Jump to content
Калькуляторы

mikrotik блокировка teamviewer

доброе время суток  необходимо заблокировать teamviewer на всю сеть за исключением нескольких хостов  делаю

/ip firewall filter

 

add action=drop chain=forward comment=team layer7-protocol=teamviewer src-address-list=!en-teamview
add action=drop chain=forward layer7-protocol=teamviewer1 src-address-list=!en-teamview
add action=drop chain=forward layer7-protocol=ammyy src-address-list=!en-teamview
add action=drop chain=forward dst-port=5938 protocol=tcp src-address-list=!en-teamview
add action=drop chain=forward dst-port=5939 protocol=tcp src-address-list=!en-teamview
add action=drop chain=forward dst-port=5938 protocol=udp src-address-list=!en-teamview
add action=drop chain=forward dst-port=5939 protocol=udp src-address-list=!en-teamview
add action=drop chain=forward content=teamviewer.com src-address-list=!en-teamview

/ip firewall address-list

add address=10.0.8.47 list=en-teamview

/ip firewall layer7-protocol

add name=teamviewer regexp="^(post|get) /d(out|in).aspx\?.*client=dyngate"
add name=teamviewer1 regexp="^\\x17"
add name=ammyy regexp=^.*rl.ammyy.com.*

 

и итоге  хост 10.0.8.47 не может соединится

если отключить правило

add action=drop chain=forward disabled=yes layer7-protocol=teamviewer1  src-address-list=!en-teamview 

то подключение проходит  но тогда все хосты могут подключаться

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now