Доменные имена сервисов

Доменные имена сервисов

Комментарии Нет комментариев

В данной статье будут перечислены доменные имена и некоторые L7 фильтры для блокировки сервисов на ваших устройствах. Команды оптимизированы под MikroTik RouterOS v7 и протестированы на 7.17rc2.

YouTube

/ip/dns/static/add address-list=youtube forward-to=1.1.1.1 match-subdomain=yes type=FWD name=youtube.com
/ip/dns/static/add address-list=youtube forward-to=1.1.1.1 match-subdomain=yes type=FWD name=youtu.be
/ip/dns/static/add address-list=youtube forward-to=1.1.1.1 match-subdomain=yes type=FWD name=ytimg.com
/ip/dns/static/add address-list=youtube forward-to=1.1.1.1 type=FWD name=yt3.ggpht.com
/ip/dns/static/add address-list=youtube forward-to=1.1.1.1 type=FWD name=wide-youtube.l.google.com
/ip/dns/static/add address-list=youtube forward-to=1.1.1.1 type=FWD name=youtubei.googleapis.com

# *.googlevideo.com
/ip/dns/static/add address-list=youtube forward-to=1.1.1.1 match-subdomain=yes type=FWD name=googlevideo.com

JetBrains IDE

# IDE update endpoints
/ip/firewall/address-list/add list=jetbrains address=www.jetbrains.com
/ip/firewall/address-list/add list=jetbrains address=download.jetbrains.com
/ip/firewall/address-list/add list=jetbrains address=download-cdn.jetbrains.com
/ip/firewall/address-list/add list=jetbrains address=plugins.jetbrains.com

# IDE AI Assistant 
/ip/firewall/address-list/add list=jetbrains address=auth.grazie.ai
/ip/firewall/address-list/add list=jetbrains address=api.app.prod.grazie.aws.intellij.net

Discord

# ресурсы
/ip/dns/static/add address-list=discord forward-to=1.1.1.1 match-subdomain=yes type=FWD name=discord.media
/ip/dns/static/add address-list=discord forward-to=1.1.1.1 match-subdomain=yes type=FWD name=discord.com
/ip/dns/static/add address-list=discord forward-to=1.1.1.1 match-subdomain=yes type=FWD name=discordapp.com
/ip/dns/static/add address-list=discord forward-to=1.1.1.1 match-subdomain=yes type=FWD name=discordapp.net
/ip/dns/static/add address-list=discord forward-to=1.1.1.1 match-subdomain=yes type=FWD name=discordcdn.com
/ip/dns/static/add address-list=discord forward-to=1.1.1.1 match-subdomain=yes type=FWD name=discord.gg
/ip/firewall/address-list/add list=discord address=discord-attachments-uploads-prd.storage.googleapis.com


# L7 фильтр на пакеты пинга при запуске от Discord в сторону voice серверов
/ip/firewall/layer7-protocol/add name=discord-startup regexp="^\\x13\\x37\\xca\\xfe.\?.\?.\?.\?\$"

# L7 фильтр на пакеты handshake Discord при подключении к voice серверу
/ip/firewall/layer7-protocol/add name=discord-voice regexp="^.\?\\x01.\?\\x46"

/ip/firewall/mangle/add action=add-dst-to-address-list address-list=discord \
    address-list-timeout=12h chain=prerouting layer7-protocol=discord-startup \
    protocol=udp

/ip/firewall/mangle/add action=add-dst-to-address-list address-list=discord \
    address-list-timeout=12h chain=prerouting layer7-protocol=discord-voice \
    packet-size=102 protocol=udp

Warface: Clutch (EU)

# launcher
/ip/firewall/address-list/add list=warface-eu address=authdl.my.games

# in-game
/ip/firewall/address-list/add list=warface-eu address=comm.clt.mygames.zone

# web site (donate)
/ip/firewall/address-list/add list=warface-eu address=pc.wfclutch.com
/ip/firewall/address-list/add list=warface-eu address=pay.my.games
/ip/firewall/address-list/add list=warface-eu address=pay.mygames.com
/ip/firewall/address-list/add list=warface-eu address=account.my.games

ChatGPT

некоторые узлы используют Cloudflare, так что будьте осторожны

/ip/dns/static/add address-list=chatgpt forward-to=1.1.1.1 match-subdomain=yes type=FWD name=chatgpt.com
/ip/dns/static/add address-list=chatgpt forward-to=1.1.1.1 match-subdomain=yes type=FWD name=openai.com

Intel, HPE, Dell

/ip/dns/static/add address-list=intel-hpe-dell forward-to=1.1.1.1 match-subdomain=yes type=FWD name=dell.com
/ip/dns/static/add address-list=intel-hpe-dell forward-to=1.1.1.1 match-subdomain=yes type=FWD name=intel.com
/ip/dns/static/add address-list=intel-hpe-dell forward-to=1.1.1.1 match-subdomain=yes type=FWD name=hpe.com

Instagram

(принадлежит компании Meta, признанной экстремистской и запрещённой на территории РФ)

/ip/dns/static/add address-list=instagram forward-to=1.1.1.1 match-subdomain=yes type=FWD name=instagram.com
/ip/dns/static/add address-list=instagram forward-to=1.1.1.1 match-subdomain=yes type=FWD name=cdninstagram.com
/ip/dns/static/add address-list=instagram forward-to=1.1.1.1 match-subdomain=yes type=FWD name=fbcdn.net
/ip/dns/static/add address-list=instagram forward-to=1.1.1.1 match-subdomain=yes type=FWD name=facebook.com

Cloudflare

/ip/firewall/address-list/add list=cloudflare address=173.245.48.0/20
/ip/firewall/address-list/add list=cloudflare address=103.21.244.0/22
/ip/firewall/address-list/add list=cloudflare address=103.22.200.0/22
/ip/firewall/address-list/add list=cloudflare address=103.31.4.0/22
/ip/firewall/address-list/add list=cloudflare address=141.101.64.0/18
/ip/firewall/address-list/add list=cloudflare address=108.162.192.0/18
/ip/firewall/address-list/add list=cloudflare address=190.93.240.0/20
/ip/firewall/address-list/add list=cloudflare address=188.114.96.0/20
/ip/firewall/address-list/add list=cloudflare address=197.234.240.0/22
/ip/firewall/address-list/add list=cloudflare address=198.41.128.0/17
/ip/firewall/address-list/add list=cloudflare address=162.158.0.0/15
/ip/firewall/address-list/add list=cloudflare address=104.16.0.0/13
/ip/firewall/address-list/add list=cloudflare address=104.24.0.0/14
/ip/firewall/address-list/add list=cloudflare address=172.64.0.0/13
/ip/firewall/address-list/add list=cloudflare address=131.0.72.0/22
Количество просмотров: 108

Добавить комментарий

Ваш адрес email не будет опубликован. Обязательные поля помечены *