Блокируем зарубежний трафик на Windows 2003

База знаний: Windows Server

Автор Алексей | HiTex.BY, Последнее изменение: Алексей | HiTex.BY на 26 декабря 2022 16:12

Скачиваем и устанавливаем программу с сайта http://wipfw.sourceforge.net/
Зеркало: http://manuals.hitex.by/wipfw-0.2.8.zip
Конфиг: http://manuals.hitex.by/wipfw.conf
Правим конфиг программы :

-f flush # Localhost rules add 100 allow all from any to any via lo* # Prevent any traffic to 127.0.0.1, common in localhost spoofing add 110 deny log all from any to 127.0.0.0/8 in add 110 deny log all from 127.0.0.0/8 to any in #Testing rules, to find ports used by services if we aren't sure. These rules allow ALL traffic to pass through the firewall, disabling any subsequent rules #add 140 allow log logamount 500 tcp from any to any #add 150 allow log logamount 500 udp from any to any add check-state #add pass all from me to any out keep-state #add count log ip from any to any add allow ip from 1.0.0.0/8 to xx.xx.xx.xx add allow ip from xx.xx.xx.xx to 1.0.0.0/8 add allow ip from 93.84.0.0/15 to xx.xx.xx.xx add allow ip from xx.xx.xx.xx to 93.84.0.0/15 add allow ip from 82.209.192.0/18 to xx.xx.xx.xx add allow ip from xx.xx.xx.xx to 82.209.192.0/18 add allow ip from 86.57.128.0/17 to xx.xx.xx.xx add allow ip from xx.xx.xx.xx to 86.57.128.0/17Где xx.xx.xx.xx ваш IP сервера
все белорусские IP тут http://datacenter.by/ip/

Сам скрипт:

# First flush the firewall rules
-f flush

# Localhost rules
add 100 allow all from any to any via lo*

# Prevent any traffic to 127.0.0.1, common in localhost spoofing
add 110 deny log all from any to 127.0.0.0/8 in
add 110 deny log all from 127.0.0.0/8 to any in
add allow ip from 31.24.88.0/21 to 93.84.115.152
add allow ip from 31.130.200.0/21 to 93.84.115.152
add allow ip from 46.53.128.0/17 to 93.84.115.152
add allow ip from 46.56.0.0/16 to 93.84.115.152
add allow ip from 46.175.168.0/21 to 93.84.115.152
add allow ip from 46.216.0.0/16 to 93.84.115.152
add allow ip from 77.74.32.0/21 to 93.84.115.152
add allow ip from 79.98.48.0/21 to 93.84.115.152
add allow ip from 80.94.160.0/20 to 93.84.115.152
add allow ip from 80.94.224.0/20 to 93.84.115.152
add allow ip from 87.252.224.0/19 to 93.84.115.152
add allow ip from 91.149.128.0/18 to 93.84.115.152
add allow ip from 91.220.250.0/24 to 93.84.115.152
add allow ip from 91.215.176.0/22 to 93.84.115.152
add allow ip from 93.125.0.0/17 to 93.84.115.152
add allow ip from 95.128.64.0/21 to 93.84.115.152
add allow ip from 95.130.80.0/21 to 93.84.115.152
add allow ip from 128.65.0.0/18 to 93.84.115.152
add allow ip from 128.140.240.0/20 to 93.84.115.152
add allow ip from 176.60.0.0/16 to 93.84.115.152
add allow ip from 178.159.240.0/21 to 93.84.115.152
add allow ip from 178.163.128.0/17 to 93.84.115.152
add allow ip from 178.168.128.0/17 to 93.84.115.152
add allow ip from 178.172.128.0/17 to 93.84.115.152
add allow ip from 193.58.255.0/24 to 93.84.115.152
add allow ip from 193.151.40.0/22 to 93.84.115.152
add allow ip from 193.232.92.0/24 to 93.84.115.152
add allow ip from 195.50.0.0/19 to 93.84.115.152
add allow ip from 195.137.180.0/24 to 93.84.115.152
add allow ip from 212.98.160.0/19 to 93.84.115.152
add allow ip from 213.184.224.0/19 to 93.84.115.152
add allow ip from 217.21.32.0/19 to 93.84.115.152
add allow ip from 217.23.112.0/20 to 93.84.115.152
add allow ip from 134.17.0.0/16 to 93.84.115.152
add allow ip from 37.17.0.0/17 to 93.84.115.152
add allow ip from 176.118.152.0/21 to 93.84.115.152
add allow ip from 194.62.64.0/24 to 93.84.115.152
add allow ip from 195.137.160.0/24 to 93.84.115.152
add allow ip from 95.47.128.0/21 to 93.84.115.152
add allow ip from 92.38.56.0/21 to 93.84.115.152
add allow ip from 185.53.72.0/22 to 93.84.115.152
add allow ip from 92.38.64.0/20 to 93.84.115.152
add allow ip from 185.32.224.0/22 to 93.84.115.152
add allow ip from 185.47.152.0/23 to 93.84.115.152
add allow ip from 188.130.170.0/24 to 93.84.115.152
add allow ip from 151.249.128.0/17 to 93.84.115.152
add allow ip from 93.170.143.0/24 to 93.84.115.152
add allow ip from 93.189.224.0/21 to 93.84.115.152
add allow ip from 185.128.200.0/22 to 93.84.115.152
add allow ip from 5.45.208.0/24 to 93.84.115.152
add allow ip from 199.7.82.0/23 to 93.84.115.152
add allow ip from 185.186.208.0/22 to 93.84.115.152
add allow ip from 185.65.137.0/24 to 93.84.115.152
add allow ip from 185.70.12.0/22 to 93.84.115.152
add allow ip from 185.15.156.0/22 to 93.84.115.152
add allow ip from 46.28.96.0/21 to 93.84.115.152
add allow ip from 80.249.80.0/20 to 93.84.115.152
add allow ip from 185.158.216.0/22 to 93.84.115.152
add allow ip from 31.148.248.0/22 to 93.84.115.152
add allow ip from 185.227.96.0/22 to 93.84.115.152
add allow ip from 185.179.82.0/23 to 93.84.115.152
add allow ip from 93.171.6.0/24 to 93.84.115.152
add allow ip from 91.90.222.0/23 to 93.84.115.152
add allow ip from 93.170.34.0/24 to 93.84.115.152
add allow ip from 185.123.184.0/22 to 93.84.115.152
add allow ip from 185.66.68.0/22 to 93.84.115.152
add allow ip from 178.159.44.0/22 to 93.84.115.152
add allow ip from 185.20.112.0/22 to 93.84.115.152
add allow ip from 185.203.152.0/22 to 93.84.115.152
add allow ip from 46.182.48.0/21 to 93.84.115.152
add allow ip from 93.191.96.0/21 to 93.84.115.152
add allow ip from 185.61.104.0/22 to 93.84.115.152
add allow ip from 100.64.0.0/10 to 93.84.115.152
add allow ip from 82.209.192.0/18 to 93.84.115.152
add allow ip from 86.57.128.0/17 to 93.84.115.152
add allow ip from 93.84.0.0/15 to 93.84.115.152
add allow ip from 178.120.0.0/13 to 93.84.115.152
add allow ip from 194.158.192.0/19 to 93.84.115.152
add allow ip from 37.45.0.0/16 to 93.84.115.152
add allow ip from 37.44.64.0/18 to 93.84.115.152
add allow ip from 37.212.0.0/14 to 93.84.115.152
add allow ip from 185.152.136.0/22 to 93.84.115.152
add allow ip from 46.243.186.0/24 to 93.84.115.152
add allow ip from 195.222.64.0/19 to 93.84.115.152
add allow ip from 185.137.116.0/24 to 93.84.115.152
add allow ip from 93.170.28.0/22 to 93.84.115.152
add allow ip from 145.14.94.0/24 to 93.84.115.152
add allow ip from 46.243.180.0/22 to 93.84.115.152
add allow ip from 185.183.120.0/22 to 93.84.115.152
add allow ip from 185.204.116.0/22 to 93.84.115.152
add allow ip from 81.91.190.0/23 to 93.84.115.152
add allow ip from 93.171.207.0/24 to 93.84.115.152
add allow ip from 93.170.184.0/24 to 93.84.115.152
add allow ip from 93.171.112.0/20 to 93.84.115.152
add allow ip from 95.46.46.0/24 to 93.84.115.152
add allow ip from 95.46.200.0/21 to 93.84.115.152
add allow ip from 95.46.208.0/20 to 93.84.115.152
add allow ip from 146.120.128.0/20 to 93.84.115.152
add allow ip from 146.120.144.0/21 to 93.84.115.152
add allow ip from 81.30.88.0/22 to 93.84.115.152
add allow ip from 109.126.128.0/18 to 93.84.115.152
add allow ip from 164.177.192.0/18 to 93.84.115.152
add allow ip from 178.154.0.0/17 to 93.84.115.152
add allow ip from 185.6.24.0/22 to 93.84.115.152
add allow ip from 5.100.192.0/20 to 93.84.115.152
add allow ip from 81.30.80.0/21 to 93.84.115.152
add allow ip from 93.170.236.0/22 to 93.84.115.152
add allow ip from 93.171.160.0/23 to 93.84.115.152
add allow ip from 95.47.60.0/23 to 93.84.115.152
add allow ip from 146.120.13.0/24 to 93.84.115.152
add allow ip from 146.120.14.0/23 to 93.84.115.152
add allow ip from 77.94.44.0/22 to 93.84.115.152
add allow ip from 91.233.218.0/24 to 93.84.115.152
add allow ip from 93.170.252.0/24 to 93.84.115.152
add allow ip from 185.251.38.0/24 to 93.84.115.152
add allow ip from 185.79.16.0/22 to 93.84.115.152
add allow ip from 185.99.142.0/24 to 93.84.115.152
add allow ip from 45.135.234.0/24 to 93.84.115.152
add allow ip from 85.209.148.0/24 to 93.84.115.152
add allow ip from 78.140.252.0/24 to 93.84.115.152
add allow ip from 193.176.180.0/22 to 93.84.115.152
add allow ip from 80.71.147.0/24 to 93.84.115.152
add allow ip from 146.120.192.0/24 to 93.84.115.152
add allow ip from 194.62.19.0/24 to 93.84.115.152
add allow ip from 185.11.76.0/22 to 93.84.115.152
add allow ip from 95.46.16.0/20 to 93.84.115.152
add allow ip from 146.120.32.0/21 to 93.84.115.152
add allow ip from 81.30.92.0/22 to 93.84.115.152
add allow ip from 91.192.82.0/24 to 93.84.115.152
add allow ip from 93.189.59.0/24 to 93.84.115.152
add allow ip from 213.183.34.0/24 to 93.84.115.152
add allow ip from 185.179.80.0/24 to 93.84.115.152
add allow ip from 91.233.216.0/23 to 93.84.115.152
add allow ip from 95.47.62.0/24 to 93.84.115.152
add allow ip from 79.170.108.0/22 to 93.84.115.152
add allow ip from 45.129.16.0/23 to 93.84.115.152
add allow ip from 45.129.18.0/24 to 93.84.115.152
add allow ip from 93.84.115.152 to 31.24.88.0/21
add allow ip from 93.84.115.152 to 31.130.200.0/21
add allow ip from 93.84.115.152 to 46.53.128.0/17
add allow ip from 93.84.115.152 to 46.56.0.0/16
add allow ip from 93.84.115.152 to 46.175.168.0/21
add allow ip from 93.84.115.152 to 46.216.0.0/16
add allow ip from 93.84.115.152 to 77.74.32.0/21
add allow ip from 93.84.115.152 to 79.98.48.0/21
add allow ip from 93.84.115.152 to 80.94.160.0/20
add allow ip from 93.84.115.152 to 80.94.224.0/20
add allow ip from 93.84.115.152 to 87.252.224.0/19
add allow ip from 93.84.115.152 to 91.149.128.0/18
add allow ip from 93.84.115.152 to 91.220.250.0/24
add allow ip from 93.84.115.152 to 91.215.176.0/22
add allow ip from 93.84.115.152 to 93.125.0.0/17
add allow ip from 93.84.115.152 to 95.128.64.0/21
add allow ip from 93.84.115.152 to 95.130.80.0/21
add allow ip from 93.84.115.152 to 128.65.0.0/18
add allow ip from 93.84.115.152 to 128.140.240.0/20
add allow ip from 93.84.115.152 to 176.60.0.0/16
add allow ip from 93.84.115.152 to 178.159.240.0/21
add allow ip from 93.84.115.152 to 178.163.128.0/17
add allow ip from 93.84.115.152 to 178.168.128.0/17
add allow ip from 93.84.115.152 to 178.172.128.0/17
add allow ip from 93.84.115.152 to 193.58.255.0/24
add allow ip from 93.84.115.152 to 193.151.40.0/22
add allow ip from 93.84.115.152 to 193.232.92.0/24
add allow ip from 93.84.115.152 to 195.50.0.0/19
add allow ip from 93.84.115.152 to 195.137.180.0/24
add allow ip from 93.84.115.152 to 212.98.160.0/19
add allow ip from 93.84.115.152 to 213.184.224.0/19
add allow ip from 93.84.115.152 to 217.21.32.0/19
add allow ip from 93.84.115.152 to 217.23.112.0/20
add allow ip from 93.84.115.152 to 134.17.0.0/16
add allow ip from 93.84.115.152 to 37.17.0.0/17
add allow ip from 93.84.115.152 to 176.118.152.0/21
add allow ip from 93.84.115.152 to 194.62.64.0/24
add allow ip from 93.84.115.152 to 195.137.160.0/24
add allow ip from 93.84.115.152 to 95.47.128.0/21
add allow ip from 93.84.115.152 to 92.38.56.0/21
add allow ip from 93.84.115.152 to 185.53.72.0/22
add allow ip from 93.84.115.152 to 92.38.64.0/20
add allow ip from 93.84.115.152 to 185.32.224.0/22
add allow ip from 93.84.115.152 to 185.47.152.0/23
add allow ip from 93.84.115.152 to 188.130.170.0/24
add allow ip from 93.84.115.152 to 151.249.128.0/17
add allow ip from 93.84.115.152 to 93.170.143.0/24
add allow ip from 93.84.115.152 to 93.189.224.0/21
add allow ip from 93.84.115.152 to 185.128.200.0/22
add allow ip from 93.84.115.152 to 5.45.208.0/24
add allow ip from 93.84.115.152 to 199.7.82.0/23
add allow ip from 93.84.115.152 to 185.186.208.0/22
add allow ip from 93.84.115.152 to 185.65.137.0/24
add allow ip from 93.84.115.152 to 185.70.12.0/22
add allow ip from 93.84.115.152 to 185.15.156.0/22
add allow ip from 93.84.115.152 to 46.28.96.0/21
add allow ip from 93.84.115.152 to 80.249.80.0/20
add allow ip from 93.84.115.152 to 185.158.216.0/22
add allow ip from 93.84.115.152 to 31.148.248.0/22
add allow ip from 93.84.115.152 to 185.227.96.0/22
add allow ip from 93.84.115.152 to 185.179.82.0/23
add allow ip from 93.84.115.152 to 93.171.6.0/24
add allow ip from 93.84.115.152 to 91.90.222.0/23
add allow ip from 93.84.115.152 to 93.170.34.0/24
add allow ip from 93.84.115.152 to 185.123.184.0/22
add allow ip from 93.84.115.152 to 185.66.68.0/22
add allow ip from 93.84.115.152 to 178.159.44.0/22
add allow ip from 93.84.115.152 to 185.20.112.0/22
add allow ip from 93.84.115.152 to 185.203.152.0/22
add allow ip from 93.84.115.152 to 46.182.48.0/21
add allow ip from 93.84.115.152 to 93.191.96.0/21
add allow ip from 93.84.115.152 to 185.61.104.0/22
add allow ip from 93.84.115.152 to 100.64.0.0/10
add allow ip from 93.84.115.152 to 82.209.192.0/18
add allow ip from 93.84.115.152 to 86.57.128.0/17
add allow ip from 93.84.115.152 to 93.84.0.0/15
add allow ip from 93.84.115.152 to 178.120.0.0/13
add allow ip from 93.84.115.152 to 194.158.192.0/19
add allow ip from 93.84.115.152 to 37.45.0.0/16
add allow ip from 93.84.115.152 to 37.44.64.0/18
add allow ip from 93.84.115.152 to 37.212.0.0/14
add allow ip from 93.84.115.152 to 185.152.136.0/22
add allow ip from 93.84.115.152 to 46.243.186.0/24
add allow ip from 93.84.115.152 to 195.222.64.0/19
add allow ip from 93.84.115.152 to 185.137.116.0/24
add allow ip from 93.84.115.152 to 93.170.28.0/22
add allow ip from 93.84.115.152 to 145.14.94.0/24
add allow ip from 93.84.115.152 to 46.243.180.0/22
add allow ip from 93.84.115.152 to 185.183.120.0/22
add allow ip from 93.84.115.152 to 185.204.116.0/22
add allow ip from 93.84.115.152 to 81.91.190.0/23
add allow ip from 93.84.115.152 to 93.171.207.0/24
add allow ip from 93.84.115.152 to 93.170.184.0/24
add allow ip from 93.84.115.152 to 93.171.112.0/20
add allow ip from 93.84.115.152 to 95.46.46.0/24
add allow ip from 93.84.115.152 to 95.46.200.0/21
add allow ip from 93.84.115.152 to 95.46.208.0/20
add allow ip from 93.84.115.152 to 146.120.128.0/20
add allow ip from 93.84.115.152 to 146.120.144.0/21
add allow ip from 93.84.115.152 to 81.30.88.0/22
add allow ip from 93.84.115.152 to 109.126.128.0/18
add allow ip from 93.84.115.152 to 164.177.192.0/18
add allow ip from 93.84.115.152 to 178.154.0.0/17
add allow ip from 93.84.115.152 to 185.6.24.0/22
add allow ip from 93.84.115.152 to 5.100.192.0/20
add allow ip from 93.84.115.152 to 81.30.80.0/21
add allow ip from 93.84.115.152 to 93.170.236.0/22
add allow ip from 93.84.115.152 to 93.171.160.0/23
add allow ip from 93.84.115.152 to 95.47.60.0/23
add allow ip from 93.84.115.152 to 146.120.13.0/24
add allow ip from 93.84.115.152 to 146.120.14.0/23
add allow ip from 93.84.115.152 to 77.94.44.0/22
add allow ip from 93.84.115.152 to 91.233.218.0/24
add allow ip from 93.84.115.152 to 93.170.252.0/24
add allow ip from 93.84.115.152 to 185.251.38.0/24
add allow ip from 93.84.115.152 to 185.79.16.0/22
add allow ip from 93.84.115.152 to 185.99.142.0/24
add allow ip from 93.84.115.152 to 45.135.234.0/24
add allow ip from 93.84.115.152 to 85.209.148.0/24
add allow ip from 93.84.115.152 to 78.140.252.0/24
add allow ip from 93.84.115.152 to 193.176.180.0/22
add allow ip from 93.84.115.152 to 80.71.147.0/24
add allow ip from 93.84.115.152 to 146.120.192.0/24
add allow ip from 93.84.115.152 to 194.62.19.0/24
add allow ip from 93.84.115.152 to 185.11.76.0/22
add allow ip from 93.84.115.152 to 95.46.16.0/20
add allow ip from 93.84.115.152 to 146.120.32.0/21
add allow ip from 93.84.115.152 to 81.30.92.0/22
add allow ip from 93.84.115.152 to 91.192.82.0/24
add allow ip from 93.84.115.152 to 93.189.59.0/24
add allow ip from 93.84.115.152 to 213.183.34.0/24
add allow ip from 93.84.115.152 to 185.179.80.0/24
add allow ip from 93.84.115.152 to 91.233.216.0/23
add allow ip from 93.84.115.152 to 95.47.62.0/24
add allow ip from 93.84.115.152 to 79.170.108.0/22
add allow ip from 93.84.115.152 to 45.129.16.0/23
add allow ip from 93.84.115.152 to 45.129.18.0/24

(1218 голос(а))

Эта статья полезна

Эта статья бесполезна

Комментарии (0)