Thanks to visit codestin.com
Credit goes to www.scribd.com

Scribd
Upload
25 views1 page

Mangle Script With Connection Mark

The document contains firewall rules that mark network traffic flowing in and out of a LAB network interface. The rules mark HTTP, ICMP, and other traffic separately for downloading and uploading. All of the rules are currently disabled.

Uploaded by

Raul Cespedes Ichazo
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
25 views1 page

Mangle Script With Connection Mark

The document contains firewall rules that mark network traffic flowing in and out of a LAB network interface. The rules mark HTTP, ICMP, and other traffic separately for downloading and uploading. All of the rules are currently disabled.

Uploaded by

Raul Cespedes Ichazo
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
You are on page 1/ 1

# may/23/2019 23:05:36 by RouterOS 6.44.

3
# software id =
#
#
#
/ip firewall mangle
add action=mark-connection chain=forward comment="LAB Download" disabled=yes \
in-interface=ether1_to_INTERNET new-connection-mark=LAB_http_down_conn \
out-interface=LAB-Bridge passthrough=yes protocol=tcp src-port=\
80,8080,443
add action=mark-packet chain=forward connection-mark=LAB_http_down_conn \
disabled=yes new-packet-mark=LAB_http_down passthrough=no
add action=mark-connection chain=forward disabled=yes in-interface=\
ether1_to_INTERNET new-connection-mark=LAB_icmp_down_conn out-interface=\
LAB-Bridge passthrough=no protocol=icmp
add action=mark-packet chain=forward connection-mark=LAB_icmp_down_conn \
disabled=yes new-packet-mark=LAB_icmp_down passthrough=no
add action=mark-connection chain=forward disabled=yes in-interface=\
ether1_to_INTERNET new-connection-mark=LAB_others_down_conn \
out-interface=LAB-Bridge passthrough=no protocol=tcp
add action=mark-packet chain=forward connection-mark=LAB_others_down_conn \
disabled=yes new-packet-mark=LAB_others_down passthrough=no
add action=mark-connection chain=forward comment="LAB Upload" disabled=yes \
dst-port=80,8080,443 in-interface=LAB-Bridge new-connection-mark=\
LAB_http_upload_conn out-interface=ether1_to_INTERNET passthrough=no \
protocol=tcp
add action=mark-packet chain=forward connection-mark=LAB_http_upload_conn \
disabled=yes new-packet-mark=LAB_http_upload passthrough=no
add action=mark-connection chain=forward disabled=yes in-interface=LAB-Bridge \
new-connection-mark=LAB_icmp_up_conn out-interface=ether1_to_INTERNET \
passthrough=no protocol=icmp
add action=mark-packet chain=forward connection-mark=LAB_icmp_up_conn \
disabled=yes new-packet-mark=LAB_icmp_up passthrough=no
add action=mark-connection chain=forward disabled=yes in-interface=LAB-Bridge \
new-connection-mark=LAB_others_up_conn out-interface=ether1_to_INTERNET \
passthrough=no
add action=mark-packet chain=forward connection-mark=LAB_others_up_conn \
disabled=yes new-packet-mark=LAB_others_up passthrough=no

You might also like