Hello,
In my router blocked all standart (TCP 80/443) HTTP traffic. How I can make an exception to google drive service? I tryed through layer 7 - no lack, may be because it uses SSL ?
anyone know what to do in this case ? how I can make firewall rule for google services only (i need google drive, docs) ?
You can see in filter rule,advanced, “!” that mean any think you can, are not counted among the, that meaning Except
In last you all need to block you can do
i know that, now I already figured out that Layer 7 not help me because google uses everywhere SSL. Now I trying to make script - automatic get all google IPs and add them to address list. Anyone have that script ?
I found that code, but its not full, I need some script to get all google IPs from _spf.google.com:
# set the name of the address list and comment
:local addressList "MYAddressList"
:local comment "GoogleDNS"
# set file name
:local file "dnslist.txt"
# clean up old entries
/ip firewall address-list remove [find comment="$comment"]
:local ip
:local toggle false
:local content [/file get [/file find name=$file] contents]
:for i from=0 to=([:len $content] - 1) do={
:if ([:pick $content $i] = "/") do={
:set toggle false;
/ip firewall address-list add address=$ip disabled=no list="$addressList" comment="$comment"
:set ip ""
}
:if ($toggle = true) do={
:set ip ($ip . [:pick $content $i])
}
:if ([:pick $content $i] = ":") do={
:set toggle true
}
}
Sorry i dont have the script