Hey,
I have blocking rules setup in mikrotik to block torrents and some websites. These rules are causing some websites or their widgets to be blocked on certain websites we work on. How can I add a whitelist to allow certain domains?
/ip firewall layer7-protocol
add name=BITTORRENT regexp="^(\\x13bittorrent protocol|azver\\x01\$|get /scrape\\\?info_hash=get /announce\\\?info_hash=|get /client/bitcomet/|GET /data\\\?fid=)|d1:ad2:id20:|\\x08'7P\\)[RP]"
add name=BITTORRENT_ANNOUNCE regexp=^get.+announce.
add name=torrentsites regexp="^.*(get|GET).+(thepiratebay|isohunt|entertane|demonoid|btjunkie|mininova|flixflux|torrentz|vertor|h33t|btscene|bitunity|bittoxic|thunderbytes|entertane|zoozle|vcdq|b\
itnova|bitsoup|meganova|fulldls|btbot|flixflux|seedpeer|fenopy|gpirate|commonbits|grooveshark|spotify|jango|thepiratebay.se).*\$"
/ip firewall filter
add action=drop chain=forward comment="block soundcloud https" content=soundcloud dst-port=443,80 protocol=tcp
add action=reject chain=forward comment="blokir torrent" p2p=all-p2p reject-with=icmp-admin-prohibited
add action=reject chain=forward comment=torrentsites layer7-protocol=torrentsites reject-with=icmp-admin-prohibited src-address=192.168.200.0/24
add action=reject chain=forward comment=bittorrent layer7-protocol=BITTORRENT reject-with=icmp-admin-prohibited src-address=192.168.200.0/24
add action=reject chain=forward comment=bittorrent_accounce layer7-protocol=BITTORRENT_ANNOUNCE reject-with=icmp-admin-prohibited src-address=192.168.200.0/24
add action=drop chain=forward comment=keyword_drop content=torrent src-address=192.168.200.0/24
add action=drop chain=forward comment=get_peers_drop content=getpeers src-address=192.168.200.0/24
add action=drop chain=forward comment=info_hash_drop content=info_hash src-address=192.168.200.0/24
add action=drop chain=forward comment=announce_peers_drop content=announce_peers src-address=192.168.200.0/24
add action=drop chain=forward comment=p2p_drop p2p=all-p2p src-address=192.168.200.0/24