.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\ .\\?\\C2|\\C3.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\C3|\\C4.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\C4|\\C5.\\ \\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\C5|\\C6.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\C6|\\C7.\\?.\\?.\\?.\\?.\\ \\?.\\?.\\?.\\?\\C7|\\C8.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\C8|\\C9.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\ \\C9|\\CA.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\CA|\\CB.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\CB|\\CC.\\?.\\ \\?.\\?.\\?.\\?.\\?.\\?.\\?\\CC|\\CD.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\CD|\\CE.\\?.\\?.\\?.\\?.\\?.\\ \\?.\\?.\\?\\CE|\\CF.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\CF|\\D0.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\D0|\\ \\D1.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\D1|\\D2.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\D2|\\D3.\\?.\\?.\\?\\ .\\?.\\?.\\?.\\?.\\?\\D3|\\D4.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\D4|\\D5.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\ .\\?\\D5|\\D6.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\D6|\\D7.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\D7|\\D8.\\ \\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\D8|\\D9.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\D9|\\DA.\\?.\\?.\\?.\\?.\\ \\?.\\?.\\?.\\?\\DA|\\DB.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\DB|\\DC.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\ \\DC|\\DD.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\DD|\\DE.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\DE|\\DF.\\?.\\ \\?.\\?.\\?.\\?.\\?.\\?.\\?\\DF|\\E0.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\E0|\\E1.\\?.\\?.\\?.\\?.\\?.\\ \\?.\\?.\\?\\E1|\\E2.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\E2|\\E3.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\E3|\\ \\E4.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\E4|\\E5.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\E5|\\E6.\\?.\\?.\\?\\ .\\?.\\?.\\?.\\?.\\?\\E6|\\E7.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\E7|\\E8.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\ .\\?\\E8|\\E9.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\E9|\\EA.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\EA|\\EB.\\

\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\EB|\\EC.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\EC|\\ED.\\?.\\?.\\?.\\?.\\ \\?.\\?.\\?.\\?\\ED|\\EE.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\EE|\\EF.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\ \\EF|\\F0.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\F0|\\F1.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\F1|\\F2.\\?.\\ \\?.\\?.\\?.\\?.\\?.\\?.\\?\\F2|\\F3.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\F3|\\F4.\\?.\\?.\\?.\\?.\\?.\\ \\?.\\?.\\?\\F4|\\F5.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\F5|\\F6.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\F6|\\ \\F7.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\F7|\\F8.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\F8|\\F9.\\?.\\?.\\?\\ .\\?.\\?.\\?.\\?.\\?\\F9|\\FA.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\FA|\\FB.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\ .\\?\\FB|\\FC.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\FC|\\FD.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\FD|\\FE.\\ \\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\FE|\\FF.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\FF)\

add comment=\add comment=\ \

add comment=\ \

add comment=\

add comment=\ \\?.\\?(\\14\\01\\06|\\FF\\FF\\FF))|[]\\01].\\?battlefield2\

add comment=\ \\?[0-9]\\?[0-9]\\? \\\ +\\\

add comment=\

\

add comment=\add comment=\

\add comment=\add comment=\ \\n\\$\

add comment=\ \

add comment=\add comment=\add comment=\

add comment=\ tsp-tunnelled|http/(0\\\\.9|1\\\\.0|1\\\\.1) [1-5][0-9][0-9] [\\t-\\r -~]*a=contro\\ l:rtsp://)\

add comment=\ \

\\n\\0B](glob|who are you\\$|query data)\

add comment=\

add comment=\

add comment=\

add comment=\ ...................|4\\80\\?\\r\\?\\FC\\FF\\04|get[\\t-\\ \\r -~]*Host: imsh\\\\.download-prod\\\\.musicnet\\\\.com|\\02(\\01|\\02)\\83.\\?.\\?.\\ \\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?.\\?\\ .\\?\\02(\\01|\\02)\\83)\

add comment=\add comment=\ \\n\

add comment=\

add comment=\

add comment=\add comment=\

add comment=\ \\n\\$\

add comment=\ 9|1\\\\.0|1\\\\.1) [1-5][0-9][0-9] [\\t-\\r -~]*#####REPLAY_CHUNK_START#####)\add comment=\

add comment=\add comment=\/ip hotspot profile

set default dns-name=\ http-cookie-lifetime=3d http-proxy=0.0.0.0:0 login-by=cookie,http-chap \\ name=default rate-limit=\ use-radius=no

#以下为ROS默订设置 /ip hotspot user profile

set default idle-timeout=none keepalive-timeout=2m name=default shared-users=\\ 1 status-autorefresh=1m transparent-proxy=no /ip ipsec proposal

set default auth-algorithms=sha1 disabled=no enc-algorithms=3des lifetime=30m \\ name=default pfs-group=modp1024

#以下为地址池设置，有正常拔号的，到期通知的，DHCP的 /ip pool

add name=POOL_PPPOE ranges=10.0.0.5-10.0.0.200 add name=4day ranges=20.0.0.5-20.0.0.200 add name=tongzhi ranges=30.30.30.0/24

add name=dhcp ranges=192.168.10.5-192.168.10.200

add name=dhcp_pool1 ranges=192.168.10.2-192.168.10.200 #以下为DHCP服务设置 /ip dhcp-server

add address-pool=dhcp authoritative=after-2sec-delay bootp-support=static \\

disabled=yes interface=LAN lease-time=1h name=dhcp1 relay=255.255.255.0 /port

set 0 baud-rate=9600 data-bits=8 flow-control=hardware name=serial0 parity=\\ none stop-bits=1

set 1 baud-rate=9600 data-bits=8 flow-control=hardware name=serial1 parity=\\ none stop-bits=1

#以下为PPPOE设置，分几种，有正常拔号的，到期的，不同网速的 /ppp profile

set default change-tcp-mss=yes comment=\ use-compression=default use-encryption=default use-vj-compression=default add change-tcp-mss=default comment=\ local-address=10.0.0.1 name=PPPOE_2M only-one=yes rate-limit=52k/2000k \\ remote-address=POOL_PPPOE use-compression=default use-encryption=default \\ use-vj-compression=default

add change-tcp-mss=default comment=\ local-address=20.0.0.1 name=4day only-one=yes rate-limit=52k/1000k \\ remote-address=4day use-compression=default use-encryption=default \\ use-vj-compression=default

add change-tcp-mss=default comment=\

only-one=default remote-address=tongzhi use-compression=default \\ use-encryption=default use-vj-compression=default

add change-tcp-mss=default comment=\ local-address=10.0.0.1 name=PPPOE_1M only-one=yes rate-limit=52K/1000K \\ remote-address=POOL_PPPOE use-compression=default use-encryption=default \\ use-vj-compression=default

add change-tcp-mss=default comment=\ 202.96.128.86,202.96.134.133 local-address=10.0.0.1 name=PPPOE_MAX \\ only-one=yes rate-limit=406K/6000K remote-address=POOL_PPPOE \\ use-compression=default use-encryption=yes use-vj-compression=default set default-encryption change-tcp-mss=yes comment=\ only-one=default use-compression=default use-encryption=yes \\ use-vj-compression=default #以下为自己拔号上网设置 /interface pppoe-client

add ac-name=\ dial-on-demand=no disabled=no interface=bridge2 max-mru=1480 max-mtu=1480 \\ mrru=disabled name=pppoe-out2 password=QDTBESFQ profile=default \\ service-name=\

add ac-name=\ dial-on-demand=no disabled=no interface=bridge3 max-mru=1480 max-mtu=1480 \\ mrru=disabled name=pppoe-out3 password=FOAPWOPP profile=default \\ service-name=\

add ac-name=\ dial-on-demand=no disabled=no interface=bridge4 max-mru=1480 max-mtu=1480 \\ mrru=disabled name=pppoe-out4 password=CUQAHFCV profile=default \\ service-name=\

add ac-name=\ dial-on-demand=no disabled=no interface=bridge5 max-mru=1480 max-mtu=1480 \\ mrru=disabled name=pppoe-out5 password=HBIYLMRX profile=default \\ service-name=\

add ac-name=\ dial-on-demand=no disabled=yes interface=bridge6 max-mru=1480 max-mtu=\\ 1480 mrru=disabled name=pppoe-out6 password=006 profile=default \\ service-name=\

add ac-name=\ dial-on-demand=no disabled=yes interface=bridge7 max-mru=1480 max-mtu=\\ 1480 mrru=disabled name=pppoe-out7 password=007 profile=default \\ service-name=\

add ac-name=\ dial-on-demand=no disabled=yes interface=bridge8 max-mru=1480 max-mtu=\\ 1480 mrru=disabled name=pppoe-out8 password=008 profile=default \\ service-name=\

add ac-name=\ \ 1480 max-mtu=1480 mrru=disabled name=pppoe-out1 password=SRFVIRHF \\ profile=default service-name=\

add ac-name=\ dial-on-demand=no disabled=yes interface=bridge9 max-mru=1480 max-mtu=\\ 1480 mrru=disabled name=pppoe-out9 password=001 profile=default \\ service-name=\

#以下为ROS默认设置 /queue type

set default kind=pfifo name=default pfifo-limit=50

set ethernet-default kind=pfifo name=ethernet-default pfifo-limit=50 set wireless-default kind=sfq name=wireless-default sfq-allot=1514 \\ sfq-perturb=5

set synchronous-default kind=red name=synchronous-default red-avg-packet=1000 \\ red-burst=20 red-limit=60 red-max-threshold=50 red-min-threshold=10 set hotspot-default kind=sfq name=hotspot-default sfq-allot=1514 sfq-perturb=\\ 5

set default-small kind=pfifo name=default-small pfifo-limit=10 /routing bgp instance

set default as=65530 client-to-client-reflection=yes comment=\ ignore-as-path-len=no name=default out-filter=\ no redistribute-ospf=no redistribute-other-bgp=no redistribute-rip=no \\ redistribute-static=no router-id=0.0.0.0 /routing ospf area

set backbone area-id=0.0.0.0 authentication=none disabled=no name=backbone \\ type=default /snmp

set contact=\ time-window=15 trap-sink=0.0.0.0 trap-version=1 /snmp community

set public address=0.0.0.0/0 authentication-password=\

authentication-protocol=MD5 encryption-password=\ DES name=public read-access=yes security=none write-access=no /system logging action

set memory memory-lines=100 memory-stop-on-full=no name=memory target=memory set disk disk-file-count=2 disk-file-name=log disk-lines-per-file=100 \\ disk-stop-on-full=no name=disk target=disk set echo name=echo remember=yes target=echo

set remote bsd-syslog=no name=remote remote=0.0.0.0:514 src-address=0.0.0.0 \\ syslog-facility=daemon syslog-severity=auto target=remote /user group

add comment=\ word,web,sniff,sensitive,!ftp,!write,!policy\

add comment=\ ox,password,web,sniff,sensitive,!ftp,!policy\

add comment=\ ,test,winbox,password,web,sniff,sensitive\#以下为ROS管理用户设置 /user

add address=0.0.0.0/0 comment=\ name=admin

add address=0.0.0.0/0 comment=\#以下为BRIDGE桥的设置 /interface bridge port

add bridge=bridge2 comment=\ horizon=none interface=vlan2 path-cost=10 point-to-point=auto priority=\\ 0x80

add bridge=bridge3 comment=\

horizon=none interface=vlan3 path-cost=10 point-to-point=auto priority=\\ 0x80

add bridge=bridge5 comment=\ horizon=none interface=vlan5 path-cost=10 point-to-point=auto priority=\\ 0x80

add bridge=bridge6 comment=\ horizon=none interface=vlan6 path-cost=10 point-to-point=auto priority=\\ 0x80

add bridge=bridge7 comment=\ horizon=none interface=vlan7 path-cost=10 point-to-point=auto priority=\\ 0x80

add bridge=bridge8 comment=\ horizon=none interface=vlan8 path-cost=10 point-to-point=auto priority=\\ 0x80

add bridge=bridge1 comment=\ horizon=none interface=vlan1 path-cost=10 point-to-point=auto priority=\\ 0x80

add bridge=bridge9 comment=\ horizon=none interface=vlan9 path-cost=10 point-to-point=auto priority=\\ 0x80

add bridge=bridge10 comment=\ horizon=none interface=vlan10 path-cost=10 point-to-point=auto priority=\\ 0x80

add bridge=bridge4 comment=\ horizon=none interface=vlan4 path-cost=10 point-to-point=auto priority=\\ 0x80

/interface bridge settings

set use-ip-firewall=no use-ip-firewall-for-pppoe=no use-ip-firewall-for-vlan=\\ no

#以下为ROS默认设置 /interface ethernet mirror set

/interface l2tp-server server

set authentication=pap,chap,mschap1,mschap2 default-profile=\\

default-encryption enabled=no max-mru=1460 max-mtu=1460 mrru=disabled /interface ovpn-server server

set auth=sha1,md5 certificate=none cipher=blowfish128,aes128 default-profile=\\ default enabled=no keepalive-timeout=60 mac-address=FE:FE:D0:BC:47:AF \\ max-mtu=1500 mode=ip netmask=24 port=1194 require-client-certificate=no /interface pppoe-server server

add authentication=pap,chap,mschap1,mschap2 default-profile=default disabled=\\ no interface=LAN keepalive-timeout=10 max-mru=1480 max-mtu=1480 \\ max-sessions=0 mrru=disabled one-session-per-host=yes service-name=\\ PPPOE_SER

/interface pptp-server server

set authentication=mschap1,mschap2 default-profile=default-encryption \\

enabled=no keepalive-timeout=30 max-mru=1460 max-mtu=1460 mrru=disabled /interface wireless align

set active-mode=yes audio-max=-20 audio-min=-100 audio-monitor=\\ 00:00:00:00:00:00 filter-mac=00:00:00:00:00:00 frame-size=300 \\ frames-per-second=25 receive-all=no ssid-all=no

/interface wireless sniffer

set channel-time=200ms file-limit=10 file-name=\

multiple-channels=no only-headers=no receive-errors=no streaming-enabled=\\ no streaming-max-rate=0 streaming-server=0.0.0.0 /interface wireless snooper

set channel-time=200ms multiple-channels=yes receive-errors=no /ip accounting

set account-local-traffic=no enabled=no threshold=256 /ip accounting web-access

set accessible-via-web=no address=0.0.0.0/0 #以下为ADD地址设置 /ip address

add address=192.168.10.1/24 broadcast=192.168.10.255 comment=\ interface=LAN network=192.168.10.0

add address=192.168.10.2/24 broadcast=192.168.10.255 comment=\ interface=vlan1 network=192.168.10.0 #以下为DHCP服务，DNS设置 /ip dhcp-server config set store-leases-disk=5m /ip dhcp-server network

add address=192.168.10.0/24 comment=\/ip dns

set allow-remote-requests=yes cache-max-ttl=1w cache-size=2048KiB \\ max-udp-packet-size=512 primary-dns=202.96.128.86 secondary-dns=\\ 202.96.134.133

#以下为防火墙，mangle，NTA,内网通知，端口优先，设置 /ip firewall address-list

add address=10.0.0.0/24 comment=\/ip firewall connection tracking

set enabled=yes generic-timeout=10m icmp-timeout=10s tcp-close-timeout=10s \\ tcp-close-wait-timeout=10s tcp-established-timeout=1d \\ tcp-fin-wait-timeout=10s tcp-last-ack-timeout=10s \\

tcp-syn-received-timeout=5s tcp-syn-sent-timeout=5s tcp-syncookie=no \\ tcp-time-wait-timeout=10s udp-stream-timeout=3m udp-timeout=10s /ip firewall filter

add action=passthrough chain=unused-hs-chain comment=\\ \

add action=drop chain=forward comment=\ protocol=tcp

add action=drop chain=input comment=packets connection-state=invalid \\ disabled=no

add action=drop chain=input comment=http60 connection-limit=60,0 disabled=no \\ dst-port=80 protocol=tcp

add action=drop chain=input comment=\add action=tarpit chain=input comment=DoS connection-limit=3,32 disabled=no \\ protocol=tcp src-address-list=black_list

add action=add-src-to-address-list address-list=black_list \\

address-list-timeout=1d chain=input comment=DoS connection-limit=10,32 \\ disabled=no protocol=tcp

add action=drop chain=input comment=\add action=drop chain=input comment=\

add action=jump chain=input comment=ICMP disabled=no jump-target=ICMP \\ protocol=icmp

add action=jump chain=input comment=\ protocol=tcp

add action=accept chain=ICMP comment=Ping5 disabled=no icmp-options=0:0-255 \\ limit=5,5 protocol=icmp

add action=accept chain=ICMP comment=Traceroute5 disabled=no icmp-options=3:3 \\ limit=5,5 protocol=icmp

add action=accept chain=ICMP comment=MTU5 disabled=no icmp-options=3:4 limit=\\ 5,5 protocol=icmp

add action=accept chain=ICMP comment=Ping5 disabled=no icmp-options=8:0-255 \\ limit=5,5 protocol=icmp

add action=accept chain=ICMP comment=\ 11:0-255 limit=5,5 protocol=icmp

add action=drop chain=ICMP comment=ICMP disabled=no protocol=icmp add action=accept chain=forward comment=\ disabled=no

add action=accept chain=forward comment=\ no

add action=drop chain=forward comment=\add action=drop chain=forward comment=TCP30 connection-limit=30,32 disabled=\\ no protocol=tcp

add action=drop chain=forward comment=\ !unicast

add action=jump chain=forward comment=ICMP disabled=no jump-target=ICMP \\ protocol=icmp

add action=jump chain=forward comment=\add action=accept chain=forward comment=\

add action=drop chain=input comment=\ icmp-options=8:0 packet-size=!0-600 protocol=icmp

add action=drop chain=forward comment=http60 disabled=no in-interface=LAN \\ src-address=192.168.10.0/24 /ip firewall mangle

add action=accept chain=prerouting comment=\

add action=change-mss chain=postrouting comment=\ protocol=tcp tcp-flags=syn

add action=mark-routing chain=prerouting comment=\ new-routing-mark=add passthrough=no src-address-list=src1

add action=add-src-to-address-list address-list=src1 address-list-timeout=15s \\

chain=prerouting comment=\ 80 protocol=tcp src-address=20.0.0.2-20.0.0.200 src-address-list=!src2 add action=add-src-to-address-list address-list=src2 address-list-timeout=4h \\ chain=prerouting comment=\ src-address=20.0.0.2-20.0.0.200

add action=accept chain=prerouting comment=\ in-interface=LAN protocol=tcp

add action=mark-connection chain=input comment=\ pppoe-out1 new-connection-mark=1 passthrough=yes

add action=mark-connection chain=input comment=\ pppoe-out2 new-connection-mark=2 passthrough=yes

add action=mark-connection chain=input comment=\

pppoe-out3 new-connection-mark=3 passthrough=yes

add action=mark-connection chain=input comment=\ pppoe-out4 new-connection-mark=4 passthrough=yes

add action=mark-connection chain=input comment=\ pppoe-out5 new-connection-mark=5 passthrough=yes

add action=mark-connection chain=input comment=\ pppoe-out6 new-connection-mark=6 passthrough=yes

add action=mark-connection chain=input comment=\ pppoe-out7 new-connection-mark=7 passthrough=yes

add action=mark-routing chain=output comment=\ new-routing-mark=to_1 out-interface=!LAN passthrough=yes

add action=mark-routing chain=output comment=\ new-routing-mark=to_2 out-interface=!LAN passthrough=yes

add action=mark-routing chain=output comment=\ new-routing-mark=to_3 out-interface=!LAN passthrough=yes

add action=mark-routing chain=output comment=\ new-routing-mark=to_4 out-interface=!LAN passthrough=yes

add action=mark-routing chain=output comment=\ new-routing-mark=to_5 out-interface=!LAN passthrough=yes

add action=mark-routing chain=output comment=\ yes new-routing-mark=to_6 out-interface=!LAN passthrough=yes

add action=mark-routing chain=output comment=\ yes new-routing-mark=to_7 out-interface=!LAN passthrough=yes add action=mark-connection chain=prerouting comment=\\

\ no dst-address-type=!local new-connection-mark=1 passthrough=yes \\ per-connection-classifier=both-addresses:5/0 src-address=10.0.0.0/24 add action=mark-connection chain=prerouting comment=\ dst-address-type=!local new-connection-mark=2 passthrough=yes \\ per-connection-classifier=both-addresses:5/1 src-address=10.0.0.0/24 add action=mark-connection chain=prerouting comment=\ dst-address-type=!local new-connection-mark=3 passthrough=yes \\ per-connection-classifier=both-addresses:5/2 src-address=10.0.0.0/24 add action=mark-connection chain=prerouting comment=\ dst-address-type=!local new-connection-mark=4 passthrough=yes \\ per-connection-classifier=both-addresses:5/3 src-address=10.0.0.0/24 add action=mark-connection chain=prerouting comment=\ dst-address-type=!local new-connection-mark=5 passthrough=yes \\ per-connection-classifier=both-addresses:5/4 src-address=10.0.0.0/24 add action=mark-connection chain=prerouting comment=\ dst-address-type=!local new-connection-mark=6 passthrough=yes \\ per-connection-classifier=both-addresses:7/5 src-address=10.0.0.0/24 add action=mark-connection chain=prerouting comment=\ dst-address-type=!local new-connection-mark=6 passthrough=yes \\ per-connection-classifier=both-addresses:7/6 src-address=10.0.0.0/24 add action=mark-routing chain=prerouting comment=\

disabled=no new-routing-mark=to_1 passthrough=yes src-address=10.0.0.0/24 add action=mark-routing chain=prerouting comment=\

disabled=no new-routing-mark=to_2 passthrough=yes src-address=10.0.0.0/24 add action=mark-routing chain=prerouting comment=\

disabled=no new-routing-mark=to_3 passthrough=yes src-address=10.0.0.0/24

add action=mark-routing chain=prerouting comment=\

disabled=no new-routing-mark=to_4 passthrough=yes src-address=10.0.0.0/24 add action=mark-routing chain=prerouting comment=\

disabled=no new-routing-mark=to_5 passthrough=yes src-address=10.0.0.0/24 add action=mark-routing chain=prerouting comment=\ disabled=yes new-routing-mark=to_6 passthrough=yes src-address=\\ 10.0.0.0/24

add action=mark-routing chain=prerouting comment=\ disabled=yes new-routing-mark=to_7 passthrough=yes src-address=\\ 10.0.0.0/24

add action=mark-connection chain=prerouting comment=\ 8291 in-interface=pppoe-out3 new-connection-mark=in_3 passthrough=yes \\ protocol=tcp

add action=mark-routing chain=output comment=\ disabled=no new-routing-mark=3 passthrough=no add action=mark-connection chain=prerouting comment=\\

\ Server-conn passthrough=yes src-address-list=\add action=mark-packet chain=postrouting comment=\ Server-conn disabled=no new-packet-mark=Server-up passthrough=no \\ src-address-list=\

add action=mark-packet chain=prerouting comment=\

Server-conn disabled=no new-packet-mark=Server-down passthrough=no \\ src-address-type=!local

add action=mark-connection chain=prerouting comment=\\

\ passthrough=yes protocol=icmp

add action=mark-connection chain=prerouting comment=\

layer7-protocol=DNS new-connection-mark=Small-conn passthrough=yes add action=mark-packet chain=postrouting comment=\ Small-conn disabled=no new-packet-mark=Small-up passthrough=no \\ src-address-list=\

add action=mark-packet chain=prerouting comment=\ disabled=no new-packet-mark=Small-down passthrough=no src-address-type=\\ !local

add action=jump chain=prerouting comment=\ connection-rate=0-80k disabled=no jump-target=Game_list packet-size=0-500 \\ protocol=udp

add action=jump chain=prerouting comment=\ jump-target=Game_list packet-size=0-500 protocol=tcp

add action=mark-connection chain=Game_list comment=Winbox disabled=no \\

dst-port=8291 new-connection-mark=Games-conn passthrough=yes protocol=tcp add action=mark-connection chain=Game_list comment=\ 2347 new-connection-mark=Games-conn passthrough=yes protocol=tcp

add action=mark-connection chain=Game_list comment=\ 443 new-connection-mark=Games-conn passthrough=yes protocol=tcp

add action=mark-connection chain=Game_list comment=\ disabled=no dst-port=14300,14400-14405,14500 new-connection-mark=\\ Games-conn passthrough=yes protocol=tcp

add action=mark-connection chain=Game_list comment=\ 14300,15100-15110 new-connection-mark=Games-conn passthrough=yes \\

protocol=udp

add action=mark-connection chain=Game_list comment=\ disabled=no dst-port=25510-25530 new-connection-mark=Games-conn \\ passthrough=yes protocol=tcp

add action=mark-connection chain=Game_list comment=\ 16400-16600 new-connection-mark=Games-conn passthrough=yes protocol=udp add action=mark-connection chain=Game_list comment=\ disabled=no dst-port=9028,27005-27020 new-connection-mark=Games-conn \\ passthrough=yes protocol=udp

add action=mark-connection chain=Game_list comment=\ 27005,27030 new-connection-mark=Games-conn passthrough=yes protocol=udp

add action=mark-connection chain=Game_list comment=\ disabled=no dst-port=10001,10011 new-connection-mark=Games-conn \\ passthrough=yes protocol=tcp

add action=mark-connection chain=Game_list comment=\ 17065 new-connection-mark=Games-conn passthrough=yes protocol=udp add action=mark-connection chain=Game_list comment=\\

\ new-connection-mark=Games-conn passthrough=yes protocol=tcp

add action=mark-connection chain=Game_list comment=\ 39311 new-connection-mark=Games-conn passthrough=yes protocol=udp add action=mark-connection chain=Game_list comment=\ disabled=no dst-port=8585 new-connection-mark=Games-conn passthrough=yes \\ protocol=tcp

add action=mark-connection chain=Game_list comment=\ no dst-port=3620,36581,62534,4550,3133,12721,1764,39311,29919,1884,4894 \\ new-connection-mark=Games-conn passthrough=yes protocol=udp

add action=mark-connection chain=Game_list comment=\ no dst-port=28008 new-connection-mark=Games-conn passthrough=yes \\ protocol=tcp

add action=mark-connection chain=Game_list comment=CS disabled=no dst-port=\\ 27005,27030 new-connection-mark=Games-conn passthrough=yes protocol=udp add action=mark-connection chain=Game_list comment=\ no dst-port=31414 new-connection-mark=Games-conn passthrough=yes \\ protocol=tcp

add action=mark-connection chain=Game_list comment=\ disabled=no dst-port=28004 new-connection-mark=Games-conn passthrough=yes \\ protocol=tcp

add action=mark-connection chain=Game_list comment=\ 16400-16600 new-connection-mark=Games-conn passthrough=yes protocol=udp add action=mark-connection chain=Game_list comment=\\

\ 22788,21388,10156,10116,4588,4188,4088,7788 new-connection-mark=\\ Games-conn passthrough=yes protocol=tcp

add action=mark-connection chain=Game_list comment=\ dst-port=9010-9018 new-connection-mark=Games-conn passthrough=yes \\ protocol=tcp

add action=mark-connection chain=Game_list comment=\\ \

9628,2191,1561,1925,4377,1590,2111,50801,1998,1845,2191,2040,2327 \\ new-connection-mark=Games-conn passthrough=yes protocol=udp

add action=mark-connection chain=Game_list comment=\ no dst-port=7081,8081,8442-8452,12371,12471 new-connection-mark=\\ Games-conn passthrough=yes protocol=tcp

add action=mark-connection chain=Game_list comment=\ 22,3001,7081,8445-8455 new-connection-mark=Games-conn passthrough=yes \\ protocol=udp

add action=mark-connection chain=Game_list comment=\ disabled=no new-connection-mark=Games-conn passthrough=yes protocol=udp \\ src-port=13330

add action=mark-connection chain=Game_list comment=\ new-connection-mark=Games-conn passthrough=yes protocol=udp add action=mark-connection chain=Game_list comment=\\

\ new-connection-mark=Games-conn passthrough=yes protocol=tcp

add action=mark-connection chain=Game_list comment=\ 1511,9000,27005-27030 new-connection-mark=Games-conn passthrough=yes \\ protocol=udp

add action=mark-connection chain=Game_list comment=\ no dst-port=6000-6080 new-connection-mark=Games-conn passthrough=yes \\ protocol=udp

add action=mark-connection chain=Game_list comment=\ 8000-8080 new-connection-mark=Games-conn passthrough=yes protocol=udp

add action=mark-connection chain=Game_list comment=\ disabled=no dst-port=10008,13006,5692,28012,2349 new-connection-mark=\\ Games-conn passthrough=yes protocol=tcp

add action=mark-connection chain=Game_list comment=\ 12000-12190,28012,2349 new-connection-mark=Games-conn passthrough=yes \\ protocol=udp

add action=mark-connection chain=Game_list comment=\\

\

10001-10070,7001,7101-7103 new-connection-mark=Games-conn passthrough=yes \\ protocol=tcp

add action=mark-connection chain=Game_list comment=\ 2533,5063,2311-2312 new-connection-mark=Games-conn passthrough=yes \\ protocol=udp

add action=mark-packet chain=postrouting comment=\ Games-conn disabled=no new-packet-mark=Game-up passthrough=no \\ src-address-list=\

add action=mark-packet chain=prerouting comment=\ disabled=no new-packet-mark=Game-down passthrough=no src-address-type=\\ !local

add action=mark-connection chain=prerouting comment=WebTV disabled=no \\ layer7-protocol=WebTV new-connection-mark=WebTV-conn passthrough=yes add action=mark-packet chain=postrouting comment=\ WebTV-conn disabled=no new-packet-mark=WebTV-up passthrough=no \\ src-address-list=\

add action=mark-packet chain=prerouting comment=\ disabled=no new-packet-mark=WebTV-down passthrough=no src-address-type=\\ !local

add action=mark-connection chain=prerouting comment=File disabled=no \\ layer7-protocol=File new-connection-mark=File-conn passthrough=yes

add action=mark-packet chain=postrouting comment=\ disabled=no new-packet-mark=File-up passthrough=no src-address-list=\\ \

add action=mark-packet chain=prerouting comment=\ disabled=no new-packet-mark=File-down passthrough=no src-address-type=\\ !local

add action=mark-connection chain=prerouting comment=Www disabled=no \\ layer7-protocol=Jpg new-connection-mark=Http-conn passthrough=yes add action=mark-connection chain=prerouting comment=\ layer7-protocol=http new-connection-mark=Http-conn passthrough=yes

add action=mark-connection chain=prerouting comment=\ 80,8080 new-connection-mark=Http-conn passthrough=yes protocol=tcp

add action=mark-packet chain=postrouting comment=\ disabled=no new-packet-mark=Www-up passthrough=no src-address-list=\\ \

add action=mark-packet chain=prerouting comment=\ disabled=no new-packet-mark=Www-down passthrough=no src-address-type=\\ !local

add action=mark-connection chain=prerouting comment=NetTV disabled=no \\ new-connection-mark=\

\\n-conn\

add action=mark-connection chain=prerouting comment=\ layer7-protocol=Kugou new-connection-mark=\ \\n\\r\\

\\n-conn\

add action=mark-connection chain=prerouting comment=\ layer7-protocol=QQMusic new-connection-mark=\ \\n\\r\\

\\n-conn\

add action=mark-connection chain=prerouting comment=\ layer7-protocol=QQLive new-connection-mark=\ \\n\\r\\

\\n-conn\

add action=mark-connection chain=prerouting comment=\ layer7-protocol=QQsp new-connection-mark=\ \\n-conn\

add action=mark-connection chain=prerouting comment=\ layer7-protocol=PPLive new-connection-mark=\ \\n-conn\

add action=mark-connection chain=prerouting comment=\ layer7-protocol=PPS new-connection-mark=\ \\n-conn\

add action=mark-packet chain=postrouting comment=\ \

\\n-conn\ \\n\\r\\

\\n-up\

add action=mark-packet chain=prerouting comment=\ \

\\n-conn\ \\n\\r\\

\\n-down\

add action=mark-connection chain=prerouting comment=Heavy disabled=no \\ new-connection-mark=Heavy-conn packet-size=501-1500 passthrough=yes add action=mark-connection chain=prerouting comment=\ 500000-0 disabled=no new-connection-mark=Heavy-conn passthrough=yes \\ protocol=tcp

add action=mark-connection chain=prerouting comment=\ 500000-0 disabled=no new-connection-mark=Heavy-conn passthrough=yes \\ protocol=udp

add action=mark-packet chain=postrouting comment=\ Heavy-conn disabled=no new-packet-mark=\ \\n\\r\\

\\n-up\

add action=mark-packet chain=prerouting comment=\ disabled=no new-packet-mark=\ \\n\\r\\ \\n\\r\\ \\n\\r\\

\\n-down\

add action=mark-packet chain=postrouting comment=\ connection-mark=Other-conn disabled=no new-packet-mark=Other-up \\ passthrough=no src-address-list=\

add action=mark-packet chain=prerouting comment=\ disabled=no new-packet-mark=Other-down passthrough=no src-address-type=\\ !local /ip firewall nat

add action=redirect chain=dstnat comment=\ no dst-port=80 protocol=tcp src-address=20.0.0.2-20.0.0.200 \\ src-address-list=src1 to-ports=8080

add action=masquerade chain=srcnat comment=\ pppoe-out1

add action=masquerade chain=srcnat comment=\ pppoe-out2

add action=masquerade chain=srcnat comment=\ pppoe-out3

add action=masquerade chain=srcnat comment=\ pppoe-out4

add action=masquerade chain=srcnat comment=\ pppoe-out5

add action=masquerade chain=srcnat comment=\ pppoe-out6

add action=masquerade chain=srcnat comment=\ pppoe-out7

add action=masquerade chain=srcnat comment=\ pppoe-out8

add action=masquerade chain=srcnat comment=\ pppoe-out9

add action=masquerade chain=srcnat comment=\ 192.168.10.0/24

add action=accept chain=srcnat comment=\/ip firewall service-port

\\nadd comment=\\\ policy=\\\\\\r\\

\\n reboot,read,write,policy,test,password,sniff,sensitive start-date=\\\\\\ \\r\\

\\n jan/01/1970 start-time=00:00:00\/system upgrade mirror

set check-interval=1d enabled=no primary-server=0.0.0.0 secondary-server=\\ 0.0.0.0 user=\/system watchdog

set auto-send-supout=no automatic-supout=yes no-ping-delay=5m watch-address=\\ none watchdog-timer=yes /tool bandwidth-server

set allocate-udp-ports-from=2000 authenticate=yes enabled=yes max-sessions=\\ 100 /tool e-mail

set from=<> password=\/tool graphing

set page-refresh=300 store-every=5min /tool mac-server

add disabled=no interface=all /tool mac-server ping set enabled=yes /tool sms

set allowed-number=\/tool sniffer

set file-limit=10 file-name=\

filter-address2=0.0.0.0/0:0-65535 filter-protocol=ip-only filter-stream=\\ yes interface=all memory-limit=10 only-headers=no streaming-enabled=no \\ streaming-server=0.0.0.0 /tool user-manager customer

add comment=\

paypal-accept-pending=no paypal-allowed=no paypal-secure-response=no \\ permissions=owner signup-allowed=no subscriber=admin time-zone=+00:00 /user aaa

set accounting=yes default-group=read interim-update=0s use-radius=no