Some times peoples dont work and go to social networks like one.lv. In this example I will show you how you can stop this.
Add new address list with name onelv. This list must be updated manually from ripe.net.Search vaule ONELIMITED-NET
/ip firewall address-list
add list=onelv address=62.85.54.0/26
add list=onelv address=62.85.117.0/26
add list=onelv address=62.85.33.64/28
add list=onelv address=62.85.70.224/27
add list=onelv address=62.85.70.192/27
add list=onelv address=62.85.126.0/24
Create address list with ip witch doesnt have access to one.lv with name blockonelv
/ip firewall address-list
add list=blockonelv address=192.168.0.2
add list=blockonelv address=192.168.0.3
add list=blockonelv address=192.168.0.4
add list=blockonelv address=192.168.0.5
add list=blockonelv address=192.168.0.6
And now you can create firewall rule witch blocks one.lv for these ips
/ip firewall filter
add chain=forward action=drop src-address-list=blockonelv dst-address-list=onelv protocol=tcp dst-port=80
0 comments:
Post a Comment