Source berikut adalah source untuk memblockir port yang biasa dilalui oleh virus, sudah banyak web dan blogs yang menulis tentang source ini, tetapi disini saya hanya melengkapi sejumlah catatanku di blog ini.
Port yang biasa dilewati virus ini akan di block melalui jalur filter firewall di mikrotik, berikut list port yang bisa anda co-pas di terminal winbox. Sesuaikan dengan kondisi mikrotik anda, kemungkinan ada port yang terpakai untuk service anda.
/ip firewall filter
add chain=virus protocol=udp action=drop dst-port=1
add chain=virus protocol=tcp action=drop dst-port=2
add chain=virus protocol=tcp action=drop dst-port=20
add chain=virus protocol=tcp action=drop dst-port=21
add chain=virus protocol=tcp action=drop dst-port=22
add chain=virus protocol=tcp action=drop dst-port=23
add chain=virus protocol=tcp action=drop dst-port=25
add chain=virus protocol=tcp action=drop dst-port=30
add chain=virus protocol=tcp action=drop dst-port=31
add chain=virus protocol=tcp action=drop dst-port=41
add chain=virus protocol=tcp action=drop dst-port=48
add chain=virus protocol=tcp action=drop dst-port=50
add chain=virus protocol=tcp action=drop dst-port=58
add chain=virus protocol=tcp action=drop dst-port=59
add chain=virus protocol=tcp action=drop dst-port=79
add chain=virus protocol=tcp action=drop dst-port=81
add chain=virus protocol=tcp action=drop dst-port=99
add chain=virus protocol=tcp action=drop dst-port=110
add chain=virus protocol=tcp action=drop dst-port=113
add chain=virus protocol=tcp action=drop dst-port=119
add chain=virus protocol=tcp action=drop dst-port=121
add chain=virus protocol=tcp action=drop dst-port=123
add chain=virus protocol=tcp action=drop dst-port=133
add chain=virus protocol=tcp action=drop dst-port=135-139
add chain=virus protocol=udp action=drop dst-port=135-139
add chain=virus protocol=tcp action=drop dst-port=142
add chain=virus protocol=tcp action=drop dst-port=146
add chain=virus protocol=udp action=drop dst-port=146
add chain=virus protocol=tcp action=drop dst-port=170
add chain=virus protocol=tcp action=drop dst-port=334
add chain=virus protocol=tcp action=drop dst-port=411
add chain=virus protocol=tcp action=drop dst-port=420
add chain=virus protocol=tcp action=drop dst-port=421
add chain=virus protocol=tcp action=drop dst-port=445
add chain=virus protocol=udp action=drop dst-port=445
add chain=virus protocol=tcp action=drop dst-port=456
add chain=virus protocol=tcp action=drop dst-port=513
add chain=virus protocol=tcp action=drop dst-port=514
add chain=virus protocol=tcp action=drop dst-port=531
add chain=virus protocol=tcp action=drop dst-port=555
add chain=virus protocol=tcp action=drop dst-port=593
add chain=virus protocol=tcp action=drop dst-port=605
add chain=virus protocol=tcp action=drop dst-port=666
add chain=virus protocol=tcp action=drop dst-port=667
add chain=virus protocol=tcp action=drop dst-port=669
add chain=virus protocol=tcp action=drop dst-port=692
add chain=virus protocol=tcp action=drop dst-port=777
add chain=virus protocol=tcp action=drop dst-port=808
add chain=virus protocol=tcp action=drop dst-port=911
add chain=virus protocol=tcp action=drop dst-port=999
add chain=virus protocol=tcp action=drop dst-port=1000
add chain=virus protocol=tcp action=drop dst-port=1001
add chain=virus protocol=tcp action=drop dst-port=1010-1016
add chain=virus protocol=tcp action=drop dst-port=1020
add chain=virus protocol=tcp action=drop dst-port=1024-1030
add chain=virus protocol=udp action=drop dst-port=1025
add chain=virus protocol=tcp action=drop dst-port=1035
add chain=virus protocol=tcp action=drop dst-port=1042
add chain=virus protocol=tcp action=drop dst-port=1045
add chain=virus protocol=tcp action=drop dst-port=1049
add chain=virus protocol=tcp action=drop dst-port=1050
add chain=virus protocol=tcp action=drop dst-port=1053
add chain=virus protocol=tcp action=drop dst-port=1054
add chain=virus protocol=tcp action=drop dst-port=1080-1083
add chain=virus protocol=tcp action=drop dst-port=1090
add chain=virus protocol=tcp action=drop dst-port=1095-1098
add chain=virus protocol=tcp action=drop dst-port=1099
add chain=virus protocol=tcp action=drop dst-port=1150-1151
add chain=virus protocol=tcp action=drop dst-port=1170
add chain=virus protocol=udp action=drop dst-port=1200-1201
add chain=virus protocol=tcp action=drop dst-port=1207
add chain=virus protocol=tcp action=drop dst-port=1208
add chain=virus protocol=tcp action=drop dst-port=1212
add chain=virus protocol=tcp action=drop dst-port=1214
add chain=virus protocol=tcp action=drop dst-port=1234
add chain=virus protocol=tcp action=drop dst-port=1243
add chain=virus protocol=tcp action=drop dst-port=1245
add chain=virus protocol=tcp action=drop dst-port=1255
add chain=virus protocol=tcp action=drop dst-port=1256
add chain=virus protocol=tcp action=drop dst-port=1269
add chain=virus protocol=tcp action=drop dst-port=1272
add chain=virus protocol=tcp action=drop dst-port=1313
add chain=virus protocol=tcp action=drop dst-port=1338
add chain=virus protocol=tcp action=drop dst-port=1349
add chain=virus protocol=tcp action=drop dst-port=1363-1364
add chain=virus protocol=tcp action=drop dst-port=1368
add chain=virus protocol=tcp action=drop dst-port=1373
add chain=virus protocol=tcp action=drop dst-port=1377
add chain=virus protocol=tcp action=drop dst-port=1394
add chain=virus protocol=tcp action=drop dst-port=1433-1434
add chain=virus protocol=tcp action=drop dst-port=1441
add chain=virus protocol=tcp action=drop dst-port=1492
add chain=virus protocol=tcp action=drop dst-port=1524
add chain=virus protocol=tcp action=drop dst-port=1568
add chain=virus protocol=tcp action=drop dst-port=1600
add chain=virus protocol=tcp action=drop dst-port=1703
add chain=virus protocol=tcp action=drop dst-port=1777
add chain=virus protocol=tcp action=drop dst-port=1807
add chain=virus protocol=tcp action=drop dst-port=1966
add chain=virus protocol=tcp action=drop dst-port=1967
add chain=virus protocol=tcp action=drop dst-port=1969
add chain=virus protocol=tcp action=drop dst-port=1981
add chain=virus protocol=tcp action=drop dst-port=1999
add chain=virus protocol=tcp action=drop dst-port=2000
add chain=virus protocol=tcp action=drop dst-port=2001
add chain=virus protocol=tcp action=drop dst-port=2023
add chain=virus protocol=tcp action=drop dst-port=2080
add chain=virus protocol=tcp action=drop dst-port=2115
add chain=virus protocol=udp action=drop dst-port=2130
add chain=virus protocol=tcp action=drop dst-port=2140
add chain=virus protocol=udp action=drop dst-port=2140
add chain=virus protocol=tcp action=drop dst-port=2155
add chain=virus protocol=tcp action=drop dst-port=2255
add chain=virus protocol=tcp action=drop dst-port=2283
add chain=virus protocol=tcp action=drop dst-port=2300
add chain=virus protocol=tcp action=drop dst-port=2311
add chain=virus protocol=tcp action=drop dst-port=2330-2339
add chain=virus protocol=udp action=drop dst-port=2339
add chain=virus protocol=tcp action=drop dst-port=2345
add chain=virus protocol=tcp action=drop dst-port=2535
add chain=virus protocol=tcp action=drop dst-port=2565
add chain=virus protocol=tcp action=drop dst-port=2583
add chain=virus protocol=tcp action=drop dst-port=2600
add chain=virus protocol=tcp action=drop dst-port=2716
add chain=virus protocol=tcp action=drop dst-port=2745
add chain=virus protocol=tcp action=drop dst-port=2773-2774
add chain=virus protocol=tcp action=drop dst-port=2801
add chain=virus protocol=udp action=drop dst-port=2989
add chain=virus protocol=tcp action=drop dst-port=3000
add chain=virus protocol=tcp action=drop dst-port=3024
add chain=virus protocol=tcp action=drop dst-port=3031
add chain=virus protocol=tcp action=drop dst-port=3127-3129
add chain=virus protocol=tcp action=drop dst-port=3150
add chain=virus protocol=udp action=drop dst-port=3150
add chain=virus protocol=tcp action=drop dst-port=3410
add chain=virus protocol=tcp action=drop dst-port=3456
add chain=virus protocol=tcp action=drop dst-port=3459
add chain=virus protocol=tcp action=drop dst-port=3700
add chain=virus protocol=tcp action=drop dst-port=3777
add chain=virus protocol=tcp action=drop dst-port=3791-3801
add chain=virus protocol=tcp action=drop dst-port=4000
add chain=virus protocol=tcp action=drop dst-port=4092
add chain=virus protocol=tcp action=drop dst-port=4242
add chain=virus protocol=tcp action=drop dst-port=4321
add chain=virus protocol=tcp action=drop dst-port=4444
add chain=virus protocol=udp action=drop dst-port=4444
add chain=virus protocol=tcp action=drop dst-port=4567
add chain=virus protocol=tcp action=drop dst-port=4590
add chain=virus protocol=tcp action=drop dst-port=4950
add chain=virus protocol=tcp action=drop dst-port=5000
add chain=virus protocol=tcp action=drop dst-port=5001
add chain=virus protocol=tcp action=drop dst-port=5002
add chain=virus protocol=tcp action=drop dst-port=5010
add chain=virus protocol=tcp action=drop dst-port=5011
add chain=virus protocol=tcp action=drop dst-port=5025
add chain=virus protocol=tcp action=drop dst-port=5031-5032
add chain=virus protocol=tcp action=drop dst-port=5321
add chain=virus protocol=tcp action=drop dst-port=5333
add chain=virus protocol=tcp action=drop dst-port=5343
add chain=virus protocol=tcp action=drop dst-port=5400-5402
add chain=virus protocol=tcp action=drop dst-port=5512
add chain=virus protocol=tcp action=drop dst-port=5534
add chain=virus protocol=tcp action=drop dst-port=5550
add chain=virus protocol=tcp action=drop dst-port=5554-5555
add chain=virus protocol=tcp action=drop dst-port=5556-5557
add chain=virus protocol=tcp action=drop dst-port=5569
add chain=virus protocol=tcp action=drop dst-port=5637-5638
add chain=virus protocol=tcp action=drop dst-port=5742
add chain=virus protocol=tcp action=drop dst-port=5760
add chain=virus protocol=tcp action=drop dst-port=5880-5889
add chain=virus protocol=tcp action=drop dst-port=6000
add chain=virus protocol=tcp action=drop dst-port=6006
add chain=virus protocol=tcp action=drop dst-port=6272
add chain=virus protocol=tcp action=drop dst-port=6776
add chain=virus protocol=tcp action=drop dst-port=8866
add chain=virus protocol=tcp action=drop dst-port=9898
add chain=virus protocol=tcp action=drop dst-port=10080
add chain=virus protocol=tcp action=drop dst-port=10520
add chain=virus protocol=tcp action=drop dst-port=10666
add chain=virus protocol=tcp action=drop dst-port=12345
add chain=virus protocol=tcp action=drop dst-port=17300
add chain=virus protocol=tcp action=drop dst-port=27374
add chain=virus protocol=tcp action=drop dst-port=30029
add chain=virus protocol=tcp action=drop dst-port=31337-31338
add chain=virus protocol=tcp action=drop dst-port=32418
add chain=virus protocol=tcp action=drop dst-port=40421
add chain=virus protocol=tcp action=drop dst-port=52317
add chain=forward action=jump jump-target=virus comment="jump to the virus chain"
List tersebut di atas bisa anda tambahkan lagi untuk kelengkapan bagi anda. Jika ada aplikasi yang tidak berjalan dengan semestinya, kemungkinan aplikasi tersebut menggunakan port yang ter-block oleh source ini, cari dan disable/delete port yang dipakai tersebut pada list di atas. Sekali lagi sesuaikan dengan kondisi service mikrotik anda.
Salam Codet.
