How Ar series routers respond to Network Viruses

Source: Internet
Author: User

The router function is to maintain network connectivity and forward data packets as much as possible. Routers cannot identify a large number of spam messages sent by network viruses.
We need to manually configure the ACL, such as the recently popular Shock Wave virus. Through configuration, the router can partially block these spam packets.
Disable TCP packets with port 135
Disable UDP packets with the port number 69
Disable ICMP Packets

The above is only an auxiliary measure. The fundamental solution is to eliminate the PC virus and install the Microsoft operating system as soon as possible.

Ding, upgrade the virus database of the antivirus tool to improve security awareness.

2. Common Anti-Virus ACLs, including common virus ports. For newly discovered viruses, you must manually add the corresponding ports.

.

Virus attacks may come from the Internet or the Intranet.

ACL number 3001

Rule 0 deny TCP source-port EQ 3127

Rule 1 deny TCP source-port EQ 1025

Rule 2 deny TCP source-port EQ 5554

Rule 3 deny TCP source-port EQ 9996

Rule 4 deny TCP source-port EQ 1068

Rule 5 deny TCP source-port EQ 135

Rule 6 deny UDP source-port EQ 135

Rule 7 deny TCP source-port EQ 137

Rule 8 deny UDP source-port EQ NetBIOS-NS

Rule 9 deny TCP source-port EQ 138

Rule 10 deny UDP source-port EQ NetBIOS-DGM

Rule 11 deny TCP source-port EQ 139

Rule 12 deny UDP source-port EQ NetBIOS-SSN

Rule 13 deny TCP source-port EQ 593

Rule 14 deny TCP source-port EQ 4444

Rule 15 deny TCP source-port EQ 5800

Rule 16 deny TCP source-port EQ 5900

Rule 18 deny TCP source-port EQ 8998

Rule 19 deny TCP source-port EQ 445

Rule 20 deny UDP source-port EQ 445

Rule 21 deny UDP source-port EQ 1434

Rule 30 deny TCP destination-port EQ 3127

Rule 31 deny TCP destination-port EQ 1025

Rule 32 deny TCP destination-port EQ 5554

Rule 33 deny TCP destination-port EQ 9996

Rule 34 deny TCP destination-port EQ 1068

Rule 35 deny TCP destination-port EQ 135

Rule 36 deny UDP destination-port EQ 135

Rule 37 deny TCP destination-port EQ 137

Rule 38 deny UDP destination-port EQ NetBIOS-NS

Rule 39 deny TCP destination-port EQ 138

Rule 40 deny UDP destination-port EQ NetBIOS-DGM

Rule 41 deny TCP destination-port EQ 139

Rule 42 deny UDP destination-port EQ NetBIOS-SSN

Rule 43 deny TCP destination-port EQ 593

Rule 44 deny TCP destination-port EQ 4444

Rule 45 deny TCP destination-port EQ 5800

Rule 46 deny TCP destination-port EQ 5900

Rule 48 deny TCP destination-port EQ 8998

Rule 49 deny TCP destination-port EQ 445

Rule 50 deny UDP destination-port EQ 445

Rule 51 deny UDP destination-port EQ 1434

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.