-
Notifications
You must be signed in to change notification settings - Fork 6
/
firewall-raw-video-stream.rsc
68 lines (68 loc) · 4.41 KB
/
firewall-raw-video-stream.rsc
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
/ip firewall raw
add action=add-dst-to-address-list address-list=VIDEO-STREAMING \
address-list-timeout=5d chain=prerouting comment=TWITCH content=\
.twitchcdn.com disabled=no !dscp !dst-address !dst-address-list \
!dst-address-type !dst-limit !dst-port !fragment !hotspot !icmp-options \
!in-interface !in-interface-list !ingress-priority !ipsec-policy \
!ipv4-options !limit log=no log-prefix="" !nth !out-interface \
!out-interface-list !packet-size !per-connection-classifier !port \
!priority !protocol !psd !random !src-address !src-address-list \
!src-address-type !src-mac-address !src-port !tcp-flags !tcp-mss !time \
!tls-host !ttl
add action=add-dst-to-address-list address-list=VIDEO-STREAMING \
address-list-timeout=5d chain=prerouting comment=TIKTOK content=\
.tiktokcdn.com disabled=yes !dscp !dst-address !dst-address-list \
!dst-address-type !dst-limit !dst-port !fragment !hotspot !icmp-options \
!in-interface !in-interface-list !ingress-priority !ipsec-policy \
!ipv4-options !limit log=no log-prefix="" !nth !out-interface \
!out-interface-list !packet-size !per-connection-classifier !port \
!priority !protocol !psd !random !src-address !src-address-list \
!src-address-type !src-mac-address !src-port !tcp-flags !tcp-mss !time \
!tls-host !ttl
add action=add-dst-to-address-list address-list=VIDEO-STREAMING \
address-list-timeout=5d chain=prerouting comment=YOUTUBE content=\
.googlevideo.com disabled=yes !dscp !dst-address !dst-address-list \
!dst-address-type !dst-limit !dst-port !fragment !hotspot !icmp-options \
!in-interface !in-interface-list !ingress-priority !ipsec-policy \
!ipv4-options !limit log=no log-prefix="" !nth !out-interface \
!out-interface-list !packet-size !per-connection-classifier !port \
!priority !protocol !psd !random !src-address !src-address-list \
!src-address-type !src-mac-address !src-port !tcp-flags !tcp-mss !time \
!tls-host !ttl
add action=add-dst-to-address-list address-list=VIDEO-STREAMING \
address-list-timeout=5d chain=prerouting comment="NIMO TV" content=\
.nimo.tv disabled=no !dscp !dst-address !dst-address-list \
!dst-address-type !dst-limit !dst-port !fragment !hotspot !icmp-options \
!in-interface !in-interface-list !ingress-priority !ipsec-policy \
!ipv4-options !limit log=no log-prefix="" !nth !out-interface \
!out-interface-list !packet-size !per-connection-classifier !port \
!priority !protocol !psd !random !src-address !src-address-list \
!src-address-type !src-mac-address !src-port !tcp-flags !tcp-mss !time \
!tls-host !ttl
add action=jump chain=prerouting comment="GO TO VIDEO CHAIN" content=video \
disabled=no !dscp !dst-address !dst-address-list !dst-address-type \
!dst-limit !dst-port !fragment !hotspot !icmp-options !in-interface \
!in-interface-list !ingress-priority !ipsec-policy !ipv4-options \
jump-target=video !limit log=no log-prefix="" !nth !out-interface \
!out-interface-list !packet-size !per-connection-classifier !port \
!priority !protocol !psd !random !src-address !src-address-list \
!src-address-type !src-mac-address !src-port !tcp-flags !tcp-mss !time \
!tls-host !ttl
add action=add-dst-to-address-list address-list=VIDEO-STREAMING \
address-list-timeout=5d chain=video comment="FACEBOOK VIDEO" content=\
.fbcdn.net disabled=no !dscp !dst-address !dst-address-list \
!dst-address-type !dst-limit !dst-port !fragment !hotspot !icmp-options \
!in-interface !in-interface-list !ingress-priority !ipsec-policy \
!ipv4-options !limit log=no log-prefix="" !nth !out-interface \
!out-interface-list !packet-size !per-connection-classifier !port \
!priority !protocol !psd !random !src-address !src-address-list \
!src-address-type !src-mac-address !src-port !tcp-flags !tcp-mss !time \
!tls-host !ttl
add action=return chain=video comment="RETURN TO BEFORE VIDEO CHAIN" !content \
disabled=no !dscp !dst-address !dst-address-list !dst-address-type \
!dst-limit !dst-port !fragment !hotspot !icmp-options !in-interface \
!in-interface-list !ingress-priority !ipsec-policy !ipv4-options !limit \
log=no log-prefix="" !nth !out-interface !out-interface-list !packet-size \
!per-connection-classifier !port !priority !protocol !psd !random \
!src-address !src-address-list !src-address-type !src-mac-address \
!src-port !tcp-flags !tcp-mss !time !tls-host !ttl