{"id":783,"date":"2020-11-10T16:49:33","date_gmt":"2020-11-10T13:49:33","guid":{"rendered":"https:\/\/mamaevbor.tk\/wiki\/?p=783"},"modified":"2020-11-10T16:49:33","modified_gmt":"2020-11-10T13:49:33","slug":"bruteforce-mikrotik","status":"publish","type":"post","link":"https:\/\/wiki.m-network.ru\/?p=783","title":{"rendered":"Bruteforce Mikrotik"},"content":{"rendered":"\n<p>\u041d\u0438\u0436\u0435 \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u043b\u0435\u043d \u043a\u043e\u0434 \u0434\u043b\u044f \u0437\u0430\u0449\u0438\u0442\u044b \u043e\u0442 \u043f\u043e\u0434\u0431\u043e\u0440\u0430 \u043f\u0430\u0440\u043e\u043b\u0435\u0439 \u043a RDP \u043f\u043e\u0434\u043a\u043b\u044e\u0447\u0435\u043d\u0438\u044e, \u0432\u0441\u0435 \u0448\u0430\u0433\u0438 \u043f\u043e\u043f\u0430\u0434\u0430\u043d\u0438\u044f \u0432  blacklist  \u0432\u044b\u0432\u0435\u0434\u0435\u043d\u044b \u0432 \u043e\u0442\u0434\u0435\u043b\u044c\u043d\u0443\u044e \u0446\u0435\u043f\u043e\u0447\u043a\u0443 \u0434\u043b\u044f \u0443\u043c\u0435\u043d\u044c\u0448\u0435\u043d\u0438\u044f \u043d\u0430\u0433\u0440\u0443\u0437\u043a\u0438 \u043d\u0430 firewall, \u043f\u0440\u0430\u0432\u0438\u043b\u043e \u0434\u0440\u043e\u043f\u0430\u044e\u0449\u0435\u0435 \u043b\u044e\u0431\u044b\u0435 \u043f\u043e\u0434\u043a\u043b\u044e\u0447\u0435\u043d\u0438\u044f \u0441 ip \u0430\u0434\u0440\u0435\u0441\u043e\u0432  blacklist`\u0430 \u0432\u044b\u0432\u0435\u0434\u0435\u043d\u043e \u0432 \u0446\u0435\u043f\u043e\u0447\u043a\u0443 RAW \u0434\u043b\u044f \u0443\u043c\u0435\u043d\u044c\u0448\u0435\u043d\u0438\u044f \u043d\u0430\u0433\u0440\u0443\u0437\u043a\u0438. \u0412  blacklist  ip \u0430\u0434\u0440\u0435\u0441\u0430 \u0431\u0443\u0434\u0443\u0442 \u0434\u043e\u0431\u0430\u0432\u043b\u044f\u0442\u044c\u0441\u044f \u043d\u0430 \u0432\u0441\u0435\u0433\u0434\u0430.<br>\u041f\u043e \u043d\u0435\u043e\u0431\u0445\u043e\u0434\u0438\u043c\u043e\u0441\u0442\u0438 \u043a\u043e\u043d\u0444\u0438\u0433 \u043c\u043e\u0436\u043d\u043e \u0438\u0437\u043c\u0435\u043d\u0438\u0442\u044c \u043d\u0430 \u043d\u0443\u0436\u043d\u044b\u0439 \u043f\u043e\u0440\u0442 \u0434\u043b\u044f \u043a\u043e\u0442\u043e\u0440\u043e\u0433\u043e \u043d\u0443\u0436\u043d\u0430 \u0434\u0430\u043d\u043d\u0430\u044f \u0437\u0430\u0449\u0438\u0442\u0430.<\/p>\n\n\n\n<pre class=\"wp-block-preformatted\">\/ip firewall filter add action=jump chain=forward connection-state=new dst-port=3389 jump-target=rdp_bruteforce protocol=tcp\n \/ip firewall filter add action=accept chain=rdp_bruteforce comment=\"accept rdp address-list ITL\" dst-port=3389 fragment=no protocol=tcp src-address-list=rdp_white_list\n \/ip firewall filter add action=add-src-to-address-list address-list=rdp_blacklist address-list-timeout=none-dynamic chain=rdp_bruteforce connection-state=new dst-port=3389 protocol=tcp src-address-list=rdp_stage12\n \/ip firewall filter add action=add-src-to-address-list address-list=rdp_stage12 address-list-timeout=4m chain=rdp_bruteforce connection-state=new dst-port=3389 protocol=tcp src-address-list=rdp_stage11\n \/ip firewall filter add action=add-src-to-address-list address-list=rdp_stage11 address-list-timeout=4m chain=rdp_bruteforce connection-state=new dst-port=3389 protocol=tcp src-address-list=rdp_stage10\n \/ip firewall filter add action=add-src-to-address-list address-list=rdp_stage10 address-list-timeout=4m chain=rdp_bruteforce connection-state=new dst-port=3389 protocol=tcp src-address-list=rdp_stage9\n \/ip firewall filter add action=add-src-to-address-list address-list=rdp_stage9 address-list-timeout=4m chain=rdp_bruteforce connection-state=new dst-port=3389 protocol=tcp src-address-list=rdp_stage8\n \/ip firewall filter add action=add-src-to-address-list address-list=rdp_stage8 address-list-timeout=4m chain=rdp_bruteforce connection-state=new dst-port=3389 protocol=tcp src-address-list=rdp_stage7\n \/ip firewall filter add action=add-src-to-address-list address-list=rdp_stage7 address-list-timeout=4m chain=rdp_bruteforce connection-state=new dst-port=3389 protocol=tcp src-address-list=rdp_stage6\n \/ip firewall filter add action=add-src-to-address-list address-list=rdp_stage6 address-list-timeout=4m chain=rdp_bruteforce connection-state=new dst-port=3389 protocol=tcp src-address-list=rdp_stage5\n \/ip firewall filter add action=add-src-to-address-list address-list=rdp_stage5 address-list-timeout=4m chain=rdp_bruteforce connection-state=new dst-port=3389 protocol=tcp src-address-list=rdp_stage4\n \/ip firewall filter add action=add-src-to-address-list address-list=rdp_stage4 address-list-timeout=4m chain=rdp_bruteforce connection-state=new dst-port=3389 protocol=tcp src-address-list=rdp_stage3\n \/ip firewall filter add action=add-src-to-address-list address-list=rdp_stage3 address-list-timeout=4m chain=rdp_bruteforce connection-state=new dst-port=3389 protocol=tcp src-address-list=rdp_stage2\n \/ip firewall filter add action=add-src-to-address-list address-list=rdp_stage2 address-list-timeout=4m chain=rdp_bruteforce connection-state=new dst-port=3389 protocol=tcp src-address-list=rdp_stage1\n \/ip firewall filter add action=add-src-to-address-list address-list=rdp_stage1 address-list-timeout=4m chain=rdp_bruteforce connection-state=new dst-port=3389 protocol=tcp\n \/ip firewall filter add action=return chain=rdp_bruteforce connection-state=new\n \/ip firewall raw add action=drop chain=prerouting comment=\"drop rdp brute forcers\" in-interface-list=WAN src-address-list=rdp_blacklist<\/pre>\n","protected":false},"excerpt":{"rendered":"<p>\u041d\u0438\u0436\u0435 \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u043b\u0435\u043d \u043a\u043e\u0434 \u0434\u043b\u044f \u0437\u0430\u0449\u0438\u0442\u044b \u043e\u0442 \u043f\u043e\u0434\u0431\u043e\u0440\u0430 \u043f\u0430\u0440\u043e\u043b\u0435\u0439 \u043a RDP \u043f\u043e\u0434\u043a\u043b\u044e\u0447\u0435\u043d\u0438\u044e, \u0432\u0441\u0435 \u0448\u0430\u0433\u0438 \u043f\u043e\u043f\u0430\u0434\u0430\u043d\u0438\u044f \u0432 blacklist \u0432\u044b\u0432\u0435\u0434\u0435\u043d\u044b \u0432 \u043e\u0442\u0434\u0435\u043b\u044c\u043d\u0443\u044e \u0446\u0435\u043f\u043e\u0447\u043a\u0443 \u0434\u043b\u044f \u0443\u043c\u0435\u043d\u044c\u0448\u0435\u043d\u0438\u044f \u043d\u0430\u0433\u0440\u0443\u0437\u043a\u0438 \u043d\u0430 firewall, \u043f\u0440\u0430\u0432\u0438\u043b\u043e \u0434\u0440\u043e\u043f\u0430\u044e\u0449\u0435\u0435 \u043b\u044e\u0431\u044b\u0435 \u043f\u043e\u0434\u043a\u043b\u044e\u0447\u0435\u043d\u0438\u044f \u0441 ip \u0430\u0434\u0440\u0435\u0441\u043e\u0432 blacklist`\u0430 \u0432\u044b\u0432\u0435\u0434\u0435\u043d\u043e \u0432 \u0446\u0435\u043f\u043e\u0447\u043a\u0443 RAW \u0434\u043b\u044f \u0443\u043c\u0435\u043d\u044c\u0448\u0435\u043d\u0438\u044f \u043d\u0430\u0433\u0440\u0443\u0437\u043a\u0438. \u0412 blacklist ip \u0430\u0434\u0440\u0435\u0441\u0430 \u0431\u0443\u0434\u0443\u0442 \u0434\u043e\u0431\u0430\u0432\u043b\u044f\u0442\u044c\u0441\u044f \u043d\u0430 \u0432\u0441\u0435\u0433\u0434\u0430.\u041f\u043e \u043d\u0435\u043e\u0431\u0445\u043e\u0434\u0438\u043c\u043e\u0441\u0442\u0438 \u043a\u043e\u043d\u0444\u0438\u0433 \u043c\u043e\u0436\u043d\u043e \u0438\u0437\u043c\u0435\u043d\u0438\u0442\u044c \u043d\u0430 \u043d\u0443\u0436\u043d\u044b\u0439 \u043f\u043e\u0440\u0442 ..<\/p>\n<div class=\"clear-fix\"><\/div>\n<p><a href=\"https:\/\/wiki.m-network.ru\/?p=783\" title=\"read more...\">Read more<\/a><\/p>\n","protected":false},"author":5,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[34,142],"tags":[170,67],"_links":{"self":[{"href":"https:\/\/wiki.m-network.ru\/index.php?rest_route=\/wp\/v2\/posts\/783"}],"collection":[{"href":"https:\/\/wiki.m-network.ru\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/wiki.m-network.ru\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/wiki.m-network.ru\/index.php?rest_route=\/wp\/v2\/users\/5"}],"replies":[{"embeddable":true,"href":"https:\/\/wiki.m-network.ru\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=783"}],"version-history":[{"count":1,"href":"https:\/\/wiki.m-network.ru\/index.php?rest_route=\/wp\/v2\/posts\/783\/revisions"}],"predecessor-version":[{"id":784,"href":"https:\/\/wiki.m-network.ru\/index.php?rest_route=\/wp\/v2\/posts\/783\/revisions\/784"}],"wp:attachment":[{"href":"https:\/\/wiki.m-network.ru\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=783"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/wiki.m-network.ru\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=783"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/wiki.m-network.ru\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=783"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}