Rising firewall rule Setting method

Simple for you to introduce in the use of dynamic IP system for the rising firewall to add "Resist SCO bombs" step:

1, open the Firewall interface---set--IP rule settings

2. Add Rule---Rule name fill in "Tcp+ Resist SCO bomb"---protocol type select "TCP"---execute action "prohibit"---address "any address"---local address "all addresses"---the other port "any port"---local port "port range", In the two boxes that appear, the first one fills in "3127" and the second fills "3198"---OK.

The following are dangerous rules or ports

Resisting SCO bombs

Preventing remote control two-way shutdown of port 5000-5005

Prevent "shock wave" shutdown

Prevent Trojan Horse "evil Eagle"

Preventing ICMP type packet attacks

Close Port 134-139

Close 1, 21, 23, 3389, 2001, 8011, 8311,

Close 777, 1001, 5419, 6667, 44444 ports

Close port 25

Close 7, 19, 20, 22, 26, 31, 53, 67,

Close 69, 79, 81, 82, 88, 113, 117, 121, 156, 416 ports

Close 420, 513, 514, 553, 555, 593, 707, 901, 1000, 1003 ports

Close 1010, 1011, 1012, 1015, 1022, 1023, 1025, 1029, 1033 ports

Close 1207, 1234, 1245, 1250, 1369, 1433 ports

Close Port 1482-1485

Close 1492, 1500 1524, 1634, 2023,

Close 2535, 2556 2583 2745 3000 3030, 3067,

Close 3232, 3333, 3422 3587 4321, 4444,

Close 5110, 5111 5190 5238, 5300,

Close Port 32770-32900

Close Port 58008-58009

Close 5698, 5800,

Close 6713 7251 7323 7441 7467 7511 7955 8000, 8001

Close 8102, 8888 8961 9010 9462 9604 9870 9898, 10000,

Close 10080, 10168 15849 16660 17428 18735 18961 19191 20168,

Close 20808,

Close 27117, 27374 29785 29786 29787 29788 30100 30999 31000,

Close 31335, 31789 43210 43958 44767 45672 45576 46147 47878,

Close 52013, 54283,