FAQ-华为中低端路由器防病毒配置列表

发布时间:  2012-07-26 浏览次数:  109 下载次数:  0
问题描述
华为中低端路由器通用的防病毒配置列表。
告警信息
处理过程

1、用于控制Blaster蠕虫的传播
rule 1 deny tcp source any destion any destination eq 4444
rule 2 deny udp source any destion any destination eq 69
2、用于控制Blaster蠕虫的扫描和攻击
rule 3 deny tcp source any destion any destination eq 135
rule 4 deny udp source any destion any destination eq 135
rule 5 deny tcp source any destion any destination eq 139
rule 6 deny udp source any destion any destination eq 139
rule 7 deny tcp source any destion any destination eq 445
rule 8 deny udp source any destion any destination eq 445
rule 9 deny tcp source any destion any destination eq 593
rule 10 deny udp source any destion any destination eq 593
3、用于控制 Slammer 蠕虫的传播
rule 11 deny udp source any destion any destination eq 1434
4、用于控制震荡波的传播
rule 12 deny tcp source any destination any destination-port eq 5554
rule 13 deny tcp source any destination any destination-port eq 9995
rule 14 deny tcp source any destination any destination-port eq 9996
5、其他的防病毒列表(可以不作)
rule 15 deny tcp source any destination any destination-port eq 1068
rule 16 deny tcp source any destination any destination-port eq 5800
rule 17 deny tcp source any destination any destination-port eq 5900
rule 18 deny tcp source any destination any destination-port eq 10080
rule 19 deny tcp source any destination any destination-port eq 3208
rule 20 deny tcp source any destination any destination-port eq 1871
rule 21 deny tcp source any destination any destination-port eq 4510
rule 22 deny udp source any destination any destination-port eq 4334
rule 23 deny tcp source any destination any destination-port eq 4331
rule 24 deny tcp source any destination any destination-port eq 4557
rule 25 deny udp destination-port eq netbios-ns
rule 26 deny udp destination-port eq netbios-dgm

 

根因

END