The router function is to maintain network connectivity and forward data packets as much as possible. Routers cannot identify a large number of spam messages sent by network viruses.
We need to manually configure the ACL, such as the recently popular Shock Wave virus. Through configuration, the router can partially block these spam packets.
Disable TCP packets with port 135
Disable UDP packets with the port number 69
Disable ICMP Packets
The above is only an auxiliary measure. The fundamental solution is to eliminate the PC virus and install the Microsoft operating system as soon as possible.
Ding, upgrade the virus database of the antivirus tool to improve security awareness.
2. Common Anti-Virus ACLs, including common virus ports. For newly discovered viruses, you must manually add the corresponding ports.
.
Virus attacks may come from the Internet or the Intranet.
ACL number 3001
Rule 0 deny TCP source-port EQ 3127
Rule 1 deny TCP source-port EQ 1025
Rule 2 deny TCP source-port EQ 5554
Rule 3 deny TCP source-port EQ 9996
Rule 4 deny TCP source-port EQ 1068
Rule 5 deny TCP source-port EQ 135
Rule 6 deny UDP source-port EQ 135
Rule 7 deny TCP source-port EQ 137
Rule 8 deny UDP source-port EQ NetBIOS-NS
Rule 9 deny TCP source-port EQ 138
Rule 10 deny UDP source-port EQ NetBIOS-DGM
Rule 11 deny TCP source-port EQ 139
Rule 12 deny UDP source-port EQ NetBIOS-SSN
Rule 13 deny TCP source-port EQ 593
Rule 14 deny TCP source-port EQ 4444
Rule 15 deny TCP source-port EQ 5800
Rule 16 deny TCP source-port EQ 5900
Rule 18 deny TCP source-port EQ 8998
Rule 19 deny TCP source-port EQ 445
Rule 20 deny UDP source-port EQ 445
Rule 21 deny UDP source-port EQ 1434
Rule 30 deny TCP destination-port EQ 3127
Rule 31 deny TCP destination-port EQ 1025
Rule 32 deny TCP destination-port EQ 5554
Rule 33 deny TCP destination-port EQ 9996
Rule 34 deny TCP destination-port EQ 1068
Rule 35 deny TCP destination-port EQ 135
Rule 36 deny UDP destination-port EQ 135
Rule 37 deny TCP destination-port EQ 137
Rule 38 deny UDP destination-port EQ NetBIOS-NS
Rule 39 deny TCP destination-port EQ 138
Rule 40 deny UDP destination-port EQ NetBIOS-DGM
Rule 41 deny TCP destination-port EQ 139
Rule 42 deny UDP destination-port EQ NetBIOS-SSN
Rule 43 deny TCP destination-port EQ 593
Rule 44 deny TCP destination-port EQ 4444
Rule 45 deny TCP destination-port EQ 5800
Rule 46 deny TCP destination-port EQ 5900
Rule 48 deny TCP destination-port EQ 8998
Rule 49 deny TCP destination-port EQ 445
Rule 50 deny UDP destination-port EQ 445
Rule 51 deny UDP destination-port EQ 1434