Community discussions

MikroTik App
 
donmirko
just joined
Topic Author
Posts: 18
Joined: Tue Oct 06, 2009 3:02 pm

L7 - Skype regexp blocking Microsoft Outlook SMTP

Tue Oct 06, 2009 3:15 pm

I have problem with my RB450G (v3.26 OS). I have VPN server, some 20-30 basic firewall rules and web proxy.
After I set-up L7 filtering for Skype service all outgoing messages form Microsoft Outlook 2007 are blocked.
I use to l7 Protocol: Skype and Skype-to-Phone. Only when Skype-to-Phone is enabled I have a problem. I try to disable other protocols and leave Skype-to-Phone active, but nothing.

this is regexp:
^(\x01.?.?.?.?.?.?.?.?\x01|\x02.?.?.?.?.?.?.?.?\x02|\x03.?.?.?.?.?.?.?.?\x03|\x04.?.?.?.?.?.?.?.?\x04|\x05.?.?.?.?.?.?.?.?\x05|\x06.?.?.?.?.?.?.?.?\x06|\x07.?.?.?.?.?.?.?.?\x07|\x08.?.?.?.?.?.?.?.?\x08|\x09.?.?.?.?.?.?.?.?\x09|\x0a.?.?.?.?.?.?.?.?\x0a|\x0b.?.?.?.?.?.?.?.?\x0b|\x0c.?.?.?.?.?.?.?.?\x0c|\x0d.?.?.?.?.?.?.?.?\x0d|\x0e.?.?.?.?.?.?.?.?\x0e|\x0f.?.?.?.?.?.?.?.?\x0f|\x10.?.?.?.?.?.?.?.?\x10|\x11.?.?.?.?.?.?.?.?\x11|\x12.?.?.?.?.?.?.?.?\x12|\x13.?.?.?.?.?.?.?.?\x13|\x14.?.?.?.?.?.?.?.?\x14|\x15.?.?.?.?.?.?.?.?\x15|\x16.?.?.?.?.?.?.?.?\x16|\x17.?.?.?.?.?.?.?.?\x17|\x18.?.?.?.?.?.?.?.?\x18|\x19.?.?.?.?.?.?.?.?\x19|\x1a.?.?.?.?.?.?.?.?\x1a|\x1b.?.?.?.?.?.?.?.?\x1b|\x1c.?.?.?.?.?.?.?.?\x1c|\x1d.?.?.?.?.?.?.?.?\x1d|\x1e.?.?.?.?.?.?.?.?\x1e|\x1f.?.?.?.?.?.?.?.?\x1f|\x20.?.?.?.?.?.?.?.?\x20|\x21.?.?.?.?.?.?.?.?\x21|\x22.?.?.?.?.?.?.?.?\x22|\x23.?.?.?.?.?.?.?.?\x23|\$.?.?.?.?.?.?.?.?\$|\x25.?.?.?.?.?.?.?.?\x25|\x26.?.?.?.?.?.?.?.?\x26|\x27.?.?.?.?.?.?.?.?\x27|\(.?.?.?.?.?.?.?.?\(|\).?.?.?.?.?.?.?.?\)|\*.?.?.?.?.?.?.?.?\*|\+.?.?.?.?.?.?.?.?\+|\x2c.?.?.?.?.?.?.?.?\x2c|\x2d.?.?.?.?.?.?.?.?\x2d|\..?.?.?.?.?.?.?.?\.|\x2f.?.?.?.?.?.?.?.?\x2f|\x30.?.?.?.?.?.?.?.?\x30|\x31.?.?.?.?.?.?.?.?\x31|\x32.?.?.?.?.?.?.?.?\x32|\x33.?.?.?.?.?.?.?.?\x33|\x34.?.?.?.?.?.?.?.?\x34|\x35.?.?.?.?.?.?.?.?\x35|\x36.?.?.?.?.?.?.?.?\x36|\x37.?.?.?.?.?.?.?.?\x37|\x38.?.?.?.?.?.?.?.?\x38|\x39.?.?.?.?.?.?.?.?\x39|\x3a.?.?.?.?.?.?.?.?\x3a|\x3b.?.?.?.?.?.?.?.?\x3b|\x3c.?.?.?.?.?.?.?.?\x3c|\x3d.?.?.?.?.?.?.?.?\x3d|\x3e.?.?.?.?.?.?.?.?\x3e|\?.?.?.?.?.?.?.?.?\?|\x40.?.?.?.?.?.?.?.?\x40|\x41.?.?.?.?.?.?.?.?\x41|\x42.?.?.?.?.?.?.?.?\x42|\x43.?.?.?.?.?.?.?.?\x43|\x44.?.?.?.?.?.?.?.?\x44|\x45.?.?.?.?.?.?.?.?\x45|\x46.?.?.?.?.?.?.?.?\x46|\x47.?.?.?.?.?.?.?.?\x47|\x48.?.?.?.?.?.?.?.?\x48|\x49.?.?.?.?.?.?.?.?\x49|\x4a.?.?.?.?.?.?.?.?\x4a|\x4b.?.?.?.?.?.?.?.?\x4b|\x4c.?.?.?.?.?.?.?.?\x4c|\x4d.?.?.?.?.?.?.?.?\x4d|\x4e.?.?.?.?.?.?.?.?\x4e|\x4f.?.?.?.?.?.?.?.?\x4f|\x50.?.?.?.?.?.?.?.?\x50|\x51.?.?.?.?.?.?.?.?\x51|\x52.?.?.?.?.?.?.?.?\x52|\x53.?.?.?.?.?.?.?.?\x53|\x54.?.?.?.?.?.?.?.?\x54|\x55.?.?.?.?.?.?.?.?\x55|\x56.?.?.?.?.?.?.?.?\x56|\x57.?.?.?.?.?.?.?.?\x57|\x58.?.?.?.?.?.?.?.?\x58|\x59.?.?.?.?.?.?.?.?\x59|\x5a.?.?.?.?.?.?.?.?\x5a|\[.?.?.?.?.?.?.?.?\[|\\.?.?.?.?.?.?.?.?\\|\].?.?.?.?.?.?.?.?\]|\^.?.?.?.?.?.?.?.?\^|\x5f.?.?.?.?.?.?.?.?\x5f|\x60.?.?.?.?.?.?.?.?\x60|\x61.?.?.?.?.?.?.?.?\x61|\x62.?.?.?.?.?.?.?.?\x62|\x63.?.?.?.?.?.?.?.?\x63|\x64.?.?.?.?.?.?.?.?\x64|\x65.?.?.?.?.?.?.?.?\x65|\x66.?.?.?.?.?.?.?.?\x66|\x67.?.?.?.?.?.?.?.?\x67|\x68.?.?.?.?.?.?.?.?\x68|\x69.?.?.?.?.?.?.?.?\x69|\x6a.?.?.?.?.?.?.?.?\x6a|\x6b.?.?.?.?.?.?.?.?\x6b|\x6c.?.?.?.?.?.?.?.?\x6c|\x6d.?.?.?.?.?.?.?.?\x6d|\x6e.?.?.?.?.?.?.?.?\x6e|\x6f.?.?.?.?.?.?.?.?\x6f|\x70.?.?.?.?.?.?.?.?\x70|\x71.?.?.?.?.?.?.?.?\x71|\x72.?.?.?.?.?.?.?.?\x72|\x73.?.?.?.?.?.?.?.?\x73|\x74.?.?.?.?.?.?.?.?\x74|\x75.?.?.?.?.?.?.?.?\x75|\x76.?.?.?.?.?.?.?.?\x76|\x77.?.?.?.?.?.?.?.?\x77|\x78.?.?.?.?.?.?.?.?\x78|\x79.?.?.?.?.?.?.?.?\x79|\x7a.?.?.?.?.?.?.?.?\x7a|\{.?.?.?.?.?.?.?.?\{|\|.?.?.?.?.?.?.?.?\||\}.?.?.?.?.?.?.?.?\}|\x7e.?.?.?.?.?.?.?.?\x7e|\x7f.?.?.?.?.?.?.?.?\x7f|\x80.?.?.?.?.?.?.?.?\x80|\x81.?.?.?.?.?.?.?.?\x81|\x82.?.?.?.?.?.?.?.?\x82|\x83.?.?.?.?.?.?.?.?\x83|\x84.?.?.?.?.?.?.?.?\x84|\x85.?.?.?.?.?.?.?.?\x85|\x86.?.?.?.?.?.?.?.?\x86|\x87.?.?.?.?.?.?.?.?\x87|\x88.?.?.?.?.?.?.?.?\x88|\x89.?.?.?.?.?.?.?.?\x89|\x8a.?.?.?.?.?.?.?.?\x8a|\x8b.?.?.?.?.?.?.?.?\x8b|\x8c.?.?.?.?.?.?.?.?\x8c|\x8d.?.?.?.?.?.?.?.?\x8d|\x8e.?.?.?.?.?.?.?.?\x8e|\x8f.?.?.?.?.?.?.?.?\x8f|\x90.?.?.?.?.?.?.?.?\x90|\x91.?.?.?.?.?.?.?.?\x91|\x92.?.?.?.?.?.?.?.?\x92|\x93.?.?.?.?.?.?.?.?\x93|\x94.?.?.?.?.?.?.?.?\x94|\x95.?.?.?.?.?.?.?.?\x95|\x96.?.?.?.?.?.?.?.?\x96|\x97.?.?.?.?.?.?.?.?\x97|\x98.?.?.?.?.?.?.?.?\x98|\x99.?.?.?.?.?.?.?.?\x99|\x9a.?.?.?.?.?.?.?.?\x9a|\x9b.?.?.?.?.?.?.?.?\x9b|\x9c.?.?.?.?.?.?.?.?\x9c|\x9d.?.?.?.?.?.?.?.?\x9d|\x9e.?.?.?.?.?.?.?.?\x9e|\x9f.?.?.?.?.?.?.?.?\x9f|\xa0.?.?.?.?.?.?.?.?\xa0|\xa1.?.?.?.?.?.?.?.?\xa1|\xa2.?.?.?.?.?.?.?.?\xa2|\xa3.?.?.?.?.?.?.?.?\xa3|\xa4.?.?.?.?.?.?.?.?\xa4|\xa5.?.?.?.?.?.?.?.?\xa5|\xa6.?.?.?.?.?.?.?.?\xa6|\xa7.?.?.?.?.?.?.?.?\xa7|\xa8.?.?.?.?.?.?.?.?\xa8|\xa9.?.?.?.?.?.?.?.?\xa9|\xaa.?.?.?.?.?.?.?.?\xaa|\xab.?.?.?.?.?.?.?.?\xab|\xac.?.?.?.?.?.?.?.?\xac|\xad.?.?.?.?.?.?.?.?\xad|\xae.?.?.?.?.?.?.?.?\xae|\xaf.?.?.?.?.?.?.?.?\xaf|\xb0.?.?.?.?.?.?.?.?\xb0|\xb1.?.?.?.?.?.?.?.?\xb1|\xb2.?.?.?.?.?.?.?.?\xb2|\xb3.?.?.?.?.?.?.?.?\xb3|\xb4.?.?.?.?.?.?.?.?\xb4|\xb5.?.?.?.?.?.?.?.?\xb5|\xb6.?.?.?.?.?.?.?.?\xb6|\xb7.?.?.?.?.?.?.?.?\xb7|\xb8.?.?.?.?.?.?.?.?\xb8|\xb9.?.?.?.?.?.?.?.?\xb9|\xba.?.?.?.?.?.?.?.?\xba|\xbb.?.?.?.?.?.?.?.?\xbb|\xbc.?.?.?.?.?.?.?.?\xbc|\xbd.?.?.?.?.?.?.?.?\xbd|\xbe.?.?.?.?.?.?.?.?\xbe|\xbf.?.?.?.?.?.?.?.?\xbf|\xc0.?.?.?.?.?.?.?.?\xc0|\xc1.?.?.?.?.?.?.?.?\xc1|\xc2.?.?.?.?.?.?.?.?\xc2|\xc3.?.?.?.?.?.?.?.?\xc3|\xc4.?.?.?.?.?.?.?.?\xc4|\xc5.?.?.?.?.?.?.?.?\xc5|\xc6.?.?.?.?.?.?.?.?\xc6|\xc7.?.?.?.?.?.?.?.?\xc7|\xc8.?.?.?.?.?.?.?.?\xc8|\xc9.?.?.?.?.?.?.?.?\xc9|\xca.?.?.?.?.?.?.?.?\xca|\xcb.?.?.?.?.?.?.?.?\xcb|\xcc.?.?.?.?.?.?.?.?\xcc|\xcd.?.?.?.?.?.?.?.?\xcd|\xce.?.?.?.?.?.?.?.?\xce|\xcf.?.?.?.?.?.?.?.?\xcf|\xd0.?.?.?.?.?.?.?.?\xd0|\xd1.?.?.?.?.?.?.?.?\xd1|\xd2.?.?.?.?.?.?.?.?\xd2|\xd3.?.?.?.?.?.?.?.?\xd3|\xd4.?.?.?.?.?.?.?.?\xd4|\xd5.?.?.?.?.?.?.?.?\xd5|\xd6.?.?.?.?.?.?.?.?\xd6|\xd7.?.?.?.?.?.?.?.?\xd7|\xd8.?.?.?.?.?.?.?.?\xd8|\xd9.?.?.?.?.?.?.?.?\xd9|\xda.?.?.?.?.?.?.?.?\xda|\xdb.?.?.?.?.?.?.?.?\xdb|\xdc.?.?.?.?.?.?.?.?\xdc|\xdd.?.?.?.?.?.?.?.?\xdd|\xde.?.?.?.?.?.?.?.?\xde|\xdf.?.?.?.?.?.?.?.?\xdf|\xe0.?.?.?.?.?.?.?.?\xe0|\xe1.?.?.?.?.?.?.?.?\xe1|\xe2.?.?.?.?.?.?.?.?\xe2|\xe3.?.?.?.?.?.?.?.?\xe3|\xe4.?.?.?.?.?.?.?.?\xe4|\xe5.?.?.?.?.?.?.?.?\xe5|\xe6.?.?.?.?.?.?.?.?\xe6|\xe7.?.?.?.?.?.?.?.?\xe7|\xe8.?.?.?.?.?.?.?.?\xe8|\xe9.?.?.?.?.?.?.?.?\xe9|\xea.?.?.?.?.?.?.?.?\xea|\xeb.?.?.?.?.?.?.?.?\xeb|\xec.?.?.?.?.?.?.?.?\xec|\xed.?.?.?.?.?.?.?.?\xed|\xee.?.?.?.?.?.?.?.?\xee|\xef.?.?.?.?.?.?.?.?\xef|\xf0.?.?.?.?.?.?.?.?\xf0|\xf1.?.?.?.?.?.?.?.?\xf1|\xf2.?.?.?.?.?.?.?.?\xf2|\xf3.?.?.?.?.?.?.?.?\xf3|\xf4.?.?.?.?.?.?.?.?\xf4|\xf5.?.?.?.?.?.?.?.?\xf5|\xf6.?.?.?.?.?.?.?.?\xf6|\xf7.?.?.?.?.?.?.?.?\xf7|\xf8.?.?.?.?.?.?.?.?\xf8|\xf9.?.?.?.?.?.?.?.?\xf9|\xfa.?.?.?.?.?.?.?.?\xfa|\xfb.?.?.?.?.?.?.?.?\xfb|\xfc.?.?.?.?.?.?.?.?\xfc|\xfd.?.?.?.?.?.?.?.?\xfd|\xfe.?.?.?.?.?.?.?.?\xfe|\xff.?.?.?.?.?.?.?.?\xff)


all firewall rules:
 0   ;;; Accept established connections
     chain=input action=accept connection-state=established 

 1   ;;; Accept related connections
     chain=input action=accept connection-state=related 

 2   ;;; Drop invalid connections
     chain=input action=drop connection-state=invalid 

 3   ;;; UDP
     chain=input action=accept protocol=udp 

 4   ;;; Allow limited pings
     chain=input action=accept protocol=icmp limit=50/5s,2 

 5   ;;; Drop excess pings
     chain=input action=drop protocol=icmp 

 6   ;;; SSH for secure shell
     chain=input action=accept protocol=tcp dst-port=22 

 7   ;;; winbox
     chain=input action=accept protocol=tcp dst-port=8291 

 8   ;;; From Mikrotikls network
     chain=input action=accept src-address=159.148.172.192/28 

 9   ;;; From our private LAN
     chain=input action=accept src-address=192.168.10.0/24 

10   ;;; Log everything else
     chain=input action=log log-prefix="DROP INPUT" 

11   chain=output action=accept protocol=tcp content=530 Login incorrect dst-limit=1/1m,9,dst-address/1m 

12   chain=output action=add-dst-to-address-list protocol=tcp address-list=ftp_blacklist address-list-timeout=3h content=530 Login incorrect 

13   ;;; drop ssh brute forcers
     chain=input action=drop protocol=tcp src-address-list=ssh_blacklist dst-port=22 

14   chain=input action=add-src-to-address-list connection-state=new protocol=tcp src-address-list=ssh_stage3 address-list=ssh_blacklist 
     address-list-timeout=1w3d dst-port=22 

15   chain=input action=add-src-to-address-list connection-state=new protocol=tcp src-address-list=ssh_stage2 address-list=ssh_stage3 address-list-timeout=1m 
     dst-port=22 

16   chain=input action=add-src-to-address-list connection-state=new protocol=tcp src-address-list=ssh_stage1 address-list=ssh_stage2 address-list-timeout=1m 
     dst-port=22 

17   chain=input action=add-src-to-address-list connection-state=new protocol=tcp address-list=ssh_stage1 address-list-timeout=1m dst-port=22 

18   chain=input action=drop protocol=tcp src-address=0.0.0.0/0 in-interface=ether1 dst-port=8080 

19   ;;; Skype
     chain=forward action=drop layer7-protocol=Skype 
20 X ;;; Skype-to-Phone
     chain=forward action=drop layer7-protocol=Skype-to-Phone 

21 X ;;; MSN
     chain=forward action=drop layer7-protocol=MSN 

22 X ;;; MSN FT
     chain=forward action=drop layer7-protocol=MSN FT 

23 X ;;; Yahoo
     chain=forward action=drop layer7-protocol=Yahoo 

24 X ;;; AIM
     chain=forward action=drop layer7-protocol=AIM 

25 X ;;; ICQ
     chain=forward action=drop layer7-protocol=ICQ 

26 X ;;; IRC
     chain=forward action=drop layer7-protocol=IRC
Please HELP!!!
As the philosopher Jagger once said, "You can't always get what you want"
----- Ambition is the last refuge of failure -----
 
User avatar
mrz
MikroTik Support
MikroTik Support
Posts: 6080
Joined: Wed Feb 07, 2007 12:45 pm
Location: Latvia
Contact:

Re: L7 - Skype regexp blocking Microsoft Outlook SMTP

Tue Oct 06, 2009 3:27 pm

well that is the problem with l7. There are no 100% guarantee that matcher will match only skype, if outlook has the same signature then it will be matched.
 
donmirko
just joined
Topic Author
Posts: 18
Joined: Tue Oct 06, 2009 3:02 pm

Re: L7 - Skype regexp blocking Microsoft Outlook SMTP

Tue Oct 06, 2009 3:30 pm

So is it any other way to forbid Skype on MT?
As the philosopher Jagger once said, "You can't always get what you want"
----- Ambition is the last refuge of failure -----
 
User avatar
normis
MikroTik Support
MikroTik Support
Posts: 24664
Joined: Fri May 28, 2004 11:04 am
Location: Riga, Latvia

Re: L7 - Skype regexp blocking Microsoft Outlook SMTP

Tue Oct 06, 2009 3:31 pm

skype can't be 100% blocked by any solution in any software.
No answer to your question? How to write posts
 
donmirko
just joined
Topic Author
Posts: 18
Joined: Tue Oct 06, 2009 3:02 pm

Re: L7 - Skype regexp blocking Microsoft Outlook SMTP

Tue Oct 06, 2009 3:35 pm

Thanks a lot!!!
As the philosopher Jagger once said, "You can't always get what you want"
----- Ambition is the last refuge of failure -----
 
yancho
Member Candidate
Member Candidate
Posts: 205
Joined: Tue Jun 01, 2004 3:04 pm
Location: LV

Re: L7 - Skype regexp blocking Microsoft Outlook SMTP

Tue Oct 06, 2009 10:45 pm

"Outgoing messages form Microsoft Outlook 2007" are SMTP traffic to port TCP 25 right? Then add one rule that allows (accept) all traffic to tcp:25 or your outgoing mail server IP and that's it.
 
donmirko
just joined
Topic Author
Posts: 18
Joined: Tue Oct 06, 2009 3:02 pm

Re: L7 - Skype regexp blocking Microsoft Outlook SMTP

Wed Oct 07, 2009 9:24 am

Yancho

I already try with putting rule for port25, but without success. But please write me a full command rule, and I'll try again.
As the philosopher Jagger once said, "You can't always get what you want"
----- Ambition is the last refuge of failure -----
 
conjurer
Member Candidate
Member Candidate
Posts: 110
Joined: Mon Jul 21, 2008 9:46 pm

Re: L7 - Skype regexp blocking Microsoft Outlook SMTP

Wed Oct 07, 2009 11:42 am

have you unchecked passtrough box in that rule?
 
donmirko
just joined
Topic Author
Posts: 18
Joined: Tue Oct 06, 2009 3:02 pm

Re: L7 - Skype regexp blocking Microsoft Outlook SMTP

Wed Oct 07, 2009 12:31 pm

I tried various combination, but please write whole rule for me, and then I'll try again.
As the philosopher Jagger once said, "You can't always get what you want"
----- Ambition is the last refuge of failure -----
 
User avatar
mrz
MikroTik Support
MikroTik Support
Posts: 6080
Joined: Wed Feb 07, 2007 12:45 pm
Location: Latvia
Contact:

Re: L7 - Skype regexp blocking Microsoft Outlook SMTP

Wed Oct 07, 2009 1:15 pm

tcp:25 accept rule should be on the top of l7 rule.
 
donmirko
just joined
Topic Author
Posts: 18
Joined: Tue Oct 06, 2009 3:02 pm

Re: L7 - Skype regexp blocking Microsoft Outlook SMTP

Wed Oct 07, 2009 3:47 pm

I just try some various rules and any of them doesn't work

tried rules
ip firewall filter add chain=input port=25 action=accept protocol=tcp
ip firewall filter add chain=forward port=25 action=accept protocol=tcp
ip firewall filter add chain=output port=25 action=passthrough protocol=tcp
ip firewall filter add chain=output port=25 action=accept protocol=tcp
I tried to put the rule to the top of the list.

I also try to use different port for mail communication (2525), and problem is the same.

I fallowed the traffic on my problematic Skype-to-Phone rule and traffic is moving every time I try to send email (with or without uper rules).
As the philosopher Jagger once said, "You can't always get what you want"
----- Ambition is the last refuge of failure -----
 
csickles
Forum Guru
Forum Guru
Posts: 1257
Joined: Fri May 28, 2004 8:46 pm
Location: Phoenix, AZ
Contact:

Re: L7 - Skype regexp blocking Microsoft Outlook SMTP

Wed Oct 07, 2009 8:58 pm

Modify yhe folowing lines...

19 ;;; Skype
chain=forward action=drop layer7-protocol=Skype
20 X ;;; Skype-to-Phone
chain=forward action=drop layer7-protocol=Skype-to-Phone


Add a "! mail server address" in the source field...

IE exclude the mail server from the "test".....

IE drop all traffic that IS NOT comming from the mail server that matches the L7 payload test...
Things that make you go "Hmmmmmmmm"...

Craig
 
donmirko
just joined
Topic Author
Posts: 18
Joined: Tue Oct 06, 2009 3:02 pm

Re: L7 - Skype regexp blocking Microsoft Outlook SMTP

Thu Oct 08, 2009 10:10 am

I tried with this configuration, but no real success. After this mail works, but then Skype works to.

I use this modification:
19   ;;; Skype
     chain=forward action=drop src-address-list="smtp.ruzavjetrova.me" layer7-protocol=Skype 

20   ;;; Skype-to-Phone
     chain=forward action=drop src-address-list="smtp.ruzavjetrova.me" layer7-protocol=Skype-to-Phone
As the philosopher Jagger once said, "You can't always get what you want"
----- Ambition is the last refuge of failure -----
 
csickles
Forum Guru
Forum Guru
Posts: 1257
Joined: Fri May 28, 2004 8:46 pm
Location: Phoenix, AZ
Contact:

Re: L7 - Skype regexp blocking Microsoft Outlook SMTP

Thu Oct 08, 2009 6:08 pm

This is going to sound stupid... but I have to ask...

1) Is the mail server running ANY form of skype? (Could creata a "super node")
2) What addresses are in the list? Just the mail server(s) or is it a local "net"?

What addresses are "skyping"... ?
Things that make you go "Hmmmmmmmm"...

Craig
 
User avatar
marioclep
Trainer
Trainer
Posts: 140
Joined: Sat Jul 11, 2009 4:36 pm
Location: Cordoba - Argentina
Contact:

Re: L7 - Skype regexp blocking Microsoft Outlook SMTP

Fri Oct 09, 2009 3:49 am

I tried with this configuration, but no real success. After this mail works, but then Skype works to.

I use this modification:
19   ;;; Skype
     chain=forward action=drop src-address-list="smtp.ruzavjetrova.me" layer7-protocol=Skype 

20   ;;; Skype-to-Phone
     chain=forward action=drop src-address-list="smtp.ruzavjetrova.me" layer7-protocol=Skype-to-Phone
I believe you should add the "not" indicator (!) before the src-address list. IE "drop everything that does not come from this src-address"
---------------------

Ing. Mario D. Clep
CTO - MKE Solutions
MikroTik Certified Trainer
 
csickles
Forum Guru
Forum Guru
Posts: 1257
Joined: Fri May 28, 2004 8:46 pm
Location: Phoenix, AZ
Contact:

Re: L7 - Skype regexp blocking Microsoft Outlook SMTP

Sat Oct 10, 2009 9:09 am

Yep... he has it... I didnt see a "NOT" eather...

In winbox, set the flag infront of the address box.. it will put a "!" in the small box..

This is a NOT flag...
Things that make you go "Hmmmmmmmm"...

Craig
 
donmirko
just joined
Topic Author
Posts: 18
Joined: Tue Oct 06, 2009 3:02 pm

Re: L7 - Skype regexp blocking Microsoft Outlook SMTP

Tue Oct 13, 2009 1:05 pm

I think now is OK. I just tried with this ! NOT flag and it's work.
I'll test it for some time.

Thanks!!!
As the philosopher Jagger once said, "You can't always get what you want"
----- Ambition is the last refuge of failure -----
 
hrodriguez231
just joined
Posts: 2
Joined: Wed Jul 24, 2013 4:33 pm

Re: L7 - Skype regexp blocking Microsoft Outlook SMTP

Wed Jul 24, 2013 5:12 pm

Hi, can I have the regex for skype and actionvoip?
I need to block these two using L7 protocol but it is not working for me.
I used this in Layer 7:
^.+(skype.com|actionvoip.com).*$
and then in ip firewall filter:
For VoIP
chain=forward action=drop src-address-list=BlockedVoIP layer7-protocol=VoIP

I think the regex are wrong or something is missing.
Please help.

Who is online

Users browsing this forum: eworm, sindy, sirlindqvist and 142 guests