赛迪首页
|
资讯中心
|
通信产业
|
IT产品
|
IT技术
|
信息化
|
社区
|
博客
|
EZIT
|
天下游戏
|
帝国远征
·
情报中心
·
赛迪教育
·
绿色
·
虚拟化
Java基础
Java进阶
Java Web
.Net交流
Php空间
Oracle
Sybase
MySQL
SQL Server
综合技术
Windows
Linux
Unix
BSD
Solaris
AIX
网络管理
网络安全
病毒求助
IBM dW
Sybase
Symantec
Java
|
数据库
|
Linux
|
网管世界
|
网络安全
|
技术新闻
|
文档·源码下载
|
病毒求助
|
精英在线
|
热点专题
|
IT技术词典
|
IT技术网站大全
社区服务
银行
短消息
收件箱
发件箱
消息跟踪
写新消息
控制面板
控制面板首页
编辑个人资料
查看个人资料
好友列表
用户权限查看
悬赏帖积分记录
交易币管理
特殊组购买
收藏夹
我的主题
统计与排行
基本统计信息
到访IP统计
管理团队
管理统计
在线统计
会员排行
版块排行
帖子排行
» 您尚未
登录
注册
|
专家团
|
爱好者
|
搜索
|
社区服务
|
勋章中心
|
帮助
赛迪网技术社区
»
厂商专区
»
Juniper专区
»
Netscreen 5GT 怎么封P2P,迅雷,QQ
投 票
本页主题:
Netscreen 5GT 怎么封P2P,迅雷,QQ
返回
|
打印
|
加为IE收藏
|
收藏主题
|
上一主题
|
下一主题
wanghail123
用户名: wanghail123
级别:
助理工程师
精华:
0
发帖:
53
经验值:
55 点
积分:
5 分
贡献值:
0
注册时间:2007-06-04
最后登录:2007-06-07
[悬赏20分]
Netscreen 5GT 怎么封P2P,迅雷,QQ
[悬赏剩余分数20分 截止时间2007-06-15 17:09:49]
Device Information
Hardware Version: 1010(0)
Firmware Version:
5.0.0r8.1 (Firewall+VPN)
Serial Number:
0064032005008460
Host Name:
ns5gt
Operational Mode: trust-untrust
我想在WEB页面中的设置,不想把IP封了,只想封一些端口,需要详细的配置,最好有抓图,谢谢
本贴标签:
Posted: 2007-06-05 17:09 |
[楼 主]
wanghail123
用户名: wanghail123
级别:
助理工程师
精华:
0
发帖:
53
经验值:
55 点
积分:
5 分
贡献值:
0
注册时间:2007-06-04
最后登录:2007-06-07
怎么版主都不来看看,郁闷
Posted: 2007-06-06 10:00 |
1 楼
fanstingman
用户名: fanstingman
级别:
技术员
精华:
0
发帖:
14
经验值:
15 点
积分:
30 分
贡献值:
0
注册时间:2007-06-06
最后登录:2007-06-06
难搞啊,封IP吧
Posted: 2007-06-06 14:01 |
2 楼
wanghail123
用户名: wanghail123
级别:
助理工程师
精华:
0
发帖:
53
经验值:
55 点
积分:
5 分
贡献值:
0
注册时间:2007-06-04
最后登录:2007-06-07
好象只能这样了
Posted: 2007-06-07 07:47 |
3 楼
liujx2829
用户名: liujx2829
级别:
技术菜鸟
精华:
0
发帖:
10
经验值:
11 点
积分:
20 分
贡献值:
0
注册时间:2007-06-04
最后登录:2007-08-09
封IP,,椒消极胡做法。。我门要封那个端口。。
Posted: 2007-06-19 15:33 |
4 楼
buaacj
用户名: buaacj
级别:
论坛版主
精华:
0
发帖:
107
经验值:
109 点
积分:
218 分
贡献值:
0
注册时间:2006-08-01
最后登录:2008-06-12
除非你不想上网了,确实可以做到,封掉所有端口就行。不然的话BT、QQ之类都可以改变端口或者使用80端口,靠封端口的简单办法是封不了的。可行的方案是购买DI license,定义BT\emule等的签名,识别出这些流量来作相应的控制。对于QQ,需要封服务器。
Posted: 2007-06-20 09:35 |
5 楼
pldong
用户名: pldong
级别:
工程师
精华:
1
发帖:
149
经验值:
210 点
积分:
60 分
贡献值:
0
注册时间:2006-08-02
最后登录:2009-12-27
给个脚本吧,希望有用,因为QQ的服务器在不停的更新.
et service "msn" protocol tcp src-port 0-65535 dst-port 1863-1863
set service "msn" + udp src-port 0-65535 dst-port 1863-1863
set service "msn" + tcp src-port 0-65535 dst-port 7001-7001
set service "msn" + udp src-port 0-65535 dst-port 7001-7001
set service "QQ" protocol tcp src-port 0-65535 dst-port 8000-8000
set service "QQ" + udp src-port 0-65535 dst-port 8000-8000
set service "QQ" + tcp src-port 0-65535 dst-port 8001-8001
set service "QQ" + udp src-port 0-65535 dst-port 8001-8001
set service "QQ" + tcp src-port 0-65535 dst-port 4000-4000
set service "QQ" + udp src-port 0-65535 dst-port 4000-4000
set service "qq2" protocol tcp src-port 0-65535 dst-port 80-80
set service "qq2" + udp src-port 0-65535 dst-port 80-80
set service "qq2" + tcp src-port 0-65535 dst-port 443-443
set service "qq2" + udp src-port 0-65535 dst-port 443-443
set address "Untrust" "msn-name1" messenger.hotmail.com
set address "Untrust" "msn-name10" 64.4.12.200 255.255.255.255
set address "Untrust" "msn-name11" 64.4.12.201 255.255.255.255
set address "Untrust" "msn-name12" 65.54.194.117 255.255.255.255
set address "Untrust" "msn-name13" 207.46.68.23 255.255.255.255
set address "Untrust" "msn-name14" 207.46.104.20 255.255.255.255
set address "Untrust" "msn-name15" 207.46.107.14 255.255.255.255
set address "Untrust" "msn-name16" 207.46.107.125 255.255.255.255
set address "Untrust" "msn-name17" 207.46.110.27 255.255.255.255
set address "Untrust" "msn-name18" 207.46.110.28 255.255.255.255
set address "Untrust" "msn-name19" 207.46.110.254 255.255.255.255
set address "Untrust" "msn-name2" webmessenger.msn.com
set address "Untrust" "msn-name20" 207.46.110.6 255.255.255.255
set address "Untrust" "msn-name21" 65.54.157.112 255.255.255.255
set address "Untrust" "msn-name22" 207.68.178.16 255.255.255.255
set address "Untrust" "msn-name23" 207.46.110.30 255.255.255.255
set address "Untrust" "msn-name24" 207.68.178.61 255.255.255.255
set address "Untrust" "msn-name25" 207.46.110.21 255.255.255.255
set address "Untrust" "msn-name26" 65.54.142.189 255.255.255.255
set address "Untrust" "msn-name27" 65.54.194.118 255.255.255.255
set address "Untrust" "msn-name28" 218.91.255.10 255.255.255.255
set address "Untrust" "msn-name29" 65.54.179.192 255.255.255.255
set address "Untrust" "msn-name3" 207.46.104.20 255.255.255.255
set address "Untrust" "msn-name4" 207.46.110.254 255.255.255.0
set address "Untrust" "msn-name5" 65.54.194.117 255.255.255.255
set address "Untrust" "msn-name6" 203.89.193.30 255.255.255.255
set address "Untrust" "msn-name7" 207.46.110.26 255.255.255.255
set address "Untrust" "msn-name8" 207.46.110.24 255.255.255.255
set address "Untrust" "msn-name9" 207.46.110.18 255.255.255.255
set address "Untrust" "qq-server" 218.5.72.126 255.255.255.255
set address "Untrust" "qq-server1" 61.141.194.203 255.255.255.255
set address "Untrust" "qq-server10" 202.104.129.251 255.255.255.255
set address "Untrust" "qq-server11" 202.104.129.252 255.255.255.255
set address "Untrust" "qq-server12" 202.104.129.253 255.255.255.255
set address "Untrust" "qq-server13" 202.104.129.254 255.255.255.255
set address "Untrust" "qq-server14" 211.157.38.38 255.255.255.255
set address "Untrust" "qq-server15" 218.17.209.23 255.255.255.255
set address "Untrust" "qq-server16" 218.17.209.42 255.255.255.255
set address "Untrust" "qq-server17" 218.17.217.106 255.255.255.255
set address "Untrust" "qq-server18" 218.18.95.153 255.255.255.255
set address "Untrust" "qq-server19" 218.18.95.165 255.255.255.255
set address "Untrust" "qq-server2" 61.144.238.145 255.255.255.255
set address "Untrust" "qq-server20" 219.133.40.21 255.255.255.0
set address "Untrust" "qq-server21" 219.133.40.73 255.255.255.255
set address "Untrust" "qq-server22" 219.133.40.89 255.255.255.255
set address "Untrust" "qq-server23" 219.133.40.90 255.255.255.255
set address "Untrust" "qq-server24" 219.133.40.92 255.255.255.255
set address "Untrust" "qq-server25" 219.133.40.95 255.255.255.255
set address "Untrust" "qq-server26" 219.133.40.97 255.255.255.255
set address "Untrust" "qq-server27" 219.133.40.157 255.255.255.255
set address "Untrust" "qq-server28" 219.133.40.177 255.255.255.255
set address "Untrust" "qq-server29" 219.133.40.189 255.255.255.255
set address "Untrust" "qq-server3" 61.144.238.146 255.255.255.255
set address "Untrust" "qq-server30" 219.134.128.16 255.255.255.255
set address "Untrust" "qq-server31" 219.133.49.5 255.255.255.255
set address "Untrust" "qq-server4" 61.144.238.149 255.255.255.255
set address "Untrust" "qq-server5" 61.144.238.155 255.255.255.255
set address "Untrust" "qq-server6" 61.172.249.135 255.255.255.255
set address "Untrust" "qq-server7" 65.54.229.253 255.255.255.255
set address "Untrust" "qq-server8" 202.96.170.164 255.255.255.255
set address "Untrust" "qq-server9" 202.104.129.151 255.255.255.255
set group address "Untrust" "msn-name-group"
set group address "Untrust" "msn-name-group" add "msn-name1"
set group address "Untrust" "msn-name-group" add "msn-name10"
set group address "Untrust" "msn-name-group" add "msn-name11"
set group address "Untrust" "msn-name-group" add "msn-name12"
set group address "Untrust" "msn-name-group" add "msn-name13"
set group address "Untrust" "msn-name-group" add "msn-name14"
set group address "Untrust" "msn-name-group" add "msn-name15"
set group address "Untrust" "msn-name-group" add "msn-name16"
set group address "Untrust" "msn-name-group" add "msn-name17"
set group address "Untrust" "msn-name-group" add "msn-name18"
set group address "Untrust" "msn-name-group" add "msn-name19"
set group address "Untrust" "msn-name-group" add "msn-name2"
set group address "Untrust" "msn-name-group" add "msn-name20"
set group address "Untrust" "msn-name-group" add "msn-name21"
set group address "Untrust" "msn-name-group" add "msn-name22"
set group address "Untrust" "msn-name-group" add "msn-name23"
set group address "Untrust" "msn-name-group" add "msn-name24"
set group address "Untrust" "msn-name-group" add "msn-name25"
set group address "Untrust" "msn-name-group" add "msn-name26"
set group address "Untrust" "msn-name-group" add "msn-name27"
set group address "Untrust" "msn-name-group" add "msn-name28"
set group address "Untrust" "msn-name-group" add "msn-name29"
set group address "Untrust" "msn-name-group" add "msn-name3"
set group address "Untrust" "msn-name-group" add "msn-name4"
set group address "Untrust" "msn-name-group" add "msn-name5"
set group address "Untrust" "msn-name-group" add "msn-name6"
set group address "Untrust" "msn-name-group" add "msn-name7"
set group address "Untrust" "msn-name-group" add "msn-name8"
set group address "Untrust" "msn-name-group" add "msn-name9"
set group address "Untrust" "QQ-server-name"
set group address "Untrust" "QQ-server-name" add "qq-server"
set group address "Untrust" "QQ-server-name" add "qq-server1"
set group address "Untrust" "QQ-server-name" add "qq-server10"
set group address "Untrust" "QQ-server-name" add "qq-server11"
set group address "Untrust" "QQ-server-name" add "qq-server12"
set group address "Untrust" "QQ-server-name" add "qq-server13"
set group address "Untrust" "QQ-server-name" add "qq-server14"
set group address "Untrust" "QQ-server-name" add "qq-server15"
set group address "Untrust" "QQ-server-name" add "qq-server16"
set group address "Untrust" "QQ-server-name" add "qq-server17"
set group address "Untrust" "QQ-server-name" add "qq-server18"
set group address "Untrust" "QQ-server-name" add "qq-server19"
set group address "Untrust" "QQ-server-name" add "qq-server2"
set group address "Untrust" "QQ-server-name" add "qq-server20"
set group address "Untrust" "QQ-server-name" add "qq-server21"
set group address "Untrust" "QQ-server-name" add "qq-server22"
set group address "Untrust" "QQ-server-name" add "qq-server23"
set group address "Untrust" "QQ-server-name" add "qq-server24"
set group address "Untrust" "QQ-server-name" add "qq-server25"
set group address "Untrust" "QQ-server-name" add "qq-server26"
set group address "Untrust" "QQ-server-name" add "qq-server27"
set group address "Untrust" "QQ-server-name" add "qq-server28"
set group address "Untrust" "QQ-server-name" add "qq-server29"
set group address "Untrust" "QQ-server-name" add "qq-server3"
set group address "Untrust" "QQ-server-name" add "qq-server30"
set group address "Untrust" "QQ-server-name" add "qq-server31"
set group address "Untrust" "QQ-server-name" add "qq-server4"
set group address "Untrust" "QQ-server-name" add "qq-server5"
set group address "Untrust" "QQ-server-name" add "qq-server6"
set group address "Untrust" "QQ-server-name" add "qq-server7"
set group address "Untrust" "QQ-server-name" add "qq-server8"
set group address "Untrust" "QQ-server-name" add "qq-server9"
set policy id 32 name "msn" from "Trust" to "Untrust" "Any" "Any" "msn" deny
set policy id 12 name "msn" from "Trust" to "Untrust" "Any" "msn-name-group" "ANY" deny
set policy id 19 name "QQ" from "Trust" to "Untrust" "Any" "Any" "QQ" deny
set policy id 33 name "QQ-server" from "Trust" to "Untrust" "Any" "QQ-server-name" "ANY" deny
Posted: 2007-06-20 11:37 |
6 楼
kexundu
用户名: kexundu
级别:
技术菜鸟
精华:
0
发帖:
11
经验值:
12 点
积分:
24 分
贡献值:
0
注册时间:2007-07-17
最后登录:2007-08-16
dddddddddddddddddddddddddddddddd
Posted: 2007-07-17 11:56 |
7 楼
kexundu
用户名: kexundu
级别:
技术菜鸟
精华:
0
发帖:
11
经验值:
12 点
积分:
24 分
贡献值:
0
注册时间:2007-07-17
最后登录:2007-08-16
dddddddddddddddddddddddddddddddd
Posted: 2007-07-17 11:56 |
8 楼
HELLO
用户名: ztbgzgs
级别:
技术员
精华:
0
发帖:
18
经验值:
19 点
积分:
16 分
贡献值:
0
注册时间:2007-07-26
最后登录:2008-09-05
6楼的兄弟太强了.忍不住要发表一下感慨了!
Posted: 2007-09-26 16:27 |
9 楼
Rudy
用户名: rudy_h
级别:
技术员
精华:
0
发帖:
17
经验值:
18 点
积分:
29 分
贡献值:
0
注册时间:2007-09-27
最后登录:2008-07-08
強人~~~~頂啊
Posted: 2007-09-27 12:30 |
10 楼
D.boy
用户名: terryyj
级别:
助理工程师
精华:
0
发帖:
79
经验值:
95 点
积分:
88 分
贡献值:
0
注册时间:2006-09-29
最后登录:2008-11-05
先Deny All
然后Allow你要的
QQ和MSN可以参考6楼的做法来做
Posted: 2007-09-27 14:02 |
11 楼
gino
用户名: ginoyu
级别:
技术菜鸟
精华:
0
发帖:
6
经验值:
7 点
积分:
12 分
贡献值:
0
注册时间:2007-09-28
最后登录:2007-10-02
把UDP和端口全部关掉好了
Posted: 2007-09-28 23:37 |
12 楼
baicaige
用户名: baicaige
级别:
高级技术员
精华:
0
发帖:
34
经验值:
34 点
积分:
78 分
贡献值:
0
注册时间:2007-08-30
最后登录:2009-10-22
TAKE A LOOK !!!!
Posted: 2007-10-09 17:54 |
13 楼
zhg_kong
用户名: zhg_kong
级别:
助理工程师
精华:
1
发帖:
54
经验值:
69 点
积分:
40 分
贡献值:
0
注册时间:2006-11-20
最后登录:2007-10-10
兄弟,你封掉这么多TCP和UDP端口,对上网有影响吧?
Posted: 2007-10-10 09:49 |
14 楼
felinux
用户名: felinux
级别:
助理工程师
精华:
0
发帖:
56
经验值:
59 点
积分:
16 分
贡献值:
0
注册时间:2007-06-29
最后登录:2008-07-10
封QQ有点老火,,如果使用代理服务器的话,,用常规的封 IP和端口的话是封不住的,
介意还是如斑竹所说,,购买DI license,定义BT\emule等的签名,识别出这些流量来作相应的控制。
Posted: 2007-10-10 15:54 |
15 楼
tomlongwin
用户名: tomlongwin
级别:
助理工程师
精华:
0
发帖:
63
经验值:
63 点
积分:
34 分
贡献值:
0
注册时间:2007-01-04
最后登录:2008-04-19
是呀。高手如云呀。呵呵。
Posted: 2007-11-03 18:30 |
16 楼
快速跳至
>> 论坛活动
|- 社区最新有奖活动
|- 挨踢活动
|- 网管员大赛
>> 厂商专区
|- VMware虚拟化技术专区
|- 惠普AQM专区
|- 惠普用户内部交流平台
|- IBM dW 技术专区
|- Rational 活动专区
|- 赛门铁克专区
|- SE Club
|- 微软Windows技术专区
|- Vista
|- Windows XP
|- Windows Server
|- Windows 7
|- Windows文档与工具下载
|- SonicWall技术专区
|- 趋势科技专区
|- Sybase技术专区
|- Windows主题下载
|- Radware专区
|- Juniper专区
>> 问题急救中心
|- IT技术问题急救中心
>> IT技术资源下载
|- IT资源下载综合专区
|- JAVA源码
|- .NET源码下载
|- PHP源码下载
|- C/C++/VC源码下载
|- 桌面壁纸下载
|- 美女、明星、影视
|- 动物、植物
|- 风景、地理
|- 汽车、时尚
|- 游戏、卡通、漫画
|- 电脑、科技
|- 设计、创意、艺术
|- Delphi源码下载
|- Flash源码下载
|- 操作系统文档下载专区
|- 数据库文档下载专区
|- ASP源码下载
|- 网络技术文档下载专区
|- VisualBasic/Basic源码下载
|- 软件开发高速文档下载专区
>> IT技术专区
|- 网络安全
|- 病毒求助专区
|- 木马讨论专区
|- 网络管理
|- 操作系统技术
|- AIX & UNIX
|- Linux
|- MAC
|- 数据库技术
|- WEB开发技术
|- JAVA开发技术
|- .NET开发技术
|- PHP开发技术
|- C/C++开发技术
|- 虚拟化综合技术
|- 存储技术
|- IT航向标
|- 技术水库
|- 编辑部的故事
>> 赛迪网校
|- 软考论坛
|- MAYA论坛
|- NCRE论坛
|- 培训园地
>> 论坛管理
|- 站务管理
|- 版主交流
>> 软件开发
>> 技术人生
>> 网络技术
>> 操作系统
>> 数据库技术
>> 源码下载
>> 技术文档高速下载
>> 虚拟化技术
赛迪网技术社区
»
Juniper专区
