路由器关闭端口
问题描述:
MSR56
用acl阻塞,参考:
acl advanced 3100
description 勒索病毒
rule 0 deny tcp destination-port eq 445
rule 5 deny udp destination-port eq 445
rule 10 deny tcp destination-port eq 135
rule 15 deny udp destination-port eq 135
rule
rule 25 deny udp destination-port eq 136
rule 30 deny tcp destination-port eq 137
rule 35 deny tcp destination-port eq 138
rule 40 deny tcp destination-port eq 139
rule 45 deny udp destination-port eq netbios-ns
rule 50 deny udp destination-port eq netbios-dgm
rule 55 deny udp destination-port eq netbios-ssn
关于高危端口的封堵,可通过ACL来实现,以下是配置脚本,请参考:
acl advanced 3999
description gaoweiduankou_lanjie
rule 0 deny tcp destination-port eq 135
rule 1 deny tcp destination-port eq 137
rule 2 deny tcp destination-port eq 138
rule 3 deny tcp destination-port eq 139
rule 4 deny tcp destination-port eq 445
rule 5 deny tcp destination-port eq 3389
rule 6 deny udp destination-port eq 135
rule 7 deny udp destination-port eq 137
rule 8 deny udp destination-port eq 138
rule 9 deny udp destination-port eq 139
rule 10 deny udp destination-port eq 445
rule 11 deny udp destination-port eq 3389
rule 12 deny tcp source-port eq 135
rule 13 deny tcp source-port eq 137
rule 14 deny tcp source-port eq 138
rule 15 deny tcp source-port eq 139
rule 16 deny tcp source-port eq 445
rule 17 deny tcp source-port eq 3389
rule 18 deny udp source-port eq 135
rule 19 deny udp source-port eq 137
rule
quit
int gi 1/0/1
packet-filter 3999 inbound
packet-filter 3999 outbound
quit
5小时前回答关闭命令undo 可以打上但是dis tcp依然有端口没有关掉
5小时前回答ACL来实现
学道你正在内容来源:知了社区,路由器关闭端口
