İçeriğe atla

Mikrotik

Mikrotik Çözümleri

Mikrotik Kullanıcı Bul / Değiştir / Ekle

Mikrotik Kullanıcı Bul / Değiştir / Ekle Değiştirme işlemleri

<?php
use PEAR2\Net\RouterOS;

require_once 'PEAR2_Net_RouterOS-1.0.0b6.phar';
$util = new RouterOS\Util($client = new RouterOS\Client('192.168.0.1', 'admin', 'sifre'));

$util->setMenu('/ip hotspot user');
$mikrotikuser = 'a';

$mikrotikuserfound = $util->find(RouterOS\Query::where('name', $mikrotikuser));
if($mikrotikuserfound) {
    $util->set(
        $mikrotikuserfound,
        array(
            'password' => 'guncelle',
            'profile' => 'default'
        )
    );
} else {
    $util->add(
        array(
            'name' => $mikrotikuser,
            'password' => 'yeni',
            'profile' => 'default'
        )
    );
}
?>

Mikrotik VPN Engelleme

Mikrotik VPN Engelleme

Mikrotik VPN kullanıcılarını engellemeniz için kullanabilirsiniz. Ayrıca bu yöntem ile Hotspot shield , ultra surf , open vpn gibi programlarıda engellemiş olursunuz

/ip firewall filter
add action=drop chain=forward comment="DROP VPN / PPTP" disabled=no \
    protocol=gre

veya aşagıdaki kodları kullanabilirsiniz

/ip firewall address-list
add address=192.168.100.100 disable=no list=Allowed-pptp
 
/ip firewall filter
add action=drop chain=forward comment="DROP VPN / PPTP" disabled=no \
    protocol=gre src-address-list="Allowed-pptp"

Mikrotik Skype Reklamlarını Engelleme

Aşağıdaki kodları terminale ekleyin

/ip dns static
add address=127.0.0.1 name=pubads.g.doubleclick.net
add address=127.0.0.1 name=static.doubleclick.net
add address=127.0.0.1 name=devads.skypeassets.net
add address=127.0.0.1 name=devapps.skype.net
add address=127.0.0.1 name=qawww.skypeassets.net
add address=127.0.0.1 name=qaapi.skype.net
add address=127.0.0.1 name=preads.skypeassets.net
add address=127.0.0.1 name=preapps.skype.net
add address=127.0.0.1 name=static.skypeassets.com
add address=127.0.0.1 name=serving.plexop.net
add address=127.0.0.1 name=preg.bforex.com
add address=127.0.0.1 name=ads1.msads.net
add address=127.0.0.1 name=flex.msn.com
add address=127.0.0.1 name=apps.skype.com
add address=127.0.0.1 name=api.skype.com
add address=127.0.0.1 name=cdn.mbstatic.org
add address=127.0.0.1 name=marathonbet.com
add address=127.0.0.1 name=megogo.net
add address=127.0.0.1 name=adselector.ru
add address=127.0.0.1 name=pluso.ru
add address=127.0.0.1 name=flash.begun.ru
add address=127.0.0.1 name=ad.adriver.ru

Mikrotik Hotspot Shield ve UltraSurf Engelleme

Mikrotik Hotspot Shield ve UltraSurf Engelleme

Hotspot Shield programını tespit eder ve engeller

/ip firewall mangle
add action=add-dst-to-address-list address-list=WhiteList \
address-list-timeout=4d4h chain=prerouting comment=WhiteList content=\
!127.0.0.1:895 disabled=no dst-port=80 protocol=tcp
add action=add-src-to-address-list address-list=HotSpotShieldUsers \
address-list-timeout=1h chain=prerouting comment=HotSpotShieldUsers \
content=127.0.0.1:895 disabled=no dst-port=80 protocol=tcp
add action=add-dst-to-address-list address-list=WhiteList \
address-list-timeout=4d4h chain=prerouting comment=WhiteList content=\
!127.0.0.1:895 disabled=no dst-port=443 protocol=tcp

/ip firewall filter
add action=drop chain=forward comment="\"Block HotSpot Shield\"" disabled=no \
src-address-list=HotSpotShieldUsers

UltraSurf programını tespit eder ve engeller

/ip firewall filter
add action=drop chain=forward comment="Block UltraSurf" disabled=no dst-port=\
443 protocol=tcp src-address-list=UltraSurfUsers

/ip firewall mangle
add action=add-src-to-address-list address-list=UltraSurfUsers \
address-list-timeout=5m chain=prerouting comment=UltraSurfUsers disabled=\
no dst-address-list=UltraSurfServers dst-port=443 protocol=tcp

/ip firewall address-list
add address=65.49.0.0/17 comment="" disabled=no list=UltraSurfServers
add address=204.107.140.0/24 comment="" disabled=no list=UltraSurfServers

DNS Engelleme

/ip firewall filter
add action=accept chain=forward comment=DNS disabled=no dst-address=198.153.194.50 dst-port=53 protocol=tcp
add action=accept chain=forward comment=DNS disabled=no dst-address=198.153.194.50 dst-port=53 protocol=udp
add action=accept chain=forward comment=DNS disabled=no dst-address=198.153.192.50 dst-port=53 protocol=tcp
add action=accept chain=forward comment=DNS disabled=no dst-address=198.153.192.50 dst-port=53 protocol=udp
add action=drop chain=forward comment=DNS disabled=no dst-port=53 protocol=tcp
add action=drop chain=forward comment=DNS disabled=no dst-port=53 protocol=udp