- 论坛徽章:
- 0
|
firewall {\r\n filter saynotovirus {\r\n term udp-deny {\r\n from {\r\n protocol udp;\r\n port [ 135 137 138 139 445 593 1434 1433 4444 ];\r\n }\r\n then {\r\n count virus-upd-deny;\r\n discard;\r\n }\r\n }\r\n term tcp-deny {\r\n from {\r\n protocol tcp;\r\n port [ 135 138 139 445 593 3333 5800 5900 ];\r\n }\r\n then {\r\n count virus-tcp-deny;\r\n discard;\r\n }\r\n }\r\n term others {\r\n then accept;\r\n }\r\n }\r\n}\r\n\r\n\r\n\r\nge-2/3/0 {\r\n vlan-tagging;\r\n unit 10 {\r\n description \"ge-1/3/0.10,to-c6506-01 ge-3/1\";\r\n vlan-id 10;\r\n family inet {\r\n filter {\r\n input saynotovirus;\r\n output saynotovirus;\r\n }\r\n address 61.12.0.105/30;\r\n }\r\n }\r\n作者:晓河流水\r\n 转自:杜松之家 |
|