Follow us on...
Follow us on G+ Follow us on Twitter Follow us on Facebook Watch us on YouTube
Register
Results 1 to 13 of 13

Thread: filter rules

  1. #1
    Status
    Offline
    pentiumx's Avatar
    Baru Gabung
    Join Date
    Oct 2008
    Posts
    12
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0

    filter rules

    hallo bro and sis,

    barusan bikin rule di filter rules..

    gini code nya

    1 X ;;; Blok SEX
    chain=forward action=drop src-address=0.0.0.0/0 dst-address=0.0.0.0/0
    content=sex

    2 X ;;; Blok PORN
    chain=forward action=drop src-address=0.0.0.0/0 dst-address=0.0.0.0/0
    content=porn

    Click here to enlarge

    tapi kenapa jadi lemot yah semua web ?? buka web yg bener-bener bersih pun lemot bgt... Click here to enlarge

    tapi klo rule ini di disabled, lancar jaya itu internet....
    ada yang tau kenapa?? klo ada yg mw diskusiin disini, mw saya bikin di FAQ aja nih... thank you all

    Click here to enlarge
    Last edited by pentiumx; 02-04-2011 at 09:13.

  2. #2
    Status
    Offline
    rerenet's Avatar
    Member
    Join Date
    Feb 2010
    Location
    jaktim
    Posts
    242
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Mungkin bawah saya bisa kasih solusi...

    Apa karena orang indonesia kalau buka WEB yang ada dipikiranya berbau...SEX .. ya hehehehe Click here to enlarge

  3. #3
    Status
    Offline
    xeon's Avatar
    Verified Account - Partner
    Join Date
    Mar 2008
    Location
    DKI Jakarta
    Posts
    1,539
    Reviews
    Read 0 Reviews
    Downloads
    3
    Uploads
    0
    Feedback Score
    2 (100%)
    Click here to enlarge Originally Posted by pentiumx Click here to enlarge
    hallo bro and sis,

    barusan bikin rule di filter rules..

    gini code nya

    1 X ;;; Blok SEX
    chain=forward action=drop src-address=0.0.0.0/0 dst-address=0.0.0.0/0
    content=sex

    2 X ;;; Blok PORN
    chain=forward action=drop src-address=0.0.0.0/0 dst-address=0.0.0.0/0
    content=porn

    Click here to enlarge

    tapi kenapa jadi lemot yah semua web ?? buka web yg bener-bener bersih pun lemot bgt... Click here to enlarge

    tapi klo rule ini di disabled, lancar jaya itu internet....
    ada yang tau kenapa?? klo ada yg mw diskusiin disini, mw saya bikin di FAQ aja nih... thank you all

    Click here to enlarge
    Mikrotiknya pake RB? atau PC?

    content filter memakan resource cukup besar.

  4. #4
    Status
    Offline
    pentiumx's Avatar
    Baru Gabung
    Join Date
    Oct 2008
    Posts
    12
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    oh, om xeon ada cara lain gak selain content filter? soalnya dah meresahkan nih user2nya... mana siang2 gini lagi bukanya... klo pake DNS nawala suka nge-lag..
    Click here to enlarge

  5. #5
    Status
    Offline
    xeon's Avatar
    Verified Account - Partner
    Join Date
    Mar 2008
    Location
    DKI Jakarta
    Posts
    1,539
    Reviews
    Read 0 Reviews
    Downloads
    3
    Uploads
    0
    Feedback Score
    2 (100%)
    Cara lain bisa menggunakan proxy.

  6. #6
    Status
    Offline
    pentiumx's Avatar
    Baru Gabung
    Join Date
    Oct 2008
    Posts
    12
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0

    baru dpt pencerahan

    1 X ;;; Blok SEX
    chain=forward action=drop src-address=192.168.88.0/24 dst-address=0.0.0.0/0
    content=sex

    seharusnya filter rules nya kayak gitu... baru deh lancar jaya..
    gak boleh pake 0.0.0.0/0 untuk src-address

    kemaren ngeliatin resource nya mikrotik cuma kepake 10% max.. Click here to enlarge

    tapi setingan ini ada kelemahannya... masih bisa tembus dan mesti masukin satu-satu keywordnya... Click here to enlarge

    sekian pengalaman dr ane, semoga membantu temen2 di forummikrotik...

  7. #7
    Status
    Offline
    polim's Avatar
    Calon Member
    Join Date
    Jul 2008
    Location
    Borneo Island
    Posts
    94
    Reviews
    Read 0 Reviews
    Downloads
    1
    Uploads
    0
    Feedback Score
    0
    kenapa gak ditambahin aja DNS-nya nawala? biar nawala yang mengerjakan, soalnya setahu saya klo melakukan filter content banyak menyita resource...CMIIW

  8. #8
    Status
    Offline
    zaduna's Avatar
    Newbie
    Join Date
    Aug 2009
    Posts
    28
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by polim Click here to enlarge
    kenapa gak ditambahin aja DNS-nya nawala? biar nawala yang mengerjakan, soalnya setahu saya klo melakukan filter content banyak menyita resource...CMIIW
    kemarin dah coba pake dns nawala di bberapa rb disini , dan hsil nya , klien2 pada bilang lemoot
    mungkin cara satu2 nya emg harus pke proxy nie

    Click here to enlarge

  9. #9
    Status
    Offline
    canon's Avatar
    Calon Member
    Join Date
    Dec 2010
    Location
    Sumut
    Posts
    92
    Reviews
    Read 0 Reviews
    Downloads
    4
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by zaduna Click here to enlarge
    kemarin dah coba pake dns nawala di bberapa rb disini , dan hsil nya , klien2 pada bilang lemoot
    mungkin cara satu2 nya emg harus pke proxy nie

    Click here to enlarge
    coba pake proxy dah Click here to enlarge kan ada content filter nya juga dari sisi squid bisa di block melalui acl utk memblok dengan membuat blacklist.txt jadi tinggal pasang link di file tadi terblock deh link. atau bisa pakai squidguard. Click here to enlarge

  10. #10
    Status
    Offline
    Spring's Avatar
    Contributor
    Join Date
    Oct 2009
    Location
    Manado
    Posts
    964
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    @TS: kasihan daerah Pornorogo, nama nya udah ter-blacklist di router anda.. Click here to enlarge

  11. #11
    Status
    Offline
    kweteng's Avatar
    VIP Member
    Join Date
    Nov 2009
    Location
    batu wae
    Posts
    797
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    DNS HIJACKING
    -ringan
    -irit resouces

    sarat, gunakan mikrotik asli, non bajakan

    Code:
    /ip dns static
    add address=203.130.236.199  name=.*redtube.com ttl=1d
    add address=203.130.236.199  name=.*tube8.com ttl=1d
    add address=203.130.236.199  name=.*porn.* ttl=1d
    add address=203.130.236.199  name=.*17tahun.* ttl=1d
    add address=203.130.236.199  name=.*sex.* ttl=1d
    add address=203.130.236.199  name=.*teen.*com ttl=1d
    add address=203.130.236.199  name=.*xxx.* ttl=1d
    add address=203.130.236.199  name=.*pussy.* ttl=1d
    add address=203.130.236.199  name=.*adult.* ttl=1d
    add address=203.130.236.199  name=.*babes.* ttl=1d
    add address=203.130.236.199  name=.*mature.* ttl=1d
    add address=203.130.236.199  name=.*blonde.* ttl=1d
    add address=203.130.236.199  name=.*amateur.* ttl=1d
    add address=203.130.236.199  name=.*model.* ttl=1d
    add address=203.130.236.199  name=.*cewek.* ttl=1d
    add address=203.130.236.199  name=.*s3xy.* ttl=1d
    add address=203.130.236.199  name=.*erotica.* ttl=1d
    add address=203.130.236.199  name=.*erotik.* ttl=1d
    add address=203.130.236.199  name=.*voyeur.* ttl=1d
    add address=203.130.236.199  name=.*xx.* ttl=1d
    add address=203.130.236.199  name=.*nudist.* ttl=1d
    add address=203.130.236.199  name=.*nude.* ttl=1d
    add address=203.130.236.199  name=.*lolita.* ttl=1d
    add address=203.130.236.199  name=.*bugil.* ttl=1d
    add address=203.130.236.199  name=.*maturemomvideos.com.* ttl=1d
    add address=203.130.236.199  name=.*maturefemaleporn.com ttl=1d
    add address=203.130.236.199  name=.*lubetubepornmature.com ttl=1d
    add address=203.130.236.199  name=.*xhamster.com ttl=1d
    add address=203.130.236.199  name=.*vapornine.com ttl=1d
    jika client nakal menggunakan dns gogle drop saja ip dns google/gunakan teknik redirect dnat, cegat dan paksa ke dns mikrotik, beres..
    Code:
    /ip fi nat 
    add action=dst-nat chain=dstnat  dst-port=53 protocol=udp to-addresses=ip-ether-mikrotikmu to-ports=53
    catatan:
    203.130.236.199=www.polri.go.id
    jadi jika kena regex dns yang di filter akan di arahkan dnsnya ke situs ajaib itu Click here to enlarge
    good luck brother
    Last edited by kweteng; 21-04-2011 at 10:03.

  12. The Following 3 Users Say Thank You to kweteng For This Useful Post:


  13. #12
    Status
    Offline
    tyang_dusun's Avatar
    Member Super Senior
    Join Date
    Jun 2008
    Location
    Klaten, Jawa Tengah, Indonesia, Indonesia
    Posts
    521
    Reviews
    Read 0 Reviews
    Downloads
    1
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by kweteng Click here to enlarge
    DNS HIJACKING
    -ringan
    -irit resouces

    sarat, gunakan mikrotik asli, non bajakan

    Code:
    /ip dns static
    add address=203.130.236.199  name=.*redtube.com ttl=1d
    add address=203.130.236.199  name=.*tube8.com ttl=1d
    add address=203.130.236.199  name=.*porn.* ttl=1d
    add address=203.130.236.199  name=.*17tahun.* ttl=1d
    add address=203.130.236.199  name=.*sex.* ttl=1d
    add address=203.130.236.199  name=.*teen.*com ttl=1d
    add address=203.130.236.199  name=.*xxx.* ttl=1d
    add address=203.130.236.199  name=.*pussy.* ttl=1d
    add address=203.130.236.199  name=.*adult.* ttl=1d
    add address=203.130.236.199  name=.*babes.* ttl=1d
    add address=203.130.236.199  name=.*mature.* ttl=1d
    add address=203.130.236.199  name=.*blonde.* ttl=1d
    add address=203.130.236.199  name=.*amateur.* ttl=1d
    add address=203.130.236.199  name=.*model.* ttl=1d
    add address=203.130.236.199  name=.*cewek.* ttl=1d
    add address=203.130.236.199  name=.*s3xy.* ttl=1d
    add address=203.130.236.199  name=.*erotica.* ttl=1d
    add address=203.130.236.199  name=.*erotik.* ttl=1d
    add address=203.130.236.199  name=.*voyeur.* ttl=1d
    add address=203.130.236.199  name=.*xx.* ttl=1d
    add address=203.130.236.199  name=.*nudist.* ttl=1d
    add address=203.130.236.199  name=.*nude.* ttl=1d
    add address=203.130.236.199  name=.*lolita.* ttl=1d
    add address=203.130.236.199  name=.*bugil.* ttl=1d
    add address=203.130.236.199  name=.*maturemomvideos.com.* ttl=1d
    add address=203.130.236.199  name=.*maturefemaleporn.com ttl=1d
    add address=203.130.236.199  name=.*lubetubepornmature.com ttl=1d
    add address=203.130.236.199  name=.*xhamster.com ttl=1d
    add address=203.130.236.199  name=.*vapornine.com ttl=1d
    jika client nakal menggunakan dns gogle drop saja ip dns google/gunakan teknik redirect dnat, cegat dan paksa ke dns mikrotik, beres..
    Code:
    /ip fi nat 
    add action=dst-nat chain=dstnat  dst-port=53 protocol=udp to-addresses=ip-ether-mikrotikmu to-ports=53
    catatan:
    203.130.236.199=www.polri.go.id
    jadi jika kena regex dns yang di filter akan di arahkan dnsnya ke situs ajaib itu Click here to enlarge
    good luck brother
    musti di coba ni ...

  14. #13
    Status
    Offline
    wonktegal's Avatar
    Member
    Join Date
    Sep 2009
    Location
    Tegal City
    Posts
    262
    Reviews
    Read 0 Reviews
    Downloads
    0
    Uploads
    0
    Feedback Score
    0
    Click here to enlarge Originally Posted by xeon Click here to enlarge
    Mikrotiknya pake RB? atau PC?

    content filter memakan resource cukup besar.
    di kator ane untk routernya menggunakan PC pen II, trus web proxy yg di mikrotik tak aktifin n pake dns nawala. trus di bag ini tak setting seperti ini :
    Click here to enlarge
    sampai skrng access intrntnya masih aman n lancar2 aj ...

    tp ane tdk tw juga cih, Pen II yg skrng ane pake di full on 24 x 7 hari kekuatnya bisa sampai brp th. ga tega ngelihtnya..Click here to enlarge

 

 

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Nanya tentang filter Rules
    By tutorial in forum General Networking
    Replies: 9
    Last Post: 17-01-2013, 21:05
  2. Filter rules
    By anarcy99 in forum General Networking
    Replies: 1
    Last Post: 09-08-2010, 12:02
  3. [New Update] Filter Rules Virus
    By labosanet in forum Beginner Basics
    Replies: 6
    Last Post: 07-08-2010, 22:26
  4. script utk memindahkan posisi filter rules
    By mikrotikers in forum Scripting @ Mikrotik
    Replies: 5
    Last Post: 28-02-2008, 14:38

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •